MyCity » Ambulanta -> Arhiva Ambulante » Google chrome mi otvara link iz drugog trećeg puta

Google chrome mi otvara link iz drugog trećeg puta

Napisano na dan: 27.1.2017

Google chrome mi otvara link iz drugog trećeg puta

Odgovori

dejan7685 Poslao: 27 Jan 2017 19:56 Idi na vrh
offline dejan7685 Novi MyCity građanin Pridružio: 27 Jan 2017 Poruke: 2	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: U zadnje vreme Google Chrome je počeo da mi otvara linkove iz drugog trećeg puta .Nema da mi pokaže prst sa rukom odmah nego prvo kada odem na link on stavi strelicu od miša ,kada kliknem otvara mi neke relame u novom tabu , pa tek onda otvori link pokaže prst sa rukom .Izluđuje me i to mi obično otvara ovu reklamu WINDOWS 10 IMAGE RAPAIR PC . Imam ADBLOCK PLUS. Koristim ADSL 10mb/s Telekom. Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 25-01-2017 Ran by dejan (administrator) on DEJAN-PC (27-01-2017 19:49:59) Running from C:\Users\dejan\Desktop Loaded Profiles: dejan (Available Profiles: dejan) Platform: Microsoft Windows 10 Pro Version 1607 (X86) Language: English (United States) Internet Explorer Version 11 (Default browser: Edge) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: geekstogo.com/forum/topic/335081-frst-t.....scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Av\avgrsx.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Av\avgcsrvx.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Framework\Common\avgsvcx.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Av\avgidsagent.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Av\avgwdsvcx.exe (Digital Wave Ltd.) C:\Program Files\Common Files\DVDVideoSoft\lib\app_updater.exe (Lenovo Corporation) C:\Program Files\Lenovo\PCManager\LenovoPcManagerService.exe (联想（北京）有限公司) C:\Program Files\Lenovo\PCManager\LenovoDRS.exe (Wondershare) C:\Program Files\Wondershare\WAF\2.3.2.219\WsAppService.exe (TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe (Microsoft Corporation) C:\Windows\System32\Locator.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Av\avgnsx.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Av\avgemcx.exe (Zemana Ltd.) C:\Program Files\Zemana AntiMalware\ZAM.exe (Google Inc.) C:\Program Files\Google\Update\1.3.32.7\GoogleCrashHandler.exe (Lenovo Corporation) C:\Program Files\Lenovo\PCManager\LenovoTray.exe (Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Framework\Common\avguix.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Av\avgui.exe (CHENGDU YIWO Tech Development Co., Ltd) C:\Program Files\EaseUS\EaseUS Partition Master 11.9\bin\EpmNews.exe () C:\Program Files\EaseUS\EaseUS Partition Master 11.9\bin\TrayPopupE\TrayTipAgentE.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Lenovo) C:\Program Files\Lenovo\PCManager\LenovoMessage.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe ==================== Registry (Whitelisted) ==================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [AvgUi] => C:\Program Files\AVG\Framework\Common\avguirnx.exe [220944 2016-12-06] (AVG Technologies CZ, s.r.o.) HKLM\...\Run: [AVG_UI] => C:\Program Files\AVG\Framework\Common\avguirnx.exe [220944 2016-12-06] (AVG Technologies CZ, s.r.o.) HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [587288 2016-09-22] (Oracle Corporation) HKLM\...\Run: [EaseUS EPM tray] => C:\Program Files\EaseUS\EaseUS Partition Master 11.9\bin\EpmNews.exe [2090176 2016-09-20] (CHENGDU YIWO Tech Development Co., Ltd) HKLM\...\Run: [EaseUS Cleanup] => C:\Program Files\EaseUS\EaseUS Partition Master 11.9\bin\CleanUpUI.exe [1243328 2016-09-20] (CHENGDU Yiwo Tech Development Co., Ltd.) HKLM\...\Run: [EaseUS EPM Tray Agent] => C:\Program Files\EaseUS\EaseUS Partition Master 11.9\bin\TrayPopupE\TrayTipAgentE.exe [255072 2014-11-18] () HKU\S-1-5-21-2725342497-1767379937-2485888434-1001\...\Run: [Viber] => C:\Users\dejan\AppData\Local\Viber\Viber.exe [43999824 2017-01-16] (Viber Media S.Ã r.l.) HKU\S-1-5-21-2725342497-1767379937-2485888434-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [7175384 2016-12-06] (Piriform Ltd) HKU\S-1-5-21-2725342497-1767379937-2485888434-1001\...\Run: [Flvto YouTube Downloader] => C:\Users\dejan\AppData\Local\Flvto YouTube Downloader\FlvtoYoutubeDownloader.Redesign.exe [409600 2016-10-25] () HKU\S-1-5-21-2725342497-1767379937-2485888434-1001\...\MountPoints2: {76ad6ef2-8d3d-11e6-8ad3-001fd01ee4db} - "G:\LG_PC_Programs.exe" HKU\S-1-5-21-2725342497-1767379937-2485888434-1001\...\MountPoints2: {aac19f92-8553-11e6-8acb-001fd01ee4db} - "G:\LG_PC_Programs.exe" HKU\S-1-5-18\...\Run: [] => 0 ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\BackupRemind.lnk [2016-12-17] ShortcutTarget: BackupRemind.lnk -> C:\Program Files\Wondershare\dr.fone toolkit for Android\Addins\AndroidBackupRestore\BackupRemind.exe (No File) GroupPolicy: Restriction - Windows Defender <======= ATTENTION ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{938526f2-0a05-4077-a0e9-c9636044b755}: [NameServer] 8.8.8.8,8.8.4.4 Tcpip\..\Interfaces\{938526f2-0a05-4077-a0e9-c9636044b755}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{df927024-ee76-41e9-bec0-c7ce2732a227}: [NameServer] 8.8.8.8,8.8.4.4 Tcpip\..\Interfaces\{df927024-ee76-41e9-bec0-c7ce2732a227}: [DhcpNameServer] 192.168.1.1 ManualProxies: Internet Explorer: ================== HKU\S-1-5-21-2725342497-1767379937-2485888434-1001\Software\Microsoft\Internet Explorer\Main,Start Page = SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\JDK\bin\ssv.dll [2017-01-08] (Oracle Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\JDK\bin\jp2ssv.dll [2017-01-08] (Oracle Corporation) FireFox: ======== FF ProfilePath: C:\Users\dejan\AppData\Roaming\Mozilla\Firefox\Profiles\6unxlt1d.default-1476917329467 [2017-01-15] FF Homepage: Mozilla\Firefox\Profiles\6unxlt1d.default-1476917329467 -> Google.com FF Extension: (Video DownloadHelper) - C:\Users\dejan\AppData\Roaming\Mozilla\Firefox\Profiles\6unxlt1d.default-1476917329467\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2017-01-06] FF Extension: (Adblocker for Youtube™) - C:\Program Files\Mozilla Firefox\browser\features\{95E84BD3-3604-4AAC-B2CA-D9AC3E55B64B} [2016-12-17] [not signed] FF HKU\S-1-5-21-2725342497-1767379937-2485888434-1001\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files\Internet Download Manager\idmmzcc2.xpi => not found FF Plugin: @java.com/DTPlugin,version=11.111.2 -> C:\Program Files\JDK\bin\dtplugin\npDeployJava1.dll [2017-01-08] (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.111.2 -> C:\Program Files\JDK\bin\plugin2\npjp2.dll [2017-01-08] (Oracle Corporation) FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2017-01-24] (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2017-01-24] (Google Inc.) FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN) Chrome: ======= CHR DefaultProfile: ChromeDefaultData CHR HomePage: ChromeDefaultData -> hxxp://www.google.com/ CHR StartupUrls: ChromeDefaultData -> "hxxp://www.google.com/" CHR DefaultSearchURL: ChromeDefaultData -> hxxps://www.google.com/search?q={searchTerms}&ie=utf-8&oe=utf-8&aq=t&q={searchTerms}&ie=utf-8&oe=utf-8&aq=t&channel=fflb&q={searchTerms}&ie=utf-8&oe=utf-8&aq=t&channel=rcs CHR DefaultSearchKeyword: ChromeDefaultData -> google.com_ CHR DefaultSuggestURL: ChromeDefaultData -> hxxps://www.google.com/complete/search?q={searchTerms} CHR Profile: C:\Users\dejan\AppData\Local\Google\Chrome\User Data\ChromeDefaultData [2017-01-27] <==== ATTENTION CHR Extension: (Google Translate) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2017-01-26] CHR Extension: (Adblock Plus) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2017-01-27] CHR Extension: (MushOls) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\epdbppopkpkjbkfhamchbjcobmdmicck [2017-01-26] CHR Extension: (Google Docs Offline) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-01-24] CHR Extension: (mixGames Search) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\kcboafodfidhkjhhagekcbeepegnccha [2016-12-28] CHR Extension: (Chrome Web Store Payments) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-01-18] CHR Extension: (Chrome Media Router) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-01-24] CHR Profile: C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Default [2016-12-05] CHR Extension: (Google Slides) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-09-07] CHR Extension: (Google Docs) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-09-07] CHR Extension: (Google Drive) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-09-07] CHR Extension: (YouTube) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-09-07] CHR