MyCity » Ambulanta -> Arhiva Ambulante » Iskaču mi poruke u donjem desnom uglu

Iskaču mi poruke u donjem desnom uglu

Napisano na dan: 7.10.2019

Iskaču mi poruke u donjem desnom uglu

Odgovori

novidan Poslao: 07 Okt 2019 16:57 Idi na vrh
offline novidan Super građanin Zora Pridružio: 22 Okt 2004 Poruke: 1451 Gde živiš: ni na nebu ni na zemlji	1Ovo se svidja korisniku: Fil Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Pprije 2 dana nakon što sam dozvolila nešto sad se ne sećam šta, misleći da moram, počeli su mi tako naprasno i dosadno iskakati upozorenja da je google našo 3 virusa, zatim mafija s Bitcoin dosađuje ,naravno na to nisam odgovarala ali ne prestaju. čak i kad kliknem na njima remove ads onda se otvori nova stranica-kakve varalice! Imam Operu, (I to ide na Operi), Chrome, i Firefox: Imam windows 7 ultimate, 64 bit, Avast, Malware, internet Fiber i brz 250Mbts, Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 06-10-2019 Ran by zora (administrator) on MSI64 (MSI MS-7798) (07-10-2019 17:42:29) Running from C:\Users\zora\Documents\MY CITY Loaded Profiles: zora (Available Profiles: zora) Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: English (United States) Internet Explorer Version 11 (Default browser: Chrome) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: [Link mogu videti samo ulogovani korisnici] ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) () [File not signed] C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe (Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Aimersoft) [File not signed] C:\Program Files (x86)\Aimersoft\Aimersoft Helper Compact\3.0.0.4\AmCBSService.exe (AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.154.333\AvastBrowserCrashHandler.exe (AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.154.333\AvastBrowserCrashHandler64.exe (AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe (AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Broadcom Corporation.) [File not signed] C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe (Broadcom Corporation.) [File not signed] C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\BrYNSvc.exe (CyberLink -> ) C:\Program Files\CyberLink\Shared files\RichVideo64.exe (Express Vpn LLC -> ExpressVPN) C:\Program Files (x86)\ExpressVPN\bootstrap\amd64\nssm.exe (Express Vpn LLC -> ExpressVPN) C:\Program Files (x86)\ExpressVPN\expressvpnd\expressvpnd.exe (Express Vpn LLC -> ExpressVPN) C:\Program Files (x86)\ExpressVPN\expressvpn-ui\ExpressVPN.exe (Express Vpn LLC -> ExpressVPN) C:\Program Files (x86)\ExpressVPN\expressvpn-ui\ExpressVPNNotificationService.exe (Express Vpn LLC -> The OpenVPN Project) C:\Program Files (x86)\ExpressVPN\expressvpnd\windows\openvpn.exe (F.lux Software LLC -> f.lux Software LLC) C:\Users\zora\AppData\Local\FluxSoftware\Flux\flux.exe (Freemake) [File not signed] C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\hkcmd.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxpers.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxtray.exe (Intel® Upgrade Service -> Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe (Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Nero AG -> Nero AG) C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe (Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\63.0.3368.107\opera.exe (Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\63.0.3368.107\opera.exe (Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\63.0.3368.107\opera.exe (Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\63.0.3368.107\opera.exe (Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\63.0.3368.107\opera.exe (Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\63.0.3368.107\opera.exe (Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\63.0.3368.107\opera.exe (Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\63.0.3368.107\opera.exe (Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\63.0.3368.107\opera.exe (Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\63.0.3368.107\opera.exe (Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\63.0.3368.107\opera.exe (Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\63.0.3368.107\opera.exe (Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\63.0.3368.107\opera.exe (Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\63.0.3368.107\opera.exe (Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\63.0.3368.107\opera.exe (Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\63.0.3368.107\opera.exe (Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\63.0.3368.107\opera.exe (Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\63.0.3368.107\opera.exe (Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\63.0.3368.107\opera.exe (Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\63.0.3368.107\opera.exe (Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\63.0.3368.107\opera.exe (Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\63.0.3368.107\opera_crashreporter.exe (Prolific Technology Inc.) [File not signed] C:\Windows\SysWOW64\IoctlSvc.exe (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe (Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe (Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe (Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe (SARL ACLAP -> Node.js) C:\Program Files\net.downloadhelper.coapp\bin\net.downloadhelper.coapp-win-64.exe (Skillbrains) [File not signed] C:\Program Files (x86)\Skillbrains\lightshot\5.4.0.35\Lightshot.exe (TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (Viber Media S.