Facebook problem

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Uloguj se preko Facebooka da bi skinuo fajl:

Napisano: 01 Dec 2023 13:01

Hakovan mi profil emai adresa i sve što je moglo
Nisam mogo da povratim profil
Evo loga
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 30-11-2023 02
Ran by hranca (administrator) on HRANCA (MSI MS-7A70) (01-12-2023 12:54:51)
Running from C:\Users\hranca\Desktop\FRST64.exe
Loaded Profiles: hranca
Platform: Microsoft Windows 10 Pro Version 22H2 19045.2788 (X64) Language: English (United States)
Default browser: "C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe" --single-argument %1
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\MOM.exe
(atiesrxx.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.141\BraveCrashHandler.exe
(Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.141\BraveCrashHandler64.exe
(C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\MOM.exe ->) (Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\CCC.exe
(C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe ->) (Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\Win64\EpicWebHelper.exe <2>
(C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\EyeRest.exe
(C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\TriggerModeMonitor.exe
(C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\VideoCardMonitorII.exe
(explorer.exe ->) (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cnext.exe
(explorer.exe ->) (Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe
(explorer.exe ->) (Gaijin Network Ltd -> Gaijin) C:\Users\hranca\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <21>
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.342\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.342\GoogleCrashHandler64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7>
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\MSI\MSI Gaming Lan Manager\MSI_Gaming_Lan_Manager.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI X Boost\X_Boost.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO.,LTD.) C:\Program Files (x86)\MSI\Fast Boot\FastBoot.exe
(services.exe ->) (Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrA.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(services.exe ->) (Intel(R) Extreme Tuning Utility -> Intel(R) Corporation) C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\NisSrv.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\DPC Latency Tuner\DPCLT_Service.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\Gaming APP\GamingApp_Service.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey_Service.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey.exe
(svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Live Update\Live Update.exe
(svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Windows\SysWOW64\muachost.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [StartCN] => C:\Program Files\AMD\CNext\CNext\cnext.exe [4926664 2016-02-26] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9270560 2023-03-31] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [BraveVpnWireguardService] => C:\Program Files\BraveSoftware\Brave-Browser\Application\119.1.60.125\BraveVpnWireguardService\brave_vpn_wireguard_service.exe [10797080 2023-11-29] (Brave Software, Inc. -> Brave Software, Inc.)
HKLM-x32\...\Run: [Live Update] => C:\Program Files (x86)\MSI\Live Update\Live Update.exe [26327864 2021-08-13] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
HKLM-x32\...\Run: [Command Center] => C:\Program Files (x86)\MSI\Command Center\StartCommandCenter.exe [835760 2019-11-04] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
HKLM-x32\...\Run: [Fast Boot] => C:\Program Files (x86)\MSI\Fast Boot\StartFastBoot.exe [759120 2015-04-22] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
HKLM-x32\...\Run: [MSI Gaming Lan Manager] => C:\MSI\MSI Gaming Lan Manager\MSI_Gaming_Lan_Manager.exe [4568736 2018-12-11] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
HKLM-x32\...\Run: [X_Boost] => C:\Program Files (x86)\MSI\MSI X Boost\X_Boost.exe [4260000 2018-08-28] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-08-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-21-1395756440-2216678247-3102617891-1001\...\Run: [Gaijin.Net Updater] => C:\Users\hranca\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe [3065544 2023-11-22] (Gaijin Network Ltd -> Gaijin)
HKU\S-1-5-21-1395756440-2216678247-3102617891-1001\...\Run: [MicrosoftEdgeAutoLaunch_48EC842F0D3FB5E1EED334B6BEBE0E0F] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3896784 2023-11-27] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1395756440-2216678247-3102617891-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [37157328 2023-11-30] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-1395756440-2216678247-3102617891-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [44529568 2023-11-21] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-1395756440-2216678247-3102617891-1001\...\RunOnce: [Application Restart #2] => C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe [2746392 2023-11-29] (Brave Software, Inc. -> Brave Software, Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{052EB454-9F19-CB42-7875-807F79F311C4}] -> C:\Program Files (x86)\CCleaner Browser\Application\119.0.23105.160\Installer\chrmstp.exe [2023-11-27] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\119.0.6045.200\Installer\chrmstp.exe [2023-12-01] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\119.1.60.125\Installer\chrmstp.exe [2023-11-29] (Brave Software, Inc. -> Brave Software, Inc.)

