Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Preventívna Tbag
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Preventívna Tbag
Dobry den.
Stiahnite si na plochu nastroj AdwCleaner, link. na stiahnutie tu: https://toolslib.net/downloads/finish/1/
Pred spustenim nastroja povypinajte vsetke beziace okna programov, to su vsetke beziace programy pod desktopom.
Kliknite pravym tlacidlom mysi na program -> spustit ako Administrator.
Pokracujte kliknutim na tlacidlo Prehladaj teraz (Scan now) a pockajte, kym sa system doskenuje.
Po skene nechajte oznacene vsetky chlieviky, pripadne najdene hrozieby a pokracujte v dolnom pravom rohu tlacidlom Vycistit Teraz (Clean and Repair).
Po restartovani PC sa spusti nastroj AdwCleaner, kliknite na Zobrazit soubor protokolu.
Spusti sa log, jeho obsah skopirujte sem.
Stiahnite si na plochu nastroj AdwCleaner, link. na stiahnutie tu: https://toolslib.net/downloads/finish/1/Pred spustenim nastroja povypinajte vsetke beziace okna programov, to su vsetke beziace programy pod desktopom.
Kliknite pravym tlacidlom mysi na program -> spustit ako Administrator.
Pokracujte kliknutim na tlacidlo Prehladaj teraz (Scan now) a pockajte, kym sa system doskenuje.
Po skene nechajte oznacene vsetky chlieviky, pripadne najdene hrozieby a pokracujte v dolnom pravom rohu tlacidlom Vycistit Teraz (Clean and Repair).
Po restartovani PC sa spusti nastroj AdwCleaner, kliknite na Zobrazit soubor protokolu.
Spusti sa log, jeho obsah skopirujte sem.
► Vyšla moja nová kniha BOTNETY! 
Informácie o nej nájdete tu: >> BOTNETY <<
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT <<
----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Informácie o nej nájdete tu: >> BOTNETY << ¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << ----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Re: Preventívna Tbag
# -------------------------------
# Malwarebytes AdwCleaner 7.4.1.0
# -------------------------------
# Build: 09-04-2019
# Database: 2019-08-27.1 (Local)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 10-15-2019
# Duration: 00:00:05
# OS: Windows 10 Home
# Cleaned: 30
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
Deleted C:\Program Files (x86)\Seznam.cz
Deleted C:\ProgramData\Application Data\Lavasoft\Web Companion
Deleted C:\ProgramData\Lavasoft\Web Companion
Deleted C:\Users\Tibor\AppData\Roaming\Seznam.cz
***** [ Files ] *****
Deleted C:\Users\Tibor\Favorites\Booking.com.url
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
Deleted HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\thebrighttag.com
Deleted HKCU\Software\Seznam.cz
Deleted HKLM\SOFTWARE\Classes\.URL\OpenWithList\Torch.exe
Deleted HKLM\SOFTWARE\Classes\.bmp\OpenWithList\Torch.exe
Deleted HKLM\SOFTWARE\Classes\.dib\OpenWithList\Torch.exe
Deleted HKLM\SOFTWARE\Classes\.gif\OpenWithList\Torch.exe
Deleted HKLM\SOFTWARE\Classes\.htm\OpenWithList\Torch.exe
Deleted HKLM\SOFTWARE\Classes\.html\OpenWithList\Torch.exe
Deleted HKLM\SOFTWARE\Classes\.ico\OpenWithList\Torch.exe
Deleted HKLM\SOFTWARE\Classes\.jfif\OpenWithList\Torch.exe
Deleted HKLM\SOFTWARE\Classes\.jpe\OpenWithList\Torch.exe
Deleted HKLM\SOFTWARE\Classes\.jpg\OpenWithList\Torch.exe
Deleted HKLM\SOFTWARE\Classes\.mfp\OpenWithList\Torch.exe
Deleted HKLM\SOFTWARE\Classes\.pdf\OpenWithList\Torch.exe
Deleted HKLM\SOFTWARE\Classes\.png\OpenWithList\Torch.exe
Deleted HKLM\SOFTWARE\Classes\.shtml\OpenWithList\Torch.exe
Deleted HKLM\SOFTWARE\Classes\.webm\OpenWithList\Torch.exe
Deleted HKLM\SOFTWARE\Classes\.xht\OpenWithList\Torch.exe
Deleted HKLM\SOFTWARE\Classes\.xhtml\OpenWithList\Torch.exe
Deleted HKLM\SOFTWARE\Classes\Applications\TorchSetup-r0-n-bc.exe
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32|seznam-listicka-distribuce
Deleted HKLM\Software\Wow6432Node\IObit\Driver Booster
Deleted HKLM\Software\Wow6432Node\Lavasoft\Web Companion
***** [ Chromium (and derivatives) ] *****
Deleted Avira SafeSearch Plus
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Preinstalled Software ] *****
Deleted Preinstalled.HPJumpStartApps Registry HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnce|Application Restart #1