à r.l. -> Viber Media S.Ã r.l.) C:\Users\zora\AppData\Local\Viber\Viber.exe (VideoLAN -> VideoLAN) C:\Program Files\VideoLAN\VLC\vlc.exe ==================== Registry (Whitelisted) =========================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [6548112 2012-06-12] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [269192 2019-08-01] (AVAST Software s.r.o. -> AVAST Software) HKLM\...\Run: [UpdatePDRShortCut] => C:\Program Files\CyberLink\PowerDirector10\MUITransfer\MUIStartMenu.exe [222504 2010-09-17] (CyberLink -> CyberLink Corp.) HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-03-26] (Intel Corporation -> Intel Corporation) HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [133400 2012-03-29] (Intel Corporation -> Intel Corporation) HKLM-x32\...\Run: [DelaypluginInstall] => C:\ProgramData\Aimersoft\Video Converter Ultimate\DelayPluginI.exe [1960248 2015-10-30] (Shenzhen Wondershare Information Technology Co., Ltd. -> ) HKLM-x32\...\Run: [NBKeyScan] => C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBKeyScan.exe [2221352 2008-06-10] (Nero AG -> Nero AG) HKLM-x32\...\Run: [ProductUpdater] => C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe [75776 2016-06-30] () [File not signed] HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [4513792 2014-05-22] (Brother Industries, Ltd.) [File not signed] HKLM-x32\...\Run: [Bonus.SSR.FR12] => C:\Program Files (x86)\ABBYY FineReader 12\Bonus.ScreenshotReader.exe [1472312 2015-10-21] (ABBYY PRODUCTION LLC -> ABBYY Production LLC.) [File not signed] HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [6788032 2018-04-20] (Safer-Networking Ltd. -> Safer-Networking Ltd.) HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [225944 2017-04-11] (OOO Lightshot -> ) HKLM-x32\...\Run: [ExpressVPNNotificationService] => C:\Program Files (x86)\ExpressVPN\expressvpn-ui\ExpressVPNNotificationServiceStarter.exe [465288 2019-08-21] (Express Vpn LLC -> ExpressVPN) HKLM-x32\...\Run: [KiesTrayAgent] => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [318112 2017-11-15] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION HKU\S-1-5-21-2361572692-1632034351-113368549-1000\...\Run: [f.lux] => C:\Users\zora\AppData\Local\FluxSoftware\Flux\flux.exe [1385480 2019-08-30] (F.lux Software LLC -> f.lux Software LLC) HKU\S-1-5-21-2361572692-1632034351-113368549-1000\...\Run: [Spybot-S&D Cleaning] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe [7388488 2018-04-20] (Safer-Networking Ltd. -> Safer-Networking Ltd.) HKU\S-1-5-21-2361572692-1632034351-113368549-1000\...\Run: [Xvid] => C:\Program Files (x86)\Xvid\CheckUpdate.exe [8192 2011-01-17] () [File not signed] HKU\S-1-5-21-2361572692-1632034351-113368549-1000\...\Run: [Viber] => C:\Users\zora\AppData\Local\Viber\Viber.exe [41029704 2019-09-25] (Viber Media S.à r.l. -> Viber Media S.Ã r.l.) HKU\S-1-5-21-2361572692-1632034351-113368549-1000\...\Run: [ExpressVPN4] => C:\Program Files (x86)\ExpressVPN\expressvpn-ui\ExpressVPN.exe [804744 2019-08-21] (Express Vpn LLC -> ExpressVPN) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\77.0.3865.90\Installer\chrmstp.exe [2019-09-25] (Google LLC -> Google LLC) HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\77.0.1801.76\Installer\chrmstp.exe [2019-10-02] (AVAST Software s.r.o. -> AVAST Software) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\BTTray.lnk [2019-08-25] ShortcutTarget: BTTray.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.) [File not signed] Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Install LastPass IE RunOnce.lnk [2016-02-06] ShortcutTarget: Install LastPass IE RunOnce.lnk -> C:\Program Files (x86)\Common Files\lpuninstall.exe (LastPass (Marvasol Inc) -> LastPass) BootExecute: autocheck autochk * sdnclean64.exe FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {0300EE4B-DAF2-436E-9FE2-60536555025A} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-09-10] (Adobe Inc. -> Adobe) Task: {03B10B2E-6075-4814-8253-DFD50F660FBF} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-08-15] (Piriform Software Ltd -> Piriform Software Ltd) Task: {0ACB523E-3FCC-4002-A851-89D95DE9CDA9} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\avast software\overseer\overseer.exe [1873288 2019-09-18] (AVAST Software s.r.o. -> AVAST Software) Task: {10093E83-D641-407D-A55C-49E75DF56AF0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-02-06] (Google Inc -> Google Inc.) Task: {1C61484C-8F8F-416C-AC4F-1A57956A3951} - System32\Tasks\{5674C5E3-E710-46AD-94AE-931E39497D0B} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\WinRAR\uninstall.exe" Task: {2E3AC5BD-AD44-427E-A236-E3C9DA9F6E6B} - System32\Tasks\Opera scheduled Autoupdate 1454769831 => C:\Program Files (x86)\Opera\launcher.exe [1348632 2019-10-04] (Opera Software AS -> Opera Software) Task: {446F92C7-D3EB-4363-9EA9-03EA433300FA} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>) Task: {4763606E-6AA2-4E38-9884-B1D55070D230} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2019-06-20] (AVAST Software s.r.o. -> AVAST Software) Task: {4BD34A9A-372C-490A-B109-633F9054B2AC} - System32\Tasks\update-S-1-5-21-2361572692-1632034351-113368549-1000 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>) Task: {556E88E9-7E90-4243-BF18-79CDF16E1039} - \REGUtilities Weekly Task -> No File <==== ATTENTION Task: {5791996B-5850-4487-848E-6985A3DF67C6} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1236048 2019-07-24] (Adobe Inc. -> Adobe Systems) Task: {597C2DAD-0A9E-49D8-A0E5-F9BBE46AB26D} - System32\Tasks\{8A47FFBC-649F-4BCD-9065-EE98D6082C6F} => C:\Windows\system32\pcalua.exe -a C:\Users\zora\Downloads\99003\99003\QuickInstall.exe -d C:\Users\zora\Downloads\99003\99003 Task: {71E0705A-855A-4813-AE95-574E8D095A98} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [16585328 2019-08-15] (Piriform Software Ltd -> Piriform Ltd) Task: {7BD8AC68-20E7-4FDE-8E64-26C22E06D2A9} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [1179648 2018-01-31] () [File not signed] Task: {7DCA7395-BEFE-4BDA-9ADC-13C2172989B6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-02-06] (Google Inc -> Google Inc.) Task: {81A2E69D-1368-4CDA-9DFA-312184E6FED6} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [7192192 2018-04-20] (Safer-Networking Ltd. -> Safer-Networking Ltd.) Task: {868DB887-C877-4E1E-BA9A-F93ACF95DABE} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1852624 2019-09-19] (AVAST Software s.r.o. -> AVAST Software) Task: {8F0D9004-701C-4A6E-8538-6A701A7F8041} - \REGUtilities Logon Task -> No File <==== ATTENTION Task: {9274BD03-188F-4C00-B97A-62DBA031A7CF} - System32\Tasks\{72F78C7A-7222-464A-982D-D2437C0B41CD} => C:\Windows\system32\pcalua.exe -a "D:\Programs for install\Photos program -all\PhotoshopCS4_11_Portable\PhotoshopCS4_11_Portable.exe" -d "D:\Programs for install\Photos program -all\PhotoshopCS4_11_Portable" Task: {A3DCAA5A-A0DA-486D-83F1-1934C1272D5F} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3940232 2019-08-01] (AVAST Software s.r.o. -> AVAST Software) Task: {A682AE20-7B85-4327-A0C2-698C6D288D24} - System32\Tasks\{06096FE4-687D-4164-A645-431A8C289D8F} => C:\Windows\system32\pcalua.exe -a C:\Users\zora\Downloads\shb_kortlasare.exe -d C:\Users\zora\Downloads Task: {B32E3FB6-5A23-4A88-8D9B-975DF2211898} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [6944304 2018-04-20] (Safer-Networking Ltd. -> Safer-Networking Ltd.) Task: {B77B7DE4-6A33-4C74-93E1-8AF555C2CBEC} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1852624 2019-09-19] (AVAST Software s.r.o. -> AVAST Software) Task: {C000DBDF-6C82-477A-8860-EA76B60B4CA7} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [7651984 2018-04-20] (Safer-Networking Ltd. -> Safer-Networking Ltd.) Task: {C0AD7CA6-04C1-42B5-8615-A6B10B175B5A} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2019-06-20] (AVAST Software s.r.o. -> AVAST Software) Task: {C294F0C4-B6CE-41E8-A31C-6AD022473CAD} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_255_pepper.exe [1453112 2019-09-10] (Adobe Inc. -> Adobe) (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\Windows\Tasks\update-S-1-5-21-2361572692-1632034351-113368549-1000.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe Task: C:\Windows\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Tcpip\Parameters: [DhcpNameServer] 10.180.0.1 Tcpip\..\Interfaces\{4FB68C93-5E94-493B-B574-9E7B7049743E}: [DhcpNameServer] 10.180.0.1 Tcpip\..\Interfaces\{F41CEC15-B703-45EC-A302-6D3DBF59D6A5}: [DhcpNameServer] 10.0.0.1 Internet Explorer: ================== HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page = BHO: LastPass Vault -> {95D9ECF5-2A4D-4550-BE49-70D42F71296E} -> C:\Program Files (x86)\LastPass\LPToolbar_x64.dll [2016-02-06] (LastPass (Marvasol Inc) -> LastPass) BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-08-02] (Google Inc -> Google Inc.) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: LastPass Vault -> {95D9ECF5-2A4D-4550-BE49-70D42F71296E} -> C:\Program Files (x86)\LastPass\LPToolbar.dll [2016-02-06] (LastPass (Marvasol Inc) -> LastPass) BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-08-02] (Google Inc -> Google Inc.) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation -> Microsoft Corporation) Toolbar: HKLM - LastPass Toolbar - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files (x86)\LastPass\LPToolbar_x64.dll [2016-02-06] (LastPass (Marvasol Inc) -> LastPass) Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-08-02] (Google Inc -> Google Inc.) Toolbar: HKLM-x32 - LastPass Toolbar - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files (x86)\LastPass\LPToolbar.dll [2016-02-06] (LastPass (Marvasol Inc) -> LastPass) Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-08-02] (Google Inc -> Google Inc.) Toolbar: HKU\S-1-5-21-2361572692-1632034351-113368549-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-08-02] (Google Inc -> Google Inc.) Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll [2008-05-23] (Microsoft Corporation) [File not signed] FireFox: ======== FF DefaultProfile: g45lanlx.default FF ProfilePath: C:\Users\zora\AppData\Roaming\Mozilla\Firefox\Profiles\g45lanlx.default [2019-10-07] FF Extension: (MEGA) - C:\Users\zora\AppData\Roaming\Mozilla\Firefox\Profiles\g45lanlx.default\Extensions\firefox@mega.co.nz.xpi [2019-10-04] [UpdateUrl:hxxps://mega.nz/firefox-web-extension-updates.json] FF Extension: (LastPass: Free Password Manager) - C:\Users\zora\AppData\Roaming\Mozilla\Firefox\Profiles\g45lanlx.default\Extensions\support@lastpass.com.xpi [2019-10-01] FF Extension: (Avast Online Security) - C:\Users\zora\AppData\Roaming\Mozilla\Firefox\Profiles\g45lanlx.default\Extensions\wrc@avast.com.xpi [2019-08-04] FF Extension: (Video DownloadHelper) - C:\Users\zora\AppData\Roaming\Mozilla\Firefox\Profiles\g45lanlx.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2019-07-09] FF HKLM-x32\...\Firefox\Extensions: [AMVCU@Aimersoft.com] - C:\ProgramData\Aimersoft\Video Converter Ultimate\AMVCU@Aimersoft.com FF Extension: (No Name) - C:\ProgramData\Aimersoft\Video Converter Ultimate\AMVCU@Aimersoft.com [2018-02-27] [not signed] FF Plugin: @lastpass.com/NPLastPass -> C:\Program Files (x86)\LastPass\nplastpass64.dll [2016-02-06] (LastPass (Marvasol Inc) -> LastPass) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=2.2.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-01-06] (Intel® Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-01-06] (Intel® Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @lastpass.com/NPLastPass -> C:\Program Files (x86)\LastPass\nplastpass64.dll [2016-02-06] (LastPass (Marvasol Inc) -> LastPass) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-07-31] (Adobe Inc. -> Adobe Systems Inc.) Chrome: ======= CHR DefaultProfile: Default CHR DefaultSearchURL: Default -> [Link mogu videti samo ulogovani korisnici]{searchTerms} CHR DefaultSearchKeyword: Default -> duckduckgo.com CHR DefaultSuggestURL: Default -> [Link mogu videti samo ulogovani korisnici]{searchTerms}&type=list CHR Profile: C:\Users\zora\AppData\Local\Google\Chrome\User Data\Default [2019-10-06] CHR Extension: (Google Drive) - C:\Users\zora\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-10-18] CHR Extension: (DuckDuckGo) - C:\Users\zora\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkdgflcldnnnapblkhphbgpggdiikppg [2019-09-14] CHR Extension: (YouTube) - C:\Users\zora\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-02-27] CHR Extension: (Tampermonkey) - C:\Users\zora\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2019-05-12] CHR Extension: (Video Downloader PLUS) - C:\Users\zora\AppData\Local\Google\Chrome\User Data\Default\Extensions\fhplmmllnpjjlncfjpbbpjadoeijkogc [2019-09-14] CHR Extension: (LastPass: Free Password Manager) - C:\Users\zora\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2019-10-03] CHR Extension: (Video DownloadHelper) - C:\Users\zora\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjnegcaeklhafolokijcfjliaokphfk [2019-06-26] CHR Extension: (Chrome Web Store Payments) - C:\Users\zora\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-03] CHR Extension: (Audio Converter) - C:\Users\zora\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojfphighcpfimfhblaigjckljcoeipga [2018-10-09] CHR Extension: (Gmail) - C:\Users\zora\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-23] CHR Extension: (Chrome Media Router) - C:\Users\zora\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-09-25] CHR Profile: C:\Users\zora\AppData\Local\Google\Chrome\User Data\Guest Profile [2019-04-27] CHR Profile: C:\Users\zora\AppData\Local\Google\Chrome\User Data\System Profile [2019-04-27] CHR HKLM\...\Chrome\Extension: [hdokiejnpimakedhajhdlcegeplioahd] - [Link mogu videti samo ulogovani korisnici] CHR HKU\S-1-5-21-2361572692-1632034351-113368549-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [dhdgffkkebhmkfjojejmpbldmpobfkfo] - [Link mogu videti samo ulogovani korisnici] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - [Link mogu videti samo ulogovani korisnici] CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - [Link mogu videti samo ulogovani korisnici] CHR HKLM-x32\...\Chrome\Extension: [hdokiejnpimakedhajhdlcegeplioahd] - [Link mogu videti samo ulogovani korisnici] Opera: ======= OPR Extension: (steemconnect) - C:\Users\zora\AppData\Roaming\Opera Software\Opera Stable\Extensions\enaifbbcamagcjaaeeaomhofifdgpjcn [2019-09-24] OPR Extension: (LastPass: Free Password Manager) - C:\Users\zora\AppData\Roaming\Opera Software\Opera Stable\Extensions\hnjalnkldgigidggphhmacmimbdlafdo [2019-09-27] OPR Extension: (Install Chrome Extensions) - C:\Users\zora\AppData\Roaming\Opera Software\Opera Stable\Extensions\kipjbhgniklcnglfaldilecjomjaddfi [2019-09-19] OPR Extension: (SaveFrom.net helper) - C:\Users\zora\AppData\Roaming\Opera Software\Opera Stable\Extensions\npdpplbicnmpoigidfdjadamgfkilaak [2019-09-30] OPR Extension: (Adblock Plus - free ad blocker) - C:\Users\zora\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp [2019-10-06] ==================== Services (Whitelisted) ==================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 AmCBSService; C:\Program Files (x86)\Aimersoft\Aimersoft Helper Compact\3.0.0.4\AmCBSService.exe [107520 2017-01-10] (Aimersoft) [File