Možda tražite i:
Cwshredder - Dobar "Browser hijacker remover"
BrowserBob 2 -napravite sami web browser...

MyCity » Ambulanta » Hijacker browser malware problem

Hijacker browser malware problem

Napisano na dan: 13.11.2021

Strana:
1
2

Hijacker browser malware problem

Sledeća strana

Pagination

Odgovori

Strana:
1
2

MladenZA Poslao: 13 Nov 2021 18:27 Idi na vrh
offline MladenZA Građanin Mladen Stojanovic Student Pridružio: 29 Jan 2017 Poruke: 60 Gde živiš: Zajecar	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Na laptopu kada otvorim chrome i izaberem svoj chrome profile, search mi je searchio Search a ne google Search. Kada ga otvorim prvi tab je bio taj search dok kada otvorim novi tab bio bi google search, medjutim, probao sam da resetujem podesavanja google profila i sada cak i kada otvorim novi tab i dalje je searchio Search. Problem je poceo kada sam na laptopu sinhronizovao svoj chrome profil sa racunara, mada na racunaru nisam koristio taj profil bas dosta dugo. Probao sam sa malwerbytom, sa zemanom i skenirao sam moguce nepozeljne programe sa guglom, ali nista nije pronaslo. Tacnije po preporuci sa foruma odradio sam sve sa ovog lika malwaretips.com/blogs/remove-search-protectedio-com/ Takodje na laptopu nemam puno programa tako da su mi svi poznati. Jotel: 41.96mbps download speed i 15.05mbps upload speed Znaci ovo sam primetio kada sam uradio sinhronizaciju na laptopu, tu to i vidim i odatle ne mogu da ga resim jer pretpostavljam da nije problem sa programima na laptopu, ali cak i na racunaru cesto skeniram sa ista dva gore navedena programa i uvek ocistim sta god da pronadje.

Profil

helen1 Poslao: 13 Nov 2021 20:54 Idi na vrh
offline helen1 Anti Malware Fighter Rank 2 Master učitelj Pridružio: 27 Avg 2005 Poruke: 8617 Gde živiš: Novi Beograd	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Postavi logove kao u uputstvu. https://www.mycity.rs/Ambulanta/Kako-otvoriti-temu-u-Ambulanti.html