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner_Debug.log - [20278 octets] - [15/10/2019 15:20:19]
AdwCleaner[S00].txt - [3755 octets] - [15/10/2019 15:21:40]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
# Malwarebytes AdwCleaner 7.4.1.0
# -------------------------------
# Build: 09-04-2019
# Database: 2019-08-27.1 (Local)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 10-15-2019
# Duration: 00:00:05
# OS: Windows 10 Home
# Cleaned: 30
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
Deleted C:\Program Files (x86)\Seznam.cz
Deleted C:\ProgramData\Application Data\Lavasoft\Web Companion
Deleted C:\ProgramData\Lavasoft\Web Companion
Deleted C:\Users\Tibor\AppData\Roaming\Seznam.cz
***** [ Files ] *****
Deleted C:\Users\Tibor\Favorites\Booking.com.url
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
Deleted HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\thebrighttag.com
Deleted HKCU\Software\Seznam.cz
Deleted HKLM\SOFTWARE\Classes\.URL\OpenWithList\Torch.exe
Deleted HKLM\SOFTWARE\Classes\.bmp\OpenWithList\Torch.exe
Deleted HKLM\SOFTWARE\Classes\.dib\OpenWithList\Torch.exe
Deleted HKLM\SOFTWARE\Classes\.gif\OpenWithList\Torch.exe
Deleted HKLM\SOFTWARE\Classes\.htm\OpenWithList\Torch.exe
Deleted HKLM\SOFTWARE\Classes\.html\OpenWithList\Torch.exe
Deleted HKLM\SOFTWARE\Classes\.ico\OpenWithList\Torch.exe
Deleted HKLM\SOFTWARE\Classes\.jfif\OpenWithList\Torch.exe
Deleted HKLM\SOFTWARE\Classes\.jpe\OpenWithList\Torch.exe
Deleted HKLM\SOFTWARE\Classes\.jpg\OpenWithList\Torch.exe
Deleted HKLM\SOFTWARE\Classes\.mfp\OpenWithList\Torch.exe
Deleted HKLM\SOFTWARE\Classes\.pdf\OpenWithList\Torch.exe
Deleted HKLM\SOFTWARE\Classes\.png\OpenWithList\Torch.exe
Deleted HKLM\SOFTWARE\Classes\.shtml\OpenWithList\Torch.exe
Deleted HKLM\SOFTWARE\Classes\.webm\OpenWithList\Torch.exe
Deleted HKLM\SOFTWARE\Classes\.xht\OpenWithList\Torch.exe
Deleted HKLM\SOFTWARE\Classes\.xhtml\OpenWithList\Torch.exe
Deleted HKLM\SOFTWARE\Classes\Applications\TorchSetup-r0-n-bc.exe
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32|seznam-listicka-distribuce
Deleted HKLM\Software\Wow6432Node\IObit\Driver Booster
Deleted HKLM\Software\Wow6432Node\Lavasoft\Web Companion
***** [ Chromium (and derivatives) ] *****
Deleted Avira SafeSearch Plus
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Preinstalled Software ] *****
Deleted Preinstalled.HPJumpStartApps Registry HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnce|Application Restart #1
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner_Debug.log - [20278 octets] - [15/10/2019 15:20:19]
AdwCleaner[S00].txt - [3755 octets] - [15/10/2019 15:21:40]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
Re: Preventívna Tbag
Dobre, teraz poprosim o nove logy FRST + ADDITION.
► Vyšla moja nová kniha BOTNETY! Informácie o nej nájdete tu: >> BOTNETY <<
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT <<
----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Informácie o nej nájdete tu: >> BOTNETY << ¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << ----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Re: Preventívna Tbag
Do poznamkoveho bloku skopirujte obsah dole:
Poznamkovy blok ulozte pod nazvom fixlist.txt do umiestnenia kde je FRST.
Spustite FRST a odkliknite tlacidlo: Fix
Vykona sa funkcionalita po ktorej sa pocitac rebootuje. Po reboote sem vlozte obsah logu: fixlog.txt ulozeneho v umiestneni FRST.
Kód: Vybrat vše
C:\Program Files (x86)\Skillbrains
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
ShortcutTarget: TREZOR Bridge.lnk -> C:\Program Files (x86)\TREZOR Bridge\trezord.exe (No File)
Task: {628509E7-797C-45E4-91CF-890978204BF0} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>)
Task: C:\WINDOWS\Tasks\update-S-1-5-21-2813316739-561623387-2885406294-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
Task: {9477B6CA-8EB4-472F-9BD7-BE71AA367F09} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1236048 2019-07-24] (Adobe Inc. -> Adobe Systems)
Task: {AE7542A2-3701-460C-9F55-D111D0AF8F3C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-06-06] (Google Inc -> Google Inc.)