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {117E6C4B-2B40-4886-BA25-68ADFACAAC3C} - System32\Tasks\AMD Updater => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [10219208 2016-02-26] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {A544CD4D-2E22-46AC-8BB6-B3B4E6C70AE8} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore{FD7A1B4F-C62C-4B86-9A20-C2F6D686E37D} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [175424 2023-11-06] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {B8112C82-1AA8-46A3-BF19-7BAEC43670B0} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA{87A06D8B-6D68-405D-B1F5-484AF520CDCB} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [175424 2023-11-06] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {8B1097B1-06E7-45DE-BD62-21AD0A976F4B} - System32\Tasks\CCleaner Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [3060528 2023-11-15] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
Task: {6C63B219-A742-47DE-9713-50A0592325DC} - System32\Tasks\CCleaner Browser Heartbeat Task (Logon) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [3060528 2023-11-15] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
Task: {95834A73-5C73-425B-8B43-69519BE11D33} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-11-21] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {916D3370-D199-4A35-A02E-98442F1F8691} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-11-21] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "2a05a95b-d308-4dd5-b3b2-00be792c8f2c" --version "6.18.10838" --silent
Task: {52D54491-D6EF-45AE-B003-61CE0FD02F2E} - System32\Tasks\CCleanerSkipUAC - hranca => C:\Program Files\CCleaner\CCleaner.exe [37546912 2023-11-21] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {B9C8D8C1-4CF0-4337-B015-E79C4CDAECA9} - System32\Tasks\CCleanerUpdateTaskMachineCore => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [208176 2023-11-16] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
Task: {7AA2EE55-4425-408F-94AF-9EA198E14EC1} - System32\Tasks\CCleanerUpdateTaskMachineUA => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [208176 2023-11-16] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
Task: {3AFDC641-9146-49CA-8FC5-68A9DF86585C} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\hranca\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [21737944 2023-11-22] (ESET, spol. s r.o. -> ESET)
Task: {5B96AB8A-1AA0-404C-854A-A9A9D19C069C} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\hranca\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [21737944 2023-11-22] (ESET, spol. s r.o. -> ESET)
Task: {0799FA6B-B432-475F-B5E3-BBE51A39FED4} - System32\Tasks\GoogleUpdateTaskMachineCore{7B09EE34-2D47-4C06-A979-60CE7ADA7B89} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2023-03-31] (Google LLC -> Google LLC)
Task: {3481196F-3967-41F3-B7F0-79C71ACFD45E} - System32\Tasks\GoogleUpdateTaskMachineUA{B1156345-0C21-4501-BA75-07CA042805B3} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2023-03-31] (Google LLC -> Google LLC)
Task: {5D004DBC-7474-4039-84A0-456727988ECC} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\IntelPTTEKRecertification.exe [814872 2018-03-02] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {A42E9751-FBE3-46D9-AAA4-88D03226B9BA} - System32\Tasks\Intel\Intel Telemetry 2 (x86) => C:\Program Files (x86)\Intel\Telemetry 2.0\lrio.exe [1328392 2016-03-17] (Intel(R) Software -> Intel Corporation)
Task: {568CE11C-D56C-44E3-80EF-3A0AC154601C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MpCmdRun.exe [1604680 2023-11-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {631446AD-24A3-44D5-BED2-0372214DF0C7} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MpCmdRun.exe [1604680 2023-11-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {FA04373E-931F-4828-8615-95544E02FBB6} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MpCmdRun.exe [1604680 2023-11-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F28F7C76-D97D-409A-96AB-3991C3DC8262} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MpCmdRun.exe [1604680 2023-11-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {29EC2FA7-EAED-4548-971B-68E681C1BC6E} - System32\Tasks\MSIGH_Host => C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey.exe [3354296 2019-01-09] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
Task: {F8BC3FD5-EE8A-4F61-873A-0AF44C70BD68} - System32\Tasks\MSISW_Host => C:\WINDOWS\SysWOW64\muachost.exe [1692840 2015-08-18] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.100.1
Tcpip\..\Interfaces\{9933015d-079d-4ac6-aeb7-063b2c305b31}: [DhcpNameServer] 192.168.100.1

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\hranca\AppData\Local\Microsoft\Edge\User Data\Default [2023-12-01]
Edge Extension: (Google Docs Offline) - C:\Users\hranca\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-16]
Edge Extension: (Edge relevant text changes) - C:\Users\hranca\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-10-16]

FireFox:
========
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=3 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1651.5\npCCleanerBrowserUpdate3.dll [2023-11-16] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=9 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1651.5\npCCleanerBrowserUpdate3.dll [2023-11-16] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
FF Plugin-x32: @videolan.org/vlc,version=3.0.18 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2022-10-25] (VideoLAN -> VideoLAN)