Profil

MladenZA Poslao: 14 Nov 2021 16:30 Idi na vrh
offline MladenZA Građanin Mladen Stojanovic Student Pridružio: 29 Jan 2017 Poruke: 60 Gde živiš: Zajecar	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 14-11-2021 Ran by mlade (administrator) on DESKTOP-5LVBIKS (Acer Aspire A515-56) (14-11-2021 16:26:58) Running from C:\Users\mlade\Desktop Loaded Profiles: mlade Platform: Microsoft Windows 10 Pro Version 21H1 19043.1348 (X64) Language: English (United States) Default browser: Chrome Boot Mode: Normal ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (Adobe Inc. -> Adobe Inc) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) C:\Windows\System32\ELANFPService.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler64.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <10> (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorvd.inf_amd64_9303e1e719a54774\RstMwService.exe (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_01e62fd23fef9f71\igfxCUIServiceN.exe (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_01e62fd23fef9f71\igfxEMN.exe (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_7de174f2e8b6260b\OneApp.IGCC.WinService.exe (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_bbafec440f419cb1\IntelCpHDCPSvc.exe (Kilonova LLC -> Skillbrains) C:\Program Files (x86)\Skillbrains\lightshot\5.5.0.7\Lightshot.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2110.13603.0_x64__8wekyb3d8bbwe\Cortana.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2110.13603.0_x64__8wekyb3d8bbwe\Win32Bridge.Server.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCopyAccelerator.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MsMpEng.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\NisSrv.exe (Node.js Foundation -> Node.js) C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_518b8f4878341936\RtkAudUService64.exe (Smart Sound Technology -> Intel) C:\Windows\System32\DriverStore\FileRepository\intcoed.inf_amd64_692ad4b47bfa6b04\AS\IAS\IntelAudioService.exe ==================== Registry (Whitelisted) =================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_518b8f4878341936\RtkAudUService64.exe [1254488 2021-03-22] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [226728 2019-07-21] (Kilonova LLC -> ) HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [114824 2020-09-14] (Adobe Inc. -> ) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706344 2021-09-27] (Oracle America, Inc. -> Oracle Corporation) HKU\S-1-5-21-1533502849-176086691-3893765355-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\mlade\AppData\Local\Microsoft\Teams\Update.exe [2455256 2021-10-21] (Microsoft 3rd Party Application Component -> Microsoft Corporation) HKU\S-1-5-21-1533502849-176086691-3893765355-1001\...\Run: [Discord] => C:\Users\mlade\AppData\Local\Discord\Update.exe [1512608 2021-09-21] (Discord Inc. -> GitHub) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\95.0.4638.69\Installer\chrmstp.exe [2021-11-04] (Google LLC -> Google LLC) ==================== Scheduled Tasks (Whitelisted) ============ (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {58B78356-B305-414F-B42D-56BAB2281EBA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-04] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {B501BC9B-2922-47BA-BD55-7394FC3BA8CB} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-04] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {B999F852-5302-4141-9AAF-87D72793585F} - System32\Tasks\Microsoft\Windows\WindowsUpdate\RUXIM\RUXIMDisplay => C:\Program Files\ruxim\ruximics.exe [477512 2021-07-01] (Microsoft Windows -> Microsoft Corporation) Task: {C2A270F3-8F69-42EA-A234-C7F0C5916DB9} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1562376 2021-08-16] (Adobe Inc. -> Adobe Inc.) Task: {CCE53479-7428-4F4E-930B-E6BCEF0C111D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-10-21] (Google LLC -> Google LLC) Task: {D100C7B1-B841-4ECC-A6F8-EA1025658347} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-04] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {D8679DB0-173F-4196-9453-44902BF09C46} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-10-21] (Google LLC -> Google LLC) Task: {ED08A8D1-8808-4CB4-A5F6-054403254971} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>) Task: {EF35A188-F529-4ECF-B116-9A319EEC4BE1} - System32\Tasks\update-S-1-5-21-1533502849-176086691-3893765355-1001 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>) Task: {FC74B300-B012-4479-851E-940F0D902327} - System32\Tasks\Microsoft\Windows\WindowsUpdate\RUXIM\RUXIMSync => C:\Program Files\ruxim\ruximics.exe [477512 2021-07-01] (Microsoft Windows -> Microsoft Corporation) Task: {FC83E548-6A9A-4361-A731-22AD6B016B5B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-04] (Microsoft Windows Publisher -> Microsoft Corporation) (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\WINDOWS\Tasks\update-S-1-5-21-1533502849-176086691-3893765355-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Tcpip\Parameters: [DhcpNameServer] 93.184.80.109 93.184.80.108 Tcpip\..\Interfaces\{4aaa8562-7c21-4856-b5eb-db234ce0f70f}: [DhcpNameServer] 93.184.80.109 93.184.80.108 Tcpip\..\Interfaces\{703a14ed-c7dc-4089-954e-be5cfbf73beb}: [DhcpNameServer] 93.184.80.109 93.184.80.108 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\mlade\AppData\Local\Microsoft\Edge\User Data\Default [2021-11-14] Edge Profile: C:\Users\mlade\AppData\Local\Microsoft\Edge\User Data\Profile 1 [2021-11-08] Edge Profile: C:\Users\mlade\AppData\Local\Microsoft\Edge\User Data\Profile 2 [2021-11-08] FireFox: ======== FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2021-10-05] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin-x32: @java.com/DTPlugin,version=11.311.2 -> E:\Java\bin\dtplugin\npDeployJava1.dll [2021-10-28] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.311.2 -> E:\Java\bin\plugin2\npjp2.dll [2021-10-28] (Oracle America, Inc. -> Oracle Corporation) Chrome: ======= CHR DefaultProfile: Profile 3 CHR Profile: C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-11-14] CHR Profile: C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 2 [2021-11-13] CHR Extension: (Slides) - C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-11-08] CHR Extension: (Safe Torrent Scanner) - C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2021-11-08] CHR Extension: (Docs) - C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2021-11-08] CHR Extension: (Google Drive) - C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-11-08] CHR Extension: (YouTube) - C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-11-08] CHR Extension: (Adobe Acrobat) - C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2021-11-08] CHR Extension: (Sheets) - C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-11-08] CHR Extension: (Google Docs Offline) - C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-11-08] CHR Extension: (Chrome Web Store Payments) - C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-11-08] CHR Extension: (Gmail) - C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-11-08] CHR Profile: C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 3 [2021-11-14] CHR StartupUrls: Profile 3 -> "hxxps://search.protectedio.com/?u=43e38425c66708fd9addbdee817b4955&c=p1&src=hp&inst=1454010751" CHR DefaultSearchURL: Profile 3 -> hxxps://search.protectedio.com/search.php/?q={searchTerms}&u=43e38425c66708fd9addbdee817b4955&c=p1&src=srch&inst=1453837953 CHR DefaultSearchKeyword: Profile 3 -> searchio CHR Extension: (Slides) - C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-11-13] CHR Extension: (Safe Torrent Scanner) - C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2021-11-13] CHR Extension: (Docs) - C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aohghmighlieiainnegkcijnfilokake [2021-11-13] CHR Extension: (Google Drive) - C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-11-13] CHR Extension: (YouTube) - C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-11-13] CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-11-13] CHR Extension: (Adobe Acrobat) - C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2021-11-13] CHR Extension: (Sheets) - C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-11-13] CHR Extension: (Google Docs Offline) - C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-11-13] CHR Extension: (Chrome Web Store Payments) - C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-11-13] CHR Extension: (Gmail) - C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-11-13] CHR Profile: C:\Users\mlade\AppData\Local\Google\Chrome\User Data\System Profile [2021-11-14] CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] ==================== Services (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-08-16] (Adobe Inc. -> Adobe Inc.) R2 IntelAudioService; C:\WINDOWS\System32\DriverStore\FileRepository\intcoed.inf_amd64_692ad4b47bfa6b04\\AS\\IAS\\IntelAudioService.exe [536432 2020-12-17] (Smart Sound Technology -> Intel) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6103464 2021-11-13] (Microsoft Windows Publisher -> Microsoft Corporation) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\NisSrv.exe [2872024 2021-11-04] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MsMpEng.exe [128376 2021-11-04] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Drivers (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R3 AcerAirplaneModeController; C:\WINDOWS\System32\drivers\AcerAirplaneModeController.sys [30168 2020-05-13] (Acer Incorporated -> Acer Incorporated) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed] R3 iaLPSS2_GPIO2_TGL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_gpio2_tgl.inf_amd64_d0e63c4e3754f42f\iaLPSS2_GPIO2_TGL.sys [128152 2020-08-10] (Intel Corporation -> Intel Corporation) R3 iaLPSS2_I2C_TGL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_i2c_tgl.inf_amd64_ab87bf17a571e523\iaLPSS2_I2C_TGL.sys [197272 2020-08-10] (Intel Corporation -> Intel Corporation) R0 iaStorVD; C:\WINDOWS\System32\drivers\iaStorVD.sys [1494192 2021-04-30] (Intel Corporation -> Intel Corporation) R3 IntcAudioBus; C:\WINDOWS\System32\DriverStore\FileRepository\intcaudiobus.inf_amd64_266f908b1469071e\IntcAudioBus.sys [297352 2020-12-17] ((PREPRODUCTION USE ONLY) Smart Sound Technology -> Intel(R) Corporation) R3 IntcBTAu; C:\WINDOWS\System32\DriverStore\FileRepository\intcbtau.inf_amd64_919d03cd3d4592af\IntcBTAu.sys [811400 2020-12-17] ((PREPRODUCTION USE ONLY) Smart Sound Technology -> Intel(R) Corporation) R3 IntcDMic; C:\WINDOWS\System32\DriverStore\FileRepository\intcdmic.inf_amd64_a8b8c3832855e235\IntcDMic.sys [705416 2020-12-17] ((PREPRODUCTION USE ONLY) Smart Sound Technology -> Intel(R) Corporation) R3 IntcOED; C:\WINDOWS\System32\DriverStore\FileRepository\intcoed.inf_amd64_692ad4b47bfa6b04\IntcOED.sys [1335688 2020-12-17] ((PREPRODUCTION USE ONLY) Smart Sound Technology -> Intel(R) Corporation) R3 IntelGNA; C:\WINDOWS\System32\DriverStore\FileRepository\gna.inf_amd64_689d3d5fefeef458\gna.sys [84880 2020-11-05] (Gaussian Mixture Models and Neural Networks Accelerator -> Intel Corporation) R3 MpKsl25d60615; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{9A5B7DBE-8A37-4EC4-8F9B-D612767493BD}\MpKslDrv.sys [130296 2021-11-14] (Microsoft Windows -> Microsoft Corporation) S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [39920 2021-05-26] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48520 2021-11-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [435424 2021-11-04] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86240 2021-11-04] (Microsoft Windows -> Microsoft Corporation) S1 amsdk; \??\C:\WINDOWS\system32\drivers\amsdk.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One month (created) (Whitelisted) ========= (If an entry is included in the fixlist, the file/folder will be moved.) 2021-11-14 16:26 - 2021-11-14 16:27 - 000018042 _____ C:\Users\mlade\Desktop\FRST.txt 2021-11-14 16:26 - 2021-11-14 16:27 - 000000000 ____D C:\FRST 2021-11-14 16:26 - 2021-11-14 16:26 - 002311680 _____ (Farbar) C:\Users\mlade\Desktop\FRST64.exe 2021-11-13 18:08 - 2021-11-13 18:08 - 000000046 _____ C:\Users\mlade\Desktop\New Text Document.txt 2021-11-13 17:34 - 2021-11-13 17:55 - 000000000 ____D C:\Users\mlade\Desktop\Hemija zadaci str 83 2021-11-13 17:12 - 2021-11-13 17:12 - 000052942 _____ C:\Users\mlade\Desktop\ZAPISATI.pptx 2021-11-13 16:07 - 2021-11-13 17:00 - 000113304 _____ C:\WINDOWS\ZAM.krnl.trace 2021-11-13 16:07 - 2021-11-13 17:00 - 000000000 ____D C:\Users\mlade\AppData\Local\AMSDK 2021-11-13 16:07 - 2021-11-13 16:07 - 000000000 ____D C:\Users\mlade\AppData\Local\Zemana 2021-11-13 15:31 - 2021-11-13 15:31 - 000068992 _____ C:\Users\mlade\AppData\Local\GDIPFONTCACHEV1.DAT 2021-11-13 15:06 - 2021-11-13 15:06 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe 2021-11-13 15:06 - 2021-11-13 15:06 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe 2021-11-13 15:06 - 2021-11-13 15:06 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe 2021-11-13 15:06 - 2021-11-13 15:06 - 000011363 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2021-11-13 14:59 - 2021-11-13 14:59 - 000000000 ___HD C:\$WinREAgent 2021-11-09 22:54 - 2021-11-09 22:54 - 000224110 _____ C:\Users\mlade\Downloads\6ED10551FB000BA2_datasheet_en.pdf 2021-11-06 15:10 - 2021-11-06 15:56 - 001902069 _____ C:\Users\mlade\Desktop\Praktikum.pdf 2021-11-06 15:05 - 2021-11-13 15:31 - 000000000 ____D C:\Users\mlade\Desktop\Hemija 2021-11-06 14:56 - 2021-11-06 14:56 - 000000000 ____D C:\Program Files (x86)\MSECache 2021-11-02 18:08 - 2021-11-02 18:08 - 000000000 ____D C:\Users\mlade\Documents\Lightshot 2021-10-28 18:06 - 2021-10-28 18:06 - 000164696 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll 2021-10-28 18:06 - 2021-10-28 18:06 - 000000000 ____D C:\Users\mlade\AppData\Roaming\Sun 2021-10-28 18:06 - 2021-10-28 18:06 - 000000000 ____D C:\Users\mlade\AppData\LocalLow\Sun 2021-10-28 18:06 - 2021-10-28 18:06 - 000000000 ____D C:\ProgramData\Oracle 2021-10-28 18:06 - 2021-10-28 18:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2021-10-26 17:45 - 2021-10-26 17:45 - 000000883 _____ C:\Users\mlade\Desktop\Adobe Premiere Pro 2020.lnk 2021-10-26 17:45 - 2021-10-26 17:45 - 000000883 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Premiere Pro 2020.lnk 2021-10-26 17:45 - 2021-10-26 17:45 - 000000000 ____D C:\Users\Public\Documents\AdobeInstalledCodecsTier2 2021-10-26 17:45 - 2021-10-26 17:45 - 000000000 ____D C:\Users\Public\Documents\Adobe 2021-10-26 17:44 - 2021-10-26 17:44 - 000000000 ____D C:\Users\Public\Documents\AdobeInstalledCodecs 2021-10-26 17:22 - 2021-10-26 17:22 - 000002404 _____ C:\Users\mlade\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Blockbench.lnk 2021-10-26 17:22 - 2021-10-26 17:22 - 000002396 _____ C:\Users\mlade\Desktop\Blockbench.lnk 2021-10-26 14:22 - 2021-10-26 17:46 - 000000000 ____D C:\Users\mlade\Documents\Adobe 2021-10-26 14:21 - 2021-10-26 14:21 - 000001064 _____ C:\Users\mlade\Desktop\Adobe Photoshop 2021.lnk 2021-10-26 14:20 - 2021-10-26 14:20 - 000001064 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop 2021.lnk 2021-10-26 14:17 - 2021-10-26 14:17 - 000000000 ____D C:\Program Files (x86)\Adobe 2021-10-26 14:06 - 2021-10-26 14:14 - 000000000 ____D C:\Users\mlade\AppData\Local\BitTorrentHelper 2021-10-26 14:05 - 2021-10-26 16:16 - 000000000 ____D C:\Users\mlade\AppData\Roaming\uTorrent 2021-10-26 14:04 - 2021-10-26 14:04 - 000000000 ____D C:\Users\mlade\AppData\Local\UT008 2021-10-26 13:57 - 2021-10-26 13:57 - 000000000 ____D C:\WINDOWS\system32\Tasks\Agent Activation Runtime 2021-10-23 16:38 - 2021-10-23 16:13 - 000000030 _____ C:\AVScanner.ini 2021-10-23 16:19 - 2021-10-26 14:16 - 000000000 ____D C:\ProgramData\Package Cache 2021-10-23 16:19 - 2021-10-23 16:19 - 000000000 ____D C:\Users\mlade\AppData\Local\PeerDistRepub 2021-10-23 16:14 - 2021-10-23 16:14 - 000000000 ____D C:\Users\mlade\AppData\LocalLow\Adobe 2021-10-23 16:14 - 2021-10-23 16:14 - 000000000 ____D C:\Users\mlade\AppData\Local\SolidDocuments 2021-10-23 16:12 - 2021-10-26 17:45 - 000000000 ____D C:\Program Files\Common Files\Adobe 2021-10-23 16:12 - 2021-10-26 17:45 - 000000000 ____D C:\Program Files\Adobe 2021-10-23 16:12 - 2021-10-26 14:18 - 000000000 ____D C:\ProgramData\Adobe 2021-10-23 16:12 - 2021-10-23 16:38 - 000000000 ____D C:\ProgramData\McAfee 2021-10-23 16:12 - 2021-10-23 16:12 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task 2021-10-23 16:12 - 2021-10-23 16:12 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk 2021-10-23 16:10 - 2021-10-26 15:49 - 000000000 ____D C:\Users\mlade\AppData\Local\Adobe 2021-10-21 15:14 - 2021-10-21 15:15 - 000000801 _____ C:\Users\mlade\Desktop\Blockbench - Shortcut.lnk 2021-10-21 15:09 - 2021-11-06 16:17 - 000000000 ____D C:\Users\mlade\AppData\Roaming\.minecraft 2021-10-21 15:09 - 2021-10-21 15:09 - 000000666 _____ C:\Users\Public\Desktop\Minecraft Launcher.lnk 2021-10-21 15:09 - 2021-10-21 15:09 - 000000000 ____D C:\Users\mlade\AppData\Local\CEF 2021-10-21 15:09 - 2021-10-21 15:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minecraft Launcher 2021-10-21 15:08 - 2021-10-26 17:20 - 000000420 _____ C:\WINDOWS\Tasks\update-sys.job 2021-10-21 15:08 - 2021-10-26 17:20 - 000000420 _____ C:\WINDOWS\Tasks\update-S-1-5-21-1533502849-176086691-3893765355-1001.job 2021-10-21 15:08 - 2021-10-21 15:08 - 000003408 _____ C:\WINDOWS\system32\Tasks\update-S-1-5-21-1533502849-176086691-3893765355-1001 2021-10-21 15:08 - 2021-10-21 15:08 - 000003346 _____ C:\WINDOWS\system32\Tasks\update-sys 2021-10-21 15:08 - 2021-10-21 15:08 - 000000424 _____ C:\Users\mlade\AppData\Local\UserProducts.xml 2021-10-21 15:08 - 2021-10-21 15:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lightshot 2021-10-21 15:08 - 2021-10-21 15:08 - 000000000 ____D C:\Program Files (x86)\Skillbrains 2021-10-21 11:50 - 2021-10-21 11:50 - 000000000 _SHDL C:\Documents and Settings 2021-10-21 11:49 - 2021-11-14 12:03 - 000000000 ____D C:\Intel 2021-10-21 11:49 - 2021-11-04 16:10 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2021-10-21 11:49 - 2021-10-21 11:49 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf 2021-10-21 10:10 - 2021-10-21 10:10 - 000000000 ____D C:\WINDOWS\PCHEALTH 2021-10-21 10:10 - 2021-10-21 10:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2021-10-21 10:10 - 2021-10-21 10:10 - 000000000 ____D C:\Program Files (x86)\MSBuild 2021-10-21 10:10 - 2021-10-21 10:10 - 000000000 ____D C:\Program Files (x86)\Microsoft Works 2021-10-21 10:10 - 2021-10-21 10:10 - 000000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 2021-10-21 10:08 - 2021-10-21 10:08 - 000000000 ____D C:\WINDOWS\SHELLNEW 2021-10-21 10:08 - 2021-10-21 10:08 - 000000000 ____D C:\Users\mlade\AppData\Local\Microsoft Help 2021-10-21 10:08 - 2021-10-21 10:08 - 000000000 ____D C:\Program Files\Microsoft Office 2021-10-21 09:55 - 2021-10-21 09:55 - 000000000 ____D C:\Users\mlade\AppData\Roaming\WinRAR 2021-10-21 09:54 - 2021-10-21 09:54 - 000000000 ____D C:\Users\mlade\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2021-10-21 09:54 - 2021-10-21 09:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2021-10-21 09:30 - 2021-11-06 18:12 - 000000000 ____D C:\Users\mlade\AppData\Roaming\discord 2021-10-21 09:30 - 2021-11-06 17:33 - 000000000 ____D C:\Users\mlade\AppData\Local\Discord 2021-10-21 09:30 - 2021-10-21 09:31 - 000002227 _____ C:\Users\mlade\Desktop\Discord.lnk 2021-10-21 09:30 - 2021-10-21 09:30 - 000000000 ____D C:\Users\mlade\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc 2021-10-21 09:26 - 2021-10-21 09:31 - 000000000 ____D C:\Users\mlade\AppData\Local\SquirrelTemp 2021-10-21 09:26 - 2021-10-21 09:26 - 000002364 _____ C:\Users\mlade\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk 2021-10-21 09:26 - 2021-10-21 09:26 - 000002356 _____ C:\Users\mlade\Desktop\Microsoft Teams.lnk 2021-10-21 09:26 - 2021-10-21 09:26 - 000000000 ____D C:\Users\mlade\AppData\Roaming\Teams 2021-10-21 08:27 - 2021-10-30 21:43 - 000000000 ____D C:\Users\mlade\AppData\Roaming\Blockbench 2021-10-21 08:27 - 2021-10-23 16:16 - 000000000 ____D C:\Users\mlade\AppData\Local\blockbench-updater 2021-10-21 08:05 - 2021-11-14 16:12 - 000000000 ____D C:\Program Files (x86)\Google 2021-10-21 08:05 - 2021-11-04 16:01 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2021-10-21 08:05 - 2021-10-21 08:10 - 000000000 ____D C:\Users\mlade\AppData\Local\Google 2021-10-21 08:05 - 2021-10-21 08:05 - 000003420 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2021-10-21 08:05 - 2021-10-21 08:05 - 000003296 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2021-10-21 08:05 - 2021-10-21 08:05 - 000000000 ____D C:\Program Files\Google 2021-10-20 23:50 - 2021-10-20 23:50 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate 2021-10-20 23:49 - 2021-10-20 23:50 - 000000000 ____D C:\WINDOWS\ServiceProfiles 2021-10-20 23:49 - 2021-10-20 23:49 - 000008192 _____ C:\WINDOWS\system32\config\userdiff 2021-10-20 23:47 - 2021-10-20 23:47 - 002371072 _____ C:\WINDOWS\system32\rdpnano.dll 2021-10-20 23:47 - 2021-10-20 23:47 - 002111488 _____ (Digimarc) C:\WINDOWS\SysWOW64\DMRCDecoder.dll 2021-10-20 23:47 - 2021-10-20 23:47 - 001864192 _____ (The ICU Project) C:\WINDOWS\SysWOW64\icu.dll 2021-10-20 23:47 - 2021-10-20 23:47 - 001687040 _____ C:\WINDOWS\system32\libcrypto.dll 2021-10-20 23:47 - 2021-10-20 23:47 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll 2021-10-20 23:47 - 2021-10-20 23:47 - 000672768 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll 2021-10-20 23:47 - 2021-10-20 23:47 - 000611960 _____ C:\WINDOWS\SysWOW64\TextShaping.dll 2021-10-20 23:47 - 2021-10-20 23:47 - 000468440 _____ C:\WINDOWS\SysWOW64\WindowManagementAPI.dll 2021-10-20 23:47 - 2021-10-20 23:47 - 000203264 _____ C:\WINDOWS\system32\uwfcfgmgmt.dll 2021-10-20 23:47 - 2021-10-20 23:47 - 000170496 _____ C:\WINDOWS\system32\DeviceUpdateCenterCsp.dll 2021-10-20 23:47 - 2021-10-20 23:47 - 000158208 _____ C:\WINDOWS\system32\uwfcsp.dll 2021-10-20 23:47 - 2021-10-20 23:47 - 000040960 _____ C:\WINDOWS\system32\uwfservicingapi.dll 2021-10-20 23:46 - 2021-10-20 23:46 - 002295296 _____ (Digimarc) C:\WINDOWS\system32\DMRCDecoder.dll 2021-10-20 23:46 - 2021-10-20 23:46 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll 2021-10-20 23:46 - 2021-10-20 23:46 - 002260480 _____ (The ICU Project) C:\WINDOWS\system32\icu.dll 2021-10-20 23:46 - 2021-10-20 23:46 - 001164288 _____ C:\WINDOWS\system32\MBR2GPT.EXE 2021-10-20 23:46 - 2021-10-20 23:46 - 000706536 _____ C:\WINDOWS\system32\TextShaping.dll 2021-10-20 23:46 - 2021-10-20 23:46 - 000657464 _____ C:\WINDOWS\system32\WindowManagementAPI.dll 2021-10-20 23:46 - 2021-10-20 23:46 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll 2021-10-20 23:46 - 2021-10-20 23:46 - 000287232 _____ C:\WINDOWS\system32\CoreMas.dll 2021-10-20 23:46 - 2021-10-20 23:46 - 000162816 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe 2021-10-20 23:46 - 2021-10-20 23:46 - 000098304 _____ C:\WINDOWS\system32\Drivers\cimfs.sys 2021-10-20 23:46 - 2021-10-20 23:46 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe 2021-10-20 23:04 - 2021-10-20 23:04 - 000000000 ____D C:\Users\mlade\AppData\Local\OneDrive 2021-10-20 22:57 - 2021-10-20 22:57 - 000000000 ____D C:\ProgramData\Microsoft OneDrive 2021-10-20 22:56 - 2021-11-14 12:11 - 000795738 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2021-10-20 22:55 - 2021-10-20 22:55 - 000000020 ___SH C:\Users\mlade\ntuser.ini 2021-10-20 22:53 - 2021-11-14 12:03 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2021-10-20 22:53 - 2021-11-08 19:29 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1533502849-176086691-3893765355-1001 2021-10-20 22:53 - 2021-10-20 22:53 - 000007623 _____ C:\WINDOWS\diagwrn.xml 2021-10-20 22:53 - 2021-10-20 22:53 - 000007623 _____ C:\WINDOWS\diagerr.xml 2021-10-20 22:53 - 2021-10-20 22:53 - 000003408 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2021-10-20 22:53 - 2021-10-20 22:53 - 000003214 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d7c5f43c157a60 2021-10-20 22:53 - 2021-10-20 22:53 - 000003186 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2021-10-20 22:53 - 2021-10-20 22:53 - 000000000 ____D C:\WINDOWS\system32\Tasks\Intel 2021-10-20 22:51 - 2021-11-14 16:00 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2021-10-20 22:51 - 2021-11-13 18:28 - 000353752 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2021-10-20 22:51 - 2021-11-08 19:29 - 000002424 _____ C:\Users\mlade\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2021-10-20 22:51 - 2021-10-26 17:19 - 000000000 ____D C:\Users\mlade 2021-10-20 22:19 - 2021-11-06 18:14 - 000000000 ___DC C:\WINDOWS\Panther 2021-10-20 22:18 - 2021-10-20 22:19 - 000000036 _____ C:\WINDOWS\progress.ini 2021-10-20 22:13 - 2021-10-28 17:14 - 000000000 ____D C:\Users\mlade\AppData\Local\D3DSCache 2021-10-20 22:11 - 2021-10-20 22:53 - 000000000 ___HD C:\$GetCurrent 2021-10-20 22:08 - 2021-03-22 11:18 - 006433280 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys 2021-10-20 22:08 - 2021-03-22 11:07 - 045159558 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT 2021-10-20 22:08 - 2013-05-31 23:57 - 000249524 _____ C:\WINDOWS\system32\Drivers\RtPCEE4.DAT 2021-10-20 22:08 - 2010-09-23 19:21 - 000039672 _____ C:\WINDOWS\system32\Drivers\RtPCEE3.DAT 2021-10-20 22:08 - 2010-03-22 15:21 - 000247560 _____ C:\WINDOWS\system32\Drivers\RTConvEQ.dat 2021-10-20 22:08 - 2009-12-11 15:59 - 000059936 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\AzMixerSel.exe 2021-10-20 21:57 - 2021-11-14 13:50 - 000000000 __SHD C:\Users\mlade\IntelGraphicsProfiles 2021-10-20 21:57 - 2021-10-20 22:51 - 000000000 ____D C:\WINDOWS\Firmware 2021-10-20 21:57 - 2021-10-20 22:08 - 000000000 ____D C:\Users\mlade\AppData\Local\Intel 2021-10-20 21:57 - 2021-10-20 21:57 - 000000000 ____D C:\Users\mlade\AppData\LocalLow\Intel 2021-10-20 21:56 - 2021-08-27 05:15 - 024605184 _____ (Intel Corporation) C:\WINDOWS\system32\libmfxhw64.dll 2021-10-20 21:56 - 2021-08-27 05:15 - 023248440 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\libmfxhw32.dll 2021-10-20 21:56 - 2021-08-27 05:15 - 000456024 _____ C:\WINDOWS\system32\ze_loader.dll 2021-10-20 21:56 - 2021-08-27 05:15 - 000145232 _____ C:\WINDOWS\system32\ze_validation_layer.dll 2021-10-20 21:56 - 2021-08-27 05:14 - 026669392 _____ (Intel Corporation) C:\WINDOWS\system32\mfxplugin64_hw.dll 2021-10-20 21:56 - 2021-08-27 05:14 - 013513040 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\mfxplugin32_hw.dll 2021-10-20 21:56 - 2021-08-27 05:14 - 001754392 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe 2021-10-20 21:56 - 2021-08-27 05:14 - 001754392 _____ C:\WINDOWS\system32\vulkaninfo.exe 2021-10-20 21:56 - 2021-08-27 05:14 - 001360144 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2021-10-20 21:56 - 2021-08-27 05:14 - 001360144 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe 2021-10-20 21:56 - 2021-08-27 05:14 - 001057912 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll 2021-10-20 21:56 - 2021-08-27 05:14 - 001057912 _____ C:\WINDOWS\system32\vulkan-1.dll 2021-10-20 21:56 - 2021-08-27 05:14 - 000921208 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll 2021-10-20 21:56 - 2021-08-27 05:14 - 000921208 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll 2021-10-20 21:56 - 2021-08-27 05:14 - 000171504 _____ (Intel Corporation) C:\WINDOWS\system32\intel_gfx_api-x64.dll 2021-10-20 21:56 - 2021-08-27 05:14 - 000146776 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\intel_gfx_api-x86.dll 2021-10-20 21:56 - 2021-08-27 05:14 - 000128344 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll 2021-10-20 21:56 - 2021-08-27 05:14 - 000112984 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll 2021-10-20 21:50 - 2021-11-14 12:03 - 000008192 ___SH C:\DumpStack.log.tmp 2021-10-20 21:37 - 2021-10-20 21:57 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2021-10-20 21:35 - 2021-11-13 14:59 - 000000000 ____D C:\WINDOWS\system32\MRT 2021-10-20 21:35 - 2021-10-20 21:55 - 000000000 ____D C:\Program Files\ruxim 2021-10-20 21:23 - 2021-10-20 21:23 - 000000000 ____H C:\$WINRE_BACKUP_PARTITION.MARKER 2021-10-20 21:17 - 2021-10-20 21:17 - 000000000 ____D C:\Users\mlade\AppData\Local\Comms 2021-10-20 21:12 - 2021-10-25 16:25 - 000000000 ____D C:\ProgramData\Packages 2021-10-20 20:58 - 2021-10-20 20:58 - 000000000 ___HD C:\OneDriveTemp 2021-10-20 20:57 - 2021-11-14 12:04 - 000000000 ____D C:\Users\mlade\AppData\Local\PlaceholderTileLogoFolder 2021-10-20 20:57 - 2021-10-20 23:04 - 000000000 ___RD C:\Users\mlade\OneDrive 2021-10-20 20:56 - 2021-10-20 20:56 - 000000000 ____D C:\Users\mlade\AppData\Local\Publishers 2021-10-20 20:55 - 2021-10-30 19:43 - 000000000 ____D C:\Users\mlade\AppData\Local\Packages 2021-10-20 20:55 - 2021-10-26 17:46 - 000000000 ____D C:\Users\mlade\AppData\Roaming\Adobe 2021-10-20 20:55 - 2021-10-21 15:09 - 000000000 __RHD C:\Users\Public\AccountPictures 2021-10-20 20:55 - 2021-10-21 09:28 - 000000000 ____D C:\Users\mlade\AppData\Local\ConnectedDevicesPlatform 2021-10-20 20:55 - 2021-10-20 22:55 - 000000000 ___RD C:\Users\mlade\3D Objects 2021-10-20 20:55 - 2021-10-20 20:55 - 000000000 ____D C:\Users\mlade\AppData\Local\VirtualStore 2021-10-20 20:50 - 2021-11-14 12:27 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2021-10-20 20:50 - 2021-10-20 20:50 - 000000000 ____D C:\WINDOWS\CSC ==================== One month (modified) ================== (If an entry is included in the fixlist, the file/folder will be moved.) 2021-11-14 16:26 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF 2021-11-14 16:00 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-11-14 12:27 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps 2021-11-14 12:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2021-11-14 12:04 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2021-11-14 12:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState 2021-11-13 18:28 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2021-11-13 18:27 - 2019-12-07 10:54 - 000000000 ___SD C:\WINDOWS\system32\AppV 2021-11-13 18:27 - 2019-12-07 10:54 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2021-11-13 18:27 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs 2021-11-13 18:27 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2021-11-13 18:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup 2021-11-13 18:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2021-11-13 18:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources 2021-11-13 18:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup 2021-11-13 18:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2021-11-13 18:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism 2021-11-13 18:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences 2021-11-13 18:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2021-11-13 18:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2021-11-13 18:27 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing 2021-11-10 19:36 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2021-10-26 14:16 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2021-10-23 15:37 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\appcompat 2021-10-21 10:08 - 2019-03-19 05:49 - 000000167 _____ C:\WINDOWS\win.ini 2021-10-20 23:50 - 2019-12-07 10:14 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template 2021-10-20 23:50 - 2019-12-07 10:14 - 000000000 __RHD C:\Users\Public\Libraries 2021-10-20 23:50 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase 2021-10-20 23:50 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated 2021-10-20 23:50 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\spool 2021-10-20 23:50 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\USOPrivate 2021-10-20 23:50 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\MsDtc 2021-10-20 23:49 - 2019-12-07 10:51 - 000000000 ____D C:\WINDOWS\system32\OpenSSH 2021-10-20 23:49 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\UNP 2021-10-20 23:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata 2021-10-20 23:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV 2021-10-20 23:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT 2021-10-20 23:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE 2021-10-20 23:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata 2021-10-20 23:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV 2021-10-20 23:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT 2021-10-20 23:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\et-EE 2021-10-20 23:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\DDFs 2021-10-20 23:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\appraiser 2021-10-20 23:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellComponents 2021-10-20 23:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning 2021-10-20 23:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\DiagTrack 2021-10-20 23:48 - 2019-12-07 10:54 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll 2021-10-20 23:43 - 2019-12-07 10:18 - 000000000 ____D C:\WINDOWS\Setup 2021-10-20 23:26 - 2019-12-07 10:52 - 000000000 ____D C:\WINDOWS\OCR 2021-10-20 23:25 - 2019-12-07 10:54 - 000000000 ____D C:\Program Files\Windows Photo Viewer 2021-10-20 23:25 - 2019-12-07 10:54 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2021-10-20 23:25 - 2019-12-07 10:50 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN 2021-10-20 23:25 - 2019-12-07 10:50 - 000000000 ____D C:\WINDOWS\system32\WCN 2021-10-20 23:25 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12 2021-10-20 23:25 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\F12 2021-10-20 23:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe 2021-10-20 23:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform 2021-10-20 23:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep 2021-10-20 23:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\migwiz 2021-10-20 23:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\IME 2021-10-20 23:25 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender 2021-10-20 23:25 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\System 2021-10-20 23:25 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender 2021-10-20 23:12 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\PrintDialog 2021-10-20 22:53 - 2019-12-07 10:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM 2021-10-20 22:52 - 2019-12-07 10:14 - 000000000 __RSD C:\WINDOWS\Media 2021-10-20 22:51 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2021-10-20 22:49 - 2019-10-07 03:52 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies ==================== Files in the root of some directories ======== 2021-10-21 15:08 - 2021-10-21 15:08 - 000000003 _____ () C:\Users\mlade\AppData\Local\updater.log 2021-10-21 15:08 - 2021-10-21 15:08 - 000000424 _____ () C:\Users\mlade\AppData\Local\UserProducts.xml ==================== SigCheck ============================ (There is no automatic fix for files that do not pass verification.) ==================== End of FRST.txt ======================== mycity.rs/must-login.png

