MyCity » Ambulanta » zamolio bi vas za proveru postovani

zamolio bi vas za proveru postovani

Napisano na dan: 11.8.2021

zamolio bi vas za proveru postovani

Odgovori

Jovac.Loca Poslao: 11 Avg 2021 16:08 Idi na vrh
offline Jovac.Loca Novi MyCity građanin Pridružio: 11 Avg 2021 Poruke: 2	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! u pitanju je amilo pa 1510 na njemu je windows7 x64 sp1 problem je ovako znaci kada ga upalim i koristim on posle nekog vremena se ukuca i windowsu ne moze mis da se mrdne nevrede nikakve opcije ctrl alt del ne reaguje uopste ,to se desava jednom dnevno retko kad vise puta ali bude, ponekad se javlja bsod ekran ali to je retko znaci nemogu da ga koristim koci se onda mogu samo da ga ugasim na dugme za paljenje gasenje sta da ucinim da to otklonim ? evo su frst.txt sken Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 11-08-2021 Ran by WINDOWS7 (administrator) on WINDOWS7-PC (FUJITSU SIEMENS AMILO Pa 1510) (11-08-2021 16:38:00) Running from C:\Users\WINDOWS7\Desktop Loaded Profiles: WINDOWS7 Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: English (United States) -> Serbian (Cyrillic, Serbia and Montenegro (Former)) Default browser: FF Boot Mode: Normal ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) () [File not signed] C:\Program Files (x86)\NetTime\NetTimeService.exe () [File not signed] D:\Program Files\RocketDock\RocketDock.exe () [File not signed] D:\ROADAPP\32bit\RBTray.exe (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) C:\Program Files (x86)\360\Total Security\safemon\QHWatchdog.exe (Bitsum LLC -> Bitsum LLC) C:\Program Files\Process Lasso\ProcessGovernor.exe (Bitsum LLC -> Bitsum LLC) C:\Program Files\Process Lasso\ProcessLasso.exe (Check Point Software Technologies Ltd. -> Check Point Software Technologies LTD) C:\Program Files (x86)\Zone Labs\ZoneAlarm\zlclient.exe (Check Point Software Technologies Ltd. -> Check Point Software Technologies LTD) C:\Windows\SysWOW64\ZoneLabs\vsmon.exe (Check Point Software Technologies Ltd. -> Check Point Software Technologies) C:\Program Files\CheckPoint\ZAForceField\ForceField.exe (Check Point Software Technologies Ltd. -> Check Point Software Technologies) C:\Program Files\CheckPoint\ZAForceField\ISWSVC.exe (CHENGDU AOMEI Tech Co., Ltd. -> AOMEI Tech Co., Ltd.) C:\Program Files (x86)\AOMEI Backupper\ABService.exe (F.lux Software LLC -> f.lux Software LLC) C:\Users\WINDOWS7\AppData\Local\FluxSoftware\Flux\flux.exe (Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google LLC -> ) C:\Program Files\Google\Drive File Stream\50.0.11.0\crashpad_handler.exe <2> (Google LLC -> Google, Inc.) C:\Program Files\Google\Drive File Stream\50.0.11.0\GoogleDriveFS.exe <7> (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE (Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe (Microsoft Windows Hardware Compatibility Publisher -> ATI Technologies Inc.) C:\Windows\System32\Ati2evxx.exe <2> (O2Micro International) [File not signed] C:\Windows\System32\drivers\o2flash.exe (Reason Software Company Inc. -> Reason Software Company Inc.) C:\Program Files (x86)\Unchecky\bin\unchecky_bg.exe (Reason Software Company Inc. -> Reason Software Company Inc.) C:\Program Files (x86)\Unchecky\bin\unchecky_svc.exe (ShareX Team) [File not signed] D:\ROADAPP\ShareX-portable(5)\ShareX.exe (ShenZhen Foscam Intelligent Technology Co,Ltd -> ) C:\Program Files (x86)\IPCWebComponents\IPCPlgSvr.exe (SOFTPERFECT PTY. LTD. -> SoftPerfect) D:\ROADAPP\WiFiGuard.exe (SUPERAntiSpyware.com -> SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe (v_k softwares) [File not signed] D:\ROADAPP\Simple Shutdown Scheduler\sshutdown.exe (Vitzo) [File not signed] C:\Program Files (x86)\ClipClip\ClipClip.exe (WinAbility Software Corporation -> WinAbility® Software Corporation) C:\Program Files\Folder Guard\FG64.exe <2> ==================== Registry (Whitelisted) =================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [FG_Monitor] => C:\Program Files\Folder Guard\FG64.exe [195784 2018-01-03] (WinAbility Software Corporation -> WinAbility® Software Corporation) HKLM\...\Run: [SkyTel] => C:\Windows\SkyTel.EXE [1826816 2007-05-07] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) HKLM\...\Run: [SoundMan] => C:\Windows\SOUNDMAN.EXE [86016 2006-07-21] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) HKLM\...\Run: [AlcWzrd] => C:\Windows\ALCWZRD.EXE [2808832 2006-05-04] (Microsoft Windows Hardware Compatibility Publisher -> RealTek Semicoductor Corp.) HKLM\...\Run: [Alcmtr] => C:\Windows\ALCMTR.EXE [69632 2005-05-03] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) HKLM-x32\...\Run: [QHSafeTray] => C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe [1906944 2021-06-17] (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) HKLM-x32\...\Run: [ZoneAlarm Client] => C:\Program Files (x86)\Zone Labs\ZoneAlarm\zlclient.exe [1037192 2009-10-17] (Check Point Software Technologies Ltd. -> Check Point Software Technologies LTD) HKLM Group Policy restriction on software: C:\Windows\winsxs\wow64_microsoft-windows-commandprompt_31bf3856ad364e35_6.1.7601.23403_none_f41ab18f7e737921\cmd.exe <==== ATTENTION HKLM Group Policy restriction on software: C:\Windows\winsxs\amd64_microsoft-windows-commandprompt_31bf3856ad364e35_6.1.7601.23403_none_e9c6073d4a12b726\cmd.exe <==== ATTENTION HKLM Group Policy restriction on software: C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe <==== ATTENTION HKLM Group Policy restriction on software: C:\Windows\regedit.exe <==== ATTENTION HKLM Group Policy restriction on software: C:\Windows\winsxs\amd64_microsoft-windows-commandprompt_31bf3856ad364e35_6.1.7601.17514_none_e932cc2c30fc13b0\cmd.exe <==== ATTENTION HKLM Group Policy restriction on software: C:\Program Files\Windows Media Player\wmpnscfg.exe <==== ATTENTION HKLM Group Policy restriction on software: C:\Windows\winsxs\wow64_microsoft-windows-commandprompt_31bf3856ad364e35_6.1.7601.17514_none_f387767e655cd5ab\cmd.exe <==== ATTENTION HKLM Group Policy restriction on software: C:\Program Files\Windows Media Player\wmpnetwk.exe <==== ATTENTION HKU\S-1-5-21-2949800482-660259357-3550381597-1000 Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRoot% <==== ATTENTION HKU\S-1-5-21-2949800482-660259357-3550381597-1000 Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ProgramFilesDir% <==== ATTENTION HKU\360SandBox\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\50.0.11.0\GoogleDriveFS.exe [53381464 2021-08-09] (Google LLC -> Google, Inc.) HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\50.0.11.0\GoogleDriveFS.exe [53381464 2021-08-09] (Google LLC -> Google, Inc.) HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\50.0.11.0\GoogleDriveFS.exe [53381464 2021-08-09] (Google LLC -> Google, Inc.) HKU\S-1-5-21-2949800482-660259357-3550381597-1000\...\Run: [ClipClip] => C:\Program Files (x86)\ClipClip\ClipClip.exe [3912704 2021-04-25] (Vitzo) [File not signed] HKU\S-1-5-21-2949800482-660259357-3550381597-1000\...\Run: [minimizer] => D:\ROADAPP\32bit\RBTray.exe [39936 2011-10-30] () [File not signed] HKU\S-1-5-21-2949800482-660259357-3550381597-1000\...\Run: [RocketDock] => D:\Program Files\RocketDock\RocketDock.exe [495616 2007-09-02] () [File not signed] HKU\S-1-5-21-2949800482-660259357-3550381597-1000\...\Run: [Simple Shutdown Scheduler] => D:\ROADAPP\Simple Shutdown Scheduler\sshutdown.exe [ ] HKU\S-1-5-21-2949800482-660259357-3550381597-1000\...\Run: [f.lux] => C:\Users\WINDOWS7\AppData\Local\FluxSoftware\Flux\flux.exe [1511824 2021-02-04] (F.lux Software LLC -> f.lux Software LLC) HKU\S-1-5-21-2949800482-660259357-3550381597-1000\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\50.0.11.0\GoogleDriveFS.exe [53381464 2021-08-09] (Google LLC -> Google, Inc.) HKU\S-1-5-21-2949800482-660259357-3550381597-1000\...\Run: [browser] => "C:\Program Files (x86)\Mozilla Firefox\firefox.exe" HKU\S-1-5-21-2949800482-660259357-3550381597-1000\...\Run: [WiFi Guard] => D:\ROADAPP\WiFiGuard.exe [4888904 2016-11-22] (SOFTPERFECT PTY. LTD. -> SoftPerfect) HKU\S-1-5-21-2949800482-660259357-3550381597-1000\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1 HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\50.0.11.0\GoogleDriveFS.exe [53381464 2021-08-09] (Google LLC -> Google, Inc.) HKLM\...