Extension: (Adblock Plus) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-11-08] CHR Extension: (Google Sheets) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-09-07] CHR Extension: (Google Docs Offline) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-09-07] CHR Extension: (Chrome Web Store Payments) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-09-07] CHR Extension: (Social Profile view notification) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pegkceflonohbcefcbflfpficfkmpeod [2016-11-18] CHR Extension: (Gmail) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-09-07] CHR Extension: (Chrome Media Router) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-11-08] CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx ==================== Services (Whitelisted) ==================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) S3 AvgAMPS; C:\Program Files\AVG\Av\avgamps.exe [971160 2017-01-09] (AVG Technologies CZ, s.r.o.) R2 AVGIDSAgent; C:\Program Files\AVG\Av\avgidsagent.exe [4154016 2017-01-09] (AVG Technologies CZ, s.r.o.) R2 avgsvc; C:\Program Files\AVG\Framework\Common\avgsvcx.exe [935184 2016-12-06] (AVG Technologies CZ, s.r.o.) R2 avgwd; C:\Program Files\AVG\Av\avgwdsvcx.exe [603288 2017-01-09] (AVG Technologies CZ, s.r.o.) R2 DigitalWave.Update.Service; C:\Program Files\Common Files\DVDVideoSoft\lib\app_updater.exe [392168 2016-08-31] (Digital Wave Ltd.) R2 LenovoDRS; C:\Program Files\Lenovo\PCManager\LenovoDRS.exe [926536 2017-01-13] (联想（北京）有限公司) R2 LenovoPcManagerService; C:\Program Files\Lenovo\PCManager\LenovoPcManagerService.exe [1389376 2017-01-13] (Lenovo Corporation) S4 MaxthonAppStoreSvc; C:\Program Files\Maxthon App Store\1.1.0.10848\MaxthonAppstoreSvc.exe [1867544 2015-08-11] (Maxthon) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [1887272 2016-09-15] (Microsoft Corporation) S2 Service KMSELDI; C:\Program Files\KMSpico\Service_KMS.exe [745664 2016-01-11] (@ByELDI) [File not signed] S4 SpeedupService; C:\Program Files\Avira\System Speedup\Avira.SystemSpeedup.SpeedupService.exe [26632 2016-11-10] (Avira Operations GmbH & Co. KG) R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [6942480 2016-03-02] (TeamViewer GmbH) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [271496 2016-07-16] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [84928 2016-07-16] (Microsoft Corporation) R2 WsAppService; C:\Program Files\Wondershare\WAF\2.3.2.219\WsAppService.exe [440832 2016-12-07] (Wondershare) [File not signed] R2 ZAMSvc; C:\Program Files\Zemana AntiMalware\ZAM.exe [13823216 2016-10-04] (Zemana Ltd.) ===================== Drivers (Whitelisted) ====================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) S3 AndnetBus; C:\WINDOWS\System32\drivers\lgandnetbus.sys [32512 2016-09-01] (LG Electronics Inc.) S3 AndNetDiag; C:\WINDOWS\system32\DRIVERS\lgandnetdiag.sys [32768 2016-09-01] (LG Electronics Inc.) S3 ANDNetModem; C:\WINDOWS\system32\DRIVERS\lgandnetmodem.sys [37376 2016-09-01] (LG Electronics Inc.) S0 Avgbootx; C:\WINDOWS\System32\DRIVERS\avgbootx.sys [19584 2016-01-07] (AVG Technologies CZ, s.r.o.) R1 Avgdiskx; C:\WINDOWS\System32\DRIVERS\avgdiskx.sys [134912 2016-05-13] (AVG Technologies CZ, s.r.o.) R1 AVGIDSDriver; C:\WINDOWS\System32\DRIVERS\avgidsdriverx.sys [259328 2016-11-04] (AVG Technologies CZ, s.r.o.) R0 AVGIDSHX; C:\WINDOWS\System32\DRIVERS\avgidshx.sys [207616 2016-10-05] (AVG Technologies CZ, s.r.o.) R1 AVGIDSShim; C:\WINDOWS\system32\DRIVERS\avgidsshimw8x.sys [41216 2016-08-02] (AVG Technologies CZ, s.r.o.) R1 Avgldx86; C:\WINDOWS\System32\DRIVERS\avgldx86.sys [244992 2016-11-30] (AVG Technologies CZ, s.r.o.) R0 Avglogx; C:\WINDOWS\System32\DRIVERS\avglogx.sys [287008 2016-02-16] (AVG Technologies CZ, s.r.o.) R0 Avgmfx86; C:\WINDOWS\System32\DRIVERS\avgmfx86.sys [197376 2016-09-26] (AVG Technologies CZ, s.r.o.) R0 Avgrkx86; C:\WINDOWS\System32\DRIVERS\avgrkx86.sys [47360 2016-06-01] (AVG Technologies CZ, s.r.o.) R0 avgunivx; C:\WINDOWS\System32\DRIVERS\avgunivx.sys [65280 2016-06-20] (AVG Technologies CZ, s.r.o.) R1 Avgwfpx; C:\WINDOWS\system32\DRIVERS\avgwfpx.sys [246536 2016-08-04] (AVG Technologies CZ, s.r.o.) S3 dg_ksudbus; C:\WINDOWS\System32\drivers\ksudbus.sys [75776 2011-03-25] (Microsoft Corporation) [File not signed] S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [109184 2016-09-05] (Samsung Electronics Co., Ltd.) S3 epmntdrv; C:\WINDOWS\system32\epmntdrv.sys [21496 2016-01-14] () S3 EuGdiDrv; C:\WINDOWS\system32\EuGdiDrv.sys [10208 2016-07-11] () R1 HWiNFO32; C:\WINDOWS\system32\drivers\HWiNFO32.SYS [23840 2016-11-26] (REALiX(tm)) R1 lnvguard; C:\WINDOWS\System32\DRIVERS\lnvguard.sys [83392 2016-12-01] (Huorong Borui (Beijing) Technology Co., Ltd.) S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [62976 2016-07-16] () R0 pwdrvio; C:\WINDOWS\System32\pwdrvio.sys [17160 2015-03-05] () S3 pwdspio; C:\WINDOWS\system32\pwdspio.sys [13064 2015-03-05] () S3 qcfilter; C:\WINDOWS\System32\drivers\qcusbfilter.sys [39456 2015-09-25] (QUALCOMM Incorporated) S3 qcusbser; C:\WINDOWS\system32\DRIVERS\qcusbser.sys [214560 2015-09-25] (QUALCOMM Incorporated) R3 rt640x86; C:\WINDOWS\System32\drivers\rt640x86.sys [494080 2016-07-16] (Realtek ) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [147072 2016-09-05] (Samsung Electronics Co., Ltd.) S3 usbbus; C:\WINDOWS\System32\drivers\lgusbbus.sys [13056 2014-05-27] (LG Electronics Inc.) S3 UsbDiag; C:\WINDOWS\system32\DRIVERS\lgusbdiag.sys [20864 2014-05-27] (LG Electronics Inc.) S3 USBModem; C:\WINDOWS\system32\DRIVERS\lgusbmodem.sys [25216 2014-05-27] (LG Electronics Inc.) S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [37912 2016-07-16] (Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [244576 2016-07-16] (Microsoft Corporation) S3 wdf_usb; C:\WINDOWS\system32\drivers\usb2ser.sys [128704 2016-08-16] (MBB) S3 wdm_usb; C:\WINDOWS\System32\drivers\usb2ser.sys [128704 2016-08-16] (MBB) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [100192 2016-07-16] (Microsoft Corporation) S3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [161280 2016-07-16] (Microsoft Corporation) R1 ZAM; C:\WINDOWS\System32\drivers\zam32.sys [181496 2016-10-15] (Zemana Ltd.) R1 ZAM_Guard; C:\WINDOWS\System32\drivers\zamguard32.sys [181496 2016-10-15] (Zemana Ltd.) U0 aswVmm; no ImagePath S3 ComputerZ; \??\C:\Program Files\LuDaShi\ComputerZ.sys [X] <==== ATTENTION S1 onnexwgf; \??\C:\WINDOWS\system32\drivers\onnexwgf.sys [X] S3 vzandnetadb; \SystemRoot\System32\Drivers\lgvzandnetadb.sys [X] S3 vzandnetdiag; \SystemRoot\system32\DRIVERS\lgvzandnetdiag.sys [X] S3 vzandnetmodem; \SystemRoot\system32\DRIVERS\lgvzandnetmdm.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) NETSVC: HpSvc -> no filepath. NETSVC: GmSvc -> no filepath. ==================== One Month Created files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2017-01-27 19:49 - 2017-01-27 19:50 - 00018383 _____ C:\Users\dejan\Desktop\FRST.txt 2017-01-27 19:49 - 2017-01-27 19:49 - 01762816 _____ (Farbar) C:\Users\dejan\Desktop\FRST.exe 2017-01-26 23:09 - 2017-01-26 23:09 - 00001101 _____ C:\Users\Public\Desktop\VLC media player.lnk 2017-01-26 23:09 - 2017-01-26 23:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN 2017-01-26 23:08 - 2017-01-26 23:08 - 30533688 _____ C:\Users\dejan\Downloads\vlc-2.2.4-win32.exe 2017-01-26 22:22 - 2017-01-26 22:22 - 00000000 ____D C:\Users\dejan\Downloads\iGO_Israel 2017-01-26 22:18 - 2017-01-26 22:21 - 140088080 _____ C:\Users\dejan\Downloads\iGO_Israel.zip 2017-01-25 23:20 - 2017-01-25 23:20 - 17112210 _____ C:\Users\dejan\Downloads\apps2sd-free-v104.apk 2017-01-25 23:09 - 2017-01-25 23:09 - 03805451 _____ C:\Users\dejan\Downloads\L2SDP v4.0.13.rar 2017-01-25 23:09 - 2017-01-25 23:09 - 00000000 ____D C:\Users\dejan\Downloads\L2SDP v4.0.13 2017-01-25 23:01 - 2017-01-25 23:01 - 00000000 _____ C:\WINDOWS\BcdLog.txt 2017-01-25 22:57 - 2017-01-25 22:57 - 00001321 _____ C:\Users\Public\Desktop\EaseUS Todo PCTrans.lnk 2017-01-25 22:57 - 2017-01-25 22:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS Todo PCTrans 2017-01-25 22:56 - 2017-01-25 22:56 - 05335456 _____ (EaseUS ) C:\Users\dejan\Documents\pctrans.exe 2017-01-25 22:55 - 2017-01-25 22:55 - 00001259 _____ C:\Users\Public\Desktop\EaseUS Data Recovery Wizard.lnk 2017-01-25 22:55 - 2017-01-25 22:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS Data Recovery Wizard 2017-01-25 22:49 - 2017-01-25 22:54 - 16097104 _____ (EaseUS ) C:\Users\dejan\Documents\drw_free.exe 2017-01-25 19:48 - 2016-12-21 05:44 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe 2017-01-24 23:44 - 2017-01-24 23:44 - 00411941 _____ C:\Users\dejan\Downloads\nextapp.sdfix_0.7-7_minAPI18(nodpi)_apkmirror.com.apk 2017-01-24 22:15 - 2017-01-24 22:15 - 00000000 ____D C:\Users\dejan\Downloads\iGO Primo 3. mart 2016 + Doupas skin v9.0c + ThemeChanger v6.0 2017-01-24 21:37 - 2017-01-24 21:37 - 00826924 _____ C:\Users\dejan\Downloads\Advanced Call Blocker v2.1.38.apk 2017-01-24 21:15 - 2017-01-24 21:15 - 00000000 ____D C:\Users\dejan\AppData\Local\BlueStacks 2017-01-24 19:02 - 2017-01-24 19:22 - 1267026369 _____ C:\Users\dejan\Downloads\iGO Primo 3. mart 2016 + Doupas skin v9.0c + ThemeChanger v6.0.rar 2017-01-24 18:45 - 2017-01-24 18:45 - 00002294 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2017-01-24 18:45 - 2017-01-24 18:45 - 00002282 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2017-01-24 17:39 - 2017-01-24 17:40 - 00000000 ____D C:\Program Files\GUME90A.tmp 2017-01-24 15:15 - 2017-01-24 15:16 - 00000000 ____D C:\Users\dejan\AppData\Local\Viber 2017-01-23 23:15 - 2017-01-23 23:15 - 00048640 _____ C:\Users\dejan\Downloads\odgovor 19.01..msg 2017-01-21 20:00 - 2017-01-21 20:00 - 00001074 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 11.lnk 2017-01-21 20:00 - 2017-01-21 20:00 - 00001062 _____ C:\Users\Public\Desktop\TeamViewer 11.lnk 2017-01-21 20:00 - 2017-01-21 20:00 - 00000000 ____D C:\Program Files\TeamViewer 2017-01-21 14:45 - 2017-01-21 14:45 - 00000000 ____D C:\Users\dejan\AppData\Roaming\epm 2017-01-21 14:40 - 2017-01-21 14:40 - 14482152 _____ (TeamViewer GmbH) C:\Users\dejan\Documents\TeamViewer_Setup.exe 2017-01-21 14:04 - 2017-01-21 14:04 - 00000000 ____D C:\Program Files\ByteFence 2017-01-20 22:46 - 2017-01-20 22:46 - 00001423 _____ C:\Users\Public\Desktop\EaseUS Partition Master 11.9.lnk 2017-01-20 22:46 - 2017-01-20 22:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS Partition Master 11.9 2017-01-20 22:46 - 2016-12-07 14:53 - 02938560 _____ C:\WINDOWS\system32\BootMan.exe 2017-01-20 22:46 - 2016-07-11 10:01 - 00088160 _____ C:\WINDOWS\system32\setupempdrv03.exe 2017-01-20 22:46 - 2016-07-11 10:01 - 00010208 _____ C:\WINDOWS\system32\EuGdiDrv.sys 2017-01-20 22:46 - 2016-07-08 15:28 - 00248832 _____ C:\WINDOWS\system32\epmntdrv.pdb 2017-01-20 22:46 - 2016-01-14 10:05 - 00021496 _____ C:\WINDOWS\system32\epmntdrv.sys 2017-01-20 22:46 - 2014-11-18 14:46 - 00021088 _____ C:\WINDOWS\system32\EuEpmGdi.dll 2017-01-20 22:06 - 2017-01-20 22:06 - 00001210 _____ C:\Users\Public\Desktop\MiniTool Partition Wizard Free.lnk 2017-01-20 22:06 - 2017-01-20 22:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MiniTool Partition Wizard Free 9.1 2017-01-20 21:38 - 2015-08-11 12:22 - 02895360 _____ C:\WINDOWS\system32\pwNative.exe 2017-01-20 21:38 - 2015-03-05 10:15 - 00017160 ____N C:\WINDOWS\system32\pwdrvio.sys 2017-01-20 21:37 - 2015-03-05 10:15 - 00013064 ____N C:\WINDOWS\system32\pwdspio.sys 2017-01-20 16:19 - 2017-01-20 16:19 - 00000000 ____D C:\Users\dejan\AppData\Local\Macromedia 2017-01-20 15:01 - 2017-01-20 15:01 - 00214812 _____ C:\Users\dejan\Documents\Find Bluestacks SD Card Location in Your PC _ Android Development and Hacking.html 2017-01-18 13:04 - 2014-05-27 10:05 - 00025216 _____ (LG Electronics Inc.) C:\WINDOWS\system32\Drivers\lgusbmodem.sys 2017-01-18 13:04 - 2014-05-27 10:05 - 00020864 _____ (LG Electronics Inc.) C:\WINDOWS\system32\Drivers\lgusbdiag.sys 2017-01-18 13:04 - 2014-05-27 10:05 - 00013056 _____ (LG Electronics Inc.) C:\WINDOWS\system32\Drivers\lgusbbus.sys 2017-01-18 12:34 - 2017-01-18 12:34 - 00001144 _____ C:\ProgramData\Microsoft\Windows\Start Menu\LG Bridge.Lnk 2017-01-18 12:23 - 2017-01-18 12:23 - 00000000 ____D C:\LGMobileUpgrade 2017-01-16 18:16 - 2017-01-16 18:35 - 00000000 ____D C:\Program Files\Android 2017-01-16 11:58 - 2017-01-16 12:32 - 1756130200 _____ (Google Inc.) C:\android-studio-bundle-145.3537739-windows.exe 2017-01-13 13:10 - 2017-01-13 13:10 - 00000000 ____D C:\Users\dejan\Documents\LG Bridge 2017-01-13 13:01 - 2017-01-13 13:01 - 02146160 _____ (Microsoft Corporation) C:\WINDOWS\system32\WudfUpdate_01011.dll 2017-01-13 13:01 - 2017-01-13 13:01 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_LGAirDrive_01_11_00.Wdf 2017-01-13 12:24 - 2017-01-13 12:33 - 00000000 ____D C:\AdwCleaner 2017-01-13 03:10 - 2017-01-13 03:10 - 00000000 ____D C:\WINDOWS\Panther 2017-01-12 22:26 - 2016-12-21 06:20 - 06020448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2017-01-12 22:26 - 2016-12-21 06:02 - 03892864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll 2017-01-12 22:26 - 2016-12-21 06:02 - 01852720 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll 2017-01-12 22:26 - 2016-12-21 06:02 - 01360464 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll 2017-01-12 22:26 - 2016-12-21 06:02 - 01277344 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll 2017-01-12 22:26 - 2016-12-21 06:02 - 01201872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll 2017-01-12 22:26 - 2016-12-21 06:02 - 00980832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll 2017-01-12 22:26 - 2016-12-21 06:00 - 01384704 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll 2017-01-12 22:26 - 2016-12-21 05:47 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll 2017-01-12 22:26 - 2016-12-21 05:45 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll 2017-01-12 22:26 - 2016-12-21 05:44 - 00157696 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll 2017-01-12 22:26 - 2016-12-21 05:43 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll 2017-01-12 22:26 - 2016-12-21 05:42 - 00330752 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll 2017-01-12 22:26 - 2016-12-21 05:41 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll 2017-01-12 22:26 - 2016-12-21 05:41 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll 2017-01-12 22:26 - 2016-12-21 05:40 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll 2017-01-12 22:26 - 2016-12-21 05:40 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe 2017-01-12 22:26 - 2016-12-21 05:39 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe 2017-01-12 22:26 - 2016-12-21 05:35 - 04612608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll 2017-01-12 22:26 - 2016-12-21 05:35 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll 2017-01-12 22:26 - 2016-12-21 05:33 - 19413504 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll 2017-01-12 22:26 - 2016-12-21 05:32 - 19417600 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2017-01-12 22:26 - 2016-12-21 05:30 - 01406976 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll 2017-01-12 22:26 - 2016-12-21 05:30 - 01255936 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll 2017-01-12 22:26 - 2016-12-21 05:26 - 03776000 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll 2017-01-12 22:26 - 2016-12-21 05:25 - 07469056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll 2017-01-12 22:26 - 2016-12-21 05:24 - 06044160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll 2017-01-12 22:26 - 2016-12-21 05:24 - 00886272 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll 2017-01-12 22:26 - 2016-12-21 05:22 - 01883648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll 2017-01-12 22:26 - 2016-12-14 06:26 - 01469792 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystems32.dll 2017-01-12 22:26 - 2016-12-14 06:26 - 01136992 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVIntegration.dll 2017-01-12 22:26 - 2016-12-14 06:26 - 00911712 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystemController.dll 2017-01-12 22:26 - 2016-12-14 06:26 - 00812896 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPolicy.dll 2017-01-12 22:26 - 2016-12-14 06:26 - 00615264 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVClient.exe 2017-01-12 22:26 - 2016-12-14 06:26 - 00558432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntStreamingManager.dll 2017-01-12 22:26 - 2016-12-14 06:26 - 00550240 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVOrchestration.dll 2017-01-12 22:26 - 2016-12-14 06:26 - 00541024 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVReporting.dll 2017-01-12 22:26 - 2016-12-14 06:26 - 00498016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntVirtualization.dll 2017-01-12 22:26 - 2016-12-14 06:26 - 00492384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPublishing.dll 2017-01-12 22:26 - 2016-12-14 06:26 - 00401248 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVCatalog.dll 2017-01-12 22:26 - 2016-12-14 06:26 - 00372576 _____ (Microsoft Corporation) C:\WINDOWS\system32\TransportDSA.dll 2017-01-12 22:26 - 2016-12-14 06:26 - 00290656 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVScripting.dll 