Chrome:
=======
CHR Profile: C:\Users\hranca\AppData\Local\Google\Chrome\User Data\Default [2023-12-01]
CHR Notifications: Default -> hxxps://www.facebook.com
CHR HomePage: Default -> hxxps://store.epicgames.com/en-US/
CHR Extension: (uBlock Origin) - C:\Users\hranca\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2023-11-11]
CHR Extension: (Single click Flash games access) - C:\Users\hranca\AppData\Local\Google\Chrome\User Data\Default\Extensions\cngjoacjdpnadhhjpdppcdjboiclnclc [2023-03-31]
CHR Extension: (Google Docs Offline) - C:\Users\hranca\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-16]
CHR Extension: (Save to Facebook) - C:\Users\hranca\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmfikkaogpplgnfjmbjdpalkhclendgd [2023-03-31]
CHR Extension: (Chrome Web Store Payments) - C:\Users\hranca\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-03-31]
CHR Profile: C:\Users\hranca\AppData\Local\Google\Chrome\User Data\System Profile [2023-11-11]

Brave:
=======
BRA Profile: C:\Users\hranca\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2023-12-01]
BRA Extension: (uBlock Origin) - C:\Users\hranca\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2023-11-10]
BRA Extension: (Single click Flash games access) - C:\Users\hranca\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\cngjoacjdpnadhhjpdppcdjboiclnclc [2023-11-06]
BRA Extension: (Save to Facebook) - C:\Users\hranca\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\jmfikkaogpplgnfjmbjdpalkhclendgd [2023-11-06]
BRA Extension: (Brave Ad Block Updater (Brave Ad Block First Party Filters (plaintext))) - C:\Users\hranca\AppData\Local\BraveSoftware\Brave-Browser\User Data\adcocjohghhfpidemphmcmlmhnfgikei [2023-11-29]
BRA Extension: (Brave Local Data Files Updater) - C:\Users\hranca\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2023-12-01]
BRA Extension: (Brave NTP background images) - C:\Users\hranca\AppData\Local\BraveSoftware\Brave-Browser\User Data\aoojcmojmmcbpfgoecoadbdpnagfchel [2023-11-06]
BRA Extension: (Brave Ad Block Updater (Fanboy's Mobile Notifications (plaintext))) - C:\Users\hranca\AppData\Local\BraveSoftware\Brave-Browser\User Data\bfpgedeaaibpoidldhjcknekahbikncb [2023-12-01]
BRA Extension: (Wallet Data Files Updater) - C:\Users\hranca\AppData\Local\BraveSoftware\Brave-Browser\User Data\BraveWallet [2023-11-22]
BRA Extension: (Brave Ad Block Updater (EasyList Cookie (plaintext))) - C:\Users\hranca\AppData\Local\BraveSoftware\Brave-Browser\User Data\cdbbhgbmjhfnhnmgeddbliobbofkgdhe [2023-12-01]
BRA Extension: (Brave Ad Block Updater (Regional Catalog)) - C:\Users\hranca\AppData\Local\BraveSoftware\Brave-Browser\User Data\gkboaolpopklhgplhaaiboijnklogmbc [2023-11-09]
BRA Extension: (Brave NTP Super Referrer mapping table) - C:\Users\hranca\AppData\Local\BraveSoftware\Brave-Browser\User Data\heplpbhjcbmiibdlchlanmdenffpiibo [2023-11-06]
BRA Extension: (Brave Ad Block Updater (Brave Ad Block Updater (plaintext))) - C:\Users\hranca\AppData\Local\BraveSoftware\Brave-Browser\User Data\iodkpdagapdfkphljnddpjlldadblomo [2023-12-01]
BRA Extension: (Brave Ad Block Updater (Resources)) - C:\Users\hranca\AppData\Local\BraveSoftware\Brave-Browser\User Data\mfddibmblmbccpadfndgakiopmmhebop [2023-12-01]
BRA Extension: (Brave NTP sponsored images) - C:\Users\hranca\AppData\Local\BraveSoftware\Brave-Browser\User Data\nkegnmcaaingjdpfadapphceooopdkpj [2023-12-01]
BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\hranca\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2023-11-06]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [175424 2023-11-06] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [175424 2023-11-06] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 BraveVpnService; C:\Program Files\BraveSoftware\Brave-Browser\Application\119.1.60.125\brave_vpn_helper.exe [2762264 2023-11-29] (Brave Software, Inc. -> Brave Software, Inc.)
S3 BraveVpnWireguardService; C:\Program Files\BraveSoftware\Brave-Browser\Application\119.1.60.125\BraveVpnWireguardService\brave_vpn_wireguard_service.exe [10797080 2023-11-29] (Brave Software, Inc. -> Brave Software, Inc.)
