Sumnjiv downloader urgentno

Sumnjiv downloader urgentno

offline
  • Pridružio: 18 Jul 2003
  • Poruke: 4198
  • Gde živiš: U zlatnom kavezu

Napisano: 21 Nov 2020 15:22

Danas sam skidao neke ROMove za C64 emulator (mogu navesti ime sajta ako je potrebno) i umesto da kliknem alternate download je kliknem direct. Umesto zip skinuo mi se exe fajl - nisam ga pokretao, otisao sam na altrnate download i dobio zip. Onda sam video da mi je kaspersky crven i da exe fajl ne mogu da obrisem kao da je vec u RAMU samim skidanjem. Onda videh da mi Kaspersky nudi reboot to finish desinfiction... Odradio sam reboot i fajla vise nije bilo - osim zipa.... Zbog svega navedenog i mogucnosti da se aktivirao samim skidanjem hocu da proverim da li je Kasper uspesno odbio napad...

Napomena: Sistem je nedavno azuriran na verziju 20H2 i Windows.old folder josnije nestao tako da mozda tranzicija na novi build jos traje

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 21-11-2020
Ran by Brksi (administrator) on EX-MAXIMUS (21-11-2020 15:04:58)
Running from C:\Users\Brksi\Desktop
Loaded Profiles: Brksi
Platform: Windows 10 Pro Version 2009 19042.630 (X64) Language: engleski (SAD)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
(ASUSTEK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Program Files (x86)\ASUS\AURA(GRAPHICS CARD)\ledcontrolservice.exe
(Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrA.exe
(Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrB.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.2\avp.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.2\avpui.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.2\ksde.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.2\ksdeui.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsAlarms_10.2009.5.0_x64__8wekyb3d8bbwe\Time.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12011.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(NetSeT Global Solutions d.o.o.) [File not signed] C:\Program Files\TrustEdgeID\TokenUtil.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_95bdb3a23d6478de\Display.NvContainer\NVDisplay.Container.exe <2>
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8466136 2015-04-30] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500936 2015-05-25] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706680 2020-09-17] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-2380905529-1053080505-2130717067-1001\...\Run: [EpicGamesLauncher] => F:\Program Files\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [32350096 2020-07-11] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-2380905529-1053080505-2130717067-1001\...\Run: [Steam] => F:\Program Files\Steam\steam.exe [3424032 2020-10-29] (Valve -> Valve Corporation)
HKU\S-1-5-21-2380905529-1053080505-2130717067-1001\...\Policies\Explorer: [NoRecentDocsHistory] 1
HKU\S-1-5-21-2380905529-1053080505-2130717067-1001\...\Command Processor: prompt $D$B$T$BDje si Brksi $P  <==== ATTENTION
HKLM\...\Windows x64\Print Processors\hpcpp101: C:\Windows\System32\spool\prtprocs\x64\hpcpp101.dll [323584 2010-09-23] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\HP Standard TCP/IP Port: c:\windows\system32\HpTcpMon.dll [331264 2009-09-16] (Hewlett Packard) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\87.0.4280.66\Installer\chrmstp.exe [2020-11-20] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Token Manager.lnk [2019-05-23]
ShortcutTarget: Token Manager.lnk -> C:\Program Files\TrustEdgeID\TokenUtil.exe (NetSeT Global Solutions d.o.o.) [File not signed]
GroupPolicy: Restriction ? <==== ATTENTION
GroupPolicy\User: Restriction ? <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0F76C66F-8448-4172-B4F7-DE253E8F299B} - System32\Tasks\Microsoft\VisualStudio\VSIX Auto Update 14 => C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\VSIXAutoUpdate.exe [131776 2016-03-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {2D5BD685-6AED-44ED-8FC7-80AE0768BAAA} - System32\Tasks\CorelUpdateHelperTaskCore => c:\Program Files (x86)\Corel\CUH\v2\CUH.exe
Task: {4387F918-C6C2-4B95-B84A-4F72B001F7C3} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-05-09] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {4C1D02F8-C1B7-45CC-BA6C-5D2117F29836} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24702024 2020-03-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {66372300-C300-44BD-A5D2-4DD70847F923} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6147688 2020-04-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {72C090FA-0654-4E58-9E5D-8A57C20ABC3D} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24702024 2020-03-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {7EB1F78E-F886-4281-B7DE-E46BE0268100} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158760 2020-04-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {86BDABC1-8CAC-407B-88E5-253E04DBE205} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [664784 2020-10-16] (Mozilla Corporation -> Mozilla Foundation)
Task: {8E1F7AA5-64AB-4E99-9A2F-4CADFDD27447} - System32\Tasks\AURA => C:\Program Files (x86)\ASUS\AURA(GRAPHICS CARD)\ledcontrolservice.exe [2416640 2019-08-14] (ASUSTEK COMPUTER INC. -> ASUSTek COMPUTER INC.)