2017-01-12 22:26 - 2016-12-14 06:26 - 00141664 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVNice.exe 2017-01-12 22:26 - 2016-12-14 06:06 - 00509792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe 2017-01-12 22:26 - 2016-12-14 06:04 - 00261984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys 2017-01-12 22:26 - 2016-12-14 06:01 - 01557808 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll 2017-01-12 22:26 - 2016-12-14 06:01 - 00382784 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll 2017-01-12 22:26 - 2016-12-14 05:46 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll 2017-01-12 22:26 - 2016-12-14 05:45 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys 2017-01-12 22:26 - 2016-12-14 05:42 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSCard.dll 2017-01-12 22:26 - 2016-12-14 05:41 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ScDeviceEnum.dll 2017-01-12 22:26 - 2016-12-14 05:40 - 00318976 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpencom.dll 2017-01-12 22:26 - 2016-12-14 05:40 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.UI.Logon.ProxyStub.dll 2017-01-12 22:26 - 2016-12-14 05:38 - 13869056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll 2017-01-12 22:26 - 2016-12-14 05:38 - 00213504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.CredDialogController.dll 2017-01-12 22:26 - 2016-12-14 05:38 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\certprop.dll 2017-01-12 22:26 - 2016-12-14 05:37 - 00247296 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll 2017-01-12 22:26 - 2016-12-14 05:37 - 00188416 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe 2017-01-12 22:26 - 2016-12-14 05:36 - 00497664 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll 2017-01-12 22:26 - 2016-12-14 05:35 - 00553984 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptui.dll 2017-01-12 22:26 - 2016-12-14 05:32 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll 2017-01-12 22:26 - 2016-12-14 05:23 - 00578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe 2017-01-12 22:26 - 2016-12-14 05:23 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll 2017-01-12 22:26 - 2016-12-14 05:22 - 02998272 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys 2017-01-12 22:26 - 2016-12-14 05:22 - 02748416 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll 2017-01-12 22:26 - 2016-12-14 05:22 - 01888256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll 2017-01-12 22:26 - 2016-12-14 05:22 - 01235456 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys 2017-01-12 22:26 - 2016-12-14 05:22 - 00920064 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll 2017-01-12 22:26 - 2016-12-14 05:21 - 00860672 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll 2017-01-12 22:26 - 2016-11-02 13:01 - 00484584 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll 2017-01-12 22:26 - 2016-11-02 12:05 - 00313088 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe 2017-01-12 22:26 - 2016-11-02 11:32 - 00786432 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll 2017-01-12 22:26 - 2016-08-02 05:30 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll 2017-01-12 22:25 - 2016-12-21 06:59 - 00218976 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinesam.dll 2017-01-12 22:25 - 2016-12-21 06:59 - 00101728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ImplatSetup.dll 2017-01-12 22:25 - 2016-12-21 06:09 - 00263472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll 2017-01-12 22:25 - 2016-12-21 06:05 - 00523784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys 2017-01-12 22:25 - 2016-12-21 06:02 - 00080224 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll 2017-01-12 22:25 - 2016-12-21 06:01 - 00198496 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll 2017-01-12 22:25 - 2016-12-21 05:40 - 00237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncSettings.dll 2017-01-12 22:25 - 2016-12-21 05:40 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll 2017-01-12 22:25 - 2016-12-21 05:38 - 00866816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll 2017-01-12 22:25 - 2016-12-21 05:30 - 05398016 _____ (Microsoft Corporation) C:\WINDOWS\system32\aclui.dll 2017-01-12 22:25 - 2016-12-21 05:30 - 00734208 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll 2017-01-12 22:25 - 2016-12-21 05:27 - 00640000 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll 2017-01-12 22:25 - 2016-12-21 05:25 - 06474752 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe 2017-01-12 22:25 - 2016-12-21 05:24 - 03733504 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll 2017-01-12 22:25 - 2016-12-21 05:23 - 01120256 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll 2017-01-12 22:25 - 2016-12-21 05:22 - 03596800 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll 2017-01-12 22:25 - 2016-12-14 06:58 - 01026912 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll 2017-01-12 22:25 - 2016-12-14 06:26 - 01127040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe 2017-01-12 22:25 - 2016-12-14 06:21 - 02206496 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll 2017-01-12 22:25 - 2016-12-14 06:08 - 00341344 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll 2017-01-12 22:25 - 2016-12-14 06:05 - 00544608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys 2017-01-12 22:25 - 2016-12-14 06:01 - 00076984 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll 2017-01-12 22:25 - 2016-12-14 05:40 - 00267776 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll 2017-01-12 22:25 - 2016-12-14 05:40 - 00231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudBackupSettings.dll 2017-01-12 22:25 - 2016-12-14 05:37 - 00205312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll 2017-01-12 22:25 - 2016-12-14 05:36 - 00824320 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll 2017-01-12 22:25 - 2016-12-14 05:36 - 00416256 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll 2017-01-12 22:25 - 2016-12-14 05:36 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll 2017-01-12 22:25 - 2016-12-14 05:35 - 01722368 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll 2017-01-12 22:25 - 2016-12-14 05:35 - 00755712 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll 2017-01-12 22:25 - 2016-12-14 05:35 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll 2017-01-12 22:25 - 2016-12-14 05:35 - 00254976 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll 2017-01-12 22:25 - 2016-12-14 05:32 - 00806400 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll 2017-01-12 22:25 - 2016-12-14 05:24 - 01155072 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVP9DEC.dll 2017-01-08 23:55 - 2017-01-08 23:55 - 00000000 ____D C:\Users\dejan\AppData\Roaming\JetBrains 2017-01-08 23:54 - 2017-01-08 23:54 - 00000000 ____D C:\Users\dejan\.AndroidStudio2.2 2017-01-08 23:53 - 2017-01-08 23:53 - 00000000 ____D C:\Program Files\Common Files\Java 2017-01-08 23:52 - 2017-01-08 23:53 - 00000000 ____D C:\Program Files\JDK 2017-01-08 23:52 - 2017-01-08 23:52 - 00095808 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge.dll 2017-01-08 23:52 - 2017-01-08 23:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2017-01-08 23:49 - 2017-01-08 23:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit 2017-01-08 22:53 - 2017-01-08 22:53 - 00000000 ____D C:\Users\dejan\AppData\Roaming\Shuame 2017-01-08 14:27 - 2017-01-08 14:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Android Studio 2017-01-08 14:19 - 2017-01-17 09:52 - 00000000 ____D C:\Users\dejan\AppData\Local\Android 2017-01-07 15:50 - 2017-01-07 15:50 - 00000000 ____D C:\Users\dejan\AppData\Roaming\KingRoot 2017-01-06 13:23 - 2017-01-06 22:03 - 00000000 ____D C:\Users\dejan\dwhelper 2017-01-04 21:23 - 2017-01-17 14:09 - 00000000 ____D C:\Program Files\Kingo ROOT 2017-01-04 21:23 - 2017-01-07 21:01 - 00000176 _____ C:\Users\dejan\AppData\Local\uts.ini 2017-01-04 21:23 - 2017-01-04 21:23 - 00000000 ____D C:\Users\dejan\AppData\Local\uts 2017-01-04 19:37 - 2017-01-04 19:37 - 00000000 ____D C:\WMSDK 2017-01-04 19:21 - 2017-01-22 22:52 - 00000000 ____D C:\Users\dejan\AppData\Roaming\LG Electronics 2017-01-04 19:09 - 2017-01-22 22:52 - 00000000 ____D C:\Users\dejan\AppData\Local\LG Electronics 2017-01-04 19:09 - 2017-01-04 19:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LG PC Suite 2017-01-04 17:03 - 2017-01-04 17:03 - 00000000 ____D C:\Program Files\MSXML 4.0 2017-01-03 14:03 - 2017-01-03 14:03 - 00001921 _____ C:\Users\dejan\Desktop\IrfanView Thumbnails.lnk 2017-01-03 14:03 - 2017-01-03 14:03 - 00001041 _____ C:\Users\dejan\Desktop\IrfanView.lnk 