Profil

helen1 Poslao: 14 Nov 2021 19:20 Idi na vrh
offline helen1 Anti Malware Fighter Rank 2 Master učitelj Pridružio: 27 Avg 2005 Poruke: 8617 Gde živiš: Novi Beograd	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Probaj, pa javi. 1. Otvori Notepad (Text Document) i iskopiraj sledeći tekst unutar kod polja ispod: `CHR StartupUrls: Profile 3 -> "hxxps://search.protectedio.com/?u=43e38425c66708fd9addbdee817b4955&c=p1&src=hp&inst=1454010751" CHR DefaultSearchURL: Profile 3 -> hxxps://search.protectedio.com/search.php/?q={searchTerms}&u=43e38425c66708fd9addbdee817b4955&c=p1&src=srch&inst=1453837953 CHR DefaultSearchKeyword: Profile 3 -> searchio` 2. Sačuvaj notepad na Desktop pod nazivom fixlist.txt To možes uraditi i iz notepad-a => klik na File potom na Save As i u novom prozoru, dole pod File Name: staviš za naziv fixlist.txt Napomena: Važno je da se oba fajla, FRST i fixlist nalaze na istoj lokaciji jer u suprotnom fix nece raditi. 3. Ponovo pokreni FRST/FRST64, klikni jednom na dugme Fix i sačekaj. Ukoliko alat zatraži restart sistema, dozvoli mu i postaraj se da alat kompletira fix nakon restarta sistema. Alat će formirati log (Fixlog.txt) na Desktop-u. Potrebno je sadržaj tog loga iskopirati u poruku. Napomena: Ukoliko te alat upozori da postoji novija verzija, postaraj se da preuzmes i koristiš ažuriranu kopiju FRST-a.

Profil

MladenZA Poslao: 14 Nov 2021 19:24 Idi na vrh
offline MladenZA Građanin Mladen Stojanovic Student Pridružio: 29 Jan 2017 Poruke: 60 Gde živiš: Zajecar	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Izgleda da mi je popravilo Fix result of Farbar Recovery Scan Tool (x64) Version: 14-11-2021 Ran by mlade (14-11-2021 19:23:32) Run:1 Running from C:\Users\mlade\Desktop Loaded Profiles: mlade Boot Mode: Normal ============================================== fixlist content: *************** CHR StartupUrls: Profile 3 -> "hxxps://search.protectedio.com/?u=43e38425c66708fd9addbdee817b4955&c=p1&src=hp&inst=1454010751" CHR DefaultSearchURL: Profile 3 -> hxxps://search.protectedio.com/search.php/?q={searchTerms}&u=43e38425c66708fd9addbdee817b4955&c=p1&src=srch&inst=1453837953 CHR DefaultSearchKeyword: Profile 3 -> searchio *************** "Chrome StartupUrls" => removed successfully "Chrome DefaultSearchURL" => removed successfully "Chrome DefaultSearchKeyword" => removed successfully ==== End of Fixlog 19:23:33 ====

Profil

helen1 Poslao: 14 Nov 2021 21:25 Idi na vrh
offline helen1 Anti Malware Fighter Rank 2 Master učitelj Pridružio: 27 Avg 2005 Poruke: 8617 Gde živiš: Novi Beograd	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Ako je to to, odradi sledece: Preimenuj FRST.exe sa Desktop-a u uninstall.exe i pokreni ga. To ce obrisati FRST i njegove dodatne fajlove.