S2 ccleaner; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [208176 2023-11-16] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
S3 CCleanerBrowserElevationService; C:\Program Files (x86)\CCleaner Browser\Application\119.0.23105.160\elevation_service.exe [1838480 2023-11-15] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
S3 ccleanerm; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [208176 2023-11-16] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [1135648 2023-03-31] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934352 2023-05-01] (Epic Games Inc. -> Epic Games, Inc.)
R2 GamingApp_Service; C:\Program Files (x86)\MSI\Gaming APP\GamingApp_Service.exe [46776 2018-09-06] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
R2 GamingHotkey_Service; C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey_Service.exe [2027192 2019-01-09] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
S3 MSIClock_CC; C:\Program Files (x86)\MSI\Command Center\ClockGen\MSIClockService_x64.exe [2669240 2018-01-12] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 MSICOMM_CC; C:\Program Files (x86)\MSI\Command Center\MSICommService.exe [2343600 2019-10-22] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 MSICPU_CC; C:\Program Files (x86)\MSI\Command Center\CPU\MSICPUService_x64.exe [2725048 2017-12-22] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R2 MSICTL_CC; C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe [2255544 2018-11-19] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 MSIDDR_CC; C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe [2507952 2019-10-22] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 MSISMB_CC; C:\Program Files (x86)\MSI\Command Center\SMBus\MSISMBService.exe [2136248 2018-03-29] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 MSISuperIO_CC; C:\Program Files (x86)\MSI\Command Center\SuperIO\MSISuperIOService.exe [2740912 2019-10-22] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R2 MSI_ActiveX_Service; C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe [86688 2018-07-25] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 MSI_DPCLTSERVICE; C:\Program Files (x86)\MSI\DPC Latency Tuner\DPCLT_Service.exe [2167440 2019-04-19] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 MSI_FastBoot; C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe [113336 2017-12-21] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R2 MSI_LiveUpdate_Service; C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [2210616 2021-08-13] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [66872 2023-11-25] (Even Balance, Inc. -> )
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [285088 2023-03-22] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\NisSrv.exe [3121120 2023-11-09] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MsMpEng.exe [133704 2023-11-09] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 BraveElevationService1da130c4904fad0; "C:\Program Files\BraveSoftware\Brave-Browser\Application\119.1.60.125\elevation_service.exe" [X]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S0 amdkmafd; C:\WINDOWS\System32\drivers\amdkmafd.sys [40720 2015-07-28] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 AMDXE; C:\WINDOWS\System32\drivers\amdxe.sys [63096 2022-02-22] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
S1 ASPI32; no ImagePath
R1 cFosSpeed; C:\WINDOWS\system32\DRIVERS\cfosspeed6.sys [1570232 2018-08-13] (cFos Software GmbH -> cFos Software GmbH)
R3 cykbfltrService; C:\WINDOWS\System32\drivers\cykbfltr.sys [18944 2012-08-07] (Microsoft Windows Hardware Compatibility Publisher -> Cypress Semiconductor, Inc.)
S3 dg_ssudbus; C:\WINDOWS\System32\drivers\ssudbus2.sys [159600 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R2 ekbdflt; C:\WINDOWS\System32\drivers\ekbdflt.sys [55392 2022-12-19] (ESET, spol. s r.o. -> ESET)