2017-01-03 14:03 - 2017-01-03 14:03 - 00000000 ____D C:\Users\dejan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IrfanView 2017-01-03 14:03 - 2017-01-03 14:03 - 00000000 ____D C:\Program Files\IrfanView 2017-01-02 13:58 - 2017-01-02 13:58 - 00000000 ____D C:\Users\Default\AppData\Roaming\TuneUp Software 2017-01-02 13:58 - 2017-01-02 13:58 - 00000000 ____D C:\Users\Default User\AppData\Roaming\TuneUp Software 2016-12-31 23:36 - 2017-01-01 00:51 - 00000000 ____D C:\Users\dejan\AppData\Roaming\vlc 2016-12-31 23:34 - 2017-01-26 23:09 - 00000000 ____D C:\Program Files\VideoLAN 2016-12-31 14:42 - 2017-01-12 22:06 - 00000979 _____ C:\Users\Public\Desktop\AVG Protection.lnk 2016-12-31 14:42 - 2017-01-12 22:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG 2016-12-31 14:39 - 2016-12-31 14:40 - 00000000 ____D C:\Program Files\AVG 2016-12-28 01:00 - 2016-12-28 01:04 - 00000000 ____D C:\Recovered 2016-12-28 00:55 - 2016-12-28 00:55 - 00000000 ____D C:\ProgramData\TEMP ==================== One Month Modified files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2017-01-27 19:50 - 2016-10-15 21:20 - 01307080 _____ C:\WINDOWS\ZAM.krnl.trace 2017-01-27 19:50 - 2016-10-15 21:20 - 01269500 _____ C:\WINDOWS\ZAM_Guard.krnl.trace 2017-01-27 19:49 - 2016-10-14 18:09 - 00000000 ____D C:\FRST 2017-01-27 19:26 - 2016-09-14 14:59 - 00000000 ____D C:\ProgramData\MFAData 2017-01-27 17:14 - 2016-09-08 13:36 - 00000000 ____D C:\WINDOWS\system32\SleepStudy 2017-01-27 01:11 - 2016-09-08 13:45 - 00000000 ____D C:\Users\dejan 2017-01-25 22:57 - 2016-12-26 21:24 - 00000000 ____D C:\Program Files\EaseUS 2017-01-25 22:20 - 2016-09-24 15:45 - 00000000 ____D C:\Users\dejan\AppData\Roaming\Messenger for Desktop 2017-01-25 22:11 - 2016-07-16 09:19 - 00000000 ____D C:\WINDOWS\CbsTemp 2017-01-25 15:45 - 2016-11-20 15:41 - 00000000 ____D C:\Users\dejan\Documents\ViberDownloads 2017-01-25 15:44 - 2016-12-03 18:15 - 00000000 ____D C:\Users\dejan\AppData\Roaming\ViberPC 2017-01-24 21:15 - 2016-07-16 09:29 - 00000000 __RHD C:\Users\Public\Libraries 2017-01-24 18:45 - 2016-09-07 14:48 - 00000000 ____D C:\Program Files\Google 2017-01-24 18:15 - 2016-09-10 15:17 - 00000000 ____D C:\Users\dejan\AppData\Local\CrashDumps 2017-01-23 03:23 - 2016-07-16 03:22 - 00032768 _____ C:\WINDOWS\system32\config\ELAM 2017-01-22 22:52 - 2016-10-06 13:02 - 00000000 ____D C:\WINDOWS\system32\appmgmt 2017-01-22 22:52 - 2016-09-07 15:35 - 00000000 ____D C:\Program Files\LG Electronics 2017-01-21 21:06 - 2016-09-08 13:56 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT 2017-01-21 21:06 - 2016-09-08 13:36 - 00201912 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2017-01-21 14:43 - 2016-07-16 03:22 - 00524288 _____ C:\WINDOWS\system32\config\BBI 2017-01-20 22:45 - 2016-11-10 18:42 - 00000000 ____D C:\ProgramData\BlueStacksSetup 2017-01-20 15:43 - 2016-11-10 18:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks 2017-01-18 16:32 - 2016-03-19 21:09 - 00000000 ____D C:\adb 2017-01-18 16:15 - 2016-07-16 09:29 - 00000000 ____D C:\Program Files\Common Files\microsoft shared 2017-01-18 15:34 - 2016-07-16 09:28 - 00000000 ____D C:\WINDOWS\INF 2017-01-18 12:25 - 2016-09-07 16:08 - 00000000 ____D C:\ProgramData\LGMOBILEAX 2017-01-18 12:24 - 2016-09-07 16:08 - 00002760 _____ C:\WINDOWS\system32\lgAxconfig.ini 2017-01-16 18:38 - 2016-03-10 17:07 - 00000000 ____D C:\Users\dejan\.android 2017-01-16 11:50 - 2016-11-26 15:13 - 00000000 ____D C:\Users\dejan\AppData\Local\Lenovo 2017-01-16 11:40 - 2016-12-09 12:42 - 00000000 ____D C:\ProgramData\Lenovo 2017-01-15 23:58 - 2016-12-09 22:37 - 00000000 ____D C:\Users\dejan\AppData\LocalLow\Mozilla 2017-01-14 23:32 - 2016-09-30 21:54 - 00000000 ____D C:\Users\dejan\AppData\Roaming\TeamViewer 2017-01-14 18:54 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\rescache 2017-01-13 11:50 - 2016-09-08 20:40 - 00001038 _____ C:\Users\Public\Desktop\CCleaner.lnk 2017-01-13 11:47 - 2016-12-09 00:04 - 00001002 _____ C:\Users\dejan\AppData\Roaming\downloads.json 2017-01-13 11:47 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\AppReadiness 2017-01-13 03:09 - 2016-07-16 09:29 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2017-01-13 03:09 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2017-01-13 03:09 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\system32\oobe 2017-01-13 03:09 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\ShellExperiences 2017-01-13 03:09 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\Provisioning 2017-01-13 03:09 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\PolicyDefinitions 2017-01-13 00:35 - 2016-09-07 16:53 - 00000000 ____D C:\WINDOWS\system32\MRT 2017-01-13 00:31 - 2016-09-07 16:53 - 133456224 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2017-01-08 23:48 - 2016-09-08 17:31 - 00000000 ____D C:\Program Files\Java 2017-01-08 23:37 - 2016-09-08 17:31 - 00000000 ____D C:\ProgramData\Oracle 2017-01-08 20:00 - 2016-09-07 14:29 - 01189298 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2017-01-08 14:42 - 2016-12-07 19:56 - 00000000 ____D C:\Program Files\Mozilla Firefox 2017-01-04 18:50 - 2016-10-09 11:29 - 00000872 _____ C:\Users\dejan\Desktop\LGMobile Support Tool.lnk 2017-01-03 14:32 - 2016-09-07 14:27 - 00000000 ____D C:\Users\dejan\AppData\Local\VirtualStore 2017-01-03 14:23 - 2016-12-05 23:06 - 00170200 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys 2017-01-03 14:03 - 2016-10-03 19:25 - 00000000 ____D C:\Users\dejan\AppData\Roaming\IrfanView 2017-01-03 13:57 - 2016-11-16 21:41 - 00000000 ____D C:\Users\dejan\AppData\Local\Windows Live 2017-01-03 13:56 - 2016-12-26 23:51 - 00000000 ____D C:\Program Files\iCare Data Recovery Pro 2017-01-02 21:02 - 2016-12-05 16:44 - 00000000 ____D C:\Program Files\WinRAR 2016-12-31 14:44 - 2016-09-14 14:56 - 00000000 ____D C:\Users\dejan\AppData\Local\Avg 2016-12-31 14:42 - 2016-07-16 09:29 - 00000000 ___HD C:\WINDOWS\ELAMBKUP 2016-12-31 14:40 - 2016-12-18 01:18 - 00000000 ___HD C:\$AVG 2016-12-31 14:40 - 2016-09-14 14:56 - 00000000 ____D C:\Users\dejan\AppData\Local\AvgSetupLog 2016-12-31 14:39 - 2016-09-14 14:56 - 00000000 ____D C:\ProgramData\Avg 2016-12-30 18:44 - 2016-03-09 15:52 - 00000000 ___RD C:\Users\dejan\Videos ==================== Files in the root of some directories ======= 2016-09-23 14:24 - 2016-10-19 11:50 - 0000396 _____ () C:\Users\dejan\AppData\Roaming\burnaware.ini 2016-12-09 00:04 - 2017-01-13 11:47 - 0001002 _____ () C:\Users\dejan\AppData\Roaming\downloads.json 2016-12-26 17:32 - 2016-12-26 17:32 - 0000353 _____ () C:\Users\dejan\AppData\Roaming\imagetuner.ini 2016-12-10 19:57 - 2016-12-11 22:26 - 0004608 _____ () C:\Users\dejan\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2017-01-04 21:23 - 2017-01-07 21:01 - 0000176 _____ () C:\Users\dejan\AppData\Local\uts.ini 2016-09-08 13:39 - 2016-09-08 13:39 - 0000000 ____H () C:\ProgramData\DP45977C.lfl Some files in TEMP: ==================== 2017-01-24 21:15 - 2016-04-26 14:37 - 0246808 _____ (BlueStack Systems) C:\Users\dejan\AppData\Local\Temp\HD-Logger-Native.dll 2017-01-24 21:15 - 2016-04-26 14:39 - 0128536 _____ (BlueStack Systems) C:\Users\dejan\AppData\Local\Temp\HD-ShortcutHandler.dll 2016-10-20 18:26 - 2016-10-20 18:26 - 2458672 _____ (The OpenSSL Project, openssl.org/) C:\Users\dejan\AppData\Local\Temp\libeay32.dll 2016-10-20 18:26 - 2016-10-20 18:26 - 0970912 _____ (Microsoft Corporation) C:\Users\dejan\AppData\Local\Temp\msvcr120.dll 2016-10-20 18:26 - 2016-10-20 18:26 - 0772672 _____ () C:\Users\dejan\AppData\Local\Temp\sqlite3.dll 2017-01-24 21:15 - 2016-04-26 11:11 - 0552472 _____ (BlueStack Systems, Inc.) C:\Users\dejan\AppData\Local\Temp\uninstall.exe 2016-01-25 09:42 - 2016-01-25 09:42 - 4995416 _____ (Microsoft Corporation) C:\Users\dejan\AppData\Local\Temp\vcredist10_x86.exe ==================== Bamital & volsnap ====================== (There is no automatic fix for files that do not pass verification.) C:\WINDOWS\explorer.exe => File is digitally signed C:\WINDOWS\system32\winlogon.exe => File is digitally signed C:\WINDOWS\system32\wininit.exe => File is digitally signed C:\WINDOWS\system32\svchost.exe => File is digitally signed C:\WINDOWS\system32\services.exe => File is digitally signed C:\WINDOWS\system32\User32.dll => File is digitally signed C:\WINDOWS\system32\userinit.exe => File is digitally signed C:\WINDOWS\system32\rpcss.dll => File is digitally signed C:\WINDOWS\system32\dnsapi.dll => File is digitally signed C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2017-01-26 15:02 ==================== End of FRST.txt ============================ mycity.rs/must-login.png