Profil

MladenZA Poslao: 15 Nov 2021 09:21 Idi na vrh
offline MladenZA Građanin Mladen Stojanovic Student Pridružio: 29 Jan 2017 Poruke: 60 Gde živiš: Zajecar	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Napisano: 15 Nov 2021 8:28 Uspelo je da ga ukloni ali se sinhronizacija iskljucila i ponovo kada sam sinhronizovao vratilo se. Probao sam sad i na racunaru opet i tu ga takodje nema sve dok ne upalim sinhronizaciju. Dopuna: 15 Nov 2021 9:21 Sinhronizovao sam na racunaru i tamo se pojavio kao sto rekoh, ali se takodje pojavio i na laptopu ponovo nakon sto sam upalio i ugasio sinhronizaciju na racunaru. Sada ga ponovo ima na laptopu, iako je sinhronizacija iskljucena. Ne znam kako google nalozi rade, ali pretpostavljam da je u njemu problem, jer kada se upali sinhronizacija on uzme te neke sacuvane podatke i podesavanja i izgleda da je ovaj search.protectido jedno od podesavanja.

Profil

helen1 Poslao: 16 Nov 2021 00:03 Idi na vrh
offline helen1 Anti Malware Fighter Rank 2 Master učitelj Pridružio: 27 Avg 2005 Poruke: 8617 Gde živiš: Novi Beograd	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Verovatno, jedino da probamo da uklonimo taj profil. Ako hoces da probamo, postavi mi novi log, da vidim sta se promenilo.

