Sumnjiv downloader urgentno

Sumnjiv downloader urgentno

offline
  • Pridružio: 18 Jul 2003
  • Poruke: 4201
  • Gde živiš: U zlatnom kavezu

Napisano: 21 Nov 2020 15:22

Danas sam skidao neke ROMove za C64 emulator (mogu navesti ime sajta ako je potrebno) i umesto da kliknem alternate download je kliknem direct. Umesto zip skinuo mi se exe fajl - nisam ga pokretao, otisao sam na altrnate download i dobio zip. Onda sam video da mi je kaspersky crven i da exe fajl ne mogu da obrisem kao da je vec u RAMU samim skidanjem. Onda videh da mi Kaspersky nudi reboot to finish desinfiction... Odradio sam reboot i fajla vise nije bilo - osim zipa.... Zbog svega navedenog i mogucnosti da se aktivirao samim skidanjem hocu da proverim da li je Kasper uspesno odbio napad...

Napomena: Sistem je nedavno azuriran na verziju 20H2 i Windows.old folder josnije nestao tako da mozda tranzicija na novi build jos traje

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 21-11-2020
Ran by Brksi (administrator) on EX-MAXIMUS (21-11-2020 15:04:58)
Running from C:\Users\Brksi\Desktop
Loaded Profiles: Brksi
Platform: Windows 10 Pro Version 2009 19042.630 (X64) Language: engleski (SAD)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
(ASUSTEK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Program Files (x86)\ASUS\AURA(GRAPHICS CARD)\ledcontrolservice.exe
(Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrA.exe
(Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrB.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.2\avp.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.2\avpui.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.2\ksde.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.2\ksdeui.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsAlarms_10.2009.5.0_x64__8wekyb3d8bbwe\Time.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12011.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(NetSeT Global Solutions d.o.o.) [File not signed] C:\Program Files\TrustEdgeID\TokenUtil.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_95bdb3a23d6478de\Display.NvContainer\NVDisplay.Container.exe <2>
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8466136 2015-04-30] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500936 2015-05-25] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706680 2020-09-17] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-2380905529-1053080505-2130717067-1001\...\Run: [EpicGamesLauncher] => F:\Program Files\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [32350096 2020-07-11] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-2380905529-1053080505-2130717067-1001\...\Run: [Steam] => F:\Program Files\Steam\steam.exe [3424032 2020-10-29] (Valve -> Valve Corporation)
HKU\S-1-5-21-2380905529-1053080505-2130717067-1001\...\Policies\Explorer: [NoRecentDocsHistory] 1
HKU\S-1-5-21-2380905529-1053080505-2130717067-1001\...\Command Processor: prompt $D$B$T$BDje si Brksi $P  <==== ATTENTION
HKLM\...\Windows x64\Print Processors\hpcpp101: C:\Windows\System32\spool\prtprocs\x64\hpcpp101.dll [323584 2010-09-23] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\HP Standard TCP/IP Port: c:\windows\system32\HpTcpMon.dll [331264 2009-09-16] (Hewlett Packard) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\87.0.4280.66\Installer\chrmstp.exe [2020-11-20] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Token Manager.lnk [2019-05-23]
ShortcutTarget: Token Manager.lnk -> C:\Program Files\TrustEdgeID\TokenUtil.exe (NetSeT Global Solutions d.o.o.) [File not signed]
GroupPolicy: Restriction ? <==== ATTENTION
GroupPolicy\User: Restriction ? <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0F76C66F-8448-4172-B4F7-DE253E8F299B} - System32\Tasks\Microsoft\VisualStudio\VSIX Auto Update 14 => C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\VSIXAutoUpdate.exe [131776 2016-03-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {2D5BD685-6AED-44ED-8FC7-80AE0768BAAA} - System32\Tasks\CorelUpdateHelperTaskCore => c:\Program Files (x86)\Corel\CUH\v2\CUH.exe
Task: {4387F918-C6C2-4B95-B84A-4F72B001F7C3} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-05-09] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {4C1D02F8-C1B7-45CC-BA6C-5D2117F29836} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24702024 2020-03-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {66372300-C300-44BD-A5D2-4DD70847F923} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6147688 2020-04-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {72C090FA-0654-4E58-9E5D-8A57C20ABC3D} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24702024 2020-03-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {7EB1F78E-F886-4281-B7DE-E46BE0268100} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158760 2020-04-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {86BDABC1-8CAC-407B-88E5-253E04DBE205} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [664784 2020-10-16] (Mozilla Corporation -> Mozilla Foundation)
Task: {8E1F7AA5-64AB-4E99-9A2F-4CADFDD27447} - System32\Tasks\AURA => C:\Program Files (x86)\ASUS\AURA(GRAPHICS CARD)\ledcontrolservice.exe [2416640 2019-08-14] (ASUSTEK COMPUTER INC. -> ASUSTek COMPUTER INC.)
Task: {A97654D6-953C-4892-849B-0695290D7358} - System32\Tasks\Kaspersky_Upgrade_Launcher_{278ADC42-419D-4547-A6CA-5B74BE0AD901} => C:\Program Files\Common Files\AV\Kaspersky Lab\upgrade_launcher.exe [791232 2020-11-08] (Kaspersky Lab -> AO Kaspersky Lab)
Task: {B28C486B-D40E-4922-9AF8-B4126296109A} - System32\Tasks\SamsungMagician => C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe [2571704 2020-02-14] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
Task: {BB8DC64E-A4C0-47CE-BC26-402918690438} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158760 2020-04-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {BFF94C50-706B-4FB0-913B-2F10A81988DD} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [16571320 2019-05-09] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {C51B6850-2A7F-4A71-BF97-97DCB6382DA8} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-05-22] (Google Inc -> Google LLC)
Task: {D970328C-0667-4C33-B8F1-AF11CEC48F02} - System32\Tasks\Gasi => C:\Users\Brksi\Desktop\s.bat [69 2020-01-26] () [File not signed]
Task: {FA919C54-EDA0-4DED-9BAB-2353CAEE7021} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6147688 2020-04-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {FB254A00-79EC-4BA8-A4AC-70EB8F70C08A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-05-22] (Google Inc -> Google LLC)
Task: {FB354C68-D0A7-4B65-87C7-9F9878DA1F22} - System32\Tasks\R@1n-KMS\Windows64Professional => wmic path SoftwareLicensingProduct where (ID="2de67392-b7a7-462a-b1ca-108dd189f588") call Activate
Task: {FC034CA5-2862-44B1-8A13-A403EA72C871} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 89.216.1.40 89.216.1.50
Tcpip\..\Interfaces\{21931522-dcc5-4868-bf64-a773215df0dd}: [DhcpNameServer] 89.216.1.40 89.216.1.50
Tcpip\..\Interfaces\{7fbc0384-f1e0-4bc6-a6a7-4f223523475a}: [NameServer] 8.8.8.8,8.8.4.4