Task: {A97654D6-953C-4892-849B-0695290D7358} - System32\Tasks\Kaspersky_Upgrade_Launcher_{278ADC42-419D-4547-A6CA-5B74BE0AD901} => C:\Program Files\Common Files\AV\Kaspersky Lab\upgrade_launcher.exe [791232 2020-11-08] (Kaspersky Lab -> AO Kaspersky Lab)
Task: {B28C486B-D40E-4922-9AF8-B4126296109A} - System32\Tasks\SamsungMagician => C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe [2571704 2020-02-14] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
Task: {BB8DC64E-A4C0-47CE-BC26-402918690438} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158760 2020-04-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {BFF94C50-706B-4FB0-913B-2F10A81988DD} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [16571320 2019-05-09] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {C51B6850-2A7F-4A71-BF97-97DCB6382DA8} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-05-22] (Google Inc -> Google LLC)
Task: {D970328C-0667-4C33-B8F1-AF11CEC48F02} - System32\Tasks\Gasi => C:\Users\Brksi\Desktop\s.bat [69 2020-01-26] () [File not signed]
Task: {FA919C54-EDA0-4DED-9BAB-2353CAEE7021} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6147688 2020-04-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {FB254A00-79EC-4BA8-A4AC-70EB8F70C08A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-05-22] (Google Inc -> Google LLC)
Task: {FB354C68-D0A7-4B65-87C7-9F9878DA1F22} - System32\Tasks\R@1n-KMS\Windows64Professional => wmic path SoftwareLicensingProduct where (ID="2de67392-b7a7-462a-b1ca-108dd189f588") call Activate
Task: {FC034CA5-2862-44B1-8A13-A403EA72C871} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 89.216.1.40 89.216.1.50
Tcpip\..\Interfaces\{21931522-dcc5-4868-bf64-a773215df0dd}: [DhcpNameServer] 89.216.1.40 89.216.1.50
Tcpip\..\Interfaces\{7fbc0384-f1e0-4bc6-a6a7-4f223523475a}: [NameServer] 8.8.8.8,8.8.4.4

Edge:
======
Edge Profile: C:\Users\Brksi\AppData\Local\Microsoft\Edge\User Data\Default [2020-11-09]
Edge HKU\S-1-5-21-2380905529-1053080505-2130717067-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm]

FireFox:
========
FF DefaultProfile: evdtlc1g.default
FF ProfilePath: C:\Users\Brksi\AppData\Roaming\Mozilla\Firefox\Profiles\evdtlc1g.default [2020-04-10]
FF ProfilePath: C:\Users\Brksi\AppData\Roaming\Mozilla\Firefox\Profiles\x9u2g3da.default-release [2020-10-16]
FF Extension: (uBlock Origin) - C:\Users\Brksi\AppData\Roaming\Mozilla\Firefox\Profiles\x9u2g3da.default-release\Extensions\uBlock0@raymondhill.net.xpi [2020-10-16]
FF HKLM\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.2\FFExt\light_plugin_firefox\addon.xpi => not found
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.2\FFExt\light_plugin_firefox\addon.xpi => not found
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-04-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-03-09] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @DVR/npplugin,version=3.1.0.4_l -> C:\Program Files (x86)\webrec\WEB30\WebView_L\npPlugin.dll [2017-09-13] (Zhejiang Dahua Technology CO.,LTD. -> )