Profil

MladenZA Poslao: 16 Nov 2021 17:26 Idi na vrh
offline MladenZA Građanin Mladen Stojanovic Student Pridružio: 29 Jan 2017 Poruke: 60 Gde živiš: Zajecar	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Kada ga uklonimo da li se brise i mejl i sve sa njim ili taj deo ostaje a samo uklanjamo sa google profila ? Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 14-11-2021 Ran by mlade (administrator) on DESKTOP-5LVBIKS (Acer Aspire A515-56) (16-11-2021 17:23:33) Running from C:\Users\mlade\Desktop Loaded Profiles: mlade Platform: Microsoft Windows 10 Pro Version 21H1 19043.1348 (X64) Language: English (United States) Default browser: Chrome Boot Mode: Normal ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (Adobe Inc. -> Adobe Inc) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) C:\Windows\System32\ELANFPService.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler64.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <9> (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorvd.inf_amd64_9303e1e719a54774\RstMwService.exe (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_01e62fd23fef9f71\igfxCUIServiceN.exe (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_01e62fd23fef9f71\igfxEMN.exe (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_7de174f2e8b6260b\OneApp.IGCC.WinService.exe (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_bbafec440f419cb1\IntelCpHDCPSvc.exe (Kilonova LLC -> Skillbrains) C:\Program Files (x86)\Skillbrains\lightshot\5.5.0.7\Lightshot.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2110.13603.0_x64__8wekyb3d8bbwe\Cortana.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2110.13603.0_x64__8wekyb3d8bbwe\Win32Bridge.Server.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20544.0_x64__8wekyb3d8bbwe\HxTsr.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.721.10202.0_x64__8wekyb3d8bbwe\GameBar.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.721.10202.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\BackgroundTransferHost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.1310_none_7e15ec207c87d405\TiWorker.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCopyAccelerator.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MsMpEng.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\NisSrv.exe (Node.js Foundation -> Node.js) C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_518b8f4878341936\RtkAudUService64.exe (Smart Sound Technology -> Intel) C:\Windows\System32\DriverStore\FileRepository\intcoed.inf_amd64_692ad4b47bfa6b04\AS\IAS\IntelAudioService.exe ==================== Registry (Whitelisted) =================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_518b8f4878341936\RtkAudUService64.exe [1254488 2021-03-22] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [226728 2019-07-21] (Kilonova LLC -> ) HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [114824 2020-09-14] (Adobe Inc. -> ) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706344 2021-09-27] (Oracle America, Inc. -> Oracle Corporation) HKU\S-1-5-21-1533502849-176086691-3893765355-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\mlade\AppData\Local\Microsoft\Teams\Update.exe [2455256 2021-10-21] (Microsoft 3rd Party Application Component -> Microsoft Corporation) HKU\S-1-5-21-1533502849-176086691-3893765355-1001\...\Run: [Discord] => C:\Users\mlade\AppData\Local\Discord\Update.exe [1512608 2021-09-21] (Discord Inc. -> GitHub) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\96.0.4664.45\Installer\chrmstp.exe [2021-11-16] (Google LLC -> Google LLC) ==================== Scheduled Tasks (Whitelisted) ============ (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {58B78356-B305-414F-B42D-56BAB2281EBA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-04] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {B501BC9B-2922-47BA-BD55-7394FC3BA8CB} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-04] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {B999F852-5302-4141-9AAF-87D72793585F} - System32\Tasks\Microsoft\Windows\WindowsUpdate\RUXIM\RUXIMDisplay => C:\Program Files\ruxim\ruximics.exe [477512 2021-07-01] (Microsoft Windows -> Microsoft Corporation) Task: {C2A270F3-8F69-42EA-A234-C7F0C5916DB9} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1562376 2021-08-16] (Adobe Inc. -> Adobe Inc.) Task: {CCE53479-7428-4F4E-930B-E6BCEF0C111D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-10-21] (Google LLC -> Google LLC) Task: {D100C7B1-B841-4ECC-A6F8-EA1025658347} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-04] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {D8679DB0-173F-4196-9453-44902BF09C46} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-10-21] (Google LLC -> Google LLC) Task: {ED08A8D1-8808-4CB4-A5F6-054403254971} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>) Task: {EF35A188-F529-4ECF-B116-9A319EEC4BE1} - System32\Tasks\update-S-1-5-21-1533502849-176086691-3893765355-1001 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>) Task: {FC74B300-B012-4479-851E-940F0D902327} - System32\Tasks\Microsoft\Windows\WindowsUpdate\RUXIM\RUXIMSync => C:\Program Files\ruxim\ruximics.exe [477512 2021-07-01] (Microsoft Windows -> Microsoft Corporation) Task: {FC83E548-6A9A-4361-A731-22AD6B016B5B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-04] (Microsoft Windows Publisher -> Microsoft Corporation) (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\WINDOWS\Tasks\update-S-1-5-21-1533502849-176086691-3893765355-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Tcpip\Parameters: [DhcpNameServer] 93.184.80.109 93.184.80.108 Tcpip\..\Interfaces\{4aaa8562-7c21-4856-b5eb-db234ce0f70f}: [DhcpNameServer] 93.184.80.109 93.184.80.108 Tcpip\..\Interfaces\{703a14ed-c7dc-4089-954e-be5cfbf73beb}: [DhcpNameServer] 93.184.80.109 93.184.80.108 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\mlade\AppData\Local\Microsoft\Edge\User Data\Default [2021-11-14] Edge Profile: C:\Users\mlade\AppData\Local\Microsoft\Edge\User Data\Profile 1 [2021-11-08] Edge Profile: C:\Users\mlade\AppData\Local\Microsoft\Edge\User Data\Profile 2 [2021-11-08] FireFox: ======== FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2021-10-05] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin-x32: @java.com/DTPlugin,version=11.311.2 -> E:\Java\bin\dtplugin\npDeployJava1.dll [2021-10-28] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.311.2 -> E:\Java\bin\plugin2\npjp2.dll [2021-10-28] (Oracle America, Inc. -> Oracle Corporation) Chrome: ======= CHR DefaultProfile: Profile 3 CHR Profile: C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-11-15] CHR Profile: C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 2 [2021-11-14] CHR Extension: (Slides) - C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-11-08] CHR Extension: (Safe Torrent Scanner) - C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2021-11-08] CHR Extension: (Docs) - C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2021-11-08] CHR Extension: (Google Drive) - C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-11-08] CHR Extension: (YouTube) - C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-11-08] CHR Extension: (Adobe Acrobat) - C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2021-11-08] CHR Extension: (Sheets) - C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-11-08] CHR Extension: (Google Docs Offline) - C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-11-08] CHR Extension: (Chrome Web Store Payments) - C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-11-08] CHR Extension: (Gmail) - C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-11-08] CHR Profile: C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 3 [2021-11-16] CHR StartupUrls: Profile 3 -> "hxxps://search.protectedio.com/?u=43e38425c66708fd9addbdee817b4955&c=p1&src=hp&inst=1454010751" CHR Extension: (Charcoal: Dark Mode for Messenger) - C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aaekanoannlhnajolbijaoflfhikcgng [2021-11-14] CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-11-14] CHR Extension: (Chrome Web Store Payments) - C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-11-14] CHR Profile: C:\Users\mlade\AppData\Local\Google\Chrome\User Data\System Profile [2021-11-15] CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] ==================== Services (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-08-16] (Adobe Inc. -> Adobe Inc.) R2 IntelAudioService; C:\WINDOWS\System32\DriverStore\FileRepository\intcoed.inf_amd64_692ad4b47bfa6b04\\AS\\IAS\\IntelAudioService.exe [536432 2020-12-17] (Smart Sound Technology -> Intel) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6103464 2021-11-13] (Microsoft Windows Publisher -> Microsoft Corporation) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\NisSrv.exe [2872024 2021-11-04] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MsMpEng.exe [128376 2021-11-04] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Drivers (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R3 AcerAirplaneModeController; C:\WINDOWS\System32\drivers\AcerAirplaneModeController.sys [30168 2020-05-13] (Acer Incorporated -> Acer Incorporated) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed] R3 iaLPSS2_GPIO2_TGL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_gpio2_tgl.inf_amd64_d0e63c4e3754f42f\iaLPSS2_GPIO2_TGL.sys [128152 2020-08-10] (Intel Corporation -> Intel Corporation) R3 iaLPSS2_I2C_TGL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_i2c_tgl.inf_amd64_ab87bf17a571e523\iaLPSS2_I2C_TGL.sys [197272 2020-08-10] (Intel Corporation -> Intel Corporation) R0 iaStorVD; C:\WINDOWS\System32\drivers\iaStorVD.sys [1494192 2021-04-30] (Intel Corporation -> Intel Corporation) R3 IntcAudioBus; C:\WINDOWS\System32\DriverStore\FileRepository\intcaudiobus.inf_amd64_266f908b1469071e\IntcAudioBus.sys [297352 2020-12-17] ((PREPRODUCTION USE ONLY) Smart Sound Technology -> Intel(R) Corporation) R3 IntcBTAu; C:\WINDOWS\System32\DriverStore\FileRepository\intcbtau.inf_amd64_919d03cd3d4592af\IntcBTAu.sys [811400 2020-12-17] ((PREPRODUCTION USE ONLY) Smart Sound Technology -> Intel(R) Corporation) R3 IntcDMic; C:\WINDOWS\System32\DriverStore\FileRepository\intcdmic.inf_amd64_a8b8c3832855e235\IntcDMic.sys [705416 2020-12-17] ((PREPRODUCTION USE ONLY) Smart Sound Technology -> Intel(R) Corporation) R3 IntcOED; C:\WINDOWS\System32\DriverStore\FileRepository\intcoed.inf_amd64_692ad4b47bfa6b04\IntcOED.sys [1335688 2020-12-17] ((PREPRODUCTION USE ONLY) Smart Sound Technology -> Intel(R) Corporation) R3 IntelGNA; C:\WINDOWS\System32\DriverStore\FileRepository\gna.inf_amd64_689d3d5fefeef458\gna.sys [84880 2020-11-05] (Gaussian Mixture Models and Neural Networks Accelerator -> Intel Corporation) S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [39920 2021-05-26] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48520 2021-11-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [435424 2021-11-04] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86240 2021-11-04] (Microsoft Windows -> Microsoft Corporation) S1 amsdk; \??\C:\WINDOWS\system32\drivers\amsdk.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One month (created) (Whitelisted) ========= (If an entry is included in the fixlist, the file/folder will be moved.) 2021-11-16 17:23 - 2021-11-16 17:23 - 000017313 _____ C:\Users\mlade\Desktop\FRST.txt 2021-11-14 16:26 - 2021-11-16 17:23 - 000000000 ____D C:\FRST 2021-11-14 16:26 - 2021-11-14 16:26 - 002311680 _____ (Farbar) C:\Users\mlade\Desktop\FRST64.exe 2021-11-13 18:08 - 2021-11-13 18:08 - 000000046 _____ C:\Users\mlade\Desktop\sajt neki iz bookmarka.txt 2021-11-13 17:34 - 2021-11-13 17:55 - 000000000 ____D C:\Users\mlade\Desktop\Hemija zadaci str 83 2021-11-13 17:12 - 2021-11-13 17:12 - 000052942 _____ C:\Users\mlade\Desktop\ZAPISATI.pptx 2021-11-13 16:07 - 2021-11-13 17:00 - 000113304 _____ C:\WINDOWS\ZAM.krnl.trace 2021-11-13 16:07 - 2021-11-13 17:00 - 000000000 ____D C:\Users\mlade\AppData\Local\AMSDK 2021-11-13 16:07 - 2021-11-13 16:07 - 000000000 ____D C:\Users\mlade\AppData\Local\Zemana 2021-11-13 15:31 - 2021-11-13 15:31 - 000068992 _____ C:\Users\mlade\AppData\Local\GDIPFONTCACHEV1.DAT 2021-11-13 15:06 - 2021-11-13 15:06 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe 2021-11-13 15:06 - 2021-11-13 15:06 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe 2021-11-13 15:06 - 2021-11-13 15:06 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe 2021-11-13 15:06 - 2021-11-13 15:06 - 000011363 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2021-11-13 14:59 - 2021-11-13 14:59 - 000000000 ___HD C:\$WinREAgent 2021-11-09 22:54 - 2021-11-09 22:54 - 000224110 _____ C:\Users\mlade\Downloads\6ED10551FB000BA2_datasheet_en.pdf 2021-11-06 15:10 - 2021-11-06 15:56 - 001902069 _____ C:\Users\mlade\Desktop\Praktikum.pdf 2021-11-06 15:05 - 2021-11-13 15:31 - 000000000 ____D C:\Users\mlade\Desktop\Hemija 2021-11-06 14:56 - 2021-11-06 14:56 - 000000000 ____D C:\Program Files (x86)\MSECache 2021-11-02 18:08 - 2021-11-02 18:08 - 000000000 ____D C:\Users\mlade\Documents\Lightshot 2021-10-28 18:06 - 2021-10-28 18:06 - 000164696 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll 2021-10-28 18:06 - 2021-10-28 18:06 - 000000000 ____D C:\Users\mlade\AppData\Roaming\Sun 2021-10-28 18:06 - 2021-10-28 18:06 - 000000000 ____D C:\Users\mlade\AppData\LocalLow\Sun 2021-10-28 18:06 - 2021-10-28 18:06 - 000000000 ____D C:\ProgramData\Oracle 2021-10-28 18:06 - 2021-10-28 18:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2021-10-26 17:45 - 2021-10-26 17:45 - 000000883 _____ C:\Users\mlade\Desktop\Adobe Premiere Pro 2020.lnk 2021-10-26 17:45 - 2021-10-26 17:45 - 000000883 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Premiere Pro 2020.lnk 2021-10-26 17:45 - 2021-10-26 17:45 - 000000000 ____D C:\Users\Public\Documents\AdobeInstalledCodecsTier2 2021-10-26 17:45 - 2021-10-26 17:45 - 000000000 ____D C:\Users\Public\Documents\Adobe 2021-10-26 17:44 - 2021-10-26 17:44 - 000000000 ____D C:\Users\Public\Documents\AdobeInstalledCodecs 2021-10-26 17:22 - 2021-10-26 17:22 - 000002404 _____ C:\Users\mlade\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Blockbench.lnk 2021-10-26 17:22 - 2021-10-26 17:22 - 000002396 _____ C:\Users\mlade\Desktop\Blockbench.lnk 2021-10-26 14:22 - 2021-10-26 17:46 - 000000000 ____D C:\Users\mlade\Documents\Adobe 2021-10-26 14:21 - 2021-10-26 14:21 - 000001064 _____ C:\Users\mlade\Desktop\Adobe Photoshop 2021.lnk 2021-10-26 14:20 - 2021-10-26 14:20 - 000001064 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop 2021.lnk 2021-10-26 14:17 - 2021-10-26 14:17 - 000000000 ____D C:\Program Files (x86)\Adobe 2021-10-26 14:06 - 2021-10-26 14:14 - 000000000 ____D C:\Users\mlade\AppData\Local\BitTorrentHelper 2021-10-26 14:05 - 2021-10-26 16:16 - 000000000 ____D C:\Users\mlade\AppData\Roaming\uTorrent 2021-10-26 14:04 - 2021-10-26 14:04 - 000000000 ____D C:\Users\mlade\AppData\Local\UT008 2021-10-26 13:57 - 2021-10-26 13:57 - 000000000 ____D C:\WINDOWS\system32\Tasks\Agent Activation Runtime 2021-10-23 16:38 - 2021-10-23 16:13 - 000000030 _____ C:\AVScanner.ini 2021-10-23 16:19 - 2021-10-26 14:16 - 000000000 ____D C:\ProgramData\Package Cache 2021-10-23 16:19 - 2021-10-23 16:19 - 000000000 ____D C:\Users\mlade\AppData\Local\PeerDistRepub 2021-10-23 16:14 - 2021-10-23 16:14 - 000000000 ____D C:\Users\mlade\AppData\LocalLow\Adobe 2021-10-23 16:14 - 2021-10-23 16:14 - 000000000 ____D C:\Users\mlade\AppData\Local\SolidDocuments 2021-10-23 16:12 - 2021-10-26 17:45 - 000000000 ____D C:\Program Files\Common Files\Adobe 2021-10-23 16:12 - 2021-10-26 17:45 - 000000000 ____D C:\Program Files\Adobe 2021-10-23 16:12 - 2021-10-26 14:18 - 000000000 ____D C:\ProgramData\Adobe 2021-10-23 16:12 - 2021-10-23 16:38 - 000000000 ____D C:\ProgramData\McAfee 2021-10-23 16:12 - 2021-10-23 16:12 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task 2021-10-23 16:12 - 2021-10-23 16:12 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk 2021-10-23 16:10 - 2021-10-26 15:49 - 000000000 ____D C:\Users\mlade\AppData\Local\Adobe 2021-10-21 15:14 - 2021-10-21 15:15 - 000000801 _____ C:\Users\mlade\Desktop\Blockbench - Shortcut.lnk 2021-10-21 15:09 - 2021-11-06 16:17 - 000000000 ____D C:\Users\mlade\AppData\Roaming\.minecraft 2021-10-21 15:09 - 2021-10-21 15:09 - 000000666 _____ C:\Users\Public\Desktop\Minecraft Launcher.lnk 2021-10-21 15:09 - 2021-10-21 15:09 - 000000000 ____D C:\Users\mlade\AppData\Local\CEF 2021-10-21 15:09 - 2021-10-21 15:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minecraft Launcher 2021-10-21 15:08 - 2021-10-26 17:20 - 000000420 _____ C:\WINDOWS\Tasks\update-sys.job 2021-10-21 15:08 - 2021-10-26 17:20 - 000000420 _____ C:\WINDOWS\Tasks\update-S-1-5-21-1533502849-176086691-3893765355-1001.job 2021-10-21 15:08 - 2021-10-21 15:08 - 000003408 _____ C:\WINDOWS\system32\Tasks\update-S-1-5-21-1533502849-176086691-3893765355-1001 2021-10-21 15:08 - 2021-10-21 15:08 - 000003346 _____ C:\WINDOWS\system32\Tasks\update-sys 2021-10-21 15:08 - 2021-10-21 15:08 - 000000424 _____ C:\Users\mlade\AppData\Local\UserProducts.xml 2021-10-21 15:08 - 2021-10-21 15:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lightshot 2021-10-21 15:08 - 2021-10-21 15:08 - 000000000 ____D C:\Program Files (x86)\Skillbrains 