Edge:
======
Edge Profile: C:\Users\Brksi\AppData\Local\Microsoft\Edge\User Data\Default [2020-11-09]
Edge HKU\S-1-5-21-2380905529-1053080505-2130717067-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm]

FireFox:
========
FF DefaultProfile: evdtlc1g.default
FF ProfilePath: C:\Users\Brksi\AppData\Roaming\Mozilla\Firefox\Profiles\evdtlc1g.default [2020-04-10]
FF ProfilePath: C:\Users\Brksi\AppData\Roaming\Mozilla\Firefox\Profiles\x9u2g3da.default-release [2020-10-16]
FF Extension: (uBlock Origin) - C:\Users\Brksi\AppData\Roaming\Mozilla\Firefox\Profiles\x9u2g3da.default-release\Extensions\uBlock0@raymondhill.net.xpi [2020-10-16]
FF HKLM\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.2\FFExt\light_plugin_firefox\addon.xpi => not found
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.2\FFExt\light_plugin_firefox\addon.xpi => not found
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-04-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-03-09] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @DVR/npplugin,version=3.1.0.4_l -> C:\Program Files (x86)\webrec\WEB30\WebView_L\npPlugin.dll [2017-09-13] (Zhejiang Dahua Technology CO.,LTD. -> )
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2019-09-23] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2019-09-23] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2019-09-23] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2019-09-23] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.271.2 -> C:\Program Files (x86)\Java\jre1.8.0_271\bin\dtplugin\npDeployJava1.dll [2020-11-16] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.271.2 -> C:\Program Files (x86)\Java\jre1.8.0_271\bin\plugin2\npjp2.dll [2020-11-16] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2020-04-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll [2013-05-13] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2020-04-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-03-09] (Adobe Systems Incorporated -> Adobe Systems)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\kl_prefs_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.js [2020-09-26] <==== ATTENTION (Points to *.cfg file)
FF ExtraCheck: C:\Program Files\mozilla firefox\kl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg [2020-09-26] <==== ATTENTION