not signed] R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6797008 2019-08-01] (AVAST Software s.r.o. -> AVAST Software) S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2019-06-20] (AVAST Software s.r.o. -> AVAST Software) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [414976 2019-08-01] (AVAST Software s.r.o. -> AVAST Software) S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2019-06-20] (AVAST Software s.r.o. -> AVAST Software) S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\77.0.1801.76\elevation_service.exe [984920 2019-09-19] (AVAST Software s.r.o. -> AVAST Software) R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [282112 2013-09-25] (Brother Industries, Ltd.) [File not signed] R2 btwdins; C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe [396288 2006-01-17] (Broadcom Corporation.) [File not signed] R2 ExpressVPNService; C:\Program Files (x86)\ExpressVPN\bootstrap\amd64\nssm.exe [438664 2019-08-21] (Express Vpn LLC -> ExpressVPN) R2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [108032 2016-06-30] (Freemake) [File not signed] R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165144 2012-03-29] (Intel Corporation -> Intel Corporation) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6744288 2019-06-26] (Malwarebytes Corporation -> Malwarebytes) R2 Nero BackItUp Scheduler 3; C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe [877864 2008-06-10] (Nero AG -> Nero AG) R2 PLFlash DeviceIoControl Service; C:\Windows\SysWOW64\IoctlSvc.exe [81920 2006-12-19] (Prolific Technology Inc.) [File not signed] R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [390632 2012-04-24] (CyberLink -> ) R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [3892256 2018-04-20] (Safer-Networking Ltd. -> Safer-Networking Ltd.) R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [3943664 2018-04-20] (Safer-Networking Ltd. -> Safer-Networking Ltd.) R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [233712 2018-02-06] (Safer-Networking Ltd. -> Safer-Networking Ltd.) R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2017-01-16] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [11814232 2019-06-05] (TeamViewer GmbH -> TeamViewer GmbH) S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation) S3 BraveElevationService; "C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\71.0.58.21\elevation_service.exe" [X] S2 MSI_SuperCharger; C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe [X] ===================== Drivers (Whitelisted) ====================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [37320 2019-08-01] (AVAST Software s.r.o. -> AVAST Software) R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [209256 2019-08-01] (AVAST Software s.r.o. -> AVAST Software) R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [263224 2019-08-01] (AVAST Software s.r.o. -> AVAST Software) R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [206056 2019-08-01] (AVAST Software s.r.o. -> AVAST Software) R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [61688 2019-08-01] (AVAST Software s.r.o. -> AVAST Software) R1 aswHdsKe; C:\Windows\System32\drivers\aswHdsKe.sys [279336 2019-08-01] (AVAST Software s.r.o. -> AVAST Software) R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42504 2019-08-01] (AVAST Software s.r.o. -> AVAST Software) R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [168896 2019-08-01] (AVAST Software s.r.o. -> AVAST Software) R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [112520 2019-08-01] (AVAST Software s.r.o. -> AVAST Software) R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [88160 2019-08-01] (AVAST Software s.r.o. -> AVAST Software) R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [1030784 2019-08-01] (AVAST Software s.r.o. -> AVAST Software) R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [477288 2019-08-01] (AVAST Software s.r.o. -> AVAST Software) R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [225816 2019-08-01] (AVAST Software s.r.o. -> AVAST Software) R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [387688 2019-08-05] (AVAST Software s.r.o. -> AVAST Software) S3 BTKRNL; C:\Windows\System32\DRIVERS\btkrnl.sys [1106944 2006-01-17] (Broadcom Corporation.) [File not signed] S3 dg_ssudbus; C:\Windows\System32\DRIVERS\ssudbus.sys [131712 2017-01-16] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) S3 expressvpnsplittunnel; C:\Program Files (x86)\ExpressVPN\splittunnel\expressvpnsplittunnel.sys [18800 2019-08-21] (ExprsVPN LLC -> ) R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [275232 2019-10-07] (Malwarebytes Corporation -> Malwarebytes) S3 ssudmdm; C:\Windows\System32\DRIVERS\ssudmdm.sys [165504 2017-01-16] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) R3 tapexpressvpn; C:\Windows\System32\DRIVERS\tapexpressvpn.sys [36208 2019-05-22] (ExprsVPN LLC -> The OpenVPN Project) S3 tapnordvpn; C:\Windows\System32\DRIVERS\tapnordvpn.sys [35592 2018-07-24] (TEFINCOM S.A. -> The OpenVPN Project) S3 Tdsshbecr; C:\Windows\System32\DRIVERS\shbecr.sys [50176 2008-09-28] (Microsoft Windows Hardware Compatibility Publisher -> Todos Data System AB) S3 USB28xxBGA; C:\Windows\System32\DRIVERS\emBDA64.sys [732928 2012-06-20] (eMPIA Technology, Inc.) [File not signed] S3 USB28xxOEM; C:\Windows\System32\DRIVERS\emOEM64.sys [1232128 2012-06-20] (eMPIA Technology, Inc.) [File not signed] S3 WDC_SAM; C:\Windows\System32\DRIVERS\wdcsam64_prewin8.sys [23200 2017-04-11] (Microsoft Windows Hardware Compatibility Publisher -> Western Digital Technologies) S3 WinFsp; C:\Windows\system32\disko\winfsp-x64.sys [145344 2018-07-10] (Navimatics Corporation -> Navimatics Corporation) S2 BTSERIAL; \??