Task: {E67F29FD-90AE-46D1-B753-0D2A0F9E4717} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335872 2018-10-10] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
BHO: Spyware Terminator 2015 Internet Guard -> {82A76710-4F98-4957-92BE-99648A4E2475} -> C:\PROGRA~2\SPYWAR~1\STINTE~2.DLL => No File
CHR NewTab: Default -> Active:"chrome-extension://ipmkfpcnmccejididiaagpgchgjfajgp/html/newtab.html"
2019-10-14 21:20 - 2019-10-14 21:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin
2019-10-14 21:20 - 2019-10-14 21:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2019-10-14 21:20 - 2019-10-14 21:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2019-10-14 21:20 - 2019-10-14 21:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2019-10-14 21:20 - 2019-10-14 21:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2019-10-14 21:20 - 2019-10-14 21:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2019-10-14 21:20 - 2019-10-14 21:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2019-10-14 21:20 - 2019-10-14 21:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2019-10-14 21:20 - 2019-10-14 21:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin
2019-10-14 21:20 - 2019-10-14 21:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin
2019-10-14 21:20 - 2019-10-14 21:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin
2019-10-14 21:20 - 2019-10-14 21:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2019-10-15 15:35 - 2017-08-18 11:10 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2019-10-14 12:43 - 2019-07-07 10:51 - 000000400 _____ C:\WINDOWS\Tasks\update-sys.job
ContextMenuHandlers1: [BB FlashBack 2] -> {A8065B9E-193F-4797-B62D-8F6321E7FCCB} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
FirewallRules: [{0D4CA271-898F-4398-8851-AD7809A61464}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerREC\ApowerREC.exe No File
FirewallRules: [{1DFACEDE-E424-4D23-80F9-DA4377B3EDC9}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerREC\ApowerREC.exe No File
FirewallRules: [{2AA73DAD-8CFD-4F3A-8013-3E5001DDBEC6}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe No File
FirewallRules: [{25C0749E-6508-447D-A090-9000D9DF5488}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe No File
FirewallRules: [UDP Query User{8D2DBBBD-8413-412A-952C-D546818392D9}C:\totalcmd\totalcmd64.exe] => (Allow) C:\totalcmd\totalcmd64.exe No File
FirewallRules: [TCP Query User{0A0FECAA-2A27-4C66-B73A-EAAF1B7E000E}C:\totalcmd\totalcmd64.exe] => (Allow) C:\totalcmd\totalcmd64.exe No File
FirewallRules: [{44AE9089-5F61-4E93-A3E4-24B87FA4056E}] => (Allow) C:\Users\Tibor\AppData\Roaming\uTorrent\uTorrent.exe No File
FirewallRules: [{6290D120-A7F5-472E-AF92-8DB85D7B9E68}] => (Allow) C:\Users\Tibor\AppData\Roaming\uTorrent\uTorrent.exe No File
FirewallRules: [UDP Query User{51ED6DDB-893E-41F1-9D49-1C1F56939F99}C:\users\tibor\desktop\warcraft iii\war3.exe] => (Allow) C:\users\tibor\desktop\warcraft iii\war3.exe No File
FirewallRules: [TCP Query User{06DAB347-44F9-4D7C-900A-292AFAB32830}C:\users\tibor\desktop\warcraft iii\war3.exe] => (Allow) C:\users\tibor\desktop\warcraft iii\war3.exe No File
FirewallRules: [UDP Query User{6E9CC744-A32A-4ADF-BA0B-D3CF9820F323}C:\users\tibor\appdata\roaming\utorrent\updates\3.5.0_44294.exe] => (Allow) C:\users\tibor\appdata\roaming\utorrent\updates\3.5.0_44294.exe No File
FirewallRules: [TCP Query User{C3FEE831-35D5-49CB-9CDA-88194F30D8A3}C:\users\tibor\appdata\roaming\utorrent\updates\3.5.0_44294.exe] => (Allow) C:\users\tibor\appdata\roaming\utorrent\updates\3.5.0_44294.exe No File
FirewallRules: [{26BBEECB-5AB5-4A8E-982F-49D1399DC2E9}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe No File
FirewallRules: [{D386FD5B-4DCD-449A-AF10-FB811562DCD0}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe No File
FirewallRules: [{5DCE04F9-644D-4AE9-8B1E-19DC2614E839}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{798C54D3-4EE2-440B-BD88-48D26C0D4433}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{A13509E7-AF06-4DFB-98A2-C84C4EC036DE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe No File
FirewallRules: [{F794FD44-7AAB-4BE5-8857-81CF421871A0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe No File
FirewallRules: [TCP Query User{DCE8F2A4-4851-4E67-8700-386F5B77D79E}C:\users\tibor\appdata\roaming\utorrent\updates\3.5.3_44358.exe] => (Block) C:\users\tibor\appdata\roaming\utorrent\updates\3.5.3_44358.exe No File
FirewallRules: [UDP Query User{E8875E9E-207E-434D-A1EE-BCB51658B68B}C:\users\tibor\appdata\roaming\utorrent\updates\3.5.3_44358.exe] => (Block) C:\users\tibor\appdata\roaming\utorrent\updates\3.5.3_44358.exe No File
FirewallRules: [TCP Query User{79090EF7-5A2C-4806-9707-279528F0C808}C:\users\tibor\appdata\roaming\utorrent\updates\3.5.1_44332.exe] => (Allow) C:\users\tibor\appdata\roaming\utorrent\updates\3.5.1_44332.exe No File
FirewallRules: [UDP Query User{44F910BA-4D23-4352-BD1F-6C98BCD9A36A}C:\users\tibor\appdata\roaming\utorrent\updates\3.5.1_44332.exe] => (Allow) C:\users\tibor\appdata\roaming\utorrent\updates\3.5.1_44332.exe No File
EmptyTemp:Spustite FRST a odkliknite tlacidlo: Fix
Vykona sa funkcionalita po ktorej sa pocitac rebootuje. Po reboote sem vlozte obsah logu: fixlog.txt ulozeneho v umiestneni FRST.