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Brksi\AppData\Local\Google\Chrome\User Data\Default [2020-11-06]
CHR Extension: (Презентације) - C:\Users\Brksi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-05-22]
CHR Extension: (Kaspersky Protection) - C:\Users\Brksi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2020-10-25]
CHR Extension: (Документи) - C:\Users\Brksi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-05-22]
CHR Extension: (Google диск) - C:\Users\Brksi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-25]
CHR Extension: (YouTube) - C:\Users\Brksi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-05-22]
CHR Extension: (Black green shards) - C:\Users\Brksi\AppData\Local\Google\Chrome\User Data\Default\Extensions\cojkleigdijnbfecdhjigpgalhfhkdee [2019-06-25]
CHR Extension: (Typio Form Recovery) - C:\Users\Brksi\AppData\Local\Google\Chrome\User Data\Default\Extensions\djkbihbnjhkjahbhjaadbepppbpoedaa [2020-10-25]
CHR Extension: (Dark Reader) - C:\Users\Brksi\AppData\Local\Google\Chrome\User Data\Default\Extensions\eimadpbcbfnmbkopoojfekhnkhdbieeh [2020-11-04]
CHR Extension: (uBlock) - C:\Users\Brksi\AppData\Local\Google\Chrome\User Data\Default\Extensions\epcnnfbjfcgphgdmggkamkmgojdagdnn [2020-05-20]
CHR Extension: (Google Play музика) - C:\Users\Brksi\AppData\Local\Google\Chrome\User Data\Default\Extensions\fahmaaghhglfmonjliepjlchgpgfmobi [2020-05-27]
CHR Extension: (Табеле) - C:\Users\Brksi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-05-22]
CHR Extension: (Google документи офлајн) - C:\Users\Brksi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-10-25]
CHR Extension: (Google Play Music) - C:\Users\Brksi\AppData\Local\Google\Chrome\User Data\Default\Extensions\icppfcnhkcmnfdhfhphakoifcfokfdhg [2019-06-25]
CHR Extension: (cVim) - C:\Users\Brksi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihlenndgcmojhcghmfjfneahoeklbjjh [2019-06-25]
CHR Extension: (Take Webpage Screenshots Entirely - FireShot) - C:\Users\Brksi\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcbpblocgmgfnpjjppndjkmgjaogfceg [2020-08-25]
CHR Extension: (F.B.(FluffBusting)Purity) - C:\Users\Brksi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmkinhboiljjkhaknpaeaicmdjhagpep [2020-11-04]
CHR Extension: (Плаћања у Chrome веб-продавници) - C:\Users\Brksi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-05-20]
CHR Extension: (Gmail) - C:\Users\Brksi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-25]
CHR Extension: (Chrome Media Router) - C:\Users\Brksi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-10-25]
CHR Profile: C:\Users\Brksi\AppData\Local\Google\Chrome\User Data\Guest Profile [2020-05-20]
CHR Profile: C:\Users\Brksi\AppData\Local\Google\Chrome\User Data\System Profile [2020-05-20]
CHR HKLM\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm
CHR HKLM-x32\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AVP21.2; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.2\avp.exe [381928 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8615864 2020-06-25] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [10626328 2020-03-30] (Microsoft Corporation -> Microsoft Corporation)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [811120 2020-06-25] (EasyAntiCheat Oy -> Epic Games, Inc)
S4 HP LaserJet Service; C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe [176128 2014-06-24] (HP) [File not signed]
S3 klvssbridge64_21.2; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.2\x64\vssbridge64.exe [467352 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R2 KSDE5.2; C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.2\ksde.exe [644264 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-01-18] (Hewlett-Packard) [File not signed]
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-01-18] (Hewlett-Packard) [File not signed]
R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [66872 2020-06-05] (Even Balance, Inc. -> )
R2 PnkBstrB; C:\WINDOWS\SysWOW64\PnkBstrB.exe [107832 2020-06-05] (Even Balance, Inc. -> )
S4 PSI_SVC_2; c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [277360 2014-04-30] (Arvato Digital Services Canada Inc -> arvato digital services llc)
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [1711232 2020-06-25] (Rockstar Games, Inc. -> Rockstar Games)
S4 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-03-01] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5101992 2020-11-11] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 VBoxSDS; C:\Program Files\Oracle\VirtualBox\VBoxSDS.exe [744968 2020-01-15] (Oracle Corporation -> Oracle Corporation)
S3 wampapache64; f:\wamp64\bin\apache\apache2.4.39\bin\httpd.exe [29696 2019-03-28] (Apache Software Foundation) [File not signed]
S3 wampmariadb64; f:\wamp64\bin\mariadb\mariadb10.3.14\bin\mysqld.exe [15813032 2019-04-01] (MariaDB Corporation Ab -> )
S3 wampmysqld64; f:\wamp64\bin\mysql\mysql5.7.26\bin\mysqld.exe [39644480 2019-04-13] (Oracle America, Inc. -> )
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2010.7-0\NisSrv.exe [2467088 2020-11-17] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2010.7-0\MsMpEng.exe [128376 2020-11-17] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_95bdb3a23d6478de\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_95bdb3a23d6478de\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2017-04-14] (ASUSTeK Computer Inc. -> )
R1 Asusgio2; C:\WINDOWS\system32\drivers\AsIO2.sys [33832 2019-12-11] (ASUSTeK Computer Inc. -> )
R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [251608 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 EneTechIo; C:\WINDOWS\system32\drivers\ene.sys [19968 2019-10-17] (Microsoft Windows Hardware Compatibility Publisher -> )
R3 GemCCID; C:\WINDOWS\System32\drivers\GemCCID.sys [137712 2016-10-17] (Microsoft Windows Hardware Compatibility Publisher -> Gemalto)
R1 GLCKIO2; C:\WINDOWS\system32\drivers\GLCKIO2.sys [29368 2019-04-24] (ASUSTeK Computer Inc. -> )
S4 IObitUnlocker; C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlocker.sys [66824 2017-06-15] (IObit Information Technology -> IObit)
R1 ISODrive; C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys [115600 2010-01-29] (SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD. -> EZB Systems, Inc.)
R1 klbackupdisk; C:\WINDOWS\system32\DRIVERS\klbackupdisk.sys [110392 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klbackupflt; C:\WINDOWS\System32\DRIVERS\klbackupflt.sys [212280 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [127288 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [37496 2020-10-21] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab)
R1 klflt; C:\WINDOWS\system32\DRIVERS\klflt.sys [523576 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klgse; C:\WINDOWS\System32\DRIVERS\klgse.sys [659768 2020-09-30] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klhk; C:\WINDOWS\system32\DRIVERS\klhk.sys [1341232 2020-09-30] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klids; C:\ProgramData\Kaspersky Lab\AVP21.2\Bases\klids.sys [245792 2020-11-18] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [1025336 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klim6; C:\WINDOWS\system32\DRIVERS\klim6.sys [95544 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klkbdflt; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [113464 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klmouflt; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [113464 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [85288 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klpnpflt; C:\WINDOWS\system32\DRIVERS\klpnpflt.sys [97080 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 kltap; C:\WINDOWS\System32\drivers\kltap.sys [55592 2020-10-21] (AnchorFree Inc -> The OpenVPN Project)