\Print\Monitors\HP Standard TCP/IP Port: C:\Windows\system32\HpTcpMon.dll [331264 2009-09-16] (Hewlett Packard) [File not signed] Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Sidebar.lnk [2021-06-14] ShortcutTarget: Sidebar.lnk -> C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Windows -> Microsoft Corporation) Startup: C:\Users\WINDOWS7\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ShareX.lnk [2021-06-12] ShortcutTarget: ShareX.lnk -> D:\ROADAPP\ShareX-portable(5)\ShareX.exe (ShareX Team) [File not signed] GroupPolicy: Restriction ? <==== ATTENTION GroupPolicy-x32: Restriction ? <==== ATTENTION GroupPolicy\User: Restriction ? <==== ATTENTION Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION HKU\S-1-5-21-2949800482-660259357-3550381597-1000\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION HKU\S-1-5-21-2949800482-660259357-3550381597-1000\SOFTWARE\Policies\Google: Restriction <==== ATTENTION HKU\S-1-5-21-2949800482-660259357-3550381597-1000\SOFTWARE\Policies\Microsoft\Edge: Restriction <==== ATTENTION ==================== Scheduled Tasks (Whitelisted) ============ (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {02B78D84-5637-4374-B750-F482B243A970} - System32\Tasks\System Restore Checkpoint by System Restore Point Creator => D:\Program Files\Restore Point Creator\Restore Point Creator.exe [1165312 2018-07-24] () [File not signed] Task: {05CDB370-869D-4BDD-AC15-A7C18F21DE66} - System32\Tasks\Restore Point Creator\Restore Point Creator -- Run with no UAC (For User WINDOWS7) => D:\Program Files\Restore Point Creator\Restore Point Creator.exe [1165312 2018-07-24] () [File not signed] Task: {0BDDBA56-DB40-46D4-80B2-1AC744DF20E0} - System32\Tasks\Driver Booster SkipUAC (WINDOWS7) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe [4527424 2015-10-16] (IObit Information Technology -> IObit) Task: {2E6971E6-F7B1-4A99-A716-A2C78AE02A8F} - System32\Tasks\Restore Point Creator\Restore Point Creator -- Run with no UAC (Keep X Number of Restore Points) (For User WINDOWS7) => D:\Program Files\Restore Point Creator\Restore Point Creator.exe [1165312 2018-07-24] () [File not signed] Task: {63E9C0B9-0563-47F7-83CE-F897391F2F00} - System32\Tasks\Process Lasso Core Engine Only => C:\Program Files\Process Lasso\processgovernor.exe [772288 2016-05-14] (Bitsum LLC -> Bitsum LLC) Task: {7414CFBB-97E7-42F7-84CE-A50BC0337B1D} - System32\Tasks\Restore Point Creator\Restore Point Creator -- Run with no UAC (Create Custom Restore Point) (For User WINDOWS7) => D:\Program Files\Restore Point Creator\Restore Point Creator.exe [1165312 2018-07-24] () [File not signed] Task: {753C47AE-EC5E-44B3-95A9-2C8E553F0E39} - System32\Tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary => C:\Program Files\Windows Media Player\wmpnscfg.exe [70656 2009-07-14] (Access Denied) [File not signed] (Access Denied) <==== ATTENTION Task: {7EFC9DA8-D4BD-4377-9F3E-64170811FF33} - System32\Tasks\Wise Registry Cleaner Schedule Task => D:\ROADAPP\WRCPortable\Wise Registry Cleaner\WiseRegCleaner.exe [5550664 2019-12-13] (Lespeed Technology Ltd. -> WiseCleaner.com) Task: {8DA0D426-018C-44C5-A3F8-C3590EB66378} - System32\Tasks\Process Lasso Management Console (GUI) => C:\Program Files\Process Lasso\processlasso.exe [1209024 2016-05-14] (Bitsum LLC -> Bitsum LLC) Task: {915EF241-F286-4DBB-9404-27C58C2F303A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2021-06-12] (Google Inc -> Google Inc.) Task: {989ABDB1-C9A6-4FAD-940D-CF4CBC228B4A} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [6775512 2016-06-10] (Piriform Ltd -> Piriform Ltd) Task: {A105EAC4-B1C6-4B0D-AEB8-688AE5E7C8FB} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\Scheduler.exe Task: {BD35D9E3-9BE8-4531-A81E-2C03B5D5BAAC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2021-06-12] (Google Inc -> Google Inc.) Task: {C21C5F44-B93D-472F-8F64-2E2152FF60AC} - System32\Tasks\CCleanerClean => C:\Program Files\CCleaner\CCleaner.exe [6775512 2016-06-10] (Piriform Ltd -> Piriform Ltd) Task: {C2F42874-DA15-4404-85E4-2BECAEC74760} - System32\Tasks\Restore Point Creator\Restore Point Creator -- Run with no UAC (Create Restore Point) (For User WINDOWS7) => D:\Program Files\Restore Point Creator\Restore Point Creator.exe [1165312 2018-07-24] () [File not signed] Task: {FC3054BA-7626-4797-876E-B124BCFF5711} - System32\Tasks\Restore Point Creator\Restore Point Creator -- Run with no UAC (Delete old Restore Points) (For User WINDOWS7) => D:\Program Files\Restore Point Creator\Restore Point Creator.exe [1165312 2018-07-24] () [File not signed] (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\Windows\Tasks\CCleanerClean.job => C:\Program Files\CCleaner\CCleaner.exe Task: C:\Windows\Tasks\Wise Registry Cleaner Schedule Task.job => D:\ROADAPP\WRCPortable\Wise Registry Cleaner\WiseRegCleaner.exe ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt Tcpip\Parameters: [DhcpNameServer] 1.1.1.1 1.0.0.1 Tcpip\..\Interfaces\{61B4E13F-914A-4D6E-841A-6809222A79BD}: [DhcpNameServer] 1.1.1.1 1.0.0.1 Tcpip\..\Interfaces\{E71CC9A5-19F2-42A1-BCDD-6CA1B7788803}: [DhcpNameServer] 1.1.1.1 1.0.0.1 FireFox: ======== FF DefaultProfile: nr9vcc98.default FF ProfilePath: C:\Users\WINDOWS7\AppData\Roaming\Mozilla\Firefox\Profiles\nr9vcc98.default [2021-08-10] FF DownloadDir: D:\Downloads FF Homepage: Mozilla\Firefox\Profiles\nr9vcc98.default -> hxxps://www.google.com/ FF Session Restore: Mozilla\Firefox\Profiles\nr9vcc98.default -> is enabled. FF Notifications: Mozilla\Firefox\Profiles\nr9vcc98.default -> hxxps://webchat.freenode.net; hxxps://gretaith.com; hxxps://www1a.rudyvalencia.pro; hxxps://kickasstorrents.to FF Extension: (Y2Mate - Video Downloader) - C:\Users\WINDOWS7\AppData\Roaming\Mozilla\Firefox\Profiles\nr9vcc98.default\Extensions\@y2mate.xpi [2021-01-11] FF Extension: (Best Proxy Switcher) - C:\Users\WINDOWS7\AppData\Roaming\Mozilla\Firefox\Profiles\nr9vcc98.default\Extensions\bestproxyswitcher@bestproxyswitcher.com.xpi [2020-08-21] FF Extension: (Cold Turkey Blocker) - C:\Users\WINDOWS7\AppData\Roaming\Mozilla\Firefox\Profiles\nr9vcc98.default\Extensions\coldturkey@getcoldturkey.com.xpi [2020-05-22] FF Extension: (FoxyTab) - C:\Users\WINDOWS7\AppData\Roaming\Mozilla\Firefox\Profiles\nr9vcc98.default\Extensions\foxytab@eros.man.xpi [2020-08-21] FF Extension: (YouTube mp3) - C:\Users\WINDOWS7\AppData\Roaming\Mozilla\Firefox\Profiles\nr9vcc98.default\Extensions\info@youtube-mp3.org.xpi [2018-07-07] [Legacy] FF Extension: (360 Internet Protection) - C:\Users\WINDOWS7\AppData\Roaming\Mozilla\Firefox\Profiles\nr9vcc98.default\Extensions\InternetProtection@360safe.com.xpi [2020-12-14] FF Extension: (Privacy Badger) - C:\Users\WINDOWS7\AppData\Roaming\Mozilla\Firefox\Profiles\nr9vcc98.default\Extensions\jid1-MnnxcxisBPnSXQ@jetpack.xpi [2021-01-11] FF Extension: (Restart) - C:\Users\WINDOWS7\AppData\Roaming\Mozilla\Firefox\Profiles\nr9vcc98.default\Extensions\Restart@schuzak.jp.xpi [2018-07-07] [Legacy] FF Extension: (Save File to) - C:\Users\WINDOWS7\AppData\Roaming\Mozilla\Firefox\Profiles\nr9vcc98.default\Extensions\savefileto@mozdev.org.xpi [2018-07-07] [Legacy] FF Extension: (Show/Hide passwords) - C:\Users\WINDOWS7\AppData\Roaming\Mozilla\Firefox\Profiles\nr9vcc98.default\Extensions\shpassword@shpassword.fr.xpi [2020-08-21] FF Extension: (LastPass) - C:\Users\WINDOWS7\AppData\Roaming\Mozilla\Firefox\Profiles\nr9vcc98.default\Extensions\support@lastpass.com [2021-06-12] [Legacy] FF Extension: (TinyURL Generator) - C:\Users\WINDOWS7\AppData\Roaming\Mozilla\Firefox\Profiles\nr9vcc98.default\Extensions\tinyurl.addon@fast-chat.co.uk.xpi [2018-07-07] [Legacy] FF Extension: (UnloadTab) - C:\Users\WINDOWS7\AppData\Roaming\Mozilla\Firefox\Profiles\nr9vcc98.default\Extensions\unloadtab@firefox.ext.xpi [2018-07-07] [Legacy] FF Extension: (FlashGot) - C:\Users\WINDOWS7\AppData\Roaming\Mozilla\Firefox\Profiles\nr9vcc98.default\Extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi [2018-07-07] [Legacy] FF Extension: (Youtube to MP3 Converter - YTMP3.EU) - C:\Users\WINDOWS7\AppData\Roaming\Mozilla\Firefox\Profiles\nr9vcc98.default\Extensions\{2eded70b-8e41-4c8a-8067-771da68fe474}.xpi [2021-07-23] FF Extension: (X-notifier (for Gmail™,Hotmail,Yahoo,AOL...)) - C:\Users\WINDOWS7\AppData\Roaming\Mozilla\Firefox\Profiles\nr9vcc98.default\Extensions\{37fa1426-b82d-11db-8314-0800200c9a66}.xpi [2021-01-11] FF Extension: (xIFr) - C:\Users\WINDOWS7\AppData\Roaming\Mozilla\Firefox\Profiles\nr9vcc98.default\Extensions\{5e71bed2-2b15-40b8-a15b-ba89563aaf73}.xpi [2021-01-11] FF Extension: (WIFI Finder) - C:\Users\WINDOWS7\AppData\Roaming\Mozilla\Firefox\Profiles\nr9vcc98.default\Extensions\{83d1c640-1cc6-4423-a138-3ddf26b1f6c7}.xpi [2018-07-07] [Legacy] FF Extension: (ReloadEvery) - C:\Users\WINDOWS7\AppData\Roaming\Mozilla\Firefox\Profiles\nr9vcc98.default\Extensions\{888d99e7-e8b5-46a3-851e-1ec45da1e644}.xpi [2018-07-07] [Legacy] FF Extension: (User-Agent Switcher and Manager) - C:\Users\WINDOWS7\AppData\Roaming\Mozilla\Firefox\Profiles\nr9vcc98.default\Extensions\{a6c4a591-f1b2-4f03-b3ff-767e5bedf4e7}.xpi [2021-01-11] FF Extension: (FireFTP) - C:\Users\WINDOWS7\AppData\Roaming\Mozilla\Firefox\Profiles\nr9vcc98.default\Extensions\{a7c6cf7f-112c-4500-a7ea-39801a327e5f} [2021-06-12] [Legacy] FF Extension: (facebookfastdeletemessages) - C:\Users\WINDOWS7\AppData\Roaming\Mozilla\Firefox\Profiles\nr9vcc98.default\Extensions\{af3ad7cf-6303-42d3-bd23-74e0838b9d2d}.xpi [2018-07-07] [Legacy] FF Extension: (NoRedirect) - C:\Users\WINDOWS7\AppData\Roaming\Mozilla\Firefox\Profiles\nr9vcc98.default\Extensions\{c1970c0d-dbe6-4d91-804f-c9c0de643a57}.xpi [2018-07-07] [Legacy] FF Extension: (No Name) - C:\Users\WINDOWS7\AppData\Roaming\Mozilla\Firefox\Profiles\nr9vcc98.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2021-01-11] FF Extension: (DownThemAll!) - C:\Users\WINDOWS7\AppData\Roaming\Mozilla\Firefox\Profiles\nr9vcc98.default\Extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi [2018-07-07] [Legacy] FF HKLM\...\Firefox\Extensions: [{FFB96CC1-7EB3-449D-B827-DB661701C6BB}] - C:\Program Files\CheckPoint\ZAForceField\TrustChecker FF Extension: (No Name) - C:\Program Files\CheckPoint\ZAForceField\TrustChecker [2021-06-12] [not signed] FF HKLM-x32\...\Firefox\Extensions: [{FFB96CC1-7EB3-449D-B827-DB661701C6BB}] - C:\Program Files\CheckPoint\ZAForceField\WOW64\TrustChecker FF Extension: (ForceField Toolbar) - C:\Program Files\CheckPoint\ZAForceField\WOW64\TrustChecker [2021-06-12] [Legacy] [not signed] FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_344.dll [2021-06-12] (Adobe Inc. -> ) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\Program Files\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_344.dll [2021-06-12] (Adobe Inc. -> ) FF Plugin-x32: @IPCWebComponents -> C:\Program Files (x86)\IPCWebComponents\npIPCReg.dll [2016-12-26] (ShenZhen Foscam Intelligent Technology Co,Ltd -> ) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\Program Files (x86)\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @videolan.org/vlc,version=2.2.