R1 EneIo; C:\WINDOWS\system32\drivers\ene.sys [17624 2019-05-22] (Microsoft Windows Hardware Compatibility Publisher -> )
R3 I2cHkBurn; C:\WINDOWS\system32\drivers\I2cHkBurn.sys [41760 2015-07-27] (Feature Integration Technology -> FINTEK Corp.)
R3 MpKslf6084bf3; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{70ADF4B1-8C45-48A3-BF73-289DF6993799}\MpKslDrv.sys [263560 2023-11-30] (Microsoft Windows -> Microsoft Corporation)
S3 MTsensor; C:\WINDOWS\System32\drivers\ASACPI.sys [17280 2013-05-17] (ASUSTeK Computer Inc. -> )
R3 NTIOLib_DPC; C:\Program Files (x86)\MSI\DPC Latency Tuner\NTIOLib_X64.sys [14288 2017-03-29] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 NTIOLib_FastBoot; C:\Program Files (x86)\MSI\Fast Boot\NTIOLib_X64.sys [14288 2017-03-29] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 Serial; C:\WINDOWS\System32\drivers\wdfserial.sys [89976 2018-04-26] (LG Electronics Inc. -> LG Electronics Inc.)
S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [64880 2020-11-11] (Samsung Electronics Co., Ltd. -> QUALCOMM Incorporated)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [55744 2023-11-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [578856 2023-11-09] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105768 2023-11-09] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2023-12-01 12:54 - 2023-12-01 12:55 - 000028571 _____ C:\Users\hranca\Desktop\FRST.txt
2023-12-01 12:54 - 2023-12-01 12:55 - 000000000 ____D C:\FRST
2023-12-01 12:54 - 2023-12-01 12:54 - 000000000 ____D C:\Users\hranca\Desktop\FRST-OlderVersion
2023-12-01 11:25 - 2023-12-01 11:25 - 000000000 ____D C:\Users\hranca\Desktop\facebook
2023-12-01 09:18 - 2023-12-01 09:18 - 000003680 _____ C:\Users\hranca\Desktop\facebook.txt
2023-11-30 16:21 - 2023-11-30 16:21 - 063435036 _____ C:\Users\hranca\Downloads\22pfl3207h_12_fus_aen.zip
2023-11-30 16:21 - 2023-11-30 16:21 - 026687622 _____ C:\Users\hranca\Downloads\19pfl3507h_12_mtm_.dmg
2023-11-30 16:21 - 2023-11-30 16:21 - 019282712 _____ (PacketVideo) C:\Users\hranca\Downloads\19pfl3507h_12_wtm_.exe
2023-11-28 15:30 - 2023-11-28 15:30 - 013711869 _____ C:\Users\hranca\Downloads\Djerdan.mp4
2023-11-26 10:25 - 2023-11-26 10:25 - 000000932 _____ C:\Users\Public\Desktop\Winaero Tweaker.lnk
2023-11-26 10:25 - 2023-11-26 10:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winaero Tweaker
2023-11-26 10:25 - 2023-11-26 10:25 - 000000000 ____D C:\Program Files\Winaero Tweaker
2023-11-26 10:24 - 2023-11-26 10:24 - 003877275 _____ C:\Users\hranca\Downloads\winaerotweaker.zip
2023-11-25 21:03 - 2023-11-25 21:04 - 000000000 ____D C:\Users\hranca\AppData\Local\CallofDuty4MW
2023-11-25 20:56 - 2023-11-25 20:57 - 464345602 _____ C:\Users\hranca\Downloads\Call_of_Duty_4_Modern_Warfare_-_All_Patches_-_RAR5.rar
2023-11-25 20:52 - 2023-11-25 20:52 - 004416503 _____ C:\Users\hranca\Downloads\cod4x_client_21_1.zip
2023-11-25 20:47 - 2023-11-25 20:47 - 000001371 _____ C:\Users\hranca\Desktop\iw3mp.exe - Shortcut.lnk
2023-11-25 20:41 - 2023-11-25 20:41 - 000002030 _____ C:\Users\Public\Desktop\Call of Duty(R) 4 - Modern Warfare(TM) Multiplayer.lnk
2023-11-25 20:40 - 2023-11-25 20:40 - 000000331 _____ C:\WINDOWS\game.ini
2023-11-25 20:30 - 2023-11-25 20:30 - 000000000 ____D C:\Program Files (x86)\Activision
2023-11-25 20:28 - 2023-11-25 20:28 - 000000000 ____D C:\Users\hranca\AppData\Roaming\Macromedia
2023-11-25 19:54 - 2023-11-29 18:40 - 000103736 _____ C:\WINDOWS\SysWOW64\PnkBstrB.exe
2023-11-25 19:54 - 2023-11-25 20:47 - 000066872 _____ C:\WINDOWS\SysWOW64\PnkBstrA.exe
2023-11-25 19:54 - 2023-11-25 20:03 - 000271200 _____ C:\WINDOWS\SysWOW64\PnkBstrB.xtr
2023-11-25 19:54 - 2023-11-25 19:54 - 000271200 _____ C:\WINDOWS\SysWOW64\PnkBstrB.ex0
2023-11-25 19:54 - 2023-11-25 19:54 - 000000000 ____D C:\Users\hranca\AppData\Local\PunkBuster
2023-11-25 19:51 - 2023-11-25 19:52 - 000000000 ____D C:\WINDOWS\SysWOW64\directx
2023-11-25 12:26 - 2023-11-25 12:26 - 000000000 ____D C:\Users\hranca\AppData\Roaming\ATI
2023-11-25 12:26 - 2023-11-25 12:26 - 000000000 ____D C:\Users\hranca\AppData\Local\ATI