Profil

TwinHeadedEagle Poslao: 27 Jan 2017 20:21 Idi na vrh
offline TwinHeadedEagle Anti Malware Fighter Rank 2 Pridružio: 09 Avg 2011 Poruke: 15879 Gde živiš: Beograd	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Pozdrav, Da, bio je tu malware i napravljena je steta. Nakon sto pocistimo ostatke moraces da uklonis Google Chrome i da ga ponovo instaliras. Nemoj to da radis dok ti ne kazem. 1. Otvori Notepad (Text Document) i iskopiraj sledeći tekst unutar kod polja ispod: createrestorepoint: closeprocesses: emptytemp: cmd: ipconfig /flushdns Shortcut: C:\Users\dejan\Desktop\LGМobilе Support Тoоl.lnk -> C:\Users\dejan\AppData\Roaming\Browsers\exe.rehcnualmgl.bat (No File) <===== Cyrillic Shortcut: C:\Users\dejan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Intеrnеt Ехplorеr.lnk -> C:\Users\dejan\AppData\Roaming\Browsers\exe.erolpxei.bat (No File) <===== Cyrillic Shortcut: C:\Users\dejan\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Gоogle Chrоmе.lnk -> C:\Users\dejan\AppData\Roaming\Browsers\exe.emorhc.bat (No File) <===== Cyrillic Shortcut: C:\Users\Public\Desktop\Stаrt BlueStaсks.lnk -> C:\Users\dejan\AppData\Roaming\Browsers\exe.rehcnualtrats-dh.bat (No File) <===== Cyrillic Shortcut: C:\Users\Public\Desktop\Моzillа Firеfоx.lnk -> C:\Users\dejan\AppData\Roaming\Browsers\exe.xoferif.bat (No File) <===== Cyrillic ShortcutWithArgument: C:\Users\dejan\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\360c22b137d62ce9\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=ChromeDefaultData C:\Program Files\Lenovo HKU\S-1-5-21-2725342497-1767379937-2485888434-1001\...\MountPoints2: {76ad6ef2-8d3d-11e6-8ad3-001fd01ee4db} - "G:\LG_PC_Programs.exe" HKU\S-1-5-21-2725342497-1767379937-2485888434-1001\...\MountPoints2: {aac19f92-8553-11e6-8acb-001fd01ee4db} - "G:\LG_PC_Programs.exe" HKU\S-1-5-18\...\Run: [] => 0 ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\BackupRemind.lnk [2016-12-17] ShortcutTarget: BackupRemind.lnk -> C:\Program Files\Wondershare\dr.fone toolkit for Android\Addins\AndroidBackupRestore\BackupRemind.exe (No File) GroupPolicy: Restriction - Windows Defender <======= ATTENTION CHR Profile: C:\Users\dejan\AppData\Local\Google\Chrome\User Data\ChromeDefaultData [2017-01-27] <==== ATTENTION HKU\S-1-5-21-2725342497-1767379937-2485888434-1001\Software\Microsoft\Internet Explorer\Main,Start Page = SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = R2 LenovoDRS; C:\Program Files\Lenovo\PCManager\LenovoDRS.exe [926536 2017-01-13] (联想（北京）有限公司) R2 LenovoPcManagerService; C:\Program Files\Lenovo\PCManager\LenovoPcManagerService.exe [1389376 2017-01-13] (Lenovo Corporation) U0 aswVmm; no ImagePath S3 ComputerZ; \??\C:\Program Files\LuDaShi\ComputerZ.sys [X] <==== ATTENTION S1 onnexwgf; \??\C:\WINDOWS\system32\drivers\onnexwgf.sys [X] S3 vzandnetadb; \SystemRoot\System32\Drivers\lgvzandnetadb.sys [X] S3 vzandnetdiag; \SystemRoot\system32\DRIVERS\lgvzandnetdiag.sys [X] S3 vzandnetmodem; \SystemRoot\system32\DRIVERS\lgvzandnetmdm.sys [X] 2017-01-16 11:50 - 2016-11-26 15:13 - 00000000 ____D C:\Users\dejan\AppData\Local\Lenovo 2017-01-16 11:40 - 2016-12-09 12:42 - 00000000 ____D C:\ProgramData\Lenovo 2017-01-24 17:39 - 2017-01-24 17:40 - 00000000 ____D C:\Program Files\GUME90A.tmp 2017-01-21 14:04 - 2017-01-21 14:04 - 00000000 ____D C:\Program Files\ByteFence HKU\S-1-5-18\...\Run: [] => 0 cmd: dir /t:c %appdata% cmd: dir /t:c %localappdata% cmd: dir /t:c %programdata% 2. Sačuvaj notepad na Desktop pod nazivom fixlist.txt To možes uraditi i iz notepad-a => klik na File potom na Save As i u novom prozoru, dole pod File Name: staviš za naziv fixlist.txt Napomena: Važno je da se oba fajla, FRST i fixlist nalaze na istoj lokaciji jer u suprotnom fix nece raditi. 3. Ponovo pokreni FRST/FRST64, klikni jednom na dugme Fix i sačekaj. Ukoliko alat zatraži restart sistema, dozvoli mu i postaraj se da alat kompletira fix nakon restarta sistema. Alat će formirati log (Fixlog.txt) na Desktop-u. Potrebno je sadržaj tog loga iskopirati u poruku. Napomena: Ukoliko te alat upozori da postoji novija verzija, postaraj se da preuzmes i koristiš ažuriranu kopiju FRST-a.