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-11-29] (VideoLAN -> VideoLAN) FF Plugin HKU\S-1-5-21-2949800482-660259357-3550381597-1000: runtop.com/RTPlayer -> C:\Program Files (x86)\VVVIPCamera\npRTPlayer.dll [2015-01-12] (RunTop) [File not signed] FF Plugin HKU\S-1-5-21-2949800482-660259357-3550381597-1000: tpsee.com/ipcctrl -> C:\Windows\system32\IPCConfigV2\npipcctrl.dll [No File] ==================== Services (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [173472 2021-01-09] (SUPERAntiSpyware.com -> SUPERAntiSpyware.com) R2 Ati External Event Utility; C:\Windows\system32\Ati2evxx.exe [932864 2019-10-26] (Microsoft Windows Hardware Compatibility Publisher -> ATI Technologies Inc.) R2 Backupper Service; C:\Program Files (x86)\AOMEI Backupper\ABService.exe [122728 2018-04-09] (CHENGDU AOMEI Tech Co., Ltd. -> AOMEI Tech Co., Ltd.) R2 Folder Guard; C:\Program Files\Folder Guard\FG64.exe [195784 2018-01-03] (WinAbility Software Corporation -> WinAbility® Software Corporation) R2 FosCloudSvr; C:\Program Files (x86)\IPCWebComponents\IPCPlgSvr.exe [91776 2016-12-26] (ShenZhen Foscam Intelligent Technology Co,Ltd -> ) S3 HP DS Service; C:\Program Files (x86)\HP\HPBDSService\HPBDSService.exe [13824 2011-10-17] (Hewlett-Packard Company) [File not signed] S2 HP LaserJet Service; C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe [174592 2012-12-04] (HP) [File not signed] R2 IswSvc; C:\Program Files\CheckPoint\ZAForceField\IswSvc.exe [800624 2009-10-14] (Check Point Software Technologies Ltd. -> Check Point Software Technologies) R2 NetTimeSvc; C:\Program Files (x86)\NetTime\NetTimeService.exe [473088 2012-05-12] () [File not signed] R2 O2FLASH; C:\Windows\system32\DRIVERS\o2flash.exe [65536 2019-10-26] (O2Micro International) [File not signed] R2 QHActiveDefense; C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe [1102080 2021-04-02] (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) R2 unchecky; C:\Program Files (x86)\Unchecky\bin\unchecky_svc.exe [297240 2021-06-12] (Reason Software Company Inc. -> Reason Software Company Inc.) R2 vsmon; C:\Windows\SysWOW64\ZoneLabs\vsmon.exe [2384240 2009-10-17] (Check Point Software Technologies Ltd. -> Check Point Software Technologies LTD) R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2016-03-25] (Microsoft Windows -> Microsoft Corporation) S2 WMPNetworkSvc; C:\Program Files\Windows Media Player\wmpnetwk.exe [1525248 2010-11-21] (Access Denied) [File not signed] ===================== Drivers (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R1 360AntiHacker; C:\Windows\System32\Drivers\360AntiHacker64.sys [189328 2021-05-25] (Beijing Qihu Technology Co., Ltd. -> 360.cn) R3 360AvFlt; C:\Windows\System32\DRIVERS\360AvFlt.sys [86248 2021-05-25] (Qihoo 360 Software (Beijing) Company Limited -> 360.cn) R3 360AvFlt; C:\Windows\SysWOW64\DRIVERS\360AvFlt.sys [86248 2021-05-25] (Qihoo 360 Software (Beijing) Company Limited -> 360.cn) R1 360Box64; C:\Windows\System32\DRIVERS\360Box64.sys [339016 2021-05-31] (Beijing Qihu Technology Co., Ltd. -> 360.cn) S3 360Camera; C:\Windows\System32\Drivers\360Camera64.sys [49584 2021-05-25] (Beijing Qihu Technology Co., Ltd. -> 360.cn) R1 360FsFlt; C:\Windows\System32\DRIVERS\360FsFlt.sys [485448 2021-05-25] (Beijing Qihu Technology Co., Ltd. -> 360.cn) R1 360Hvm; C:\Windows\System32\Drivers\360Hvm64.sys [325704 2021-05-25] (Beijing Qihu Technology Co., Ltd. -> 360安全中心) R1 360netmon; C:\Windows\System32\DRIVERS\360netmon.sys [87672 2021-05-25] (Qihoo 360 Software (Beijing) Company Limited -> 360.cn) R0 ambakdrv; C:\Windows\System32\ambakdrv.sys [51120 2016-12-21] (CHENGDU AOMEI Tech Co., Ltd. -> ) R2 ammntdrv; C:\Windows\system32\ammntdrv.sys [171952 2016-12-21] (CHENGDU AOMEI Tech Co., Ltd. -> ) S3 ampa; C:\Windows\system32\ampa.sys [38320 2017-02-28] (CHENGDU AOMEI Tech Co., Ltd. -> ) R2 amwrtdrv; C:\Windows\system32\amwrtdrv.sys [38320 2017-09-01] (CHENGDU AOMEI Tech Co., Ltd. -> ) R3 atikmdag; C:\Windows\System32\DRIVERS\atikmdag.sys [5000192 2019-10-26] (Microsoft Windows Hardware Compatibility Publisher -> ATI Technologies Inc.) R1 BAPIDRV; C:\Windows\System32\DRIVERS\BAPIDRV64.sys [224040 2021-06-28] (Beijing Qihu Technology Co., Ltd. -> 360.cn) S3 ddmdrv; C:\Windows\system32\ddmdrv.sys [35760 2016-12-27] (CHENGDU AOMEI Tech Co., Ltd. -> ) S3 epmntdrv; C:\Windows\system32\epmntdrv.sys [25480 2019-04-24] (CHENGDU YIWO Tech Development Co., Ltd. -> ) R0 EPMVolFl; C:\Windows\System32\drivers\EPMVolFl.sys [21384 2019-04-24] (CHENGDU YIWO Tech Development Co., Ltd. -> Windows (R) Codename Longhorn DDK provider) S3 EuGdiDrv; C:\Windows\system32\EuGdiDrv.sys [14728 2019-04-24] (CHENGDU YIWO Tech Development Co., Ltd. -> ) R2 FGUARD64; C:\Program Files\Folder Guard\FGUARD64.SYS [105376 2018-01-03] (WinAbility Software Corporation -> WinAbility® Software Corporation) R1 googledrivefs3525; C:\Windows\System32\DRIVERS\googledrivefs3525.sys [382944 2021-07-30] (Google LLC -> Google, Inc.) R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [26528 2021-07-23] (Martin Malik - REALiX -> REALiX(tm)) R3 icsak; C:\Program Files\CheckPoint\ZAForceField\AK\icsak.sys [44664 2009-10-14] (Check Point Software Technologies Ltd. -> Check Point Software Technologies) R3 IntcAzAudAddService; C:\Windows\System32\drivers\RTKHDA64.SYS [4502528 2007-05-10] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) R2 ISWKL; C:\Program Files\CheckPoint\ZAForceField\ISWKL.sys [32888 2009-10-14] (Check Point Software Technologies Ltd. -> Check Point Software Technologies) R1 kl1; C:\Windows\System32\DRIVERS\kl1.sys [157712 2009-10-12] (Kaspersky Lab -> Kaspersky Lab) R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [351248 2009-10-12] (Kaspersky Lab -> Kaspersky Lab) R3 O2MDRDR; C:\Windows\System32\DRIVERS\o2mdx64.sys [64160 2019-10-26] (O2Micro Inc. -> O2Micro) S3 pwdrvio; C:\Windows\system32\pwdrvio.sys [19152 2013-09-30] (MiniTool Solution Ltd -> ) S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2013-09-30] (MiniTool Solution Ltd -> ) R3 RTL8023x64; C:\Windows\System32\DRIVERS\Rtnic64.sys [61656 2019-10-26] (Realtek Semiconductor Corp -> Realtek Semiconductor Corporation) R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2021-01-09] (Support.com, Inc. -> SUPERAdBlocker.com and SUPERAntiSpyware.com) R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2021-01-09] (Support.com, Inc. -> SUPERAdBlocker.com and SUPERAntiSpyware.com) R3 smserial; C:\Windows\System32\DRIVERS\SmSerl64.sys [1227776 2009-06-10] (Microsoft Windows -> Motorola Inc.) R1 Vsdatant; C:\Windows\System32\DRIVERS\vsdatant.sys [445640 2009-10-17] (Check Point Software Technologies Ltd. -> Check Point Software Technologies LTD) ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One month (created) (Whitelisted) ========= (If an entry is included in the fixlist, the file/folder will be moved.) 2021-08-11 16:37 - 2021-08-11 16:44 - 000028226 _____ C:\Users\WINDOWS7\Desktop\FRST.txt 2021-08-11 16:37 - 2021-08-11 16:41 - 000000000 ____D C:\FRST 2021-08-11 16:37 - 2021-08-11 16:22 - 002300416 _____ (Farbar) C:\Users\WINDOWS7\Desktop\FRST64.exe 2021-08-10 21:43 - 2021-08-10 21:43 - 284383676 _____ C:\Windows\MEMORY.DMP 2021-08-10 21:43 - 2021-08-10 21:43 - 000274104 _____ C:\Windows\Minidump\081021-19093-01.dmp 2021-08-09 16:57 - 2021-07-30 18:52 - 000382944 _____ (Google, Inc.) C:\Windows\system32\Drivers\googledrivefs3525.sys 2021-08-09 11:07 - 2021-08-09 11:07 - 000021016 _____ (Advanced System Repair Inc.) C:\Windows\system32\Drivers\asrscan.sys 2021-08-08 07:32 - 2021-08-11 16:35 - 000000000 ____D C:\Users\WINDOWS7\AppData\Local\CrashDumps 2021-07-25 20:17 - 2021-07-25 20:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BackRex Internet Explorer Backup 2021-07-25 20:17 - 2021-07-25 20:17 - 000000000 ____D C:\Program Files (x86)\BackRex Internet Explorer Backup 2021-07-25 20:14 - 2021-07-25 20:14 - 000000000 ____D C:\Users\WINDOWS7\BR-210725-00 2021-07-23 11:07 - 2021-07-23 11:24 - 000000000 ____D C:\ProgramData\Package Cache 2021-07-23 11:03 - 2021-07-23 11:03 - 004184328 _____ (Qualcomm Atheros Communications, Inc.) C:\Windows\system32\Drivers\athrx.sys 2021-07-23 11:02 - 2021-07-23 11:02 - 000739872 _____ (O2Micro) C:\Windows\system32\O2Icon.dll 2021-07-23 11:02 - 2021-07-23 11:02 - 000049696 _____ (O2Micro ) C:\Windows\system32\Drivers\o2sdx64.sys 2021-07-23 10:50 - 2021-07-23 10:50 - 000000000 ____D C:\ProgramData\ProductData 2021-07-23 10:48 - 2021-07-23 13:15 - 000002886 _____ C:\Windows\system32\Tasks\Driver Booster SkipUAC (WINDOWS7) 2021-07-23 10:48 - 2021-07-23 10:48 - 000026528 _____ (REALiX(tm)) C:\Windows\SysWOW64\Drivers\HWiNFO64A.SYS 2021-07-23 10:48 - 2021-07-23 10:48 - 000003254 _____ C:\Windows\system32\Tasks\Driver Booster Scheduler 2021-07-23 10:48 - 2021-07-23 10:48 - 000000000 ____D C:\Users\WINDOWS7\AppData\Roaming\IObit 2021-07-23 10:48 - 2021-07-23 10:48 - 000000000 ____D C:\Users\WINDOWS7\AppData\LocalLow\IObit 2021-07-23 10:48 - 2021-07-23 10:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 3 2021-07-23 10:48 - 2021-07-23 10:48 - 000000000 ____D C:\ProgramData\IObit 2021-07-23 10:48 - 2021-07-23 10:48 - 000000000 ____D C:\Program Files (x86)\IObit 2021-07-17 06:20 - 2021-07-17 06:21 - 000000000 _____ C:\Users\WINDOWS7\AppData\Local\{CDC5B202-6B7A-4F48-B7E8-3CCB9C7F8FEE} 2021-07-16 13:00 - 2021-08-10 21:50 - 000000258 __RSH C:\ProgramData\ntuser.pol 2021-07-13 17:45 - 2021-07-13 17:45 - 000000000 ____D C:\Users\WINDOWS7\AppData\Roaming\MailFrontier 2021-07-13 17:25 - 2021-08-10 15:01 - 000000452 _____ C:\Windows\Tasks\Wise Registry Cleaner Schedule Task.job 2021-07-13 17:25 - 2021-07-13 17:25 - 000003186 _____ C:\Windows\system32\Tasks\Wise Registry Cleaner Schedule Task ==================== One month (modified) ================== (If an entry is included in the fixlist, the file/folder will be moved.) 