2023-11-25 12:26 - 2023-11-25 12:26 - 000000000 ____D C:\ProgramData\ATI
2023-11-25 12:25 - 2023-11-25 12:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2023-11-22 22:24 - 2023-11-22 22:24 - 000000000 ____D C:\Users\hranca\AppData\Roaming\BlueLabsSoftware
2023-11-22 22:14 - 2023-11-22 22:14 - 000000000 ____D C:\Users\hranca\AppData\Roaming\LibreOffice
2023-11-22 22:07 - 2023-11-22 22:07 - 000001181 _____ C:\Users\Public\Desktop\LibreOffice 7.6.lnk
2023-11-22 22:07 - 2023-11-22 22:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 7.6
2023-11-22 22:07 - 2023-11-22 22:07 - 000000000 ____D C:\Program Files\LibreOffice
2023-11-22 21:54 - 2023-12-01 11:35 - 000000000 ____D C:\Users\hranca\Desktop\New folder
2023-11-22 21:16 - 2023-11-22 21:16 - 000000000 ____D C:\Users\hranca\AppData\Local\ESET
2023-11-16 18:38 - 2023-11-27 14:27 - 000002387 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner Browser.lnk
2023-11-16 18:38 - 2023-11-27 14:27 - 000000000 ____D C:\Program Files (x86)\CCleaner Browser
2023-11-16 18:38 - 2023-11-16 18:38 - 000003842 _____ C:\WINDOWS\system32\Tasks\CCleaner Browser Heartbeat Task (Hourly)
2023-11-16 18:38 - 2023-11-16 18:38 - 000003474 _____ C:\WINDOWS\system32\Tasks\CCleanerUpdateTaskMachineUA
2023-11-16 18:38 - 2023-11-16 18:38 - 000003350 _____ C:\WINDOWS\system32\Tasks\CCleanerUpdateTaskMachineCore
2023-11-16 18:38 - 2023-11-16 18:38 - 000003258 _____ C:\WINDOWS\system32\Tasks\CCleaner Browser Heartbeat Task (Logon)
2023-11-16 18:38 - 2023-11-16 18:38 - 000000000 ____D C:\Users\hranca\AppData\Local\CCleaner Browser
2023-11-16 18:38 - 2023-11-16 18:38 - 000000000 ____D C:\ProgramData\CCleaner Browser
2023-11-10 14:07 - 2023-11-10 14:07 - 000027048 _____ (EasyAntiCheat Oy) C:\WINDOWS\system32\eac_usermode_260724571551231.dll
2023-11-06 21:03 - 2023-11-29 18:38 - 000002364 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk
2023-11-06 21:03 - 2023-11-29 18:38 - 000002323 _____ C:\Users\Public\Desktop\Brave.lnk
2023-11-06 21:03 - 2023-11-06 21:08 - 000003566 _____ C:\WINDOWS\system32\Tasks\BraveSoftwareUpdateTaskMachineUA{87A06D8B-6D68-405D-B1F5-484AF520CDCB}
2023-11-06 21:03 - 2023-11-06 21:08 - 000003442 _____ C:\WINDOWS\system32\Tasks\BraveSoftwareUpdateTaskMachineCore{FD7A1B4F-C62C-4B86-9A20-C2F6D686E37D}
2023-11-06 21:03 - 2023-11-06 21:03 - 000000000 ____D C:\Users\hranca\AppData\Local\BraveSoftware
2023-11-06 21:03 - 2023-11-06 21:03 - 000000000 ____D C:\ProgramData\BraveSoftware
2023-11-06 21:03 - 2023-11-06 21:03 - 000000000 ____D C:\Program Files\BraveSoftware
2023-11-06 21:03 - 2023-11-06 21:03 - 000000000 ____D C:\Program Files (x86)\BraveSoftware
2023-11-04 14:06 - 2023-11-04 14:06 - 000000000 ____D C:\Users\hranca\AppData\Roaming\Bytedance
2023-11-04 14:05 - 2023-11-04 14:05 - 000000000 ____D C:\Users\hranca\AppData\Local\Bytedance
2023-11-04 14:04 - 2023-11-13 21:28 - 000000000 ____D C:\Users\hranca\AppData\Local\CapCut Drafts
2023-11-04 14:04 - 2023-11-04 14:04 - 000001188 _____ C:\Users\hranca\Desktop\CapCut.lnk
2023-11-04 14:04 - 2023-11-04 14:04 - 000000028 _____ C:\Users\hranca\AppData\Local\CapCutConfigure.ini
2023-11-04 14:04 - 2023-11-04 14:04 - 000000000 ____D C:\Users\hranca\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CapCut
2023-11-04 14:04 - 2023-11-04 14:04 - 000000000 ____D C:\Users\hranca\AppData\Local\VEDetector
2023-11-04 14:03 - 2023-11-04 14:13 - 000000000 ____D C:\Users\hranca\AppData\Local\CapCut
2023-11-04 13:38 - 2023-11-04 13:38 - 000000000 ____D C:\Users\hranca\Documents\CVCore
2023-11-04 13:38 - 2023-11-04 13:38 - 000000000 ____D C:\Users\hranca\AppData\Local\cache
2023-11-04 13:37 - 2023-11-04 13:38 - 000000000 ____D C:\Users\hranca\AppData\Local\coolcut
2023-11-04 13:37 - 2023-11-04 13:37 - 000000000 ____D C:\Users\hranca\AppData\Roaming\Aipai
2023-11-04 13:37 - 2023-11-04 13:37 - 000000000 ____D C:\Users\hranca\AppData\Local\CrashRpt
2023-11-04 13:37 - 2023-11-04 13:37 - 000000000 ____D C:\back
2023-11-04 13:36 - 2023-11-05 15:33 - 000000000 ____D C:\Program Files (x86)\coolcut