R0 klupd_klif_arkmon; C:\WINDOWS\System32\Drivers\klupd_klif_arkmon.sys [257208 2020-10-22] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klupd_klif_kimul; C:\WINDOWS\System32\Drivers\klupd_klif_kimul.sys [99152 2020-04-10] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klupd_klif_klark; C:\WINDOWS\System32\Drivers\klupd_klif_klark.sys [310232 2020-10-26] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R0 klupd_klif_klbg; C:\WINDOWS\System32\Drivers\klupd_klif_klbg.sys [117456 2020-10-26] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klupd_klif_mark; C:\WINDOWS\System32\Drivers\klupd_klif_mark.sys [207352 2020-10-30] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [153400 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [250168 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [300856 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 MSIO; C:\WINDOWS\system32\drivers\MsIo64.sys [25616 2018-02-12] (MICSYS Technology Co., Ltd. -> )
S3 NPF; C:\WINDOWS\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
S3 ptun0901; C:\WINDOWS\System32\drivers\ptun0901.sys [27136 2014-08-08] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
R3 SensorsSimulatorDriver; C:\WINDOWS\System32\drivers\WUDFRd.sys [315392 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166760 2020-04-24] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 VBoxNetAdp; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp6.sys [237304 2020-01-15] (Oracle Corporation -> Oracle Corporation)
R1 VBoxNetLwf; C:\WINDOWS\system32\DRIVERS\VBoxNetLwf.sys [247216 2020-01-15] (Oracle Corporation -> Oracle Corporation)
U5 VBoxUSB; C:\Windows\System32\Drivers\VBoxUSB.sys [174000 2020-01-15] (Oracle Corporation -> Oracle Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [48536 2020-11-17] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [429288 2020-11-17] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [71912 2020-11-17] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-11-21 15:04 - 2020-11-21 15:05 - 000027665 _____ C:\Users\Brksi\Desktop\FRST.txt
2020-11-21 15:04 - 2020-11-21 15:05 - 000000000 ____D C:\FRST
2020-11-21 15:02 - 2020-11-21 15:02 - 002294784 _____ (Farbar) C:\Users\Brksi\Desktop\FRST64.exe
2020-11-16 19:28 - 2020-11-16 19:28 - 000000000 ____D C:\Users\Brksi\Apple
2020-11-16 19:28 - 2020-11-16 19:28 - 000000000 ____D C:\ProgramData\Apple Computer
2020-11-16 19:28 - 2020-11-16 19:28 - 000000000 ____D C:\ProgramData\Apple
2020-11-11 18:09 - 2020-11-11 18:09 - 000009265 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2020-11-11 18:08 - 2020-11-11 18:08 - 000363520 _____ C:\WINDOWS\system32\Windows.Internal.UI.Shell.WindowTabManager.dll
2020-11-11 18:08 - 2020-11-11 18:08 - 000266240 _____ C:\WINDOWS\SysWOW64\Windows.Internal.UI.Shell.WindowTabManager.dll
2020-11-11 18:08 - 2020-11-11 18:08 - 000197632 _____ C:\WINDOWS\system32\IHDS.dll
2020-11-11 18:08 - 2020-11-11 18:08 - 000152576 _____ C:\WINDOWS\system32\EoAExperiences.exe
2020-11-09 22:34 - 2020-11-09 13:43 - 000000000 ____D C:\Windows.old
2020-11-09 22:27 - 2020-11-09 22:34 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate
2020-11-09 22:26 - 2020-11-09 22:27 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2020-11-09 22:26 - 2020-11-09 22:26 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2020-11-09 22:25 - 2020-11-09 22:25 - 000000000 ____D C:\ProgramData\ssh
2020-11-09 22:22 - 2020-11-09 22:22 - 004898144 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmpltfm.dll
2020-11-09 22:22 - 2020-11-09 22:22 - 003860832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmpltfm.dll
2020-11-09 22:22 - 2020-11-09 22:22 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2020-11-09 22:22 - 2020-11-09 22:22 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2020-11-09 22:22 - 2020-11-09 22:22 - 002260480 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2020-11-09 22:22 - 2020-11-09 22:22 - 002260480 _____ (The ICU Project) C:\WINDOWS\system32\icu.dll
2020-11-09 22:22 - 2020-11-09 22:22 - 001822256 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2020-11-09 22:22 - 2020-11-09 22:22 - 001393472 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2020-11-09 22:22 - 2020-11-09 22:22 - 001354080 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmpal.dll
2020-11-09 22:22 - 2020-11-09 22:22 - 001333248 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2020-11-09 22:22 - 2020-11-09 22:22 - 001309504 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2020-11-09 22:22 - 2020-11-09 22:22 - 001162240 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2020-11-09 22:22 - 2020-11-09 22:22 - 001091936 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmcodecs.dll
2020-11-09 22:22 - 2020-11-09 22:22 - 001032544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ortcengine.dll
2020-11-09 22:22 - 2020-11-09 22:22 - 000980320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmpal.dll
2020-11-09 22:22 - 2020-11-09 22:22 - 000915296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmcodecs.dll
2020-11-09 22:22 - 2020-11-09 22:22 - 000732000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ortcengine.dll
2020-11-09 22:22 - 2020-11-09 22:22 - 000707544 _____ C:\WINDOWS\system32\TextShaping.dll
2020-11-09 22:22 - 2020-11-09 22:22 - 000645120 _____ C:\WINDOWS\system32\WindowManagementAPI.dll
2020-11-09 22:22 - 2020-11-09 22:22 - 000611952 _____ C:\WINDOWS\SysWOW64\TextShaping.dll
2020-11-09 22:22 - 2020-11-09 22:22 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2020-11-09 22:22 - 2020-11-09 22:22 - 000580096 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr
2020-11-09 22:22 - 2020-11-09 22:22 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr
2020-11-09 22:22 - 2020-11-09 22:22 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2020-11-09 22:22 - 2020-11-09 22:22 - 000467968 _____ C:\WINDOWS\system32\AssignedAccessCsp.dll
2020-11-09 22:22 - 2020-11-09 22:22 - 000455168 _____ C:\WINDOWS\SysWOW64\WindowManagementAPI.dll
2020-11-09 22:22 - 2020-11-09 22:22 - 000422912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2020-11-09 22:22 - 2020-11-09 22:22 - 000306176 _____ C:\WINDOWS\system32\HeatCore.dll
2020-11-09 22:22 - 2020-11-09 22:22 - 000266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthprops.cpl
2020-11-09 22:22 - 2020-11-09 22:22 - 000266240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mpg2splt.ax
2020-11-09 22:22 - 2020-11-09 22:22 - 000238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\intl.cpl
2020-11-09 22:22 - 2020-11-09 22:22 - 000221184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bthprops.cpl
2020-11-09 22:22 - 2020-11-09 22:22 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mpg2splt.ax
2020-11-09 22:22 - 2020-11-09 22:22 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\intl.cpl
2020-11-09 22:22 - 2020-11-09 22:22 - 000137016 _____ C:\WINDOWS\system32\HvsiManagementApi.dll
2020-11-09 22:22 - 2020-11-09 22:22 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\activeds.tlb
2020-11-09 22:22 - 2020-11-09 22:22 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\activeds.tlb
2020-11-09 22:22 - 2020-11-09 22:22 - 000111616 _____ C:\WINDOWS\system32\RDVGHelper.exe
2020-11-09 22:22 - 2020-11-09 22:22 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncpa.cpl
2020-11-09 22:22 - 2020-11-09 22:22 - 000101688 _____ C:\WINDOWS\SysWOW64\HvsiManagementApi.dll
2020-11-09 22:22 - 2020-11-09 22:22 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncpa.cpl
2020-11-09 22:22 - 2020-11-09 22:22 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2020-11-09 22:22 - 2020-11-09 22:22 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2020-11-09 22:22 - 2020-11-09 22:22 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2020-11-09 22:22 - 2020-11-09 22:22 - 000056672 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmmvrortc.dll
2020-11-09 22:22 - 2020-11-09 22:22 - 000055376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmmvrortc.dll