2021-08-11 16:43 - 2021-06-12 14:03 - 000000000 ____D C:\Program Files (x86)\Google 2021-08-11 16:42 - 2009-07-14 06:45 - 000031856 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2021-08-11 16:42 - 2009-07-14 06:45 - 000031856 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2021-08-11 16:39 - 2021-06-12 09:24 - 000000000 ____D C:\Windows\Internet Logs 2021-08-11 16:35 - 2021-06-12 10:00 - 000032269 _____ C:\Users\WINDOWS7\Network_Meter_Data.js 2021-08-11 16:35 - 2021-06-12 09:07 - 000018305 _____ C:\Users\WINDOWS7\IP_Log_Data.js 2021-08-11 16:34 - 2021-06-12 09:29 - 000000144 _____ C:\Windows\SysWOW64\pdfl.dat 2021-08-10 22:17 - 2021-06-12 09:10 - 000000000 ____D C:\Users\WINDOWS7\AppData\LocalLow\360WD 2021-08-10 21:43 - 2021-06-12 10:15 - 000000000 ____D C:\Windows\Minidump 2021-08-10 18:46 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf 2021-08-10 18:45 - 2021-06-12 14:03 - 000002019 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk 2021-08-10 13:00 - 2021-06-26 05:35 - 000000258 _____ C:\Windows\Tasks\CCleanerClean.job 2021-08-10 08:53 - 2021-06-12 10:02 - 000000000 ____D C:\Users\WINDOWS7\AppData\LocalLow\LastPass 2021-08-10 08:11 - 2021-06-12 09:38 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox 2021-08-10 07:58 - 2021-06-12 11:22 - 000000000 ____D C:\Program Files (x86)\AOMEI Backupper 2021-08-09 18:33 - 2021-06-12 09:20 - 000000025 _____ C:\Users\WINDOWS7\AppData\Roaming\Network Meter_Usage.ini 2021-08-09 18:18 - 2021-06-12 09:12 - 000000000 ____D C:\ProgramData\360Quarant 2021-08-09 06:02 - 2021-06-13 20:28 - 000000000 ____D C:\Users\WINDOWS7\AppData\Roaming\ViberPC 2021-08-08 06:33 - 2011-04-12 15:26 - 000724158 _____ C:\Windows\system32\perfh019.dat 2021-08-08 06:33 - 2011-04-12 15:26 - 000150428 _____ C:\Windows\system32\perfc019.dat 2021-08-08 06:33 - 2009-07-14 07:13 - 001647438 _____ C:\Windows\system32\PerfStringBackup.INI 2021-08-07 15:28 - 2021-06-12 09:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\360 Security Center 2021-08-04 18:30 - 2021-06-12 14:03 - 000003334 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA 2021-08-04 18:30 - 2021-06-12 14:03 - 000003206 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore 2021-07-25 20:17 - 2021-06-12 09:09 - 000000000 ____D C:\ProgramData\360TotalSecurity 2021-07-25 20:14 - 2021-06-12 08:52 - 000000000 ____D C:\Users\WINDOWS7 2021-07-25 18:33 - 2021-06-12 11:13 - 000000000 __SHD C:\$360Section 2021-07-23 11:09 - 2009-07-14 05:20 - 000000000 ____D C:\Program Files\Common Files\Microsoft Shared 2021-07-22 20:33 - 2021-06-12 09:09 - 000000000 ____D C:\ProgramData\360Safe 2021-07-22 18:55 - 2021-06-12 11:32 - 000000000 ____D C:\Program Files (x86)\MiniTool Partition Wizard Professional Edition 8.1.1 2021-07-19 10:53 - 2021-06-13 20:19 - 000000000 ____D C:\Users\WINDOWS7\AppData\Roaming\Messenger for Desktop 2021-07-18 17:21 - 2021-06-13 16:01 - 000000000 ____D C:\Program Files\SUPERAntiSpyware 2021-07-17 13:57 - 2021-06-13 20:18 - 000000000 ____D C:\Users\WINDOWS7\AppData\Local\messengerfordesktop-updater 2021-07-16 14:49 - 2021-06-12 11:37 - 000000000 ____D C:\Users\WINDOWS7\AppData\Roaming\uTorrent 2021-07-16 07:16 - 2009-07-14 05:20 - 000000000 ___HD C:\Windows\system32\GroupPolicy 2021-07-13 16:11 - 2021-06-12 09:28 - 000000000 ____D C:\Windows\SysWOW64\ZoneLabs ==================== Files in the root of some directories ======== 2021-06-12 09:07 - 2021-08-11 16:35 - 000018305 _____ () C:\Users\WINDOWS7\IP_Log_Data.js 2021-06-12 10:00 - 2021-08-11 16:35 - 000032269 _____ () C:\Users\WINDOWS7\Network_Meter_Data.js 2021-06-12 09:06 - 2021-06-15 08:33 - 000000627 _____ () C:\Users\WINDOWS7\AppData\Roaming\All CPU MeterV3_Settings.ini 2021-06-12 09:09 - 2021-06-15 08:34 - 000001099 _____ () C:\Users\WINDOWS7\AppData\Roaming\Network Meter_Settings.ini 2021-06-12 09:20 - 2021-08-09 18:33 - 000000025 _____ () C:\Users\WINDOWS7\AppData\Roaming\Network Meter_Usage.ini 2021-06-12 10:52 - 2021-06-13 15:21 - 000000600 _____ () C:\Users\WINDOWS7\AppData\Roaming\winscp.rnd 2021-07-17 06:20 - 2021-07-17 06:21 - 000000000 _____ () C:\Users\WINDOWS7\AppData\Local\{CDC5B202-6B7A-4F48-B7E8-3CCB9C7F8FEE} ==================== SigCheck ============================ (There is no automatic fix for files that do not pass verification.) ATTENTION: ==> Could not access BCD. -> ==================== End of FRST.txt ======================== evo su i additonal.txt sa farbar a Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11-08-2021 Ran by WINDOWS7 (11-08-2021 16:52:16) Running from C:\Users\WINDOWS7\Desktop Windows 7 Home Premium Service Pack 1 (X64) (2021-06-12 06:52:42) Boot Mode: Normal ========================================================== ==================== Accounts: ============================= (If an entry is included in the fixlist, it will be removed.) Administrator (S-1-5-21-2949800482-660259357-3550381597-500 - Administrator - Disabled) Guest (S-1-5-21-2949800482-660259357-3550381597-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-2949800482-660259357-3550381597-1002 - Limited - Enabled) WINDOWS7 (S-1-5-21-2949800482-660259357-3550381597-1000 - Administrator - Enabled) => C:\Users\WINDOWS7 ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: ZoneAlarm Extreme Security Antivirus (Enabled - Out of date) {D61596DF-D219-341C-49B3-AD30538CBC5B} AV: 360 Total Security (Enabled - Up to date) {FFDC234A-CE9B-08F9-406B-F876951CE066} AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: 360 Total Security (Enabled - Up to date) {44BDC2AE-E8A1-0777-7ADB-C304EE9BAADB} FW: ZoneAlarm Extreme Security Firewall (Enabled) {EE2E17FA-9876-3544-62EC-0405AD5FFB20} ==================== Installed Programs ====================== (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) 360 Total Security (HKLM-x32\...\360TotalSecurity) (Version: 10.8.0.1371 - 360 Security Center) 8GadgetPack (HKLM-x32\...\{5D6CB70E-6FA7-4E5E-8A12-06612313E671}) (Version: 18.0.0 - Helmut Buhler) Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.344 - Adobe) AOMEI Backupper Technician Plus (HKLM-x32\...\{A83692F5-3E9B-4E95-9E7E-B5DF5536CE9D}_is1) (Version: - AOMEI Technology Co., Ltd.) AOMEI Partition Assistant 8.4 (HKLM-x32\...\{04F850ED-FD0F-4ED1-AE1B-4498165BF3D2}_is1) (Version: - AOMEI Technology Co., Ltd.) BackRex Internet Explorer Backup (HKLM-x32\...\BackRex Internet Explorer Backup) (Version: 2.8 - BackRex Software) CCleaner (HKLM\...\CCleaner) (Version: 5.19 - Piriform) ClipClip (HKLM-x32\...\{C48941DB-7DFB-4273-86E5-1FD54ECAAF0B}_is1) (Version: 2.3.4704 - Vitzo LLC) Driver Booster 3.0 (HKLM-x32\...\Driver Booster_is1) (Version: 3.0 - IObit) EaseUS Data Recovery Wizard (HKLM\...\EaseUS Data Recovery Wizard_is1) (Version: - EaseUS) EaseUS Partition Master 13.5 (HKLM-x32\...\EaseUS Partition Master Trial Edition_is1) (Version: - EaseUS) f.lux (HKU\S-1-5-21-2949800482-660259357-3550381597-1000\...\Flux) (Version: - f.lux Software LLC) Folder Guard (HKLM\...\Folder Guard) (Version: 18.1 - WinAbility® Software Corporation) Google Drive (HKLM\...\{6BBAE539-2232-434A-A4E5-9A33560C6283}) (Version: 50.0.11.0 - Google LLC) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.31.5 - Google Inc.) Hidden Hard Disk Sentinel PRO (HKLM-x32\...\Hard Disk Sentinel_is1) (Version: - HDS) HDIPCamera V1.0.1.2 (HKLM-x32\...\HDIPCamera_is1) (Version: - HDIPCamera) HP Color LaserJet Pro MFP M176 (HKLM-x32\...\{7ef5f914-a8e1-4f35-8b91-5f5a3ea16c55}) (Version: 8.0.13171.911 - Hewlett-Packard) hppM176LaserJetService (HKLM-x32\...\{C79999B9-4522-470B-8A71-2355AA0C8B9B}) (Version: 001.032.00682 - Hewlett-Packard) Hidden hpStatusAlerts (HKLM-x32\...\{6470E292-3B55-41DC-B5EB-91C34C5ACB5D}) (Version: 080.040.00171 - Hewlett Packard) Hidden hpStatusAlertsM176 (HKLM-x32\...\{B4AE968B-2F8B-4239-8441-EED6244F7977}) (Version: 080.046.00111 - Hewlett-Packard) Hidden IPCamSetup (HKLM-x32\...\{02C39DE9-B03A-4FE7-89F9-61E224FE65CC}) (Version: 1.00.0000 - FOSCAM) IPCWebComponents 3.3.0.31 (HKLM-x32\...\{4740E1B2-51CF-4083-8976-D6B3B5A5064F}_is1) (Version: 3.3.0.31 - ) LiveYes Version 1.0.0 (HKLM-x32\...\{B659A0AE-7339-41DF-A7BA-81EBEBF91321}_is1) (Version: - ) Messenger for Desktop (HKU\S-1-5-21-2949800482-660259357-3550381597-1000\...\{4e2a4302-5df4-5868-a685-36c844414384}) (Version: 3.0.15 - MFD LABS LTD) Microsoft .NET Framework 4.8 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.8.03761 - Microsoft Corporation) Microsoft .NET Framework 4.8 (Русский) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1049) (Version: 4.8.03761 - Корпорация Майкрософт) Microsoft Office Language Interface Pack 2007 - cрпски (ћирилица) (HKLM-x32\...\{95120000-00FF-0C1A-0000-0000000FF1CE}) (Version: 12.0.4518.1048 - Microsoft Corporation) Microsoft Office Language Interface Pack 2010 - српски (HKLM\...\{95140000-00FF-0C1A-1000-0000000FF1CE}) (Version: 14.0.4763.1029 - Microsoft Corporation) Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.4763.1000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) MiniTool Partition Wizard Professional Edition 8.1.1 (HKLM-x32\...\{2991A446-D356-44EC-930A-42E8B02A67C0}_is1) (Version: - MiniTool Solution Ltd.) Mozilla Firefox 56.0.2 (x86 sr) (HKLM-x32\...