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2019-09-23] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2019-09-23] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2019-09-23] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2019-09-23] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.271.2 -> C:\Program Files (x86)\Java\jre1.8.0_271\bin\dtplugin\npDeployJava1.dll [2020-11-16] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.271.2 -> C:\Program Files (x86)\Java\jre1.8.0_271\bin\plugin2\npjp2.dll [2020-11-16] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2020-04-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll [2013-05-13] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2020-04-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-03-09] (Adobe Systems Incorporated -> Adobe Systems)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\kl_prefs_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.js [2020-09-26] <==== ATTENTION (Points to *.cfg file)
FF ExtraCheck: C:\Program Files\mozilla firefox\kl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg [2020-09-26] <==== ATTENTION

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Brksi\AppData\Local\Google\Chrome\User Data\Default [2020-11-06]
CHR Extension: (Презентације) - C:\Users\Brksi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-05-22]
CHR Extension: (Kaspersky Protection) - C:\Users\Brksi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2020-10-25]
CHR Extension: (Документи) - C:\Users\Brksi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-05-22]
CHR Extension: (Google диск) - C:\Users\Brksi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-25]
CHR Extension: (YouTube) - C:\Users\Brksi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-05-22]
CHR Extension: (Black green shards) - C:\Users\Brksi\AppData\Local\Google\Chrome\User Data\Default\Extensions\cojkleigdijnbfecdhjigpgalhfhkdee [2019-06-25]
CHR Extension: (Typio Form Recovery) - C:\Users\Brksi\AppData\Local\Google\Chrome\User Data\Default\Extensions\djkbihbnjhkjahbhjaadbepppbpoedaa [2020-10-25]
CHR Extension: (Dark Reader) - C:\Users\Brksi\AppData\Local\Google\Chrome\User Data\Default\Extensions\eimadpbcbfnmbkopoojfekhnkhdbieeh [2020-11-04]
CHR Extension: (uBlock) - C:\Users\Brksi\AppData\Local\Google\Chrome\User Data\Default\Extensions\epcnnfbjfcgphgdmggkamkmgojdagdnn [2020-05-20]
CHR Extension: (Google Play музика) - C:\Users\Brksi\AppData\Local\Google\Chrome\User Data\Default\Extensions\fahmaaghhglfmonjliepjlchgpgfmobi [2020-05-27]
CHR Extension: (Табеле) - C:\Users\Brksi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-05-22]
CHR Extension: (Google документи офлајн) - C:\Users\Brksi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-10-25]
CHR Extension: (Google Play Music) - C:\Users\Brksi\AppData\Local\Google\Chrome\User Data\Default\Extensions\icppfcnhkcmnfdhfhphakoifcfokfdhg [2019-06-25]
CHR Extension: (cVim) - C:\Users\Brksi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihlenndgcmojhcghmfjfneahoeklbjjh [2019-06-25]
CHR Extension: (Take Webpage Screenshots Entirely - FireShot) - C:\Users\Brksi\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcbpblocgmgfnpjjppndjkmgjaogfceg [2020-08-25]
CHR Extension: (F.B.(FluffBusting)Purity) - C:\Users\Brksi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmkinhboiljjkhaknpaeaicmdjhagpep [2020-11-04]
CHR Extension: (Плаћања у Chrome веб-продавници) - C:\Users\Brksi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-05-20]
CHR Extension: (Gmail) - C:\Users\Brksi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-25]
CHR Extension: (Chrome Media Router) - C:\Users\Brksi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-10-25]
CHR Profile: C:\Users\Brksi\AppData\Local\Google\Chrome\User Data\Guest Profile [2020-05-20]
CHR Profile: C:\Users\Brksi\AppData\Local\Google\Chrome\User Data\System Profile [2020-05-20]