2020-11-09 22:22 - 2020-11-09 22:22 - 000048640 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2020-11-09 22:22 - 2020-11-09 22:22 - 000047472 _____ C:\WINDOWS\SysWOW64\umpdc.dll
2020-11-09 22:22 - 2020-11-09 22:22 - 000045880 _____ C:\WINDOWS\system32\HvSocket.dll
2020-11-09 22:22 - 2020-11-09 22:22 - 000039936 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2020-11-09 22:22 - 2020-11-09 22:22 - 000029696 _____ (The ICU Project) C:\WINDOWS\system32\icuuc.dll
2020-11-09 22:22 - 2020-11-09 22:22 - 000025088 _____ (The ICU Project) C:\WINDOWS\system32\icuin.dll
2020-11-09 22:22 - 2020-11-09 22:22 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msacm32.drv
2020-11-09 22:21 - 2020-11-09 22:21 - 004227116 _____ C:\WINDOWS\system32\DefaultHrtfs.bin
2020-11-09 22:21 - 2020-11-09 22:21 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2020-11-09 22:21 - 2020-11-09 22:21 - 000455168 _____ C:\WINDOWS\system32\ssdm.dll
2020-11-09 22:21 - 2020-11-09 22:21 - 000287232 _____ C:\WINDOWS\system32\CoreMas.dll
2020-11-09 22:21 - 2020-11-09 22:21 - 000165376 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2020-11-09 22:21 - 2020-11-09 22:21 - 000089088 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.proxystub.dll
2020-11-09 22:21 - 2020-11-09 22:21 - 000073216 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll
2020-11-09 22:21 - 2020-11-09 22:21 - 000064552 _____ C:\WINDOWS\system32\umpdc.dll
2020-11-09 22:21 - 2020-11-09 22:21 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\msacm32.drv
2020-11-09 22:21 - 2020-11-09 22:21 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe
2020-11-09 22:18 - 2020-11-09 22:18 - 000417792 _____ C:\WINDOWS\system32\d3dconfig.exe
2020-11-09 22:18 - 2020-11-09 22:18 - 000374784 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\DXCpl.exe
2020-11-09 22:18 - 2020-11-09 22:18 - 000365056 _____ C:\WINDOWS\SysWOW64\d3dconfig.exe
2020-11-09 22:18 - 2020-11-09 22:18 - 000347136 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\SysWOW64\DXCpl.exe
2020-11-09 22:18 - 2020-11-09 22:18 - 000000000 __RSD C:\WINDOWS\SysWOW64\WindowsDevicePortal
2020-11-09 22:18 - 2020-11-09 22:18 - 000000000 __RSD C:\WINDOWS\system32\WindowsDevicePortal
2020-11-09 22:18 - 2020-11-09 22:18 - 000000000 ___RD C:\WINDOWS\WebManagement
2020-11-09 22:17 - 2020-11-09 22:17 - 000076060 _____ C:\WINDOWS\SysWOW64\xpsrchvw.xml
2020-11-09 22:17 - 2020-11-09 22:17 - 000076060 _____ C:\WINDOWS\system32\xpsrchvw.xml
2020-11-09 22:14 - 2020-11-09 22:34 - 000000000 ____D C:\Program Files (x86)\MSBuild
2020-11-09 22:14 - 2020-11-09 22:14 - 000000000 ____D C:\Program Files\Reference Assemblies
2020-11-09 22:14 - 2020-11-09 22:14 - 000000000 ____D C:\Program Files\MSBuild
2020-11-09 22:14 - 2020-11-09 22:14 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2020-11-09 13:51 - 2020-11-09 13:51 - 000003410 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d6b6958d3d00d7
2020-11-09 13:44 - 2020-11-09 13:44 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2020-11-09 13:43 - 2020-11-21 14:21 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-11-09 13:43 - 2020-11-09 13:51 - 000003504 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-11-09 13:43 - 2020-11-09 13:43 - 000011433 _____ C:\WINDOWS\diagwrn.xml
2020-11-09 13:43 - 2020-11-09 13:43 - 000011433 _____ C:\WINDOWS\diagerr.xml
2020-11-09 13:43 - 2020-11-09 13:43 - 000003346 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-11-09 13:43 - 2020-11-09 13:43 - 000003208 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-11-09 13:43 - 2020-11-09 13:43 - 000003196 _____ C:\WINDOWS\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-11-09 13:43 - 2020-11-09 13:43 - 000003122 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2020-11-09 13:43 - 2020-11-09 13:43 - 000003048 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2020-11-09 13:43 - 2020-11-09 13:43 - 000002918 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2380905529-1053080505-2130717067-500
2020-11-09 13:43 - 2020-11-09 13:43 - 000002862 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2380905529-1053080505-2130717067-1001
2020-11-09 13:43 - 2020-11-09 13:43 - 000002598 _____ C:\WINDOWS\system32\Tasks\CorelUpdateHelperTaskCore
2020-11-09 13:43 - 2020-11-09 13:43 - 000002594 _____ C:\WINDOWS\system32\Tasks\SamsungMagician
2020-11-09 13:43 - 2020-11-09 13:43 - 000002486 _____ C:\WINDOWS\system32\Tasks\Kaspersky_Upgrade_Launcher_{278ADC42-419D-4547-A6CA-5B74BE0AD901}
2020-11-09 13:43 - 2020-11-09 13:43 - 000002414 _____ C:\WINDOWS\system32\Tasks\Gasi
2020-11-09 13:43 - 2020-11-09 13:43 - 000002298 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2020-11-09 13:43 - 2020-11-09 13:43 - 000002138 _____ C:\WINDOWS\system32\Tasks\AURA
2020-11-09 13:43 - 2020-11-09 13:43 - 000000020 ___SH C:\Users\Brksi\ntuser.ini
2020-11-09 13:43 - 2020-11-09 13:43 - 000000000 ____D C:\WINDOWS\system32\Tasks\S-1-5-21-2380905529-1053080505-2130717067-1001
2020-11-09 13:43 - 2020-11-09 13:43 - 000000000 ____D C:\WINDOWS\system32\Tasks\R@1n-KMS
2020-11-09 13:43 - 2020-11-09 13:43 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2020-11-09 13:43 - 2020-04-26 12:17 - 000004308 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-11-09 13:43 - 2020-04-26 12:17 - 000003976 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-11-09 13:43 - 2020-04-26 12:17 - 000003940 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-11-09 13:43 - 2020-04-26 12:17 - 000003894 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-11-09 13:43 - 2020-04-26 12:17 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-11-09 13:43 - 2020-04-26 12:17 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-11-09 13:43 - 2020-04-26 12:17 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-11-09 13:43 - 2020-04-26 12:17 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-11-09 13:43 - 2020-04-26 12:17 - 000003654 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-11-09 13:36 - 2020-11-21 14:26 - 000935166 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-11-09 13:36 - 2020-11-17 01:00 - 000000000 ____D C:\Users\Brksi
2020-11-09 13:36 - 2020-11-09 13:39 - 000000000 ____D C:\Users\Administrator
2020-11-09 13:36 - 2019-12-07 10:10 - 000001105 _____ C:\Users\Brksi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-11-09 13:36 - 2019-12-07 10:10 - 000001105 _____ C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-11-09 13:35 - 2020-11-21 12:15 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-11-09 13:35 - 2020-11-11 19:06 - 000549184 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-11-09 12:16 - 2020-11-09 13:43 - 000000000 ___DC C:\WINDOWS\Panther
2020-11-09 12:10 - 2020-11-09 12:10 - 000000000 ___HD C:\$WinREAgent
2020-11-09 12:05 - 2020-11-09 22:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Total Security
2020-11-08 16:23 - 2020-11-09 22:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky VPN
2020-11-06 11:52 - 2020-11-12 11:15 - 000001282 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk
2020-11-06 11:52 - 2020-11-06 11:52 - 000001270 _____ C:\Users\Public\Desktop\Mozilla Thunderbird.lnk
2020-11-06 11:52 - 2020-11-06 11:52 - 000001270 _____ C:\ProgramData\Desktop\Mozilla Thunderbird.lnk
2020-11-06 11:48 - 2020-11-06 11:48 - 000000000 ____D C:\Users\Brksi\AppData\Roaming\Thunderbird
2020-11-06 11:48 - 2020-11-06 11:48 - 000000000 ____D C:\Users\Brksi\AppData\Local\Thunderbird
2020-10-26 10:42 - 2020-10-26 10:42 - 000310232 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_klark.sys
2020-10-26 10:41 - 2020-10-26 10:41 - 000117456 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_klbg.sys
2020-10-24 16:50 - 2020-10-24 16:50 - 000000214 _____ C:\Users\Brksi\Desktop\X-COM UFO Defense.url
2020-10-22 10:23 - 2020-10-30 14:58 - 000207352 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_mark.sys
2020-10-22 10:23 - 2020-10-22 10:23 - 000257208 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_arkmon.sys