► Vyšla moja nová kniha BOTNETY! Informácie o nej nájdete tu: >> BOTNETY <<
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT <<
----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Informácie o nej nájdete tu: >> BOTNETY << ¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << ----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Re: Preventívna Tbag
Fix result of Farbar Recovery Scan Tool (x64) Version: 30-10-2019
Ran by Tibor (30-10-2019 18:16:13) Run:1
Running from C:\Users\Tibor\Desktop
Loaded Profiles: Tibor (Available Profiles: Tibor)
Boot Mode: Normal
==============================================
fixlist content:
*****************
C:\Program Files (x86)\Skillbrains
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
ShortcutTarget: TREZOR Bridge.lnk -> C:\Program Files (x86)\TREZOR Bridge\trezord.exe (No File)
Task: {628509E7-797C-45E4-91CF-890978204BF0} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>)
Task: C:\WINDOWS\Tasks\update-S-1-5-21-2813316739-561623387-2885406294-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
Task: {9477B6CA-8EB4-472F-9BD7-BE71AA367F09} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1236048 2019-07-24] (Adobe Inc. -> Adobe Systems)
Task: {AE7542A2-3701-460C-9F55-D111D0AF8F3C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-06-06] (Google Inc -> Google Inc.)
Task: {E67F29FD-90AE-46D1-B753-0D2A0F9E4717} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335872 2018-10-10] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
BHO: Spyware Terminator 2015 Internet Guard -> {82A76710-4F98-4957-92BE-99648A4E2475} -> C:\PROGRA~2\SPYWAR~1\STINTE~2.DLL => No File
CHR NewTab: Default -> Active:"chrome-extension://ipmkfpcnmccejididiaagpgchgjfajgp/html/newtab.html"
2019-10-14 21:20 - 2019-10-14 21:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin
2019-10-14 21:20 - 2019-10-14 21:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2019-10-14 21:20 - 2019-10-14 21:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2019-10-14 21:20 - 2019-10-14 21:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2019-10-14 21:20 - 2019-10-14 21:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2019-10-14 21:20 - 2019-10-14 21:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2019-10-14 21:20 - 2019-10-14 21:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2019-10-14 21:20 - 2019-10-14 21:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2019-10-14 21:20 - 2019-10-14 21:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin
2019-10-14 21:20 - 2019-10-14 21:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin
2019-10-14 21:20 - 2019-10-14 21:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin
2019-10-14 21:20 - 2019-10-14 21:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2019-10-15 15:35 - 2017-08-18 11:10 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2019-10-14 12:43 - 2019-07-07 10:51 - 000000400 _____ C:\WINDOWS\Tasks\update-sys.job
ContextMenuHandlers1: [BB FlashBack 2] -> {A8065B9E-193F-4797-B62D-8F6321E7FCCB} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
FirewallRules: [{0D4CA271-898F-4398-8851-AD7809A61464}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerREC\ApowerREC.exe No File
FirewallRules: [{1DFACEDE-E424-4D23-80F9-DA4377B3EDC9}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerREC\ApowerREC.exe No File
FirewallRules: [{2AA73DAD-8CFD-4F3A-8013-3E5001DDBEC6}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe No File
FirewallRules: [{25C0749E-6508-447D-A090-9000D9DF5488}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe No File
FirewallRules: [UDP Query User{8D2DBBBD-8413-412A-952C-D546818392D9}C:\totalcmd\totalcmd64.exe] => (Allow) C:\totalcmd\totalcmd64.exe No File
FirewallRules: [TCP Query User{0A0FECAA-2A27-4C66-B73A-EAAF1B7E000E}C:\totalcmd\totalcmd64.exe] => (Allow) C:\totalcmd\totalcmd64.exe No File
FirewallRules: [{44AE9089-5F61-4E93-A3E4-24B87FA4056E}] => (Allow) C:\Users\Tibor\AppData\Roaming\uTorrent\uTorrent.exe No File
FirewallRules: [{6290D120-A7F5-472E-AF92-8DB85D7B9E68}] => (Allow) C:\Users\Tibor\AppData\Roaming\uTorrent\uTorrent.exe No File
FirewallRules: [UDP Query User{51ED6DDB-893E-41F1-9D49-1C1F56939F99}C:\users\tibor\desktop\warcraft iii\war3.exe] => (Allow) C:\users\tibor\desktop\warcraft iii\war3.exe No File