\Mozilla Firefox 56.0.2 (x86 sr)) (Version: 56.0.2 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 56.0.2 - Mozilla) NetSurveillance (HKLM-x32\...\NetSurveillance) (Version: - ) NetTime (HKLM-x32\...\NetTime_is1) (Version: - Mark Griffiths) PowerISO (HKLM-x32\...\PowerISO) (Version: 6.6 - Power Software Ltd) Process Lasso (HKLM-x32\...\ProcessLasso) (Version: 8.9.8.6 - Bitsum) QianXin Version 1.0.5 (HKLM-x32\...\{B659A0AE-7339-41DF-A7BA-81EBEB201801}_is1) (Version: - Huiyun Inc.) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: - ) R-Undelete 6.6 (HKLM-x32\...\R-Undelete 6.6NSIS) (Version: 6.6.175721 - R-Tools Technology Inc.) SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 10.0.1228 - SUPERAntiSpyware.com) Total Commander 64+32-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.51 - Ghisler Software GmbH) UC_5.0.1.1 (HKLM-x32\...\UC) (Version: 5.0.1.1 - UC(China) Co., Ltd. ) Unchecky v1.2 (HKLM-x32\...\Unchecky) (Version: 1.2 - Reason Software Company Inc.) Viber (HKLM-x32\...\{419040E4-BDAE-44E1-A8E6-11E6BDBC5607}) (Version: 15.4.1.1 - Viber Media S.a.r.l) Hidden Viber (HKU\S-1-5-21-2949800482-660259357-3550381597-1000\...\{2a4642db-0c0a-49da-b171-3b4ea3b4458d}) (Version: 15.4.1.1 - 2010-2021 Viber Media S.a.r.l) VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.8 - VideoLAN) WinRAR 6.01 (64-битни) (HKLM\...\WinRAR archiver) (Version: 6.01.0 - win.rar GmbH) ZoneAlarm Extreme Security (HKLM-x32\...\ZoneAlarm Extreme Security) (Version: 9.1.008.001 - Check Point, Inc) ==================== Custom CLSID (Whitelisted): ============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) CustomCLSID: HKU\S-1-5-21-2949800482-660259357-3550381597-1000_Classes\CLSID\{083f5ae0-2b0a-11dd-bd0b-0800200c9a66}\InprocServer32 -> C:\Users\WINDOWS7\AppData\Local\Microsoft\Windows Sidebar\Gadgets\All_CPU_Meter.gadget\CoreTempReader.dll (AddGadgets IT -> ) CustomCLSID: HKU\S-1-5-21-2949800482-660259357-3550381597-1000_Classes\CLSID\{0B7AD8D3-094A-44DE-A348-83C6C3FA347C}\InprocServer32 -> C:\Users\WINDOWS7\AppData\Local\Microsoft\Windows Sidebar\Gadgets\Clipboarder.gadget\Release\Clipboarder64.dll (Helmut Buhler) [File not signed] CustomCLSID: HKU\S-1-5-21-2949800482-660259357-3550381597-1000_Classes\CLSID\{0E7BE950-4ACC-47CB-834B-41A8B96BBFF9}\InprocServer32 -> C:\Users\WINDOWS7\AppData\Local\Microsoft\Windows Sidebar\Gadgets\Sidebar7.gadget\Release\Sidebar7.64.dll (Helmut Buhler) [File not signed] CustomCLSID: HKU\S-1-5-21-2949800482-660259357-3550381597-1000_Classes\CLSID\{25815CC0-43F4-3C75-8C3A-A139D9ADE740}\InprocServer32 -> C:\Users\WINDOWS7\AppData\Local\Microsoft\Windows Sidebar\Gadgets\Network_Meter_V8.4.gadget\netlib.dll (AddGadgets IT -> Jonathan Abbott) ShellIconOverlayIdentifiers: [ GoogleDriveCloudOverlayIconHandler] -> {A8E52322-8734-481D-A7E2-27B309EF8D56} => C:\Program Files\Google\Drive File Stream\50.0.11.0\drivefsext.dll [2021-08-09] (Google LLC -> Google, Inc.) ShellIconOverlayIdentifiers: [ GoogleDriveMirrorBlacklistedOverlayIconHandler] -> {51EF1569-67EE-4AD6-9646-E726C3FFC8A2} => C:\Program Files\Google\Drive File Stream\50.0.11.0\drivefsext.dll [2021-08-09] (Google LLC -> Google, Inc.) ShellIconOverlayIdentifiers: [ GoogleDrivePinnedOverlayIconHandler] -> {CFE8B367-77A7-41D7-9C90-75D16D7DC6B6} => C:\Program Files\Google\Drive File Stream\50.0.11.0\drivefsext.dll [2021-08-09] (Google LLC -> Google, Inc.) ShellIconOverlayIdentifiers: [ GoogleDriveProgressOverlayIconHandler] -> {C973DA94-CBDF-4E77-81D1-E5B794FBD146} => C:\Program Files\Google\Drive File Stream\50.0.11.0\drivefsext.dll [2021-08-09] (Google LLC -> Google, Inc.) ContextMenuHandlers1: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\50.0.11.0\drivefsext.dll [2021-08-09] (Google LLC -> Google, Inc.) ContextMenuHandlers1: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2016-05-25] (Power Software Limited -> Power Software Ltd) ContextMenuHandlers1: [SD360] -> {086F171D-5ED1-4ED2-B736-CFF3AD6A128E} => C:\Program Files (x86)\360\Total Security\MenuEx64.dll [2021-05-25] (Beijing Qihu Technology Co., Ltd. -> ) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2021-04-07] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2021-04-07] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers2: [Folder Guard] -> {D7D1D520-37AC-11d0-B20F-249700C10000} => C:\Program Files\Folder Guard\FGUARD64.dll [2021-06-12] (WinAbility Software Corporation -> WinAbility® Software Corporation) [File not signed] ContextMenuHandlers4: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\50.0.11.0\drivefsext.dll [2021-08-09] (Google LLC -> Google, Inc.) ContextMenuHandlers4: [Folder Guard] -> {D7D1D520-37AC-11d0-B20F-249700C10000} => C:\Program Files\Folder Guard\FGUARD64.dll [2021-06-12] (WinAbility Software Corporation -> WinAbility® Software Corporation) [File not signed] ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2016-05-25] (Power Software Limited -> Power Software Ltd) ContextMenuHandlers4: [SD360] -> {086F171D-5ED1-4ED2-B736-CFF3AD6A128E} => C:\Program Files (x86)\360\Total Security\MenuEx64.dll [2021-05-25] (Beijing Qihu Technology Co., Ltd. -> ) ContextMenuHandlers5: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\50.0.11.0\drivefsext.dll [2021-08-09] (Google LLC -> Google, Inc.) ContextMenuHandlers5: [Folder Guard] -> {D7D1D520-37AC-11d0-B20F-249700C10000} => C:\Program Files\Folder Guard\FGUARD64.dll [2021-06-12] (WinAbility Software Corporation -> WinAbility® Software Corporation) [File not signed] ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2016-05-25] (Power Software Limited -> Power Software Ltd) ContextMenuHandlers6: [SD360] -> {086F171D-5ED1-4ED2-B736-CFF3AD6A128E} => C:\Program Files (x86)\360\Total Security\MenuEx64.dll [2021-05-25] (Beijing Qihu Technology Co., Ltd. -> ) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2021-04-07] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2021-04-07] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (Whitelisted) ==================== ==================== Shortcuts & WMI ======================== (The entries could be listed to be restored or removed.) WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\":: WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99] WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate] Shortcut: C:\Users\WINDOWS7\Links\Локални диск (C).lnk -> C:\ () <==== Cyrillic Shortcut: C:\Users\WINDOWS7\Links\Локални диск (D).lnk -> D:\ () <==== Cyrillic Shortcut: C:\Users\WINDOWS7\Links\Рачунар.lnk -> [LFPO :i+00v1SPS0%G`! 0GC=0@9!8AB5<A:0 D0AF8:;01SPSjc(=Oe)::{20D04FE0-3AEA-1069-A2D8-08002B30309D}] <==== Cyrillic Shortcut: C:\Users\WINDOWS7\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\WinRAR помоћ.lnk -> C:\Program Files\WinRAR\WinRAR.chm () <==== Cyrillic Shortcut: C:\Users\WINDOWS7\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\Упутство за RAR конзолу.lnk -> C:\Program Files\WinRAR\Rar.txt () <==== Cyrillic Shortcut: C:\Users\WINDOWS7\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\Шта је ново у последњој верзији.lnk -> C:\Program Files\WinRAR\WhatsNew.txt () <==== Cyrillic ==================== Loaded Modules (Whitelisted) ============= 2021-08-10 18:45 - 1980-01-01 00:00 - 000422912 _____ () [File not signed] C:\Program Files\Google\Drive File Stream\50.0.11.0\swiftshader\libegl.dll 2021-08-10 18:45 - 1980-01-01 00:00 - 002767360 _____ () [File not signed] C:\Program Files\Google\Drive File Stream\50.0.11.0\swiftshader\libglesv2.dll 2021-06-12 09:29 - 2009-10-12 18:15 - 000245760 _____ () [File not signed] C:\Windows\SysWOW64\ZoneLabs\avsys\kavess.dll 2021-06-12 09:29 - 2009-10-12 18:15 - 000010240 _____ () [File not signed] C:\Windows\SysWOW64\ZoneLabs\avsys\Queue.dll 2021-06-11 23:42 - 2007-09-02 13:57 - 000069632 _____ () [File not signed] D:\Program Files\RocketDock\RocketDock.dll 2021-06-11 20:23 - 2011-10-30 16:02 - 000033792 _____ () [File not signed] D:\ROADAPP\32bit\RBHook.dll 2021-06-12 09:09 - 2021-05-25 12:35 - 000023120 _____ () C:\??\C:\Program Files (x86)\360\Total Security\safemon\SafeWrapper.dll 2021-06-12 11:23 - 2015-05-21 14:32 - 002403504 _____ (Aomei Technology Co., Limited -> ) [File not signed] C:\Program Files (x86)\AOMEI Backupper\QtCore4.dll 2021-06-12 11:23 - 2015-05-21 14:32 - 000068784 _____ (Aomei Technology Co., Limited -> Microsoft Corporation) [File not signed] C:\Program Files (x86)\AOMEI Backupper\vcomp.dll 2009-10-14 15:13 - 2009-10-14 15:13 - 001699840 _____ (Check Point Software Technologies) [File not signed] C:\Program Files\CheckPoint\ZAForceField\ISWRCS.dll 2009-09-01 18:40 - 2009-09-01 18:40 - 008826368 _____ (Check Point Software Technologies) [File not signed] C:\Program Files\CheckPoint\ZAForceField\trustchecker\bin\samplesites.dll 2021-06-12 09:04 - 2016-01-21 16:37 - 000536064 _____ (Helmut Buhler) [File not signed] C:\Program Files\Windows Sidebar\dwmapi.dll 2009-09-16 18:44 - 2009-09-16 18:44 - 000153088 _____ (Hewlett Packard) [File not signed] C:\Windows\System32\hptcpmib.dll 2009-09-16 18:45 - 2009-09-16 18:45 - 000331264 _____ (Hewlett Packard) [File not signed] C:\Windows\System32\HpTcpMon.dll 2009-09-16 11:44 - 2009-09-16 11:44 - 000132096 _____ (Hewlett Packard) [File not signed] C:\Windows\System32\hpzjrd01.dll 2021-06-12 09:29 - 2009-10-12 18:15 - 000018432 _____ (Kaspersky Lab) [File not signed] C:\Windows\SysWOW64\ZoneLabs\avsys\arj.ppl 2021-06-12 09:29 - 2009-10-12 18:15 - 000012288 _____ (Kaspersky Lab) [File not signed] C:\Windows\SysWOW64\ZoneLabs\avsys\avlib.ppl 2021-06-12 09:29 - 2009-10-12 18:15 - 000073728 _____ (Kaspersky Lab) [File not signed] C:\Windows\SysWOW64\ZoneLabs\avsys\avpgs.ppl 2021-06-12 09:29 - 2009-10-12 18:15 - 000039424 _____ (Kaspersky Lab) [File not signed] C:\Windows\SysWOW64\ZoneLabs\avsys\avpmgr.ppl 2021-06-12 09:29 - 2009-10-12 18:15 - 000249856 _____ (Kaspersky Lab) [File not signed] C:\Windows\SysWOW64\ZoneLabs\avsys\avs.ppl 2021-06-12 09:29 - 2009-10-12 18:15 - 000019968 _____ (Kaspersky Lab) [File not signed] C:\Windows\SysWOW64\ZoneLabs\avsys\avspm.ppl 2021-06-12 09:29 - 2009-10-12 18:15 - 000212992 _____ (Kaspersky Lab) [File not signed] C:\Windows\SysWOW64\ZoneLabs\avsys\bases\kavbase.kdl 2021-06-12 09:29 - 2009-10-12 18:15 - 000064000 _____ (Kaspersky Lab) [File not signed] C:\Windows\SysWOW64\ZoneLabs\avsys\bases\kavsys.kdl 2021-06-12 09:29 - 2009-10-12 18:15 - 000210432 _____ (Kaspersky Lab) [File not signed] C:\Windows\SysWOW64\ZoneLabs\avsys\bases\kjim.kdl 2021-06-12 09:29 - 2009-10-12 18:15 - 000771072 _____ (Kaspersky Lab) [File not signed] C:\Windows\SysWOW64\ZoneLabs\avsys\bases\klavemu.kdl 2021-06-12 09:29 - 2009-07-02 17:55 - 000047104 _____ (Kaspersky Lab) [File not signed] C:\Windows\SysWOW64\ZoneLabs\avsys\bases\mark.kdl 2021-06-12 09:29 - 2009-10-12 18:15 - 000248320 _____ (Kaspersky Lab) [File not signed] C:\Windows\SysWOW64\ZoneLabs\avsys\bases\qscan.kdl 2021-06-12 09:29 - 2009-04-29 18:01 - 000085504 _____ (Kaspersky Lab) [File not signed] C:\Windows\SysWOW64\ZoneLabs\avsys\bases\webav.kdl 2021-06-12 09:29 - 2009-10-12 18:15 - 000013824 _____ (Kaspersky Lab) [File not signed] C:\Windows\SysWOW64\ZoneLabs\avsys\btimages.ppl 2021-06-12 09:29 - 2009-10-12 18:15 - 000065536 _____ (Kaspersky Lab) [File not signed] C:\Windows\SysWOW64\ZoneLabs\avsys\cab.ppl 2021-06-12 09:29 - 2009-10-12 18:15 - 000077824 _____ (Kaspersky Lab) [File not signed] C:\Windows\SysWOW64\ZoneLabs\avsys\crpthlpr.ppl 2021-06-12 09:29 - 2009-10-12 18:15 - 000006656 _____ (Kaspersky Lab) [File not signed] C:\Windows\SysWOW64\ZoneLabs\avsys\dmap.ppl 2021-06-12 09:29 - 2009-10-12 18:15 - 000050176 _____ (Kaspersky Lab) [File not signed] C:\Windows\SysWOW64\ZoneLabs\avsys\dtreg.ppl 2021-06-12 09:29 - 2009-10-12 18:15 - 000013312 _____ (Kaspersky Lab) [File not signed] C:\Windows\SysWOW64\ZoneLabs\avsys\filemap.ppl 2021-06-12 09:29 - 2009-10-12 18:15 - 000010240 _____ (Kaspersky Lab) [File not signed] C:\Windows\SysWOW64\ZoneLabs\avsys\fsdrvplg.ppl 2021-06-12 09:29 - 2009-10-12 18:15 - 000073728 _____ (Kaspersky Lab) [File not signed] C:\Windows\SysWOW64\ZoneLabs\avsys\FSSync.dll 2021-06-12 09:29 - 2009-10-12 18:15 - 000005632 _____ (Kaspersky Lab) [File not signed] C:\Windows\SysWOW64\ZoneLabs\avsys\hashcont.ppl 2021-06-12 09:29 - 2009-10-12 18:15 - 000008192 _____ (Kaspersky Lab) [File not signed] C:\Windows\SysWOW64\ZoneLabs\avsys\hashmd5.ppl 2021-06-12 09:29 - 2009-10-12 18:15 - 000005120 _____ (Kaspersky Lab) [File not signed] C:\Windows\SysWOW64\ZoneLabs\avsys\hccmp.ppl 2021-06-12 09:29 - 2009-10-12 18:15 - 000090112 _____ (Kaspersky Lab) [File not signed] C:\Windows\SysWOW64\ZoneLabs\avsys\icheck3.ppl 2021-06-12 09:29 - 2009-10-12 18:15 - 000010240 _____ (Kaspersky Lab) [File not signed] C:\Windows\SysWOW64\ZoneLabs\avsys\iwgen.ppl 2021-06-12 09:29 - 2009-10-12 18:15 - 000135168 _____ (Kaspersky Lab) [File not signed] C:\Windows\SysWOW64\ZoneLabs\avsys\klsrlsvc.ppl 2021-06-12 09:29 - 2009-10-12 18:15 - 000025600 _____ (Kaspersky Lab) [File not signed] C:\Windows\SysWOW64\ZoneLabs\avsys\lha.ppl 2021-06-12 09:29 - 2009-10-12 18:15 - 000061440 _____ (Kaspersky Lab) [File not signed] C:\Windows\SysWOW64\ZoneLabs\avsys\mailmsg.ppl 2021-06-12 09:29 - 2009-10-12 18:15 - 000057344 _____ (Kaspersky Lab) [File not signed] C:\Windows\SysWOW64\ZoneLabs\avsys\mdb.ppl 2021-06-12 09:29 - 2009-10-12 18:15 - 000019456 _____ (Kaspersky Lab) [File not signed] C:\Windows\SysWOW64\ZoneLabs\avsys\minizip.ppl 2021-06-12 09:29 - 2009-10-12 18:15 - 000065536 _____ (Kaspersky Lab) [File not signed] C:\Windows\SysWOW64\ZoneLabs\avsys\mkavio.ppl 2021-06-12 09:29 - 2009-10-12 18:15 - 000081920 _____ (Kaspersky Lab) [File not signed] C:\Windows\SysWOW64\ZoneLabs\avsys\msoe.ppl 2021-06-12 09:29 - 2009-10-12 18:15 - 000098304 _____ (Kaspersky Lab) [File not signed] C:\Windows\SysWOW64\ZoneLabs\avsys\nfio.ppl 2021-06-12 09:29 - 2009-10-12 18:15 - 000077824 _____ (Kaspersky Lab) [File not signed] C:\Windows\SysWOW64\ZoneLabs\avsys\oas.ppl 2021-06-12 09:29 - 2009-10-12 18:15 - 000737280 _____ (Kaspersky Lab) [File not signed] C:\Windows\SysWOW64\ZoneLabs\avsys\params.ppl 2021-06-12 09:29 - 2009-10-12 18:15 - 000163840 _____ (Kaspersky Lab) [File not signed] C:\Windows\SysWOW64\ZoneLabs\avsys\prloader.dll 2021-06-12 09:29 - 2009-10-12 18:15 - 000520192 _____ (Kaspersky Lab) [File not signed] C:\Windows\SysWOW64\ZoneLabs\avsys\procmon.ppl 2021-06-12 09:29 - 2009-10-12 18:15 - 000073728 _____ (Kaspersky Lab) [File not signed] C:\Windows\SysWOW64\ZoneLabs\avsys\propmap.ppl 2021-06-12 09:29 - 2009-10-12 18:15 - 000098304 _____ (Kaspersky Lab) [File not signed] C:\Windows\SysWOW64\ZoneLabs\avsys\rar.ppl 2021-06-12 09:29 - 2009-10-12 18:15 - 000010752 _____ (Kaspersky Lab) [File not signed] C:\Windows\SysWOW64\ZoneLabs\avsys\regmap.ppl 2021-06-12 09:29 - 2009-10-12 18:15 - 000018432 _____ (Kaspersky Lab) [File not signed] C:\Windows\SysWOW64\ZoneLabs\avsys\report.ppl 2021-06-12 09:29 - 2009-10-12 18:15 - 000073728 _____ (Kaspersky Lab) [File not signed] C:\Windows\SysWOW64\ZoneLabs\avsys\reportdb.ppl 2021-06-12 09:29 - 2009-10-12 18:15 - 000030720 _____ (Kaspersky Lab) [File not signed] C:\Windows\SysWOW64\ZoneLabs\avsys\schedule.ppl 2021-06-12 09:29 - 2009-10-12 18:15 - 000020480 _____ (Kaspersky Lab) [File not signed] C:\Windows\SysWOW64\ZoneLabs\avsys\thpimpl.ppl 2021-06-12 09:29 - 2009-10-12 18:15 - 000011264 _____ (Kaspersky Lab) [File not signed] C:\Windows\SysWOW64\ZoneLabs\avsys\timer.ppl 2021-06-12 09:29 - 2009-10-12 18:15 - 000131072 _____ (Kaspersky Lab) [File not signed] C:\Windows\SysWOW64\ZoneLabs\avsys\tm.ppl 2021-06-12 09:29 - 2009-10-12 18:15 - 000016384 _____ (Kaspersky Lab) [File not signed] C:\Windows\SysWOW64\ZoneLabs\avsys\uniarc.ppl 2021-06-12 09:29 - 2009-10-12 18:15 - 000020992 _____ (Kaspersky Lab) [File not signed] C:\Windows\SysWOW64\ZoneLabs\avsys\volenum.ppl 2021-06-12 09:29 - 2009-10-12 18:15 - 000025088 _____ (Kaspersky Lab) [File not signed] C:\Windows\SysWOW64\ZoneLabs\avsys\wdiskio.ppl 2021-06-12 09:29 - 2009-10-12 18:15 - 000027648 _____ (Kaspersky Lab) [File not signed] C:\Windows\SysWOW64\ZoneLabs\avsys\winreg.ppl 2021-06-12 09:29 - 2009-10-12 18:15 - 000348160 _____ (Kaspersky Lab.) [File not signed] C:\Windows\SysWOW64\ZoneLabs\avsys\kave8.dll 2009-09-16 18:45 - 2009-09-16 18:45 - 000317440 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\HPTcpMUI.dll 2021-06-12 09:14 - 2021-06-12 09:19 - 003002056 _____ (WinAbility Software Corporation -> WinAbility® Software Corporation) [File not signed] C:\Program Files\Folder Guard\FGuard64.dll ==================== Alternate Data Streams (Whitelisted) ======== ==================== Safe Mode (Whitelisted) ================== (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\vsmon => ""="Service" ==================== Association (Whitelisted) ================= (If an entry is included in the fixlist, the registry item will be restored to default or removed.) HKU\FileCache\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.exe\UserChoice => HKU\FileCache\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.reg\UserChoice => HKU\FileCache\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.bat\UserChoice => HKU\FileCache\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.cmd\UserChoice => HKU\FileCache\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.com\UserChoice => HKU\FileCache\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.scr\UserChoice => HKU\FileCache\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.lnk\UserChoice => ==================== Internet Explorer (Version 11) (Whitelisted) ========== HKU\S-1-5-21-2949800482-660259357-3550381597-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.rs/ SearchScopes: HKU\S-1-5-21-2949800482-660259357-3550381597-1000 -> {11890CC5-792A-4922-A4CF-186D9CC228EC} URL = hxxps://search.yahoo.com/search?p={searchTerms}&intl=us&fr=chrf-iryus&type=ypi_znlrm_00_00_ie BHO: SafeMon Class -> {B69F34DD-F0F9-42DC-9EDD-957187DA688D} -> C:\Program Files (x86)\360\Total Security\safemon\safemon64.dll [2021-05-10] (Beijing Qihu Technology Co., Ltd. -> Qihu 360 Software Co., Ltd.) Toolbar: HKU\S-1-5-21-2949800482-660259357-3550381597-1000 -> ZoneAlarm Toolbar - {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\TrustCheckerIEPlugin.dll [2009-10-14] (Check Point Software Technologies Ltd. -> Check Point Software Technologies) Handler: AutorunsDisabled - {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll [2008-05-23] (Microsoft Corporation) [File not signed] Filter: AutorunsDisabled - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL [2010-02-28] (Microsoft Corporation -> Microsoft Corporation) Filter-x32: AutorunsDisabled - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL [2010-02-28] (Microsoft Corporation -> Microsoft Corporation) (If an entry is included in the fixlist, it will be removed from the registry.) IE trusted site: HKU\S-1-5-21-2949800482-660259357-3550381597-1000\...\google.rs -> hxxps://www.google.rs IE trusted site: HKU\S-1-5-21-2949800482-660259357-3550381597-1000\...\google.rs -> hxxp://www.google.rs IE trusted site: HKU\S-1-5-21-2949800482-660259357-3550381597-1000\...