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-11-21 15:00 - 2020-04-02 16:50 - 000000000 ____D C:\Users\Brksi\AppData\Roaming\vlc
2020-11-21 14:38 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2020-11-21 14:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-11-21 14:37 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-11-21 14:26 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2020-11-21 14:21 - 2020-07-25 08:05 - 000011791 _____ C:\ProgramData\DisplaySessionContainer1.log_backup1
2020-11-21 14:21 - 2019-12-12 18:35 - 000017629 _____ C:\ProgramData\NVDisplay.ContainerLocalSystem.log_backup1
2020-11-21 14:21 - 2019-12-12 18:35 - 000017605 _____ C:\ProgramData\NVDisplayContainerWatchdog.log_backup1
2020-11-21 14:21 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2020-11-21 14:14 - 2020-02-06 17:15 - 000000000 ____D C:\Users\Brksi\.VirtualBox
2020-11-21 13:59 - 2019-07-14 18:08 - 000000000 ____D C:\ProgramData\VirtualBox
2020-11-21 12:26 - 2020-05-06 12:36 - 000002440 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-11-21 11:35 - 2019-07-14 13:10 - 000000000 ____D C:\Users\Brksi\AppData\LocalLow\Mozilla
2020-11-21 11:33 - 2020-07-25 08:05 - 000001209 _____ C:\ProgramData\NvcDispCorePlugin.log_backup1
2020-11-20 12:34 - 2019-05-22 17:44 - 000000000 ____D C:\Users\Brksi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome апликације
2020-11-20 12:04 - 2019-05-22 17:35 - 000002398 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-11-20 12:04 - 2019-05-22 17:35 - 000002398 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2020-11-20 12:04 - 2019-05-22 17:35 - 000002303 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-11-19 19:39 - 2019-05-22 13:30 - 000000000 ____D C:\Users\Brksi\AppData\Local\Packages
2020-11-19 19:02 - 2020-03-19 14:31 - 000000000 ____D C:\Users\Brksi\AppData\Roaming\TeamViewer
2020-11-18 01:50 - 2019-05-25 15:20 - 000000000 ____D C:\Users\Brksi\AppData\Roaming\tixati
2020-11-17 20:18 - 2020-03-19 14:31 - 000000000 ____D C:\Users\Brksi\AppData\Local\TeamViewer
2020-11-17 15:33 - 2019-05-22 15:12 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2020-11-17 11:42 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2020-11-16 19:28 - 2020-01-31 19:55 - 000000000 ____D C:\Users\Brksi\AppData\Local\NVIDIA Corporation
2020-11-16 19:27 - 2019-05-22 15:29 - 000000000 ____D C:\ProgramData\Packages
2020-11-16 19:27 - 2019-05-22 13:31 - 000000000 ____D C:\Users\Brksi\AppData\Local\PlaceholderTileLogoFolder
2020-11-16 19:27 - 2019-05-22 13:30 - 000000000 ____D C:\Users\Brksi\AppData\Local\Publishers
2020-11-16 19:26 - 2019-09-15 11:38 - 000000000 ____D C:\Users\Brksi\AppData\Roaming\FileZilla
2020-11-16 17:56 - 2019-06-27 14:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2020-11-16 17:56 - 2019-06-27 14:46 - 000000000 ____D C:\Program Files (x86)\Java
2020-11-16 17:55 - 2019-06-27 14:46 - 000165032 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2020-11-16 16:22 - 2019-12-07 10:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2020-11-13 11:38 - 2020-04-13 12:44 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2020-11-13 11:38 - 2019-05-22 17:28 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-11-11 19:05 - 2019-12-07 10:54 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2020-11-11 19:05 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2020-11-11 19:05 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2020-11-11 19:05 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2020-11-11 19:05 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2020-11-11 19:05 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2020-11-11 19:05 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-11-11 19:05 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2020-11-11 19:05 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-11-11 19:05 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2020-11-11 19:05 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-11-11 18:58 - 2019-05-25 17:30 - 000000877 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++.lnk
2020-11-11 18:58 - 2019-05-25 17:30 - 000000000 ____D C:\Users\Brksi\AppData\Roaming\Notepad++
2020-11-11 18:14 - 2019-05-22 14:15 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-11-11 18:11 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-11-11 18:11 - 2019-05-22 14:15 - 133736600 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-11-11 18:10 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing
2020-11-10 10:28 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\appcompat
2020-11-09 22:34 - 2020-08-24 17:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kodi
2020-11-09 22:34 - 2020-08-14 17:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TechSmith
2020-11-09 22:34 - 2020-06-25 13:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2020-11-09 22:34 - 2020-05-29 16:58 - 000000000 ____D C:\Program Files\UNP
2020-11-09 22:34 - 2020-05-28 17:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung Magician
2020-11-09 22:34 - 2020-04-26 12:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy
2020-11-09 22:34 - 2020-04-10 16:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office alatke
2020-11-09 22:34 - 2020-04-10 12:10 - 000000000 ____D C:\WINDOWS\system32\%Report%
2020-11-09 22:34 - 2020-04-02 16:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2020-11-09 22:34 - 2020-03-24 18:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Everyday Jigsaw
2020-11-09 22:34 - 2020-03-24 15:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-11-09 22:34 - 2020-02-25 18:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DOSBox-0.74-3
2020-11-09 22:34 - 2020-01-30 18:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle VM VirtualBox
2020-11-09 22:34 - 2020-01-08 19:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit Reader
2020-11-09 22:34 - 2019-12-13 19:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2020-11-09 22:34 - 2019-12-13 19:27 - 000000000 ____D C:\Program Files\IIS
2020-11-09 22:34 - 2019-12-13 19:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2015
2020-11-09 22:34 - 2019-12-13 19:25 - 000000000 ____D C:\WINDOWS\SysWOW64\1033
2020-11-09 22:34 - 2019-12-13 19:25 - 000000000 ____D C:\WINDOWS\system32\1033
2020-11-09 22:34 - 2019-12-07 10:54 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2020-11-09 22:34 - 2019-12-07 10:54 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2020-11-09 22:34 - 2019-12-07 10:18 - 000000000 ____D C:\WINDOWS\Setup
2020-11-09 22:34 - 2019-12-07 10:14 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2020-11-09 22:34 - 2019-12-07 10:14 - 000000000 __RHD C:\Users\Public\Libraries
2020-11-09 22:34 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2020-11-09 22:34 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2020-11-09 22:34 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2020-11-09 22:34 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\spool
2020-11-09 22:34 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2020-11-09 22:34 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Macromed
2020-11-09 22:34 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Registration
2020-11-09 22:34 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2020-11-09 22:34 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Help
2020-11-09 22:34 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2020-11-09 22:34 - 2019-10-29 12:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Unlocker
2020-11-09 22:34 - 2019-09-15 11:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
2020-11-09 22:34 - 2019-07-03 17:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinPcap
2020-11-09 22:34 - 2019-06-29 14:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskMark6
2020-11-09 22:34 - 2019-06-25 16:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMP WinOFF
2020-11-09 22:34 - 2019-06-03 14:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero
2020-11-09 22:34 - 2019-05-29 14:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UltraISO
2020-11-09 22:34 - 2019-05-26 19:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recuva
2020-11-09 22:34 - 2019-05-25 16:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wampserver64
2020-11-09 22:34 - 2019-05-25 14:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Total Commander Ultima Prime
2020-11-09 22:34 - 2019-05-23 18:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SmartPSS