FirewallRules: [TCP Query User{06DAB347-44F9-4D7C-900A-292AFAB32830}C:\users\tibor\desktop\warcraft iii\war3.exe] => (Allow) C:\users\tibor\desktop\warcraft iii\war3.exe No File
FirewallRules: [UDP Query User{6E9CC744-A32A-4ADF-BA0B-D3CF9820F323}C:\users\tibor\appdata\roaming\utorrent\updates\3.5.0_44294.exe] => (Allow) C:\users\tibor\appdata\roaming\utorrent\updates\3.5.0_44294.exe No File
FirewallRules: [TCP Query User{C3FEE831-35D5-49CB-9CDA-88194F30D8A3}C:\users\tibor\appdata\roaming\utorrent\updates\3.5.0_44294.exe] => (Allow) C:\users\tibor\appdata\roaming\utorrent\updates\3.5.0_44294.exe No File
FirewallRules: [{26BBEECB-5AB5-4A8E-982F-49D1399DC2E9}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe No File
FirewallRules: [{D386FD5B-4DCD-449A-AF10-FB811562DCD0}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe No File
FirewallRules: [{5DCE04F9-644D-4AE9-8B1E-19DC2614E839}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{798C54D3-4EE2-440B-BD88-48D26C0D4433}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{A13509E7-AF06-4DFB-98A2-C84C4EC036DE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe No File
FirewallRules: [{F794FD44-7AAB-4BE5-8857-81CF421871A0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe No File
FirewallRules: [TCP Query User{DCE8F2A4-4851-4E67-8700-386F5B77D79E}C:\users\tibor\appdata\roaming\utorrent\updates\3.5.3_44358.exe] => (Block) C:\users\tibor\appdata\roaming\utorrent\updates\3.5.3_44358.exe No File
FirewallRules: [UDP Query User{E8875E9E-207E-434D-A1EE-BCB51658B68B}C:\users\tibor\appdata\roaming\utorrent\updates\3.5.3_44358.exe] => (Block) C:\users\tibor\appdata\roaming\utorrent\updates\3.5.3_44358.exe No File
FirewallRules: [TCP Query User{79090EF7-5A2C-4806-9707-279528F0C808}C:\users\tibor\appdata\roaming\utorrent\updates\3.5.1_44332.exe] => (Allow) C:\users\tibor\appdata\roaming\utorrent\updates\3.5.1_44332.exe No File
FirewallRules: [UDP Query User{44F910BA-4D23-4352-BD1F-6C98BCD9A36A}C:\users\tibor\appdata\roaming\utorrent\updates\3.5.1_44332.exe] => (Allow) C:\users\tibor\appdata\roaming\utorrent\updates\3.5.1_44332.exe No File
EmptyTemp:
*****************
"C:\Program Files (x86)\Skillbrains" folder move:
Could not move "C:\Program Files (x86)\Skillbrains" => Scheduled to move on reboot.
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
C:\Program Files (x86)\TREZOR Bridge\trezord.exe => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{628509E7-797C-45E4-91CF-890978204BF0}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{628509E7-797C-45E4-91CF-890978204BF0}" => removed successfully
C:\WINDOWS\System32\Tasks\update-sys => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\update-sys" => removed successfully
C:\WINDOWS\Tasks\update-S-1-5-21-2813316739-561623387-2885406294-1001.job => moved successfully
C:\WINDOWS\Tasks\update-sys.job => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{9477B6CA-8EB4-472F-9BD7-BE71AA367F09}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9477B6CA-8EB4-472F-9BD7-BE71AA367F09}" => removed successfully
C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Adobe Acrobat Update Task" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{AE7542A2-3701-460C-9F55-D111D0AF8F3C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AE7542A2-3701-460C-9F55-D111D0AF8F3C}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E67F29FD-90AE-46D1-B753-0D2A0F9E4717}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E67F29FD-90AE-46D1-B753-0D2A0F9E4717}" => removed successfully
C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Adobe Flash Player Updater" => removed successfully
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{82A76710-4F98-4957-92BE-99648A4E2475} => removed successfully
HKLM\Software\Classes\CLSID\{82A76710-4F98-4957-92BE-99648A4E2475} => removed successfully
"Chrome NewTab" => removed successfully
C:\WINDOWS\system32\DrtmAuth9.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth8.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth7.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth6.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth5.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth4.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth3.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth2.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth12.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth11.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth10.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth1.bin => moved successfully