\C:\Windows\system32\drivers\btserial.sys [X] S3 cpuz143; \??\C:\Users\zora\AppData\Local\Temp\cpuz143\cpuz143_x64.sys [X] <==== ATTENTION S3 MSICDSetup; \??\G:\CDriver64.sys [X] S3 NTIOLib_1_0_3; \??\C:\Program Files (x86)\MSI\Super-Charger\NTIOLib_X64.sys [X] S3 NTIOLib_1_0_C; \??\G:\NTIOLib_X64.sys [X] S3 VGPU; System32\drivers\rdvgkmd.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One month (created) ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2019-10-07 17:42 - 2019-10-07 17:42 - 000000000 ____D C:\FRST 2019-10-07 17:41 - 2019-10-07 17:42 - 000000000 ____D C:\Users\zora\Documents\MY CITY 2019-10-07 17:17 - 2019-10-07 17:17 - 003657867 _____ C:\Users\zora\Downloads\197539_306546707_15092015.ini 2019-10-07 17:01 - 2019-10-07 17:04 - 2148424974 _____ C:\Users\zora\Downloads\DANI VIDa Jun. 2019. - SVEST.mp4 2019-10-07 15:30 - 2019-10-07 15:30 - 000275232 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys 2019-10-06 00:08 - 2019-10-06 00:08 - 000001876 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2019-10-06 00:08 - 2019-10-06 00:08 - 000001876 _____ C:\ProgramData\Desktop\Malwarebytes.lnk 2019-10-06 00:08 - 2019-10-06 00:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes 2019-10-06 00:08 - 2019-08-27 05:50 - 000153312 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys 2019-10-05 19:54 - 2019-10-05 19:54 - 000000831 _____ C:\Users\Public\Desktop\CCleaner.lnk 2019-10-05 19:54 - 2019-10-05 19:54 - 000000831 _____ C:\ProgramData\Desktop\CCleaner.lnk 2019-10-04 19:40 - 2019-10-05 09:54 - 000000000 ____D C:\Program Files\Mozilla Firefox 2019-10-02 21:55 - 2019-10-02 21:55 - 000002789 _____ C:\Users\zora\Downloads\HowToBurnSubtitlesIntoVideo.txt 2019-10-01 20:59 - 2019-10-01 20:59 - 000000000 ____D C:\Users\zora\Documents\FormatFactory 2019-09-30 22:54 - 2019-09-30 22:55 - 000000000 ____D C:\Users\zora\AppData\Local\Viber 2019-09-30 20:50 - 2019-09-30 20:50 - 000001329 _____ C:\Users\Public\Desktop\Freemake Video Converter.lnk 2019-09-30 20:50 - 2019-09-30 20:50 - 000001329 _____ C:\ProgramData\Desktop\Freemake Video Converter.lnk 2019-09-29 13:54 - 2019-09-29 13:56 - 000000000 ____D C:\Users\zora\AppData\Roaming\GiliSoft 2019-09-27 19:43 - 2019-09-27 19:44 - 154587718 _____ C:\Users\zora\Downloads\English scan books.rar 2019-09-24 10:25 - 2019-09-24 10:25 - 000000685 _____ C:\Users\zora\Desktop\VERA BOJICIC - Shortcut.lnk 2019-09-20 13:32 - 2019-09-20 13:32 - 000000000 ____D C:\Tillit bön 2019-09-19 13:23 - 2019-09-19 13:23 - 000082588 _____ C:\Users\zora\Downloads\MSI64.txt 2019-09-17 21:33 - 2019-09-17 21:33 - 005611116 _____ C:\Users\zora\Downloads\Savetuju da treba dnevno pojesti 12 suvih sljiva! Evo i zasto.mp4 2019-09-16 23:31 - 2019-09-16 23:33 - 000000000 ____D C:\Users\zora\Downloads\docx (in order to copy)-20190916T213000Z-001 2019-09-15 00:55 - 2019-09-15 00:55 - 000000000 ____D C:\Users\zora\AppData\Local\Ahead 2019-09-13 01:33 - 2019-09-13 01:33 - 000024221 _____ C:\Users\zora\Downloads\21897.pdf 2019-09-09 14:55 - 2019-09-09 14:55 - 000000000 ___RD C:\Users\zora\svenska droppar innan kopirade till word ==================== One month (modified) ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2019-10-07 17:34 - 2009-07-14 06:45 - 000020640 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2019-10-07 17:34 - 2009-07-14 06:45 - 000020640 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2019-10-07 17:24 - 2018-03-08 17:04 - 000000000 ____D C:\Users\zora\AppData\Roaming\vlc 2019-10-07 16:59 - 2018-02-27 11:54 - 000000000 ____D C:\Users\zora\AppData\LocalLow\Mozilla 2019-10-07 15:37 - 2019-08-06 08:10 - 000663444 _____ C:\Windows\system32\perfh01D.dat 2019-10-07 15:37 - 2019-08-06 08:10 - 000142258 _____ C:\Windows\system32\perfc01D.dat 2019-10-07 15:37 - 2009-07-14 07:13 - 001579154 _____ C:\Windows\system32\PerfStringBackup.INI 2019-10-07 15:37 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf 2019-10-07 15:31 - 2019-06-25 14:36 - 000000000 ____D C:\Program Files (x86)\TeamViewer 2019-10-07 15:30 - 2018-05-30 00:28 - 000000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2 2019-10-07 15:30 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2019-10-07 11:25 - 2018-10-09 18:24 - 000000386 _____ C:\Windows\Tasks\update-sys.job 2019-10-07 10:58 - 2016-02-06 16:43 - 000003840 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1454769831 2019-10-07 10:58 - 2016-02-06 16:43 - 000000000 ____D C:\Program Files (x86)\Opera 2019-10-06 19:24 - 2018-09-06 00:11 - 000000000 ____D C:\Users\zora\Documents\ViberDownloads 2019-10-06 11:52 - 2019-07-12 12:16 - 000000880 _____ C:\Users\Public\Desktop\VLC media player.lnk 2019-10-06 11:52 - 2019-07-12 12:16 - 000000880 _____ C:\ProgramData\Desktop\VLC