2020-11-09 22:34 - 2019-05-23 17:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2020-11-09 22:34 - 2019-05-23 17:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KZOČitač
2020-11-09 22:34 - 2019-05-23 17:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TrustEdgeID
2020-11-09 22:34 - 2019-05-23 17:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MUP RS
2020-11-09 22:34 - 2019-05-23 11:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hard Disk Sentinel
2020-11-09 22:34 - 2019-05-22 18:58 - 000000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2020-11-09 22:34 - 2019-05-22 16:05 - 000000000 ____D C:\Program Files\Intel
2020-11-09 22:34 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2020-11-09 22:34 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\system32\MsDtc
2020-11-09 22:34 - 2017-09-29 14:46 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2020-11-09 22:27 - 2020-07-12 15:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ubisoft
2020-11-09 22:27 - 2020-07-08 12:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare
2020-11-09 22:27 - 2020-06-03 13:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
2020-11-09 22:27 - 2020-01-10 16:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Xilisoft
2020-11-09 22:27 - 2020-01-10 16:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Digiarty
2020-11-09 22:27 - 2019-12-13 19:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Expression
2020-11-09 22:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Resources
2020-11-09 22:27 - 2019-07-03 16:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TP-Link
2020-11-09 22:27 - 2019-05-23 17:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NetSeT
2020-11-09 22:27 - 2019-05-23 10:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Webteh
2020-11-09 22:27 - 2019-05-22 17:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2020-11-09 22:27 - 2019-05-22 16:11 - 000000000 ____D C:\Program Files\Realtek
2020-11-09 22:25 - 2019-12-07 10:54 - 000000000 ___SD C:\WINDOWS\system32\AppV
2020-11-09 22:25 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2020-11-09 22:25 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2020-11-09 22:25 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\F12
2020-11-09 22:25 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2020-11-09 22:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2020-11-09 22:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2020-11-09 22:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2020-11-09 22:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2020-11-09 22:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2020-11-09 22:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2020-11-09 22:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2020-11-09 22:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2020-11-09 22:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2020-11-09 22:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2020-11-09 22:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2020-11-09 22:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2020-11-09 22:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2020-11-09 22:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Com
2020-11-09 22:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2020-11-09 22:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2020-11-09 22:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2020-11-09 22:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning
2020-11-09 22:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\DiagTrack
2020-11-09 22:25 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\System
2020-11-09 22:24 - 2019-12-07 10:54 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2020-11-09 22:24 - 2019-12-07 10:54 - 000020908 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2020-11-09 22:18 - 2019-12-07 10:51 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2020-11-09 22:18 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemApps
2020-11-09 22:17 - 2019-12-07 10:52 - 000000000 ____D C:\WINDOWS\OCR
2020-11-09 22:17 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2020-11-09 22:17 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2020-11-09 22:17 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2020-11-09 22:17 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2020-11-09 22:17 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2020-11-09 22:17 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2020-11-09 22:17 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2020-11-09 22:16 - 2019-12-07 10:50 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
2020-11-09 22:16 - 2019-12-07 10:50 - 000000000 ____D C:\WINDOWS\system32\WCN
2020-11-09 22:16 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\IME
2020-11-09 22:16 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2020-11-09 14:00 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2020-11-09 13:43 - 2019-12-13 19:31 - 000000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 11.0
2020-11-09 13:43 - 2019-12-13 19:26 - 000000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 12.0
2020-11-09 13:43 - 2019-12-13 19:25 - 000000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 14.0
2020-11-09 13:43 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\USOPrivate
2020-11-09 13:43 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender
2020-11-09 13:43 - 2019-08-17 11:37 - 000000416 __RSH C:\ProgramData\ntuser.pol
2020-11-09 13:43 - 2019-05-22 13:30 - 000000000 __RHD C:\Users\Public\AccountPictures
2020-11-09 13:43 - 2019-05-22 13:30 - 000000000 ___RD C:\Users\Brksi\3D Objects
2020-11-09 13:38 - 2020-06-25 15:07 - 000000000 ____D C:\Users\Brksi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2020-11-09 13:38 - 2020-05-17 19:47 - 000000000 ____D C:\Users\Brksi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rockstar Games
2020-11-09 13:38 - 2020-03-24 15:49 - 000000000 ____D C:\Users\Brksi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-11-09 13:38 - 2019-07-15 15:31 - 000000000 ____D C:\Users\Brksi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WebView_L
2020-11-09 13:37 - 2019-05-25 15:17 - 000000000 ____D C:\Users\Brksi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Tixati
2020-11-09 13:36 - 2020-01-28 17:36 - 000891500 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2020-11-09 13:36 - 2020-01-13 11:43 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2020-11-09 13:36 - 2019-05-22 19:05 - 000000000 ____D C:\Users\Administrator\AppData\Local\Packages
2020-11-09 13:36 - 2019-05-22 13:29 - 000000000 ____D C:\Program Files\Common Files\logishrd
2020-11-09 13:35 - 2019-05-22 16:11 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2020-11-09 12:06 - 2020-04-10 12:16 - 000000000 ____D C:\Program Files (x86)\Kaspersky Lab
2020-11-09 12:06 - 2019-05-25 14:44 - 000000000 ____D C:\Program Files\Common Files\AV
2020-11-09 12:06 - 2019-05-25 14:43 - 000000000 ____D C:\ProgramData\Kaspersky Lab
2020-11-08 19:32 - 2020-07-24 21:20 - 000013985 _____ C:\ProgramData\DisplaySessionContainer3.log_backup1
2020-11-08 18:41 - 2020-08-24 17:34 - 000000000 ____D C:\Users\Brksi\AppData\Roaming\Kodi
2020-11-08 16:24 - 2019-05-25 14:40 - 000000000 ____D C:\ProgramData\Kaspersky Lab Setup Files
2020-11-07 20:05 - 2020-01-07 17:41 - 000014507 _____ C:\ProgramData\DisplaySessionContainer2.log_backup1
2020-11-06 14:24 - 2019-05-22 18:18 - 000000000 ____D C:\Users\Brksi\AppData\Local\ElevatedDiagnostics
2020-11-05 22:01 - 2020-07-31 22:57 - 000013987 _____ C:\ProgramData\DisplaySessionContainer8.log_backup1
2020-11-05 21:41 - 2020-07-31 00:02 - 000013987 _____ C:\ProgramData\DisplaySessionContainer7.log_backup1
2020-11-04 21:01 - 2020-07-29 18:47 - 000013987 _____ C:\ProgramData\DisplaySessionContainer6.log_backup1
2020-11-03 23:16 - 2020-07-28 23:02 - 000013995 _____ C:\ProgramData\DisplaySessionContainer5.log_backup1
2020-11-03 00:56 - 2020-07-27 22:54 - 000013987 _____ C:\ProgramData\DisplaySessionContainer4.log_backup1
2020-10-31 12:14 - 2020-01-02 16:00 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2020-10-30 01:48 - 2020-08-02 23:28 - 000014310 _____ C:\ProgramData\DisplaySessionContainer10.log_backup1
2020-10-29 13:14 - 2019-05-22 13:32 - 000000000 ___RD C:\Users\Brksi\OneDrive
2020-10-28 19:50 - 2020-08-01 20:17 - 000013991 _____ C:\ProgramData\DisplaySessionContainer9.log_backup1
2020-10-26 19:41 - 2019-05-23 20:09 - 000000000 ____D C:\Users\Brksi\AppData\Local\CrashDumps
2020-10-23 16:17 - 2019-09-15 11:38 - 000000000 ____D C:\Program Files\FileZilla FTP Client