CHR HKLM\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm
CHR HKLM-x32\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AVP21.2; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.2\avp.exe [381928 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8615864 2020-06-25] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [10626328 2020-03-30] (Microsoft Corporation -> Microsoft Corporation)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [811120 2020-06-25] (EasyAntiCheat Oy -> Epic Games, Inc)
S4 HP LaserJet Service; C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe [176128 2014-06-24] (HP) [File not signed]
S3 klvssbridge64_21.2; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.2\x64\vssbridge64.exe [467352 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R2 KSDE5.2; C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.2\ksde.exe [644264 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-01-18] (Hewlett-Packard) [File not signed]
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-01-18] (Hewlett-Packard) [File not signed]
R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [66872 2020-06-05] (Even Balance, Inc. -> )
R2 PnkBstrB; C:\WINDOWS\SysWOW64\PnkBstrB.exe [107832 2020-06-05] (Even Balance, Inc. -> )
S4 PSI_SVC_2; c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [277360 2014-04-30] (Arvato Digital Services Canada Inc -> arvato digital services llc)
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [1711232 2020-06-25] (Rockstar Games, Inc. -> Rockstar Games)
S4 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-03-01] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5101992 2020-11-11] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 VBoxSDS; C:\Program Files\Oracle\VirtualBox\VBoxSDS.exe [744968 2020-01-15] (Oracle Corporation -> Oracle Corporation)
S3 wampapache64; f:\wamp64\bin\apache\apache2.4.39\bin\httpd.exe [29696 2019-03-28] (Apache Software Foundation) [File not signed]
S3 wampmariadb64; f:\wamp64\bin\mariadb\mariadb10.3.14\bin\mysqld.exe [15813032 2019-04-01] (MariaDB Corporation Ab -> )
S3 wampmysqld64; f:\wamp64\bin\mysql\mysql5.7.26\bin\mysqld.exe [39644480 2019-04-13] (Oracle America, Inc. -> )
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2010.7-0\NisSrv.exe [2467088 2020-11-17] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2010.7-0\MsMpEng.exe [128376 2020-11-17] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_95bdb3a23d6478de\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_95bdb3a23d6478de\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2017-04-14] (ASUSTeK Computer Inc. -> )
R1 Asusgio2; C:\WINDOWS\system32\drivers\AsIO2.sys [33832 2019-12-11] (ASUSTeK Computer Inc. -> )
R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [251608 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 EneTechIo; C:\WINDOWS\system32\drivers\ene.sys [19968 2019-10-17] (Microsoft Windows Hardware Compatibility Publisher -> )
R3 GemCCID; C:\WINDOWS\System32\drivers\GemCCID.sys [137712 2016-10-17] (Microsoft Windows Hardware Compatibility Publisher -> Gemalto)
R1 GLCKIO2; C:\WINDOWS\system32\drivers\GLCKIO2.sys [29368 2019-04-24] (ASUSTeK Computer Inc. -> )
S4 IObitUnlocker; C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlocker.sys [66824 2017-06-15] (IObit Information Technology -> IObit)
R1 ISODrive; C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys [115600 2010-01-29] (SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD. -> EZB Systems, Inc.)