\hola.org -> hxxp://hola.org ==================== Hosts content: ========================= (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2009-07-14 04:34 - 2021-08-11 16:32 - 000002221 ____R C:\Windows\system32\drivers\etc\hosts 127.0.0.1 bitsumactivationserver.com 0.0.0.0 iobit 0.0.0.0 iobit 0.0.0.0 iobit.com 0.0.0.0 iobit.com 0.0.0.0 0.0.0.0 # fix for traceroute and netstat display anomaly 0.0.0.0 tracking.opencandy.com.s3.amazonaws.com 0.0.0.0 media.opencandy.com 0.0.0.0 cdn.opencandy.com 0.0.0.0 tracking.opencandy.com 0.0.0.0 api.opencandy.com 0.0.0.0 api.recommendedsw.com 0.0.0.0 rp.yefeneri2.com 0.0.0.0 os.yefeneri2.com 0.0.0.0 os2.yefeneri2.com 0.0.0.0 installer.betterinstaller.com 0.0.0.0 installer.filebulldog.com 0.0.0.0 d3oxtn1x3b8d7i.cloudfront.net 0.0.0.0 inno.bisrv.com 0.0.0.0 nsis.bisrv.com 0.0.0.0 cdn.file2desktop.com 0.0.0.0 cdn.goateastcach.us 0.0.0.0 cdn.guttastatdk.us 0.0.0.0 cdn.inskinmedia.com 0.0.0.0 cdn.insta.oibundles2.com 0.0.0.0 cdn.insta.playbryte.com 0.0.0.0 cdn.llogetfastcach.us 0.0.0.0 cdn.montiera.com 0.0.0.0 cdn.msdwnld.com 0.0.0.0 cdn.mypcbackup.com ==================== Other Areas =========================== (Currently there is no automatic fix for this section.) HKU\S-1-5-21-2949800482-660259357-3550381597-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\WINDOWS7\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 1.1.1.1 - 1.0.0.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0) Windows Firewall is disabled. ==================== MSCONFIG/TASK MANAGER disabled items == ==================== FirewallRules (Whitelisted) ================ (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [{E2E9FF51-4B82-4A82-B023-17B9CB953957}] => (Allow) C:\Program Files (x86)\360\Total Security\softmgr\360InstantSetup.exe (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) FirewallRules: [{9B0DB713-9223-4548-A637-3AAE4DC2D020}] => (Allow) C:\Program Files (x86)\360\Total Security\softmgr\360InstantSetup.exe (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) FirewallRules: [{406BCE5E-34A7-47E9-9174-7D03DECFE644}] => (Allow) C:\Program Files (x86)\360\Total Security\360SkinView.exe (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) FirewallRules: [{1E1616C0-1EEF-4689-852D-4811C92B2F48}] => (Allow) C:\Program Files (x86)\360\Total Security\360SkinView.exe (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) FirewallRules: [{8D3453DA-E4EE-4734-93B3-2413043C8C39}] => (Allow) C:\Program Files (x86)\360\Total Security\360TsLiveUpd.exe (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) FirewallRules: [{5E8B0FFA-C7CD-4E8E-8E6E-CD7698851D3B}] => (Allow) C:\Program Files (x86)\360\Total Security\360TsLiveUpd.exe (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) FirewallRules: [{122311AD-D0FC-4F04-BAC1-A6D75FDFCD55}] => (Allow) C:\Users\WINDOWS7\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc.) [File not signed] FirewallRules: [{72829C48-454E-4DD7-8B86-61B77BA5D2EE}] => (Allow) C:\Users\WINDOWS7\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc.) [File not signed] FirewallRules: [{ADE6870F-0CF5-4211-B428-660E114DF302}] => (Allow) C:\Program Files (x86)\HP\HP Color LaserJet Pro MFP M176\Bin\HPNetworkCommunicatorCom.exe (VistaName -> Hewlett-Packard Co.) [File not signed] FirewallRules: [{F76614AD-EA83-4ECA-9F39-14800DF4A8F5}] => (Allow) C:\Program Files (x86)\HP\HP Color LaserJet Pro MFP M176\bin\EWSProxy.exe (VistaName -> Hewlett-Packard Co.) [File not signed] FirewallRules: [{09EF5D06-0A4A-4598-B5DB-D6B074C0EAC9}] => (Allow) C:\Program Files (x86)\360\Total Security\LiveUpdate360.exe (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) FirewallRules: [{1B24A480-717A-4098-96F2-E79629A288C8}] => (Allow) C:\Program Files (x86)\360\Total Security\LiveUpdate360.exe (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) FirewallRules: [{F39FCEEA-C85F-4D9A-A28C-FE31873FCFB6}] => (Allow) C:\Program Files (x86)\360\Total Security\Utils\360AdvToolExecutor.exe (QIHU 360 SOFTWARE CO. LIMITED -> ) FirewallRules: [{02CC37B7-9AE9-410D-A64F-8D7012A83F9C}] => (Allow) C:\Program Files (x86)\360\Total Security\Utils\360AdvToolExecutor.exe (QIHU 360 SOFTWARE CO. LIMITED -> ) FirewallRules: [{B84E9551-D181-4907-B5E0-B0FFED70DDAD}] => (Allow) C:\Program Files (x86)\360\Total Security\360TsLiveUpd.exe (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) FirewallRules: [{902FAF93-EE70-4A16-BAE6-9180D50073C2}] => (Allow) C:\Program Files (x86)\360\Total Security\360TsLiveUpd.exe (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) FirewallRules: [{72A7EAAE-D719-4E78-A3E2-9DD8CD71556A}] => (Allow) C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) FirewallRules: [{6494AE5F-8801-431F-9DF3-90BF28EAF0A3}] => (Allow) C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) FirewallRules: [{4BAEA8C8-B44F-4DF8-A2DC-F5B91BA6B8A5}] => (Allow) C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) FirewallRules: [{C87A05CB-A15F-4052-AACD-8165E4798FB5}] => (Allow) C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) ==================== Restore Points ========================= 09-08-2021 15:01:12 Scheduled System Checkpoint made by System Restore Point Creator 10-08-2021 15:00:45 Scheduled System Checkpoint made by System Restore Point Creator 11-08-2021 16:44:40 Scheduled System Checkpoint made by System Restore Point Creator ==================== Faulty Device Manager Devices ============ ==================== Event log errors: ======================== Application errors: ================== Error: (08/11/2021 04:35:36 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Име апликације која је проузроковала грешку: Explorer.EXE, верзија: 6.1.7601.23537, временска ознака: 0x57c44efe име модула који је проузроковао грешку: msieftp.dll, верзија: 6.1.7601.23403, временска ознака: 0x56f58b16 код изузетка: 0xc0000005 помак грешке: 0x0000000000018c6c ID процеса који је проузроковао грешку: 0x698 време почетка апликације која је проузроковала грешку: 0x01c646e996749f6c путања апликације која је проузроковала грешку: C:\Windows\Explorer.EXE путања модула који је проузроковао грешку: C:\Windows\system32\msieftp.dll ID извештаја: 63e66ca8-fab1-11eb-bd59-00030d5392ae Error: (08/11/2021 04:34:25 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (08/10/2021 09:47:24 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (08/10/2021 01:08:51 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: The program RadioSure.exe version 2.2.1004.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel. Process ID: fa4 Start Time: 01d78dd7efa6cf9d Termination Time: 78 Application Path: D:\ROADAPP\Radio Sure\Appdata\RadioSure.exe Report Id: 52be4550-f9cb-11eb-8099-00030d5392ae System errors: ============= Error: (08/11/2021 04:36:30 PM) (Source: NetBT) (EventID: 4321) (User: ) Description: The name "WINDOWS7-PC :0" could not be registered on the interface with IP address 192.168.1.12. The computer with the IP address 192.168.1.11 did not allow the name to be claimed by this computer. Error: (08/11/2021 04:35:54 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: The Windows Media Player Network Sharing Service service failed to start due to the following error: Access is denied. Error: (08/11/2021 04:35:08 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY) Description: The following fatal alert was received: 70. Error: (08/11/2021 04:32:56 PM) (Source: NetBT) (EventID: 4321) (User: ) Description: The name "WINDOWS7-PC :0" could not be registered on the interface with IP address 192.168.1.12. The computer with the IP address 192.168.1.11 did not allow the name to be claimed by this computer. Error: (08/11/2021 04:32:49 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: The following boot-start or system-start driver(s) failed to load: cdrom Error: (08/11/2021 04:32:48 PM) (Source: NetBT) (EventID: 4321) (User: ) Description: The name "WINDOWS7-PC :20" could not be registered on the interface with IP address 192.168.1.12. The computer with the IP address 192.168.1.11 did not allow the name to be claimed by this computer. Error: (08/11/2021 04:32:48 PM) (Source: Server) (EventID: 2505) (User: ) Description: The server could not bind to the transport \Device\NetBT_Tcpip_{61B4E13F-914A-4D6E-841A-6809222A79BD} because another computer on the network has the same name. The server could not start. Error: (03/14/2006 12:02:04 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: The HP LaserJet Service service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion. ==================== Memory info =========================== BIOS: FUJITSU SIEMENS ACRSYS - 6040000 07/27/2006 Motherboard: FUJITSU SIEMENS AMILO Pa 1510 Processor: AMD Turion(tm) 64 X2 Mobile Technology TL-50 Percentage of memory in use: 90% Total physical RAM: 2430.17 MB Available physical RAM: 222.62 MB Total Virtual: 4858.49 MB Available Virtual: 1666.86 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:101.22 GB) (Free:55.2 GB) NTFS Drive d: () (Fixed) (Total:196.53 GB) (Free:121.06 GB) NTFS Drive g: (Google Drive) (Fixed) (Total:17 GB) (Free:3.68 GB) FAT32 \\?\Volume{203aeb74-cb95-11eb-89a9-806e6f6e6963}\ (System Reserved) (Fixed) (Total:0.34 GB) (Free:0.3 GB) NTFS ==================== MBR & Partition Table ==================== ========================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 298.1 GB) (Disk ID: 13B59606) Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=101.2 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=196.5 GB) - (Type=07 NTFS) ==================== End of Addition.txt =======================