C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat => moved successfully
"C:\WINDOWS\Tasks\update-sys.job" => not found
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\BB FlashBack 2 => removed successfully
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{0D4CA271-898F-4398-8851-AD7809A61464}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1DFACEDE-E424-4D23-80F9-DA4377B3EDC9}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2AA73DAD-8CFD-4F3A-8013-3E5001DDBEC6}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{25C0749E-6508-447D-A090-9000D9DF5488}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{8D2DBBBD-8413-412A-952C-D546818392D9}C:\totalcmd\totalcmd64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{0A0FECAA-2A27-4C66-B73A-EAAF1B7E000E}C:\totalcmd\totalcmd64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{44AE9089-5F61-4E93-A3E4-24B87FA4056E}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6290D120-A7F5-472E-AF92-8DB85D7B9E68}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{51ED6DDB-893E-41F1-9D49-1C1F56939F99}C:\users\tibor\desktop\warcraft iii\war3.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{06DAB347-44F9-4D7C-900A-292AFAB32830}C:\users\tibor\desktop\warcraft iii\war3.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{6E9CC744-A32A-4ADF-BA0B-D3CF9820F323}C:\users\tibor\appdata\roaming\utorrent\updates\3.5.0_44294.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{C3FEE831-35D5-49CB-9CDA-88194F30D8A3}C:\users\tibor\appdata\roaming\utorrent\updates\3.5.0_44294.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{26BBEECB-5AB5-4A8E-982F-49D1399DC2E9}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D386FD5B-4DCD-449A-AF10-FB811562DCD0}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5DCE04F9-644D-4AE9-8B1E-19DC2614E839}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{798C54D3-4EE2-440B-BD88-48D26C0D4433}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A13509E7-AF06-4DFB-98A2-C84C4EC036DE}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F794FD44-7AAB-4BE5-8857-81CF421871A0}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{DCE8F2A4-4851-4E67-8700-386F5B77D79E}C:\users\tibor\appdata\roaming\utorrent\updates\3.5.3_44358.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{E8875E9E-207E-434D-A1EE-BCB51658B68B}C:\users\tibor\appdata\roaming\utorrent\updates\3.5.3_44358.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{79090EF7-5A2C-4806-9707-279528F0C808}C:\users\tibor\appdata\roaming\utorrent\updates\3.5.1_44332.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{44F910BA-4D23-4352-BD1F-6C98BCD9A36A}C:\users\tibor\appdata\roaming\utorrent\updates\3.5.1_44332.exe" => removed successfully
=========== EmptyTemp: ==========
BITS transfer queue => 10510336 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 25519748 B
Java, Flash, Steam htmlcache => 99606415 B
Windows/system/drivers => 3456274 B
Edge => 15885 B
Chrome => 15998164 B
Firefox => 1182731510 B
Opera => 363389056 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 1805 B
LocalService => 41223 B
NetworkService => 50737 B
Tibor => 39655950 B
RecycleBin => 33049291 B
EmptyTemp: => 1.7 GB temporary data Removed.
================================
Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 30-10-2019 18:23:36)
C:\Program Files (x86)\Skillbrains => Is moved successfully
==== End of Fixlog 18:23:36 ====
Ran by Tibor (30-10-2019 18:16:13) Run:1
Running from C:\Users\Tibor\Desktop
Loaded Profiles: Tibor (Available Profiles: Tibor)
Boot Mode: Normal
==============================================
fixlist content:
*****************
C:\Program Files (x86)\Skillbrains
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
ShortcutTarget: TREZOR Bridge.lnk -> C:\Program Files (x86)\TREZOR Bridge\trezord.exe (No File)
Task: {628509E7-797C-45E4-91CF-890978204BF0} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>)
Task: C:\WINDOWS\Tasks\update-S-1-5-21-2813316739-561623387-2885406294-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
Task: {9477B6CA-8EB4-472F-9BD7-BE71AA367F09} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1236048 2019-07-24] (Adobe Inc. -> Adobe Systems)
Task: {AE7542A2-3701-460C-9F55-D111D0AF8F3C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-06-06] (Google Inc -> Google Inc.)