R1 klbackupdisk; C:\WINDOWS\system32\DRIVERS\klbackupdisk.sys [110392 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klbackupflt; C:\WINDOWS\System32\DRIVERS\klbackupflt.sys [212280 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [127288 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [37496 2020-10-21] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab)
R1 klflt; C:\WINDOWS\system32\DRIVERS\klflt.sys [523576 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klgse; C:\WINDOWS\System32\DRIVERS\klgse.sys [659768 2020-09-30] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klhk; C:\WINDOWS\system32\DRIVERS\klhk.sys [1341232 2020-09-30] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klids; C:\ProgramData\Kaspersky Lab\AVP21.2\Bases\klids.sys [245792 2020-11-18] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [1025336 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klim6; C:\WINDOWS\system32\DRIVERS\klim6.sys [95544 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klkbdflt; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [113464 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klmouflt; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [113464 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [85288 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klpnpflt; C:\WINDOWS\system32\DRIVERS\klpnpflt.sys [97080 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 kltap; C:\WINDOWS\System32\drivers\kltap.sys [55592 2020-10-21] (AnchorFree Inc -> The OpenVPN Project)
R0 klupd_klif_arkmon; C:\WINDOWS\System32\Drivers\klupd_klif_arkmon.sys [257208 2020-10-22] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klupd_klif_kimul; C:\WINDOWS\System32\Drivers\klupd_klif_kimul.sys [99152 2020-04-10] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klupd_klif_klark; C:\WINDOWS\System32\Drivers\klupd_klif_klark.sys [310232 2020-10-26] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R0 klupd_klif_klbg; C:\WINDOWS\System32\Drivers\klupd_klif_klbg.sys [117456 2020-10-26] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klupd_klif_mark; C:\WINDOWS\System32\Drivers\klupd_klif_mark.sys [207352 2020-10-30] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [153400 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [250168 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [300856 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 MSIO; C:\WINDOWS\system32\drivers\MsIo64.sys [25616 2018-02-12] (MICSYS Technology Co., Ltd. -> )
S3 NPF; C:\WINDOWS\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
S3 ptun0901; C:\WINDOWS\System32\drivers\ptun0901.sys [27136 2014-08-08] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
R3 SensorsSimulatorDriver; C:\WINDOWS\System32\drivers\WUDFRd.sys [315392 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166760 2020-04-24] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 VBoxNetAdp; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp6.sys [237304 2020-01-15] (Oracle Corporation -> Oracle Corporation)
R1 VBoxNetLwf; C:\WINDOWS\system32\DRIVERS\VBoxNetLwf.sys [247216 2020-01-15] (Oracle Corporation -> Oracle Corporation)
U5 VBoxUSB; C:\Windows\System32\Drivers\VBoxUSB.sys [174000 2020-01-15] (Oracle Corporation -> Oracle Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [48536 2020-11-17] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [429288 2020-11-17] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [71912 2020-11-17] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-11-21 15:04 - 2020-11-21 15:05 - 000027665 _____ C:\Users\Brksi\Desktop\FRST.txt
2020-11-21 15:04 - 2020-11-21 15:05 - 000000000 ____D C:\FRST
2020-11-21 15:02 - 2020-11-21 15:02 - 002294784 _____ (Farbar) C:\Users\Brksi\Desktop\FRST64.exe
2020-11-16 19:28 - 2020-11-16 19:28 - 000000000 ____D C:\Users\Brksi\Apple
2020-11-16 19:28 - 2020-11-16 19:28 - 000000000 ____D C:\ProgramData\Apple Computer
2020-11-16 19:28 - 2020-11-16 19:28 - 000000000 ____D C:\ProgramData\Apple
2020-11-11 18:09 - 2020-11-11 18:09 - 000009265 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2020-11-11 18:08 - 2020-11-11 18:08 - 000363520 _____ C:\WINDOWS\system32\Windows.Internal.UI.Shell.WindowTabManager.dll