Profil

dejanod Poslao: 27 Jan 2017 22:44 Idi na vrh
offline dejanod Moderator foruma u administraciji Pridružio: 16 Okt 2010 Poruke: 3468 Gde živiš: KRAGUJEVAC	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Odjednom mi je je AVG anti virus zatvorio FRST , ali jenapravio FIX.LOG i sad ne mogu da otvorim Google Chrome . Piše CANT OPEN ,evo izveštaja. Fix result of Farbar Recovery Scan Tool (x86) Version: 25-01-2017 Ran by dejan (27-01-2017 22:31:41) Run:1 Running from C:\Users\dejan\Desktop Loaded Profiles: dejan (Available Profiles: dejan) Boot Mode: Normal ============================================== fixlist content: *************** createrestorepoint: closeprocesses: emptytemp: cmd: ipconfig /flushdns Shortcut: C:\Users\dejan\Desktop\LG?obil? Support ?o?l.lnk -> C:\Users\dejan\AppData\Roaming\Browsers\exe.rehcnualmgl.bat (No File) <===== Cyrillic Shortcut: C:\Users\dejan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Int?rn?t ??plor?r.lnk -> C:\Users\dejan\AppData\Roaming\Browsers\exe.erolpxei.bat (No File) <===== Cyrillic Shortcut: C:\Users\dejan\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\G?ogle Chr?m?.lnk -> C:\Users\dejan\AppData\Roaming\Browsers\exe.emorhc.bat (No File) <===== Cyrillic Shortcut: C:\Users\Public\Desktop\St?rt BlueSta?ks.lnk -> C:\Users\dejan\AppData\Roaming\Browsers\exe.rehcnualtrats-dh.bat (No File) <===== Cyrillic Shortcut: C:\Users\Public\Desktop\??zill? Fir?f?x.lnk -> C:\Users\dejan\AppData\Roaming\Browsers\exe.xoferif.bat (No File) <===== Cyrillic ShortcutWithArgument: C:\Users\dejan\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\360c22b137d62ce9\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=ChromeDefaultData C:\Program Files\Lenovo HKU\S-1-5-21-2725342497-1767379937-2485888434-1001\...\MountPoints2: {76ad6ef2-8d3d-11e6-8ad3-001fd01ee4db} - "G:\LG_PC_Programs.exe" HKU\S-1-5-21-2725342497-1767379937-2485888434-1001\...\MountPoints2: {aac19f92-8553-11e6-8acb-001fd01ee4db} - "G:\LG_PC_Programs.exe" HKU\S-1-5-18\...\Run: [] => 0 ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\BackupRemind.lnk [2016-12-17] ShortcutTarget: BackupRemind.lnk -> C:\Program Files\Wondershare\dr.fone toolkit for Android\Addins\AndroidBackupRestore\BackupRemind.exe (No File) GroupPolicy: Restriction - Windows Defender <======= ATTENTION CHR Profile: C:\Users\dejan\AppData\Local\Google\Chrome\User Data\ChromeDefaultData [2017-01-27] <==== ATTENTION HKU\S-1-5-21-2725342497-1767379937-2485888434-1001\Software\Microsoft\Internet Explorer\Main,Start Page = SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = R2 LenovoDRS; C:\Program Files\Lenovo\PCManager\LenovoDRS.exe [926536 2017-01-13] (??(??)????) R2 LenovoPcManagerService; C:\Program Files\Lenovo\PCManager\LenovoPcManagerService.exe [1389376 2017-01-13] (Lenovo Corporation) U0 aswVmm; no ImagePath S3 ComputerZ; \??\C:\Program Files\LuDaShi\ComputerZ.sys [X] <==== ATTENTION S1 onnexwgf; \??\C:\WINDOWS\system32\drivers\onnexwgf.sys [X] S3 vzandnetadb; \SystemRoot\System32\Drivers\lgvzandnetadb.sys [X] S3 vzandnetdiag; \SystemRoot\system32\DRIVERS\lgvzandnetdiag.sys [X] S3 vzandnetmodem; \SystemRoot\system32\DRIVERS\lgvzandnetmdm.sys [X] 2017-01-16 11:50 - 2016-11-26 15:13 - 00000000 ____D C:\Users\dejan\AppData\Local\Lenovo 2017-01-16 11:40 - 2016-12-09 12:42 - 00000000 ____D C:\ProgramData\Lenovo 2017-01-24 17:39 - 2017-01-24 17:40 - 00000000 ____D C:\Program Files\GUME90A.tmp 2017-01-21 14:04 - 2017-01-21 14:04 - 00000000 ____D C:\Program Files\ByteFence HKU\S-1-5-18\...\Run: [] => 0 cmd: dir /t:c %appdata% cmd: dir /t:c %localappdata% cmd: dir /t:c %programdata% *************** Restore point was successfully created. Processes closed successfully. ========= ipconfig /flushdns ========= Windows IP Configuration Successfully flushed the DNS Resolver Cache. ========= End of CMD: ========= "C:\Users\dejan\Desktop\LG?obil? Support ?o?l.lnk" => Could not move. "C:\Users\dejan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Int?rn?t ??plor?r.lnk" => Could not move. "C:\Users\dejan\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\G?ogle Chr?m?.lnk" => Could not move. "C:\Users\Public\Desktop\St?rt BlueSta?ks.lnk" => Could not move. "C:\Users\Public\Desktop\??zill? Fir?f?x.lnk" => Could not move. C:\Users\dejan\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\360c22b137d62ce9\Google Chrome.lnk => Shortcut argument removed successfully.. Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=ChromeDefaultData => Error: No automatic fix found for this entry. "C:\Program Files\Lenovo" folder move: Could not move "C:\Program Files\Lenovo" => Scheduled to move on reboot. HKU\S-1-5-21-2725342497-1767379937-2485888434-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{76ad6ef2-8d3d-11e6-8ad3-001fd01ee4db} => key removed successfully. HKCR\CLSID\{76ad6ef2-8d3d-11e6-8ad3-001fd01ee4db} => key not found. HKU\S-1-5-21-2725342497-1767379937-2485888434-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{aac19f92-8553-11e6-8acb-001fd01ee4db} => key removed successfully. HKCR\CLSID\{aac19f92-8553-11e6-8acb-001fd01ee4db} => key not found. HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run\\ => value removed successfully. HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avast => key removed successfully. HKCR\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => key not found. C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\BackupRemind.lnk => moved successfully C:\Program Files\Wondershare\dr.fone toolkit for Android\Addins\AndroidBackupRestore\BackupRemind.exe => not found. C:\WINDOWS\system32\GroupPolicy\Machine => moved successfully C:\WINDOWS\system32\GroupPolicy\GPT.ini => moved successfully C:\Users\dejan\AppData\Local\Google\Chrome\User Data\ChromeDefaultData => moved successfully HKU\S-1-5-21-2725342497-1767379937-2485888434-1001\Software\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully LenovoDRS => Unable to stop service. HKLM\System\CurrentControlSet\Services\LenovoDRS => key removed successfully. LenovoDRS => service removed successfully. LenovoPcManagerService => Unable to stop service. HKLM\System\CurrentControlSet\Services\LenovoPcManagerService => key removed successfully. LenovoPcManagerService => service removed successfully. HKLM\System\CurrentControlSet\Services\aswVmm => key removed successfully. aswVmm => service removed successfully. HKLM\System\CurrentControlSet\Services\ComputerZ => key removed successfully. ComputerZ => service removed successfully. HKLM\System\CurrentControlSet\Services\onnexwgf => key removed successfully. onnexwgf => service removed successfully. HKLM\System\CurrentControlSet\Services\vzandnetadb => key removed successfully. vzandnetadb => service removed successfully. HKLM\System\CurrentControlSet\Services\vzandnetdiag => key removed successfully. vzandnetdiag => service removed successfully. HKLM\System\CurrentControlSet\Services\vzandnetmodem => key removed successfully. vzandnetmodem => service removed successfully. C:\Users\dejan\AppData\Local\Lenovo => moved successfully "C:\ProgramData\Lenovo" folder move: Could not move "C:\ProgramData\Lenovo" => Scheduled to move on reboot. C:\Program Files\GUME90A.tmp => moved successfully C:\Program Files\ByteFence => moved successfully HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run\\ => value not found. ========= dir /t:c %appdata% ========= Volume in drive C has no label. Volume Serial Number is 0847-C93E Directory of C:\Users\dejan\AppData\Roaming 2016/09/08 01:45 PM <DIR> . 2016/09/08 01:45 PM <DIR> .. 2016/09/07 02:27 PM <DIR> Adobe 2016/09/14 03:26 PM <DIR> AVG 2016/09/23 02:24 PM 396 burnaware.ini 2016/09/23 03:47 PM <DIR> Canneverbe Limited 2016/11/18 07:21 PM <DIR> DMCache 2016/12/09 12:04 AM 1,002 downloads.json 2016/10/23 09:01 PM <DIR> DVDVideoSoft 2017/01/21 02:45 PM <DIR> epm 2016/12/09 12:00 AM <DIR> FlvtoConverter 2016/12/18 12:16 PM <DIR> Free Video Joiner 2016/09/07 10:10 PM <DIR> GRETECH 2016/12/26 05:32 PM 353 imagetuner.ini 2016/09/23 03:30 PM <DIR> InfraRecorder 2016/11/26 03:01 PM <DIR> IObit 2016/10/03 07:25 PM <DIR> IrfanView 2017/01/08 11:55 PM <DIR> JetBrains 2017/01/07 03:50 PM <DIR> KingRoot 2016/10/30 10:46 PM <DIR> Lavasoft 2016/11/26 03:14 PM <DIR> Lenovo 2017/01/04 07:21 PM <DIR> LG Electronics 2016/09/09 12:38 PM <DIR> Macromedia 2016/09/20 09:43 PM <DIR> Maxthon App Store 2016/09/20 09:48 PM <DIR> Maxthon3 2016/09/24 03:45 PM <DIR> Messenger for Desktop 2016/10/04 11:15 PM <DIR> Mozilla 2016/12/18 12:16 PM <DIR> New Version Available 2016/12/26 05:24 PM <DIR> PhotoScape 2016/11/26 03:06 PM <DIR> Profiles 2017/01/08 10:53 PM <DIR> Shuame 2016/09/07 02:38 PM <DIR> Skype 2016/10/30 10:42 PM <DIR> SoftCDN 2016/11/26 02:59 PM <DIR> SPI 2016/09/08 05:32 PM <DIR> Sun 2016/09/30 09:54 PM <DIR> TeamViewer 2016/12/18 01:21 AM <DIR> TuneUp Software 2016/09/13 06:04 PM <DIR> uTorrent 2016/12/03 06:15 PM <DIR> ViberPC 2016/11/01 08:11 PM <DIR> Vitzo 2016/12/31 11:36 PM <DIR> vlc 2016/09/24 03:52 PM <DIR> WhatsApp 2016/12/05 04:44 PM <DIR> WinRAR 2016/12/17 12:17 AM <DIR> Wondershare 3 File(s) 1,751 bytes 41 Dir(s) 9,088,344,064 bytes free ========= End of CMD: ========= ========= dir /t:c %localappdata% ========= Volume in drive C has no label. Volume Serial Number is 0847-C93E Directory of C:\Users\dejan\AppData\Local 2016/09/08 01:45 PM <DIR> . 2016/09/08 01:45 PM <DIR> .. 2016/09/07 02:29 PM <DIR> ActiveSync 2017/01/08 02:19 PM <DIR> Android 2016/09/07 02:46 PM <DIR> Apps 2016/09/14 02:56 PM <DIR> Avg 2016/09/14 02:56 PM <DIR> AvgSetupLog 2016/10/14 02:19 PM <DIR> Avira 2016/11/17 11:58 PM <DIR> AviraSpeedup 2016/12/17 04:36 PM <DIR> AXSworks 2017/01/24 09:15 PM <DIR> BlueStacks 2016/11/26 03:19 PM <DIR> CEF 2016/09/08 02:09 PM <DIR> Comms 2016/09/08 02:09 PM <DIR> ConnectedDevicesPlatform 2016/09/10 03:17 PM <DIR> CrashDumps 2016/12/10 07:57 PM 4,608 DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2016/09/09 08:37 PM <DIR> ESET 2016/12/08 11:55 PM <DIR> Flvto YouTube Downloader 2016/12/08 11:59 PM <DIR> FlvtoYoutubeDownloader 2016/12/16 11:03 PM <DIR> FonePaw 2016/10/30 10:44 PM <DIR> Free YouTube Downloader 2016/09/07 02:48 PM <DIR> Google 2016/10/30 10:49 PM <DIR> Lavasoft 2017/01/04 07:09 PM <DIR> LG Electronics 2017/01/20 04:19 PM <DIR> Macromedia 2016/09/24 03:44 PM <DIR> messengerfordesktop 2016/09/14 02:59 PM <DIR> MFAData 2016/09/08 01:45 PM <DIR> Microsoft 2016/09/08 02:17 PM <DIR> MicrosoftEdge 2016/10/04 11:15 PM <DIR> Mozilla 2016/12/03 06:14 PM <DIR> Package Cache 2016/09/07 02:27 PM <DIR> Packages 2016/09/09 02:32 PM <DIR> PeerDistRepub 2016/12/26 05:36 PM <DIR> Photo Pos Pro 3 2016/12/26 08:02 PM <DIR> Photo_Pos_Pro_3 2016/09/23 02:15 PM <DIR> Programs 2016/09/07 02:30 PM <DIR> Publishers 2016/12/26 05:41 PM <DIR> SkinSoft 2016/09/24 03:44 PM <DIR> SquirrelTemp 2016/09/08 01:45 PM <DIR> Temp 2016/09/07 02:27 PM <DIR> TileDataLayer 2017/01/04 09:23 PM <DIR> uts 2017/01/04 09:23 PM 176 uts.ini 2017/01/24 03:15 PM <DIR> Viber 2016/09/07 02:27 PM <DIR> VirtualStore 2016/09/24 03:51 PM <DIR> WhatsApp 2016/11/16 09:41 PM <DIR> Windows Live 2016/10/15 09:20 PM <DIR> Zemana 2 File(s) 4,784 bytes 46 Dir(s) 9,088,339,968 bytes free ========= End of CMD: ========= ========= dir /t:c %programdata% ========= Volume in drive C has no label. Volume Serial Number is 0847-C93E Directory of C:\ProgramData 2016/11/26 03:08 PM <DIR> AVAST Software 2016/09/14 02:56 PM <DIR> Avg 2016/10/14 01:58 PM <DIR> Avira 2016/11/10 06:42 PM <DIR> BlueStacksSetup 2016/09/23 03:47 PM <DIR> Canneverbe Limited 2016/07/16 09:29 AM <DIR> Comms 2016/09/07 10:11 PM <DIR> GRETECH 2016/11/18 07:21 PM <DIR> IDM 2016/11/26 03:01 PM <DIR> IObit 2016/10/30 10:43 PM <DIR> Lavasoft 2016/12/09 12:42 PM <DIR> Lenovo 2016/09/07 04:08 PM <DIR> LGMOBILEAX 2016/12/05 11:06 PM <DIR> Malwarebytes 2016/09/14 02:59 PM <DIR> MFAData 2016/09/08 02:12 PM <DIR> Microsoft OneDrive 2016/09/08 10:11 PM <DIR> Norton 2016/09/08 10:14 PM <DIR> NortonInstaller 2016/09/08 05:31 PM <DIR> Oracle 2016/10/14 01:57 PM <DIR> Package Cache 2016/11/26 03:01 PM <DIR> ProductData 2016/07/16 09:29 AM <DIR> regid.1991-06.com.microsoft 2016/10/05 01:20 PM <DIR> Skype 2016/07/16 09:29 AM <DIR> SoftwareDistribution 2016/09/21 02:10 PM <DIR> SP_FT_Logs 2016/12/28 12:55 AM <DIR> TEMP 2016/07/16 09:29 AM <DIR> USOPrivate 2016/09/08 02:00 PM <DIR> USOShared 2016/11/30 09:37 PM <DIR> VS Revo Group 2016/12/17 12:16 AM <DIR> Wondershare 0 File(s) 0 bytes 29 Dir(s) 9,088,335,872 bytes free ========= End of CMD: ========= =========== EmptyTemp: ========== BITS transfer queue => 0 B DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 14344867 B Java, Flash, Steam htmlcache => 506 B Windows/system/drivers => 2893236 B Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 27-01-2017 22:41:14) ==> ATTENTION: ATTENTION: System is not rebooted. "C:\Program Files\Lenovo" => Could not move "C:\ProgramData\Lenovo" => Could not move ==== End of Fixlog 22:41:19 ====