2021-10-21 11:50 - 2021-10-21 11:50 - 000000000 _SHDL C:\Documents and Settings 2021-10-21 11:49 - 2021-11-14 12:03 - 000000000 ____D C:\Intel 2021-10-21 11:49 - 2021-11-04 16:10 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2021-10-21 11:49 - 2021-10-21 11:49 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf 2021-10-21 10:10 - 2021-10-21 10:10 - 000000000 ____D C:\WINDOWS\PCHEALTH 2021-10-21 10:10 - 2021-10-21 10:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2021-10-21 10:10 - 2021-10-21 10:10 - 000000000 ____D C:\Program Files (x86)\MSBuild 2021-10-21 10:10 - 2021-10-21 10:10 - 000000000 ____D C:\Program Files (x86)\Microsoft Works 2021-10-21 10:10 - 2021-10-21 10:10 - 000000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 2021-10-21 10:08 - 2021-10-21 10:08 - 000000000 ____D C:\WINDOWS\SHELLNEW 2021-10-21 10:08 - 2021-10-21 10:08 - 000000000 ____D C:\Users\mlade\AppData\Local\Microsoft Help 2021-10-21 10:08 - 2021-10-21 10:08 - 000000000 ____D C:\Program Files\Microsoft Office 2021-10-21 09:55 - 2021-10-21 09:55 - 000000000 ____D C:\Users\mlade\AppData\Roaming\WinRAR 2021-10-21 09:54 - 2021-10-21 09:54 - 000000000 ____D C:\Users\mlade\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2021-10-21 09:54 - 2021-10-21 09:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2021-10-21 09:30 - 2021-11-15 14:02 - 000000000 ____D C:\Users\mlade\AppData\Roaming\discord 2021-10-21 09:30 - 2021-11-15 13:19 - 000000000 ____D C:\Users\mlade\AppData\Local\Discord 2021-10-21 09:30 - 2021-10-21 09:31 - 000002227 _____ C:\Users\mlade\Desktop\Discord.lnk 2021-10-21 09:30 - 2021-10-21 09:30 - 000000000 ____D C:\Users\mlade\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc 2021-10-21 09:26 - 2021-10-21 09:31 - 000000000 ____D C:\Users\mlade\AppData\Local\SquirrelTemp 2021-10-21 09:26 - 2021-10-21 09:26 - 000002364 _____ C:\Users\mlade\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk 2021-10-21 09:26 - 2021-10-21 09:26 - 000002356 _____ C:\Users\mlade\Desktop\Microsoft Teams.lnk 2021-10-21 09:26 - 2021-10-21 09:26 - 000000000 ____D C:\Users\mlade\AppData\Roaming\Teams 2021-10-21 08:27 - 2021-10-30 21:43 - 000000000 ____D C:\Users\mlade\AppData\Roaming\Blockbench 2021-10-21 08:27 - 2021-10-23 16:16 - 000000000 ____D C:\Users\mlade\AppData\Local\blockbench-updater 2021-10-21 08:05 - 2021-11-16 17:23 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2021-10-21 08:05 - 2021-11-16 17:23 - 000000000 ____D C:\Program Files (x86)\Google 2021-10-21 08:05 - 2021-10-21 08:10 - 000000000 ____D C:\Users\mlade\AppData\Local\Google 2021-10-21 08:05 - 2021-10-21 08:05 - 000003420 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2021-10-21 08:05 - 2021-10-21 08:05 - 000003296 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2021-10-21 08:05 - 2021-10-21 08:05 - 000000000 ____D C:\Program Files\Google 2021-10-20 23:50 - 2021-10-20 23:50 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate 2021-10-20 23:49 - 2021-10-20 23:50 - 000000000 ____D C:\WINDOWS\ServiceProfiles 2021-10-20 23:49 - 2021-10-20 23:49 - 000008192 _____ C:\WINDOWS\system32\config\userdiff 2021-10-20 23:47 - 2021-10-20 23:47 - 002371072 _____ C:\WINDOWS\system32\rdpnano.dll 2021-10-20 23:47 - 2021-10-20 23:47 - 002111488 _____ (Digimarc) C:\WINDOWS\SysWOW64\DMRCDecoder.dll 2021-10-20 23:47 - 2021-10-20 23:47 - 001864192 _____ (The ICU Project) C:\WINDOWS\SysWOW64\icu.dll 2021-10-20 23:47 - 2021-10-20 23:47 - 001687040 _____ C:\WINDOWS\system32\libcrypto.dll 2021-10-20 23:47 - 2021-10-20 23:47 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll 2021-10-20 23:47 - 2021-10-20 23:47 - 000672768 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll 2021-10-20 23:47 - 2021-10-20 23:47 - 000611960 _____ C:\WINDOWS\SysWOW64\TextShaping.dll 2021-10-20 23:47 - 2021-10-20 23:47 - 000468440 _____ C:\WINDOWS\SysWOW64\WindowManagementAPI.dll 2021-10-20 23:47 - 2021-10-20 23:47 - 000203264 _____ C:\WINDOWS\system32\uwfcfgmgmt.dll 2021-10-20 23:47 - 2021-10-20 23:47 - 000170496 _____ C:\WINDOWS\system32\DeviceUpdateCenterCsp.dll 2021-10-20 23:47 - 2021-10-20 23:47 - 000158208 _____ C:\WINDOWS\system32\uwfcsp.dll 2021-10-20 23:47 - 2021-10-20 23:47 - 000040960 _____ C:\WINDOWS\system32\uwfservicingapi.dll 2021-10-20 23:46 - 2021-10-20 23:46 - 002295296 _____ (Digimarc) C:\WINDOWS\system32\DMRCDecoder.dll 2021-10-20 23:46 - 2021-10-20 23:46 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll 2021-10-20 23:46 - 2021-10-20 23:46 - 002260480 _____ (The ICU Project) C:\WINDOWS\system32\icu.dll 2021-10-20 23:46 - 2021-10-20 23:46 - 001164288 _____ C:\WINDOWS\system32\MBR2GPT.EXE 2021-10-20 23:46 - 2021-10-20 23:46 - 000706536 _____ C:\WINDOWS\system32\TextShaping.dll 2021-10-20 23:46 - 2021-10-20 23:46 - 000657464 _____ C:\WINDOWS\system32\WindowManagementAPI.dll 2021-10-20 23:46 - 2021-10-20 23:46 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll 2021-10-20 23:46 - 2021-10-20 23:46 - 000287232 _____ C:\WINDOWS\system32\CoreMas.dll 2021-10-20 23:46 - 2021-10-20 23:46 - 000162816 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe 2021-10-20 23:46 - 2021-10-20 23:46 - 000098304 _____ C:\WINDOWS\system32\Drivers\cimfs.sys 2021-10-20 23:46 - 2021-10-20 23:46 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe 2021-10-20 23:04 - 2021-10-20 23:04 - 000000000 ____D C:\Users\mlade\AppData\Local\OneDrive 2021-10-20 22:57 - 2021-10-20 22:57 - 000000000 ____D C:\ProgramData\Microsoft OneDrive 2021-10-20 22:56 - 2021-11-14 12:11 - 000795738 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2021-10-20 22:55 - 2021-10-20 22:55 - 000000020 ___SH C:\Users\mlade\ntuser.ini 2021-10-20 22:53 - 2021-11-14 12:03 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2021-10-20 22:53 - 2021-11-08 19:29 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1533502849-176086691-3893765355-1001 2021-10-20 22:53 - 2021-10-20 22:53 - 000007623 _____ C:\WINDOWS\diagwrn.xml 2021-10-20 22:53 - 2021-10-20 22:53 - 000007623 _____ C:\WINDOWS\diagerr.xml 2021-10-20 22:53 - 2021-10-20 22:53 - 000003408 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2021-10-20 22:53 - 2021-10-20 22:53 - 000003214 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d7c5f43c157a60 2021-10-20 22:53 - 2021-10-20 22:53 - 000003186 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2021-10-20 22:53 - 2021-10-20 22:53 - 000000000 ____D C:\WINDOWS\system32\Tasks\Intel 2021-10-20 22:51 - 2021-11-15 13:17 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2021-10-20 22:51 - 2021-11-13 18:28 - 000353752 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2021-10-20 22:51 - 2021-11-08 19:29 - 000002424 _____ C:\Users\mlade\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2021-10-20 22:51 - 2021-10-26 17:19 - 000000000 ____D C:\Users\mlade 2021-10-20 22:19 - 2021-11-06 18:14 - 000000000 ___DC C:\WINDOWS\Panther 2021-10-20 22:18 - 2021-10-20 22:19 - 000000036 _____ C:\WINDOWS\progress.ini 2021-10-20 22:13 - 2021-10-28 17:14 - 000000000 ____D C:\Users\mlade\AppData\Local\D3DSCache 2021-10-20 22:11 - 2021-10-20 22:53 - 000000000 ___HD C:\$GetCurrent 2021-10-20 22:08 - 2021-03-22 11:18 - 006433280 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys 2021-10-20 22:08 - 2021-03-22 11:07 - 045159558 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT 2021-10-20 22:08 - 2013-05-31 23:57 - 000249524 _____ C:\WINDOWS\system32\Drivers\RtPCEE4.DAT 2021-10-20 22:08 - 2010-09-23 19:21 - 000039672 _____ C:\WINDOWS\system32\Drivers\RtPCEE3.DAT 2021-10-20 22:08 - 2010-03-22 15:21 - 000247560 _____ C:\WINDOWS\system32\Drivers\RTConvEQ.dat 2021-10-20 22:08 - 2009-12-11 15:59 - 000059936 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\AzMixerSel.exe 2021-10-20 21:57 - 2021-11-16 17:22 - 000000000 __SHD C:\Users\mlade\IntelGraphicsProfiles 2021-10-20 21:57 - 2021-10-20 22:51 - 000000000 ____D C:\WINDOWS\Firmware 2021-10-20 21:57 - 2021-10-20 22:08 - 000000000 ____D C:\Users\mlade\AppData\Local\Intel 2021-10-20 21:57 - 2021-10-20 21:57 - 000000000 ____D C:\Users\mlade\AppData\LocalLow\Intel 2021-10-20 21:56 - 2021-08-27 05:15 - 024605184 _____ (Intel Corporation) C:\WINDOWS\system32\libmfxhw64.dll 2021-10-20 21:56 - 2021-08-27 05:15 - 023248440 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\libmfxhw32.dll 2021-10-20 21:56 - 2021-08-27 05:15 - 000456024 _____ C:\WINDOWS\system32\ze_loader.dll 2021-10-20 21:56 - 2021-08-27 05:15 - 000145232 _____ C:\WINDOWS\system32\ze_validation_layer.dll 2021-10-20 21:56 - 2021-08-27 05:14 - 026669392 _____ (Intel Corporation) C:\WINDOWS\system32\mfxplugin64_hw.dll 2021-10-20 21:56 - 2021-08-27 05:14 - 013513040 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\mfxplugin32_hw.dll 2021-10-20 21:56 - 2021-08-27 05:14 - 001754392 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe 2021-10-20 21:56 - 2021-08-27 05:14 - 001754392 _____ C:\WINDOWS\system32\vulkaninfo.exe 2021-10-20 21:56 - 2021-08-27 05:14 - 001360144 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2021-10-20 21:56 - 2021-08-27 05:14 - 001360144 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe 2021-10-20 21:56 - 2021-08-27 05:14 - 001057912 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll 2021-10-20 21:56 - 2021-08-27 05:14 - 001057912 _____ C:\WINDOWS\system32\vulkan-1.dll 2021-10-20 21:56 - 2021-08-27 05:14 - 000921208 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll 2021-10-20 21:56 - 2021-08-27 05:14 - 000921208 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll 2021-10-20 21:56 - 2021-08-27 05:14 - 000171504 _____ (Intel Corporation) C:\WINDOWS\system32\intel_gfx_api-x64.dll 2021-10-20 21:56 - 2021-08-27 05:14 - 000146776 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\intel_gfx_api-x86.dll 2021-10-20 21:56 - 2021-08-27 05:14 - 000128344 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll 2021-10-20 21:56 - 2021-08-27 05:14 - 000112984 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll 2021-10-20 21:50 - 2021-11-14 12:03 - 000008192 ___SH C:\DumpStack.log.tmp 2021-10-20 21:37 - 2021-10-20 21:57 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2021-10-20 21:35 - 2021-11-13 14:59 - 000000000 ____D C:\WINDOWS\system32\MRT 2021-10-20 21:35 - 2021-10-20 21:55 - 000000000 ____D C:\Program Files\ruxim 2021-10-20 21:23 - 2021-10-20 21:23 - 000000000 ____H C:\$WINRE_BACKUP_PARTITION.MARKER 2021-10-20 21:17 - 2021-10-20 21:17 - 000000000 ____D C:\Users\mlade\AppData\Local\Comms 2021-10-20 21:12 - 2021-10-25 16:25 - 000000000 ____D C:\ProgramData\Packages 2021-10-20 20:58 - 2021-10-20 20:58 - 000000000 ___HD C:\OneDriveTemp 2021-10-20 20:57 - 2021-11-14 12:04 - 000000000 ____D C:\Users\mlade\AppData\Local\PlaceholderTileLogoFolder 2021-10-20 20:57 - 2021-10-20 23:04 - 000000000 ___RD C:\Users\mlade\OneDrive 2021-10-20 20:56 - 2021-10-20 20:56 - 000000000 ____D C:\Users\mlade\AppData\Local\Publishers 2021-10-20 20:55 - 2021-10-30 19:43 - 000000000 ____D C:\Users\mlade\AppData\Local\Packages 2021-10-20 20:55 - 2021-10-26 17:46 - 000000000 ____D C:\Users\mlade\AppData\Roaming\Adobe 2021-10-20 20:55 - 2021-10-21 15:09 - 000000000 __RHD C:\Users\Public\AccountPictures 2021-10-20 20:55 - 2021-10-21 09:28 - 000000000 ____D C:\Users\mlade\AppData\Local\ConnectedDevicesPlatform 2021-10-20 20:55 - 2021-10-20 22:55 - 000000000 ___RD C:\Users\mlade\3D Objects 2021-10-20 20:55 - 2021-10-20 20:55 - 000000000 ____D C:\Users\mlade\AppData\Local\VirtualStore 2021-10-20 20:50 - 2021-11-14 12:27 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2021-10-20 20:50 - 2021-10-20 20:50 - 000000000 ____D C:\WINDOWS\CSC ==================== One month (modified) ================== (If an entry is included in the fixlist, the file/folder will be moved.) 2021-11-16 17:22 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-11-15 08:51 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF 2021-11-14 12:27 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps 2021-11-14 12:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2021-11-14 12:04 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2021-11-14 12:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState 2021-11-13 18:28 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2021-11-13 18:27 - 2019-12-07 10:54 - 000000000 ___SD C:\WINDOWS\system32\AppV 2021-11-13 18:27 - 2019-12-07 10:54 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2021-11-13 18:27 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs 2021-11-13 18:27 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2021-11-13 18:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup 2021-11-13 18:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2021-11-13 18:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources 2021-11-13 18:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup 2021-11-13 18:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2021-11-13 18:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism 2021-11-13 18:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences 2021-11-13 18:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2021-11-13 18:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2021-11-13 18:27 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing 2021-11-10 19:36 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2021-10-26 14:16 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2021-10-23 15:37 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\appcompat 2021-10-21 10:08 - 2019-03-19 05:49 - 000000167 _____ C:\WINDOWS\win.ini 2021-10-20 23:50 - 2019-12-07 10:14 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template 2021-10-20 23:50 - 2019-12-07 10:14 - 000000000 __RHD C:\Users\Public\Libraries 2021-10-20 23:50 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase 2021-10-20 23:50 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated 2021-10-20 23:50 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\spool 2021-10-20 23:50 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\USOPrivate 2021-10-20 23:50 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\MsDtc 2021-10-20 23:49 - 2019-12-07 10:51 - 000000000 ____D C:\WINDOWS\system32\OpenSSH 2021-10-20 23:49 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\UNP 2021-10-20 23:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata 2021-10-20 23:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV 2021-10-20 23:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT 2021-10-20 23:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE 2021-10-20 23:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata 2021-10-20 23:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV 2021-10-20 23:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT 2021-10-20 23:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\et-EE 2021-10-20 23:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\DDFs 2021-10-20 23:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\appraiser 2021-10-20 23:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellComponents 2021-10-20 23:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning 2021-10-20 23:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\DiagTrack 2021-10-20 23:48 - 2019-12-07 10:54 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll 2021-10-20 23:43 - 2019-12-07 10:18 - 000000000 ____D C:\WINDOWS\Setup 2021-10-20 23:26 - 2019-12-07 10:52 - 000000000 ____D C:\WINDOWS\OCR 2021-10-20 23:25 - 2019-12-07 10:54 - 000000000 ____D C:\Program Files\Windows Photo Viewer 2021-10-20 23:25 - 2019-12-07 10:54 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2021-10-20 23:25 - 2019-12-07 10:50 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN 2021-10-20 23:25 - 2019-12-07 10:50 - 000000000 ____D C:\WINDOWS\system32\WCN 2021-10-20 23:25 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12 2021-10-20 23:25 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\F12 2021-10-20 23:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe 2021-10-20 23:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform 2021-10-20 23:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep 2021-10-20 23:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\migwiz 2021-10-20 23:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\IME 2021-10-20 23:25 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender 2021-10-20 23:25 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\System 2021-10-20 23:25 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender 2021-10-20 23:12 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\PrintDialog 2021-10-20 22:53 - 2019-12-07 10:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM 2021-10-20 22:52 - 2019-12-07 10:14 - 000000000 __RSD C:\WINDOWS\Media 2021-10-20 22:51 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2021-10-20 22:49 - 2019-10-07 03:52 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies ==================== Files in the root of some directories ======== 2021-10-21 15:08 - 2021-10-21 15:08 - 000000003 _____ () C:\Users\mlade\AppData\Local\updater.log 2021-10-21 15:08 - 2021-10-21 15:08 - 000000424 _____ () C:\Users\mlade\AppData\Local\UserProducts.xml ==================== SigCheck ============================ (There is no automatic fix for files that do not pass verification.) ==================== End of FRST.txt ======================== mycity.rs/must-login.png