media player.lnk 2019-10-06 11:33 - 2018-01-20 23:39 - 000000000 ____D C:\Users\zora\AppData\Roaming\Telegram Desktop 2019-10-06 00:08 - 2019-01-22 12:33 - 000000000 ____D C:\ProgramData\Malwarebytes 2019-10-06 00:08 - 2019-01-22 12:33 - 000000000 ____D C:\Program Files\Malwarebytes 2019-10-05 23:09 - 2016-03-15 14:54 - 000000000 ____D C:\Users\zora\AppData\Roaming\avidemux 2019-10-05 19:54 - 2019-01-24 01:30 - 000003870 _____ C:\Windows\system32\Tasks\CCleaner Update 2019-10-05 09:54 - 2018-02-27 11:54 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2019-10-04 23:39 - 2018-01-23 02:23 - 000000000 ____D C:\Users\zora\Downloads\Telegram Desktop 2019-10-02 20:00 - 2019-06-20 16:44 - 000003732 _____ C:\Windows\system32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) 2019-10-02 20:00 - 2019-06-20 16:44 - 000003150 _____ C:\Windows\system32\Tasks\Avast Secure Browser Heartbeat Task (Logon) 2019-10-02 20:00 - 2019-06-20 16:44 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk 2019-10-02 19:52 - 2018-01-15 13:24 - 000004168 _____ C:\Windows\system32\Tasks\Avast Emergency Update 2019-10-01 22:10 - 2018-02-19 21:16 - 000000000 ____D C:\Users\zora\AppData\Roaming\AVI ReComp 2019-10-01 20:05 - 2018-05-25 20:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2019-10-01 19:41 - 2018-01-24 18:50 - 000000000 ____D C:\Users\zora\AppData\Roaming\HandBrake 2019-10-01 18:14 - 2018-03-14 22:26 - 000002079 _____ C:\Users\zora\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\f.lux.lnk 2019-10-01 16:20 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\system32\NDF 2019-10-01 09:32 - 2018-09-05 23:50 - 000000000 ____D C:\Users\zora\AppData\Roaming\ViberPC 2019-09-30 21:01 - 2018-01-25 18:51 - 000000000 ____D C:\Users\zora\AppData\Roaming\dvdcss 2019-09-30 20:50 - 2018-01-23 17:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freemake 2019-09-29 12:46 - 2016-02-07 18:27 - 000000000 ____D C:\Users\zora\AppData\Local\ElevatedDiagnostics 2019-09-25 01:31 - 2016-02-06 16:28 - 000002233 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2019-09-23 01:34 - 2016-03-23 21:36 - 000000000 ____D C:\Users\zora\AppData\Roaming\uTorrent 2019-09-15 00:55 - 2018-03-23 14:02 - 000000131 _____ C:\Users\zora\AppData\default.pls 2019-09-10 22:38 - 2019-06-06 10:46 - 000004282 _____ C:\Windows\system32\Tasks\Adobe Flash Player Updater 2019-09-10 22:38 - 2018-04-05 23:18 - 000842296 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerApp.exe 2019-09-10 22:38 - 2018-04-05 23:18 - 000175160 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2019-09-10 22:38 - 2018-04-05 23:18 - 000004468 _____ C:\Windows\system32\Tasks\Adobe Flash Player PPAPI Notifier 2019-09-10 22:38 - 2018-04-05 23:18 - 000000000 ____D C:\Windows\system32\Macromed 2019-09-10 22:38 - 2018-04-05 23:17 - 000000000 ____D C:\Windows\SysWOW64\Macromed 2019-09-09 14:55 - 2016-02-05 15:24 - 000000000 ____D C:\Users\zora ==================== Files in the root of some directories ================ 2018-03-05 17:18 - 2014-01-30 14:54 - 000614400 _____ () C:\Program Files (x86)\1026.mst 2018-03-05 17:18 - 2014-01-30 14:54 - 000708608 _____ () C:\Program Files (x86)\1028.mst 2018-03-05 17:18 - 2014-01-30 14:54 - 000528384 _____ () C:\Program Files (x86)\1029.mst 2018-03-05 17:18 - 2014-01-30 14:54 - 000413696 _____ () C:\Program Files (x86)\1030.mst 2018-03-05 17:18 - 2014-01-30 14:54 - 000397312 _____ () C:\Program Files (x86)\1031.mst 2018-03-05 17:18 - 2014-01-30 14:54 - 000778240 _____ () C:\Program Files (x86)\1032.mst 2018-03-05 17:18 - 2014-01-30 14:54 - 000020480 _____ () C:\Program Files (x86)\1033.mst 2018-03-05 17:18 - 2014-01-30 14:54 - 000393216 _____ () C:\Program Files (x86)\1034.mst 2018-03-05 17:18 - 2014-01-30 14:54 - 000413696 _____ () C:\Program Files (x86)\1036.mst 2018-03-05 17:18 - 2014-01-30 14:54 - 000585728 _____ () C:\Program Files (x86)\1038.mst 2018-03-05 17:18 - 2014-01-30 14:54 - 000397312 _____ () C:\Program Files (x86)\1040.mst 2018-03-05 17:18 - 2014-01-30 14:54 - 001019904 _____ () C:\Program Files (x86)\1041.mst 2018-03-05 17:18 - 2014-01-30 14:54 - 002199552 _____ () C:\Program Files (x86)\1042.mst 2018-03-05 17:18 - 2014-01-30 14:54 - 000380928 _____ () C:\Program Files (x86)\1043.mst 2018-03-05 17:18 - 2014-01-30 14:54 - 000368640 _____ () C:\Program Files (x86)\1045.mst 2018-03-05 17:18 - 2014-01-30 14:54 - 000356352 _____ () C:\Program Files (x86)\1046.mst 2018-03-05 17:18 - 2014-01-30 14:54 - 000745472 _____ () C:\Program Files (x86)\1049.mst 2018-03-05 17:18 - 2014-01-30 14:54 - 000401408 _____ () C:\Program Files (x86)\1051.mst 2018-03-05 17:18 - 2014-01-30 14:54 - 000376832 _____ () C:\Program Files (x86)\1053.mst 2018-03-05 17:18 - 2014-01-30 14:54 - 000389120 _____ () C:\Program Files (x86)\1055.mst 2018-03-05 17:18 - 2014-01-30 14:54 - 000520192 _____ () C:\Program Files (x86)\1058.mst 2018-03-05 17:18 - 2014-01-30 14:54 - 000352256 _____ () C:\Program Files (x86)\1061.mst 2018-03-05 17:18 - 2014-01-30 14:54 - 000983040 _____ () C:\Program Files (x86)\1066.mst 2018-03-05 17:18 - 2014-01-30 14:54 - 000921600 _____ () C:\Program Files (x86)\2052.mst 2018-03-05 17:18 - 2014-01-30 14:57 - 007353344 _____ () C:\Program Files (x86)\ABBYY