Profil

TwinHeadedEagle Poslao: 28 Jan 2017 08:01 Idi na vrh
offline TwinHeadedEagle Anti Malware Fighter Rank 2 Pridružio: 09 Avg 2011 Poruke: 15879 Gde živiš: Beograd	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Da, to je zato sto je malware obrisao profil i napravio novi. Deinstaliraj Google Chrome, a zatim obrisi Google folder is program files i iz C:\Users\dejan\AppData\Local. Zatim ga ponovo instaliraj. Odradi i ovaj fix sa FRST: `C:\Users\dejan\AppData\Roaming\Lavasoft C:\Users\dejan\AppData\Roaming\Lenovo C:\Users\dejan\AppData\Local\Lavasoft C:\ProgramData\Lavasoft C:\Program Files\Lenovo C:\ProgramData\Lenovo reboot:` Skeniranje sa AdwCleaner Preuzmi AdwCleaner i sacuvaj ga na Desktop. Pokreni alat i sacekaj da se izvrši ažuriranje. Prihvati Terms of use tako što ceš kliknuti na I Agree. Klikni Scan i sacekaj da se skeniranje završi. Kada je gotovo, klikni Clean. Pojavice se poruka da ce svi programi biti zaustavljeni nakon što klikneš OK, tako da ako imaš nešto da sacuvaš, sada je vreme da to uradiš. Pojaviše se još dve poruke gde je potrebno kliknuti OK. Racunar ce se restartovati. Nakon restarta, otvorice se izveštaj, ciji sadržaj možeš kopirati u sledecu poruku. Napomena: Izveštaji ce biti sacuvani na tvoju sistemsku particiju, obicno je to folder C:\AdwCleaner

Profil

dejanod Poslao: 28 Jan 2017 21:24 Idi na vrh
offline dejanod Moderator foruma u administraciji Pridružio: 16 Okt 2010 Poruke: 3468 Gde živiš: KRAGUJEVAC	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Napisano: 28 Jan 2017 13:46 Ok. Hvala ti. Dopuna: 28 Jan 2017 21:24 Sve je ok ali nemam ikonice za prevod , pored bookmarovanja, ne stoji, kao pre?

Profil

TwinHeadedEagle Poslao: 28 Jan 2017 23:24 Idi na vrh
offline TwinHeadedEagle Anti Malware Fighter Rank 2 Pridružio: 09 Avg 2011 Poruke: 15879 Gde živiš: Beograd	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Dejane, ti bi kao moderator trebao da znas da dva naloga na forumu nisu dozvoljena? I malo povedi racuna, malo malo pa otvaras temu u ambulanti (da ne kazem nauci da ne skidas sve i svasta) ili izdvoj 5-10 evra i kupi kvalitetan Antivirus. Imas na G2A stalno ESET za smesne pare.

Profil

dejanod Poslao: 30 Jan 2017 13:13 Idi na vrh
offline dejanod Moderator foruma u administraciji Pridružio: 16 Okt 2010 Poruke: 3468 Gde živiš: KRAGUJEVAC	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Naravno da znam. Jedino što je moglo biti je to da sam se prijavio putem FB a isto veče stavio još jedan e-mail, dejan7685, i detektovao taj nicl. Ja sam odmah obavestio Marka i Pecu. Nakon toga sam se odjavio, prijavio sa starim mejlom i šifrom, i onda je sve ok bilo. A ja da otvaram drugi nalog nemam potrebe. I te teme u Ambulanti nisu sve za moj komp, nego pomognem drugaricama koje se nikad ne bi snašle. To je to.

Profil

MyCity » Ambulanta -> Arhiva Ambulante » Google chrome mi otvara link iz drugog trećeg puta

Ko je trenutno na forumu

Ukupno su 989 korisnika na forumu :: 26 registrovanih, 0 sakrivenih i 963 gosta :: [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:: Korisnici trenutno na forumu: A.R.Chafee.Jr., Andrija357, banebeograd, Boris BM, Dannyboy, delboy, djboj, Djokislav, esx66, HrcAk47, Ksh037, Lazarus, Milos82, milutin134, Mixelotti, nikoladim, ozzy, Rogonos, S.Palestinac, S2M, Sass Drake, stagezin, Trpe Grozni, VJ, vladetije, vladulns

Svaki korisnik ovog sajta je odgovoran za sadržaj svoje poruke koju objavi na sajtu. Sajt se odriče svake odgovornosti za sadržaj tih poruka.
Postavljanjem vaše poruke ili vašeg autorskog dela na ovaj sajt, saglasni ste da ovaj sajt postaje distributer vašeg dela, i odričete se mogućnosti njegovog povlačenja ili brisanja, bez saglasnosti uprave sajta.
Distribucija sadržaja sa ovog sajta je dozvoljena samo u nekomercijalne svrhe, uz obaveznu napomenu da je sadržaj preuzet sa ovog sajta, i uz obavezno navođenje adrese MyCity sajta. Za sve ostale vidove distribucije obavezni ste da prethodno zatražite odobrenje od vlasnika MyCity sajta.
MyCity pokrenuo, administrira i razvija Predrag Damnjanović, a o uređenju sajta se brine MyCity Tim.
Ukoliko želite da nas kontaktirate kliknite ovde.
Naši sajtovi:
Vesti, Vojni forum, Zaštita od virusa, TekstPesme.rs

This content is licensed under a Creative Commons License.
Based on phpBB 2, translated by Simke, designed by