2020-11-11 18:08 - 2020-11-11 18:08 - 000266240 _____ C:\WINDOWS\SysWOW64\Windows.Internal.UI.Shell.WindowTabManager.dll
2020-11-11 18:08 - 2020-11-11 18:08 - 000197632 _____ C:\WINDOWS\system32\IHDS.dll
2020-11-11 18:08 - 2020-11-11 18:08 - 000152576 _____ C:\WINDOWS\system32\EoAExperiences.exe
2020-11-09 22:34 - 2020-11-09 13:43 - 000000000 ____D C:\Windows.old
2020-11-09 22:27 - 2020-11-09 22:34 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate
2020-11-09 22:26 - 2020-11-09 22:27 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2020-11-09 22:26 - 2020-11-09 22:26 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2020-11-09 22:25 - 2020-11-09 22:25 - 000000000 ____D C:\ProgramData\ssh
2020-11-09 22:22 - 2020-11-09 22:22 - 004898144 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmpltfm.dll
2020-11-09 22:22 - 2020-11-09 22:22 - 003860832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmpltfm.dll
2020-11-09 22:22 - 2020-11-09 22:22 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2020-11-09 22:22 - 2020-11-09 22:22 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2020-11-09 22:22 - 2020-11-09 22:22 - 002260480 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2020-11-09 22:22 - 2020-11-09 22:22 - 002260480 _____ (The ICU Project) C:\WINDOWS\system32\icu.dll
2020-11-09 22:22 - 2020-11-09 22:22 - 001822256 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2020-11-09 22:22 - 2020-11-09 22:22 - 001393472 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2020-11-09 22:22 - 2020-11-09 22:22 - 001354080 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmpal.dll
2020-11-09 22:22 - 2020-11-09 22:22 - 001333248 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2020-11-09 22:22 - 2020-11-09 22:22 - 001309504 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2020-11-09 22:22 - 2020-11-09 22:22 - 001162240 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2020-11-09 22:22 - 2020-11-09 22:22 - 001091936 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmcodecs.dll
2020-11-09 22:22 - 2020-11-09 22:22 - 001032544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ortcengine.dll
2020-11-09 22:22 - 2020-11-09 22:22 - 000980320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmpal.dll
2020-11-09 22:22 - 2020-11-09 22:22 - 000915296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmcodecs.dll
2020-11-09 22:22 - 2020-11-09 22:22 - 000732000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ortcengine.dll
2020-11-09 22:22 - 2020-11-09 22:22 - 000707544 _____ C:\WINDOWS\system32\TextShaping.dll
2020-11-09 22:22 - 2020-11-09 22:22 - 000645120 _____ C:\WINDOWS\system32\WindowManagementAPI.dll
2020-11-09 22:22 - 2020-11-09 22:22 - 000611952 _____ C:\WINDOWS\SysWOW64\TextShaping.dll
2020-11-09 22:22 - 2020-11-09 22:22 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2020-11-09 22:22 - 2020-11-09 22:22 - 000580096 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr
2020-11-09 22:22 - 2020-11-09 22:22 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr
2020-11-09 22:22 - 2020-11-09 22:22 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2020-11-09 22:22 - 2020-11-09 22:22 - 000467968 _____ C:\WINDOWS\system32\AssignedAccessCsp.dll
2020-11-09 22:22 - 2020-11-09 22:22 - 000455168 _____ C:\WINDOWS\SysWOW64\WindowManagementAPI.dll
2020-11-09 22:22 - 2020-11-09 22:22 - 000422912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2020-11-09 22:22 - 2020-11-09 22:22 - 000306176 _____ C:\WINDOWS\system32\HeatCore.dll
2020-11-09 22:22 - 2020-11-09 22:22 - 000266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthprops.cpl
2020-11-09 22:22 - 2020-11-09 22:22 - 000266240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mpg2splt.ax
2020-11-09 22:22 - 2020-11-09 22:22 - 000238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\intl.cpl
2020-11-09 22:22 - 2020-11-09 22:22 - 000221184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bthprops.cpl
2020-11-09 22:22 - 2020-11-09 22:22 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mpg2splt.ax