Profil

helen1 Poslao: 17 Nov 2021 00:11 Idi na vrh
offline helen1 Anti Malware Fighter Rank 2 Master učitelj Pridružio: 27 Avg 2005 Poruke: 8617 Gde živiš: Novi Beograd	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Preuzmi AdwCleaner i sačuvaj ga na Desktop Dvoklikom pokreni program. U EULA prozoru klikni na I agree. U Tools odaberi Options. U dijaloškom okviru koji se pojavi isključi Reset Winsock settings ako je uključen. Klikni na dugme Scan i sačekaj da se završi skeniranje. Ako ti javi da postoji novija verzija, postaraj se da je preuzmeš. Klikni na dugme Clean i pričekaj da program završi. Program će zatvoriti sve aktivne programe i izbaciti prozor sa tim upozorenjem. Klikni OK kao potvrdu. Pojavit će se poruka da računar treba restartovati. Klikni OK Računar će se restartovati, a potom otvoriti Notepad (C:\Adwcleaner\AdwCleaner[S00].txt) sa izveštajem. Sačuvaj taj izveštaj na Desktop i okači ga uz poruku koristeći opciju "Prikači fajl"

Profil

MyCity » Ambulanta » Hijacker browser malware problem

Ko je trenutno na forumu

Ukupno su 984 korisnika na forumu :: 59 registrovanih, 4 sakrivenih i 921 gosta :: [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:: Korisnici trenutno na forumu: aramis s, bankulen, bladesu, Bobrock1, bojank, bojankrstc, bojcistv, bokisha253, cemix, cenejac111, crnitrn, damirZR, darkangel, Denaya, Dimitrise93, Dorcolac, dragoljub11987, Duh sa sekirom, dule10savic, Frunze, Georgius, ginjica, GORDI, goxin, Griffon vulture, HrcAk47, ivicasimo, Japidson, Karla, Krvava Devetka, kybonacci, mercedesamg, Mercury, Mi lao shu, MiG-29M2, mikrimaus, mile23, milimoj, Milometer, Milos ZA, Miroljub1979, Mixelotti, mnn2, nenad81, novator, prashinar, raketaš, repac, ruger357, Sir Budimir, slonic_tonic, Srle993, stegonosa, Stoilkovic, styg, yufighter, zzapNDjuric99, |_MeD_|, 125

Svaki korisnik ovog sajta je odgovoran za sadržaj svoje poruke koju objavi na sajtu. Sajt se odriče svake odgovornosti za sadržaj tih poruka.
Postavljanjem vaše poruke ili vašeg autorskog dela na ovaj sajt, saglasni ste da ovaj sajt postaje distributer vašeg dela, i odričete se mogućnosti njegovog povlačenja ili brisanja, bez saglasnosti uprave sajta.
Distribucija sadržaja sa ovog sajta je dozvoljena samo u nekomercijalne svrhe, uz obaveznu napomenu da je sadržaj preuzet sa ovog sajta, i uz obavezno navođenje adrese MyCity sajta. Za sve ostale vidove distribucije obavezni ste da prethodno zatražite odobrenje od vlasnika MyCity sajta.
MyCity pokrenuo, administrira i razvija Predrag Damnjanović, a o uređenju sajta se brine MyCity Tim.
Ukoliko želite da nas kontaktirate kliknite ovde.
Naši sajtovi:
Vesti, Vojni forum, Zaštita od virusa, TekstPesme.rs

This content is licensed under a Creative Commons License.
Based on phpBB 2, translated by Simke, designed by