Task: {E67F29FD-90AE-46D1-B753-0D2A0F9E4717} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335872 2018-10-10] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
BHO: Spyware Terminator 2015 Internet Guard -> {82A76710-4F98-4957-92BE-99648A4E2475} -> C:\PROGRA~2\SPYWAR~1\STINTE~2.DLL => No File
CHR NewTab: Default -> Active:"chrome-extension://ipmkfpcnmccejididiaagpgchgjfajgp/html/newtab.html"
2019-10-14 21:20 - 2019-10-14 21:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin
2019-10-14 21:20 - 2019-10-14 21:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2019-10-14 21:20 - 2019-10-14 21:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2019-10-14 21:20 - 2019-10-14 21:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2019-10-14 21:20 - 2019-10-14 21:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2019-10-14 21:20 - 2019-10-14 21:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2019-10-14 21:20 - 2019-10-14 21:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2019-10-14 21:20 - 2019-10-14 21:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2019-10-14 21:20 - 2019-10-14 21:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin
2019-10-14 21:20 - 2019-10-14 21:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin
2019-10-14 21:20 - 2019-10-14 21:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin
2019-10-14 21:20 - 2019-10-14 21:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2019-10-15 15:35 - 2017-08-18 11:10 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2019-10-14 12:43 - 2019-07-07 10:51 - 000000400 _____ C:\WINDOWS\Tasks\update-sys.job
ContextMenuHandlers1: [BB FlashBack 2] -> {A8065B9E-193F-4797-B62D-8F6321E7FCCB} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
FirewallRules: [{0D4CA271-898F-4398-8851-AD7809A61464}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerREC\ApowerREC.exe No File
FirewallRules: [{1DFACEDE-E424-4D23-80F9-DA4377B3EDC9}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerREC\ApowerREC.exe No File
FirewallRules: [{2AA73DAD-8CFD-4F3A-8013-3E5001DDBEC6}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe No File
FirewallRules: [{25C0749E-6508-447D-A090-9000D9DF5488}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe No File
FirewallRules: [UDP Query User{8D2DBBBD-8413-412A-952C-D546818392D9}C:\totalcmd\totalcmd64.exe] => (Allow) C:\totalcmd\totalcmd64.exe No File
FirewallRules: [TCP Query User{0A0FECAA-2A27-4C66-B73A-EAAF1B7E000E}C:\totalcmd\totalcmd64.exe] => (Allow) C:\totalcmd\totalcmd64.exe No File
FirewallRules: [{44AE9089-5F61-4E93-A3E4-24B87FA4056E}] => (Allow) C:\Users\Tibor\AppData\Roaming\uTorrent\uTorrent.exe No File
FirewallRules: [{6290D120-A7F5-472E-AF92-8DB85D7B9E68}] => (Allow) C:\Users\Tibor\AppData\Roaming\uTorrent\uTorrent.exe No File
FirewallRules: [UDP Query User{51ED6DDB-893E-41F1-9D49-1C1F56939F99}C:\users\tibor\desktop\warcraft iii\war3.exe] => (Allow) C:\users\tibor\desktop\warcraft iii\war3.exe No File
FirewallRules: [TCP Query User{06DAB347-44F9-4D7C-900A-292AFAB32830}C:\users\tibor\desktop\warcraft iii\war3.exe] => (Allow) C:\users\tibor\desktop\warcraft iii\war3.exe No File
FirewallRules: [UDP Query User{6E9CC744-A32A-4ADF-BA0B-D3CF9820F323}C:\users\tibor\appdata\roaming\utorrent\updates\3.5.0_44294.exe] => (Allow) C:\users\tibor\appdata\roaming\utorrent\updates\3.5.0_44294.exe No File
FirewallRules: [TCP Query User{C3FEE831-35D5-49CB-9CDA-88194F30D8A3}C:\users\tibor\appdata\roaming\utorrent\updates\3.5.0_44294.exe] => (Allow) C:\users\tibor\appdata\roaming\utorrent\updates\3.5.0_44294.exe No File
FirewallRules: [{26BBEECB-5AB5-4A8E-982F-49D1399DC2E9}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe No File
FirewallRules: [{D386FD5B-4DCD-449A-AF10-FB811562DCD0}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe No File
FirewallRules: [{5DCE04F9-644D-4AE9-8B1E-19DC2614E839}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{798C54D3-4EE2-440B-BD88-48D26C0D4433}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{A13509E7-AF06-4DFB-98A2-C84C4EC036DE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe No File
FirewallRules: [{F794FD44-7AAB-4BE5-8857-81CF421871A0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe No File
FirewallRules: [TCP Query User{DCE8F2A4-4851-4E67-8700-386F5B77D79E}C:\users\tibor\appdata\roaming\utorrent\updates\3.5.3_44358.exe] => (Block) C:\users\tibor\appdata\roaming\utorrent\updates\3.5.3_44358.exe No File
FirewallRules: [UDP Query User{E8875E9E-207E-434D-A1EE-BCB51658B68B}C:\users\tibor\appdata\roaming\utorrent\updates\3.5.3_44358.exe] => (Block) C:\users\tibor\appdata\roaming\utorrent\updates\3.5.3_44358.exe No File
FirewallRules: [TCP Query User{79090EF7-5A2C-4806-9707-279528F0C808}C:\users\tibor\appdata\roaming\utorrent\updates\3.5.1_44332.exe] => (Allow) C:\users\tibor\appdata\roaming\utorrent\updates\3.5.1_44332.exe No File
FirewallRules: [UDP Query User{44F910BA-4D23-4352-BD1F-6C98BCD9A36A}C:\users\tibor\appdata\roaming\utorrent\updates\3.5.1_44332.exe] => (Allow) C:\users\tibor\appdata\roaming\utorrent\updates\3.5.1_44332.exe No File
EmptyTemp:
*****************
"C:\Program Files (x86)\Skillbrains" folder move:
Could not move "C:\Program Files (x86)\Skillbrains" => Scheduled to move on reboot.