==================== Files in the root of some directories ========

2019-06-27 14:47 - 2019-06-27 14:47 - 000087552 _____ (IAIK) C:\Users\Brksi\pkcs11wrapper_32.dll
2019-12-22 14:52 - 2019-12-22 14:52 - 000000017 _____ () C:\Users\Brksi\AppData\Local\resmon.resmoncfg
2019-12-16 16:26 - 2019-12-16 16:36 - 000000068 _____ () C:\Users\Brksi\AppData\Local\TempDiskpartScript.txt

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================


https://www.mycity.rs/must-login.png

Dopuna: 25 Nov 2020 12:10

Pregledao sam detaljan izvestaj Kasperskog - evo sta kaze za downloader
11/21/2020 2:17:59 PM;D:\Downloads\CR_Downloader_for_popeye-(1986)(macmillan-software-ltd)_1125598585.exe;CR_Downloader_for_popeye-(1986)(macmillan-software-ltd)_1125598585.exe;D:\Downloads;File;Will be deleted on restart;Object will be deleted on restart;Will be deleted on restart;not-a-virus:UDS:AdWare.Win32.DealPly;Adware;Medium;Exactly;Google Chrome;chrome.exe;C:\Program Files (x86)\Google\Chrome\Application\chrome.exe;C:\Program Files (x86)\Google\Chrome\Application;5060;EX-MAXIMUS\Brksi;Active user;

offline
  • Pridružio: 26 Avg 2010
  • Poruke: 10622
  • Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building

Logovi su čisti tako da je KAV obavio psoao uz prekomjernu upotrebu sile.

offline
  • Pridružio: 18 Jul 2003
  • Poruke: 4201
  • Gde živiš: U zlatnom kavezu

Najlepse hvala

Ko je trenutno na forumu
 

Ukupno su 981 korisnika na forumu :: 67 registrovanih, 8 sakrivenih i 906 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: -[CoA]-, 357magnum, 8u47, A.R.Chafee.Jr., airsuba, bieffe, bojankrstc, bojcistv, Boris90, BORUTUS, Bubimir, Buda Baba, crnitrn, dane007, dankisha, Darkhunter, darkojbn, Dejan84, desnicaj569, DJ Brain(w)rack, Doca, dolinalima, DPera, dragon986, Ehinacea, Fog of War, Frunze, goran.vvv, goranperović66, goxin, Insan, Istman, ivica976, JimmyNapoli, kalens021, krlebgd77, Krvava Devetka, kunktator, Lieutenant, maiden6657, mandicdamir245, maskirovka, mačković, menges, mercedesamg, Milan A. Nikolic, miodrag, Nemanja.M, Outis, Panter, pein, perko91, pvoman, raketaš, RiV, Romibrat, sabros, Shinobi, stegonosa, theNedjeljko, Toper, VJ, W123, Wrangler, YU-UKI, šumar bk2, 125