Profil

Sass Drake Poslao: 12 Avg 2021 17:03 Idi na vrh
offline Sass Drake Anti Malware Fighter Rank 2 Pridružio: 26 Avg 2010 Poruke: 10622 Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! U logovima ne vidim tragove aktivnog malwarea. Problemi koje si naveo ukazuju na hardverski problem. Za početak pokušaj sa čišćenjem prašine unutar laptopa.

Profil

Jovac.Loca Poslao: 13 Avg 2021 14:35 Idi na vrh
offline Jovac.Loca Novi MyCity građanin Pridružio: 11 Avg 2021 Poruke: 2	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! ociscen je sinoc danas opet isto

Profil

MyCity » Ambulanta » zamolio bi vas za proveru postovani

Ko je trenutno na forumu

Ukupno su 1065 korisnika na forumu :: 38 registrovanih, 6 sakrivenih i 1021 gosta :: [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:: Korisnici trenutno na forumu: A.R.Chafee.Jr., aramis s, bladesu, Bobrock1, Boris90, BORUTUS, CikaKURE, Denaya, Dimitrije Paunovic, DPera, Draganeli, Excalibur13, Georgius, Jeremiah, Kaplar2, Kriglord, Kubovac, laurusri, LUDI, MB120mm, mean_machine, mercedesamg, Metanoja, milenko crazy north, Nemanja.M, Parker, pein, Povratak1912, powSrb, procesor, sasa87, stegonosa, styg, Tvrtko I, Viktor Petrenko, voja64, zastavnik, ZetaMan

Svaki korisnik ovog sajta je odgovoran za sadržaj svoje poruke koju objavi na sajtu. Sajt se odriče svake odgovornosti za sadržaj tih poruka.
Postavljanjem vaše poruke ili vašeg autorskog dela na ovaj sajt, saglasni ste da ovaj sajt postaje distributer vašeg dela, i odričete se mogućnosti njegovog povlačenja ili brisanja, bez saglasnosti uprave sajta.
Distribucija sadržaja sa ovog sajta je dozvoljena samo u nekomercijalne svrhe, uz obaveznu napomenu da je sadržaj preuzet sa ovog sajta, i uz obavezno navođenje adrese MyCity sajta. Za sve ostale vidove distribucije obavezni ste da prethodno zatražite odobrenje od vlasnika MyCity sajta.
MyCity pokrenuo, administrira i razvija Predrag Damnjanović, a o uređenju sajta se brine MyCity Tim.
Ukoliko želite da nas kontaktirate kliknite ovde.
Naši sajtovi:
Vesti, Vojni forum, Zaštita od virusa, TekstPesme.rs

This content is licensed under a Creative Commons License.
Based on phpBB 2, translated by Simke, designed by