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
C:\Program Files (x86)\TREZOR Bridge\trezord.exe => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{628509E7-797C-45E4-91CF-890978204BF0}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{628509E7-797C-45E4-91CF-890978204BF0}" => removed successfully
C:\WINDOWS\System32\Tasks\update-sys => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\update-sys" => removed successfully
C:\WINDOWS\Tasks\update-S-1-5-21-2813316739-561623387-2885406294-1001.job => moved successfully
C:\WINDOWS\Tasks\update-sys.job => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{9477B6CA-8EB4-472F-9BD7-BE71AA367F09}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9477B6CA-8EB4-472F-9BD7-BE71AA367F09}" => removed successfully
C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Adobe Acrobat Update Task" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{AE7542A2-3701-460C-9F55-D111D0AF8F3C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AE7542A2-3701-460C-9F55-D111D0AF8F3C}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E67F29FD-90AE-46D1-B753-0D2A0F9E4717}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E67F29FD-90AE-46D1-B753-0D2A0F9E4717}" => removed successfully
C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Adobe Flash Player Updater" => removed successfully
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{82A76710-4F98-4957-92BE-99648A4E2475} => removed successfully
HKLM\Software\Classes\CLSID\{82A76710-4F98-4957-92BE-99648A4E2475} => removed successfully
"Chrome NewTab" => removed successfully
C:\WINDOWS\system32\DrtmAuth9.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth8.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth7.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth6.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth5.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth4.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth3.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth2.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth12.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth11.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth10.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth1.bin => moved successfully
C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat => moved successfully
"C:\WINDOWS\Tasks\update-sys.job" => not found
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\BB FlashBack 2 => removed successfully
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{0D4CA271-898F-4398-8851-AD7809A61464}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1DFACEDE-E424-4D23-80F9-DA4377B3EDC9}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2AA73DAD-8CFD-4F3A-8013-3E5001DDBEC6}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{25C0749E-6508-447D-A090-9000D9DF5488}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{8D2DBBBD-8413-412A-952C-D546818392D9}C:\totalcmd\totalcmd64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{0A0FECAA-2A27-4C66-B73A-EAAF1B7E000E}C:\totalcmd\totalcmd64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{44AE9089-5F61-4E93-A3E4-24B87FA4056E}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6290D120-A7F5-472E-AF92-8DB85D7B9E68}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{51ED6DDB-893E-41F1-9D49-1C1F56939F99}C:\users\tibor\desktop\warcraft iii\war3.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{06DAB347-44F9-4D7C-900A-292AFAB32830}C:\users\tibor\desktop\warcraft iii\war3.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{6E9CC744-A32A-4ADF-BA0B-D3CF9820F323}C:\users\tibor\appdata\roaming\utorrent\updates\3.5.0_44294.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{C3FEE831-35D5-49CB-9CDA-88194F30D8A3}C:\users\tibor\appdata\roaming\utorrent\updates\3.5.0_44294.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{26BBEECB-5AB5-4A8E-982F-49D1399DC2E9}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D386FD5B-4DCD-449A-AF10-FB811562DCD0}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5DCE04F9-644D-4AE9-8B1E-19DC2614E839}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{798C54D3-4EE2-440B-BD88-48D26C0D4433}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A13509E7-AF06-4DFB-98A2-C84C4EC036DE}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F794FD44-7AAB-4BE5-8857-81CF421871A0}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{DCE8F2A4-4851-4E67-8700-386F5B77D79E}C:\users\tibor\appdata\roaming\utorrent\updates\3.5.3_44358.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{E8875E9E-207E-434D-A1EE-BCB51658B68B}C:\users\tibor\appdata\roaming\utorrent\updates\3.5.3_44358.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{79090EF7-5A2C-4806-9707-279528F0C808}C:\users\tibor\appdata\roaming\utorrent\updates\3.5.1_44332.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{44F910BA-4D23-4352-BD1F-6C98BCD9A36A}C:\users\tibor\appdata\roaming\utorrent\updates\3.5.1_44332.exe" => removed successfully
=========== EmptyTemp: ==========
BITS transfer queue => 10510336 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 25519748 B
Java, Flash, Steam htmlcache => 99606415 B
Windows/system/drivers => 3456274 B
Edge => 15885 B
Chrome => 15998164 B
Firefox => 1182731510 B
Opera => 363389056 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 1805 B
LocalService => 41223 B
NetworkService => 50737 B
Tibor => 39655950 B
RecycleBin => 33049291 B
EmptyTemp: => 1.7 GB temporary data Removed.
================================
Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 30-10-2019 18:23:36)
C:\Program Files (x86)\Skillbrains => Is moved successfully
==== End of Fixlog 18:23:36 ====
Re: Preventívna Tbag
Ako je na tom pocitac?
► Vyšla moja nová kniha BOTNETY! Informácie o nej nájdete tu: >> BOTNETY <<
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT <<
----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Informácie o nej nájdete tu: >> BOTNETY << ¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << ----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Re: Preventívna Tbag
zdá sa mi stale dosť pomalý na to aký to ma výkon ale hlavne mi išlo o to sa zbavit havete ak tam nejaka bola.
Re: Preventívna Tbag
Skusal ste pocitac precistit s programom CCleaner ?
► Vyšla moja nová kniha BOTNETY! Informácie o nej nájdete tu: >> BOTNETY <<
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT <<
----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Informácie o nej nájdete tu: >> BOTNETY << ¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << ----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Přispějete na provoz fóra?