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2023-12-01 12:54 - 2023-03-30 22:41 - 002384384 _____ (Farbar) C:\Users\hranca\Desktop\FRST64.exe
2023-12-01 12:48 - 2023-04-01 03:27 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-12-01 12:48 - 2023-03-31 20:31 - 000000000 ____D C:\Program Files (x86)\Google
2023-12-01 12:44 - 2023-03-31 17:38 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-12-01 11:28 - 2023-04-01 03:27 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-12-01 00:18 - 2023-10-25 11:45 - 000000000 ____D C:\Program Files\CCleaner
2023-12-01 00:10 - 2023-03-31 20:31 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-12-01 00:10 - 2023-03-31 20:31 - 000002206 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2023-12-01 00:09 - 2023-10-25 11:45 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2023-12-01 00:09 - 2023-10-25 11:45 - 000003382 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2023-12-01 00:09 - 2023-10-25 11:45 - 000000666 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2023-11-29 19:37 - 2023-04-01 03:27 - 000000000 ___HD C:\Program Files\WindowsApps
2023-11-29 19:37 - 2023-04-01 03:27 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-11-29 18:43 - 2023-03-31 20:31 - 000003790 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{B1156345-0C21-4501-BA75-07CA042805B3}
2023-11-29 18:43 - 2023-03-31 20:31 - 000003666 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{7B09EE34-2D47-4C06-A979-60CE7ADA7B89}
2023-11-29 18:38 - 2023-03-31 17:41 - 000002276 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2023-11-29 18:38 - 2020-06-12 15:05 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-11-28 15:19 - 2023-04-01 18:48 - 000000000 ____D C:\Users\hranca\AppData\Roaming\vlc
2023-11-25 20:54 - 2023-03-31 21:02 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2023-11-25 20:28 - 2023-03-31 18:02 - 000000000 ____D C:\Users\hranca\AppData\Local\VirtualStore
2023-11-25 19:51 - 2019-11-14 04:27 - 000000000 ____D C:\Temp
2023-11-25 12:35 - 2023-04-01 03:26 - 000000000 ____D C:\WINDOWS\INF
2023-11-25 12:35 - 2023-03-31 17:53 - 000840598 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-11-25 12:30 - 2023-04-01 03:23 - 000262144 _____ C:\WINDOWS\system32\config\BBI
2023-11-25 12:30 - 2023-03-31 17:41 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-11-25 12:30 - 2020-09-29 23:56 - 000008192 ___SH C:\DumpStack.log.tmp
2023-11-25 12:25 - 2023-03-31 20:41 - 000000000 ____D C:\ProgramData\Package Cache
2023-11-25 12:25 - 2023-03-31 20:41 - 000000000 ____D C:\Program Files (x86)\AMD
2023-11-25 12:24 - 2022-12-15 19:00 - 000000000 ____D C:\AMD
2023-11-22 22:08 - 2023-03-31 17:38 - 000423936 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-11-22 21:21 - 2023-10-24 21:13 - 000003844 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onLogOn
2023-11-22 21:21 - 2023-10-24 21:13 - 000003402 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onTime
2023-11-22 21:16 - 2023-10-24 19:40 - 000001383 _____ C:\Users\hranca\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2023-11-17 08:50 - 2023-03-31 18:57 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1395756440-2216678247-3102617891-1001
2023-11-17 08:50 - 2023-03-31 18:56 - 000003364 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1395756440-2216678247-3102617891-1001
2023-11-17 08:50 - 2023-03-31 17:44 - 000002386 _____ C:\Users\hranca\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-11-10 23:16 - 2023-03-31 17:44 - 000000000 ____D C:\Users\hranca
2023-11-09 14:05 - 2023-03-31 17:41 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2023-11-04 13:38 - 2023-03-31 20:41 - 000000000 ____D C:\Users\hranca\AppData\Local\AMD