FineReader 12 Professional.msi 2018-03-05 17:18 - 2014-01-30 14:51 - 001151800 _____ (ABBYY Production LLC.) C:\Program Files (x86)\AutoRun.exe 2018-03-05 17:18 - 2013-11-05 15:41 - 000000091 _____ () C:\Program Files (x86)\AutoRun.inf 2018-03-05 17:18 - 2014-01-30 14:54 - 093498927 _____ () C:\Program Files (x86)\Bin.cab 2018-03-05 17:18 - 2014-01-30 14:53 - 035108659 _____ () C:\Program Files (x86)\DictLang.cab 2018-03-05 17:18 - 2012-10-29 21:39 - 001822520 _____ (Microsoft Corporation) C:\Program Files (x86)\instmsiw.exe 2018-03-05 17:18 - 2014-01-30 14:51 - 000666424 _____ (ABBYY Production LLC.) C:\Program Files (x86)\Setup.exe 2018-03-05 17:18 - 2013-09-13 18:15 - 000000675 _____ () C:\Program Files (x86)\setup.ini 2018-03-05 17:18 - 2012-10-29 21:39 - 000245408 _____ (Microsoft Corporation) C:\Program Files (x86)\unicows.dll 2016-02-06 16:58 - 2016-02-06 16:58 - 021405208 _____ (LastPass) C:\Program Files (x86)\Common Files\lpuninstall.exe 2018-02-27 03:13 - 2018-02-27 03:15 - 000930816 _____ () C:\Users\zora\AppData\Local\po.db 2018-10-09 18:24 - 2018-10-09 18:24 - 000000003 _____ () C:\Users\zora\AppData\Local\updater.log 2018-10-09 18:24 - 2018-10-09 18:24 - 000000425 _____ () C:\Users\zora\AppData\Local\UserProducts.xml ==================== SigCheck =============================== (There is no automatic fix for files that do not pass verification.) C:\Windows\system32\User32.dll [2019-01-24 21:19] - [2019-01-24 21:48] - 001008640 _____ (Microsoft Corporation) 2C353B6CE0C8D03225CAA2AF33B68D79 C:\Windows\SysWOW64\User32.dll [2019-01-24 21:19] - [2019-01-24 21:48] - 000833024 _____ (Microsoft Corporation) 861C4346F9281DC0380DE72C8D55D6BE LastRegBack: 2019-10-01 22:08 ==================== End of FRST.txt ============================ [Link mogu videti samo ulogovani korisnici]

Profil

Sass Drake Poslao: 07 Okt 2019 19:43 Idi na vrh
offline Sass Drake Anti Malware Fighter Rank 2 Pridružio: 26 Avg 2010 Poruke: 10622 Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Otvori Notepad i iskopiraj sljedeći tekst koji se nalazi unutar Kod polja. `OPR Extension: (steemconnect) - C:\Users\zora\AppData\Roaming\Opera Software\Opera Stable\Extensions\enaifbbcamagcjaaeeaomhofifdgpjcn [2019-09-24] OPR Extension: (SaveFrom.net helper) - C:\Users\zora\AppData\Roaming\Opera Software\Opera Stable\Extensions\npdpplbicnmpoigidfdjadamgfkilaak [2019-09-30]` U okviru Notepad-a klikni na File --> Save As Pod Encoding izaberi UTF-8. Fajl nazovi Fixlist i sačuvaj na Desktop Dvoklikom ponovo pokreni FRST.exe Klikni na Fix i sačekaj dok program ne završi. Ukoliko program zatraži restart računara, omogući mu da to nesmetano obavi. Nakon završetka rada, otvoriće se fixlog.txt, sa sadržajem koji treba da kopiraš u temu. Takođe, na Desktop-u će se nalaziti (fixlog.txt).

Profil

MyCity » Ambulanta -> Arhiva Ambulante » Iskaču mi poruke u donjem desnom uglu

Ko je trenutno na forumu

Ukupno su 3331 korisnika na forumu :: 109 registrovanih, 8 sakrivenih i 3214 gosta :: [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 20624 - dana 04 Apr 2026 04:18

Korisnici koji su trenutno na forumu:: Korisnici trenutno na forumu: 33 bren, 4thFlavian, A.R.Chafee.Jr., Alen1987, Asteker, Atomski čoban, Avalon015, b_z_b, bb929, bestguarder, Bo96, bojanM84, Boris90, boskelazo, brandža84, bunker, carinko, Cicumile, cole77, dane007, Darko Jovanovic, DeerHunter, dekan.m, Despot1, dj.ape, Djokislav, dok80, doktor1964, Duck of Death, dusanobr, Flanker-G, Gall, goran.vvv, GORDI, Great White, GveX, Hans Gajger, howyesno, iceburn, igorkozar83, Igritelj, ikan, ILGromovnik, Ilija84, Jester, JOntra, Jozo74, Još malo pa deda, Kanader, kenny74, KizJ, komsija1, kunktator, kybonacci, lcc, luka35, marsi, metallac777, Milan A. Nikolic, milenko crazy north, milimoj, miljannis, Milos ZA, mir juzni, Mirage 2000N, nelezele, niksa517, omen, onufrij, Panter, Parker, pein, procesor, rakivan, redstar011, Regrut Boskica, Remain, repac, S-lash, samoulogovankorisnik, septembar, shiro, skok, Smiljkovich, Spinosa, Srle993, StalniPromatrač, stegonosa, Superastro, Tandrkalo, Tas011, Tastatura ratnik, tecataki, The Boss, tomigun, tomo2, Topaz9, uruk, VaRvArI 85, Vasilije Budović, VJ, vladao75, vobo, x9, YugoSlav, ziggga, Zrcalo, Žrnov, Đurđevdan

Svaki korisnik ovog sajta je odgovoran za sadržaj svoje poruke koju objavi na sajtu. Sajt se odriče svake odgovornosti za sadržaj tih poruka.
Postavljanjem vaše poruke ili vašeg autorskog dela na ovaj sajt, saglasni ste da ovaj sajt postaje distributer vašeg dela, i odričete se mogućnosti njegovog povlačenja ili brisanja, bez saglasnosti uprave sajta.
Distribucija sadržaja sa ovog sajta je dozvoljena samo u nekomercijalne svrhe, uz obaveznu napomenu da je sadržaj preuzet sa ovog sajta, i uz obavezno navođenje adrese MyCity sajta. Za sve ostale vidove distribucije obavezni ste da prethodno zatražite odobrenje od vlasnika MyCity sajta.
MyCity pokrenuo, administrira i razvija Predrag Damnjanović, a o uređenju sajta se brine MyCity Tim.
Ukoliko želite da nas kontaktirate kliknite ovde.
Naši sajtovi:
Vesti, Vojni forum, Zaštita od virusa, TekstPesme.rs

This content is licensed under a Creative Commons License.
Based on phpBB 2, translated by Simke, designed by