2020-11-09 22:22 - 2020-11-09 22:22 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\intl.cpl
2020-11-09 22:22 - 2020-11-09 22:22 - 000137016 _____ C:\WINDOWS\system32\HvsiManagementApi.dll
2020-11-09 22:22 - 2020-11-09 22:22 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\activeds.tlb
2020-11-09 22:22 - 2020-11-09 22:22 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\activeds.tlb
2020-11-09 22:22 - 2020-11-09 22:22 - 000111616 _____ C:\WINDOWS\system32\RDVGHelper.exe
2020-11-09 22:22 - 2020-11-09 22:22 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncpa.cpl
2020-11-09 22:22 - 2020-11-09 22:22 - 000101688 _____ C:\WINDOWS\SysWOW64\HvsiManagementApi.dll
2020-11-09 22:22 - 2020-11-09 22:22 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncpa.cpl
2020-11-09 22:22 - 2020-11-09 22:22 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2020-11-09 22:22 - 2020-11-09 22:22 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2020-11-09 22:22 - 2020-11-09 22:22 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2020-11-09 22:22 - 2020-11-09 22:22 - 000056672 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmmvrortc.dll
2020-11-09 22:22 - 2020-11-09 22:22 - 000055376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmmvrortc.dll
2020-11-09 22:22 - 2020-11-09 22:22 - 000048640 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2020-11-09 22:22 - 2020-11-09 22:22 - 000047472 _____ C:\WINDOWS\SysWOW64\umpdc.dll
2020-11-09 22:22 - 2020-11-09 22:22 - 000045880 _____ C:\WINDOWS\system32\HvSocket.dll
2020-11-09 22:22 - 2020-11-09 22:22 - 000039936 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2020-11-09 22:22 - 2020-11-09 22:22 - 000029696 _____ (The ICU Project) C:\WINDOWS\system32\icuuc.dll
2020-11-09 22:22 - 2020-11-09 22:22 - 000025088 _____ (The ICU Project) C:\WINDOWS\system32\icuin.dll
2020-11-09 22:22 - 2020-11-09 22:22 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msacm32.drv
2020-11-09 22:21 - 2020-11-09 22:21 - 004227116 _____ C:\WINDOWS\system32\DefaultHrtfs.bin
2020-11-09 22:21 - 2020-11-09 22:21 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2020-11-09 22:21 - 2020-11-09 22:21 - 000455168 _____ C:\WINDOWS\system32\ssdm.dll
2020-11-09 22:21 - 2020-11-09 22:21 - 000287232 _____ C:\WINDOWS\system32\CoreMas.dll
2020-11-09 22:21 - 2020-11-09 22:21 - 000165376 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2020-11-09 22:21 - 2020-11-09 22:21 - 000089088 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.proxystub.dll
2020-11-09 22:21 - 2020-11-09 22:21 - 000073216 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll
2020-11-09 22:21 - 2020-11-09 22:21 - 000064552 _____ C:\WINDOWS\system32\umpdc.dll
2020-11-09 22:21 - 2020-11-09 22:21 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\msacm32.drv
2020-11-09 22:21 - 2020-11-09 22:21 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe
2020-11-09 22:18 - 2020-11-09 22:18 - 000417792 _____ C:\WINDOWS\system32\d3dconfig.exe
2020-11-09 22:18 - 2020-11-09 22:18 - 000374784 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\DXCpl.exe
2020-11-09 22:18 - 2020-11-09 22:18 - 000365056 _____ C:\WINDOWS\SysWOW64\d3dconfig.exe
2020-11-09 22:18 - 2020-11-09 22:18 - 000347136 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\SysWOW64\DXCpl.exe
2020-11-09 22:18 - 2020-11-09 22:18 - 000000000 __RSD C:\WINDOWS\SysWOW64\WindowsDevicePortal
2020-11-09 22:18 - 2020-11-09 22:18 - 000000000 __RSD C:\WINDOWS\system32\WindowsDevicePortal
2020-11-09 22:18 - 2020-11-09 22:18 - 000000000 ___RD C:\WINDOWS\WebManagement
2020-11-09 22:17 - 2020-11-09 22:17 - 000076060 _____ C:\WINDOWS\SysWOW64\xpsrchvw.xml
2020-11-09 22:17 - 2020-11-09 22:17 - 000076060 _____ C:\WINDOWS\system32\xpsrchvw.xml
2020-11-09 22:14 - 2020-11-09 22:34 - 000000000 ____D C:\Program Files (x86)\MSBuild
2020-11-09 22:14 - 2020-11-09 22:14 - 000000000 ____D C:\Program Files\Reference Assemblies
2020-11-09 22:14 - 2020-11-09 22:14 - 000000000 ____D C:\Program Files\MSBuild
2020-11-09 22:14 - 2020-11-09 22:14 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2020-11-09 13:51 - 2020-11-09 13:51 - 000003410 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d6b6958d3d00d7