==================== Files in the root of some directories ========

2023-11-04 14:04 - 2023-11-04 14:04 - 000000028 _____ () C:\Users\hranca\AppData\Local\CapCutConfigure.ini

==================== FLock ==============================

2019-11-13 16:30 C:\Users\hranca\Contacts
2019-11-13 00:10 C:\Users\hranca\OneDrive
2019-11-13 16:30 C:\Users\hranca\Saved Games
2019-11-13 00:09 C:\Users\hranca\AppData\Roaming\Microsoft\Vault

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================
https://www.mycity.rs/must-login.png

Dopuna: 01 Dec 2023 13:02

Svaka pomoć dobrodošla.Hvala unapred
Dobio i pismo u kome zahteva 500 dolara u bidkointima

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Zdravo,

Kako je do toga doslo i kada?

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Napisano: 03 Dec 2023 23:16

Neznam kad ali mi je provaljena šifra na hotmailu i uz pomoć nje promenili su mi na facebooku i telefon i email adresu.
Predpostavljam da kad sam instalirao Brave browser..Uspeo sam samo da povratim instagram dok facebook nikako..

Dopuna: 03 Dec 2023 23:33

Ovo mi je ostavio u poruci....
Dear hranca@hotmail.com,
I regret to inform you that there has been a security breach involving your devices used for internet browsing.
Several months ago, I gained unauthorized access to these devices and have been monitoring your internet activities.
Recently, I successfully hacked into your email accounts, including your password: .

Furthermore, I have installed a Trojan virus on all the devices you use to access your email.
This was made possible because you clicked on links from your inbox emails, making it relatively easy for me to infiltrate your systems.
Through this software, I have obtained access to various features of your devices, such as the microphone, video camera, and keyboard.
I have also retrieved and stored your personal information, data, photos, and web browsing history on my servers.
Additionally, I have gained access to your messengers, social networks, email correspondence, chat history, and contact list.
To remain undetected, my virus continuously refreshes its signatures, making it invisible to antivirus software.

During my investigation, I discovered that you frequently visit (zabranjeno) websites and engage in explicit content.
I have managed to record explicit videos of you and have created a montage that showcases your intimate moments and self-pleasure.
If you doubt the authenticity of my claims, I can easily share these videos with your friends, colleagues, and relatives, or even make them publicly accessible.

I believe it is in your best interest to prevent this from happening, considering the potential consequences of exposing such explicit content.
Therefore, I propose a solution: transfer $500 USD to my bitcoin wallet (details provided below), based on the exchange rate at the time of the transaction.
Once the transfer is completed, I will promptly delete all compromising material.
Following this, we shall part ways, and I assure you that I will deactivate and remove all harmful software from your devices.
You can trust that I will uphold my end of the agreement.

Considering the extensive information I possess about you and the time I have invested in monitoring your activities, I believe this is a fair and reasonable offer.
If you are unsure about purchasing and transferring bitcoins, I suggest using a search engine for guidance.

Bitcoin wallet: bc1quq7t892p9yrwpkzdjm48054y3xlh2rv6mtlc48

Please refrain from taking the following actions:

Do not reply to this email, as I have created it within your inbox and generated the return address.
Do not attempt to contact the police or other security services. Moreover, do not inform your friends, as it would be effortless for me to discover such actions, given my control over your systems. In such a case, I will immediately share the videos publicly.
It is futile to try and locate me, as all cryptocurrency transactions are anonymous.
Reinstalling the operating system or disposing of your devices will not be effective, as the videos have already been stored on remote servers.

There are a few things you need not worry about:

I will promptly receive your funds transfer, as I continuously monitor your activities through my trojan virus, which has remote-control capabilities similar to TeamViewer.
Once the funds transfer is completed, I have no intention of sharing your videos. I have no interest in further complicating your life, as I would have done so already if that were my intention. Rest assured, everything will be handled fairly.

Lastly, I strongly advise you to avoid similar situations in the future. It is wise to change all your passwords regularly to enhance your online security.

Dopuna: 03 Dec 2023 23:43

Ne znam gde bih mogao da napišem Facebook-u da mi vrate šifru i br telefona od pre 29.11..Moj nalog na Facebook je stariji od 10god.kao i meilleur adresa a br telefona sigurno 3-4godine..Trebali bi da imaju to u obzira. Ako postoji neka mogućnost ili ako Facebook ima neki poseban program face detektor... Bilo kakva pomoć dobrodošla.

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Da li si probao ovo: https://www.secure.facebook.com/help/203305893040179?helpref=faq_content

Najbolje bi bilo da posto si promenio sifre na nalozima, jos vise ih osiguras, na primer, koriscenjem 2fa autentikacije.

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Pozdrav svima
I dalje nisam uspeo da povratim facebook nalog.
Što je interesantno dolaze mi poruke od tog hakera na email adresu.Normalno ...traži novac ali i poslao mi moje ime i novu všifru koju koristim i kaže da uvek može da mi nađe šifru.
Sigurno je neki trojanac...jedino sam sad uninstalirao Brave Web Browser.Njega sam pre tri meseca instalirao.Možda je slučajnost ali od tada imam te probleme..

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Jesi li prijavio to policiji, imaju odeljenje za visokotehnološki kriminal - oni bi mogli i da kontaktiraju Facebook/Metu da ti vrate nalog.
Usput, ovaj te i ucenjuje na neke načine koji će zainteresovati ne samo našu policiju...

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Otvori temu u opštem delu foruma da ovde ne bi spamovali
za početak probaj preko Facebook
da vratiš nalog ako već nisi