2020-11-09 13:44 - 2020-11-09 13:44 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2020-11-09 13:43 - 2020-11-21 14:21 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-11-09 13:43 - 2020-11-09 13:51 - 000003504 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-11-09 13:43 - 2020-11-09 13:43 - 000011433 _____ C:\WINDOWS\diagwrn.xml
2020-11-09 13:43 - 2020-11-09 13:43 - 000011433 _____ C:\WINDOWS\diagerr.xml
2020-11-09 13:43 - 2020-11-09 13:43 - 000003346 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-11-09 13:43 - 2020-11-09 13:43 - 000003208 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-11-09 13:43 - 2020-11-09 13:43 - 000003196 _____ C:\WINDOWS\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-11-09 13:43 - 2020-11-09 13:43 - 000003122 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2020-11-09 13:43 - 2020-11-09 13:43 - 000003048 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2020-11-09 13:43 - 2020-11-09 13:43 - 000002918 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2380905529-1053080505-2130717067-500
2020-11-09 13:43 - 2020-11-09 13:43 - 000002862 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2380905529-1053080505-2130717067-1001
2020-11-09 13:43 - 2020-11-09 13:43 - 000002598 _____ C:\WINDOWS\system32\Tasks\CorelUpdateHelperTaskCore
2020-11-09 13:43 - 2020-11-09 13:43 - 000002594 _____ C:\WINDOWS\system32\Tasks\SamsungMagician
2020-11-09 13:43 - 2020-11-09 13:43 - 000002486 _____ C:\WINDOWS\system32\Tasks\Kaspersky_Upgrade_Launcher_{278ADC42-419D-4547-A6CA-5B74BE0AD901}
2020-11-09 13:43 - 2020-11-09 13:43 - 000002414 _____ C:\WINDOWS\system32\Tasks\Gasi
2020-11-09 13:43 - 2020-11-09 13:43 - 000002298 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2020-11-09 13:43 - 2020-11-09 13:43 - 000002138 _____ C:\WINDOWS\system32\Tasks\AURA
2020-11-09 13:43 - 2020-11-09 13:43 - 000000020 ___SH C:\Users\Brksi\ntuser.ini
2020-11-09 13:43 - 2020-11-09 13:43 - 000000000 ____D C:\WINDOWS\system32\Tasks\S-1-5-21-2380905529-1053080505-2130717067-1001
2020-11-09 13:43 - 2020-11-09 13:43 - 000000000 ____D C:\WINDOWS\system32\Tasks\R@1n-KMS
2020-11-09 13:43 - 2020-11-09 13:43 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2020-11-09 13:43 - 2020-04-26 12:17 - 000004308 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-11-09 13:43 - 2020-04-26 12:17 - 000003976 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-11-09 13:43 - 2020-04-26 12:17 - 000003940 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-11-09 13:43 - 2020-04-26 12:17 - 000003894 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-11-09 13:43 - 2020-04-26 12:17 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-11-09 13:43 - 2020-04-26 12:17 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-11-09 13:43 - 2020-04-26 12:17 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-11-09 13:43 - 2020-04-26 12:17 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-11-09 13:43 - 2020-04-26 12:17 - 000003654 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-11-09 13:36 - 2020-11-21 14:26 - 000935166 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-11-09 13:36 - 2020-11-17 01:00 - 000000000 ____D C:\Users\Brksi
2020-11-09 13:36 - 2020-11-09 13:39 - 000000000 ____D C:\Users\Administrator
2020-11-09 13:36 - 2019-12-07 10:10 - 000001105 _____ C:\Users\Brksi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-11-09 13:36 - 2019-12-07 10:10 - 000001105 _____ C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-11-09 13:35 - 2020-11-21 12:15 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-11-09 13:35 - 2020-11-11 19:06 - 000549184 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-11-09 12:16 - 2020-11-09 13:43 - 000000000 ___DC C:\WINDOWS\Panther
2020-11-09 12:10 - 2020-11-09 12:10 - 000000000 ___HD C:\$WinREAgent
2020-11-09 12:05 - 2020-11-09 22:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Total Security
2020-11-08 16:23 - 2020-11-09 22:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky VPN
2020-11-06 11:52 - 2020-11-12 11:15 - 000001282 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk
2020-11-06 11:52 - 2020-11-06 11:52 - 000001270 _____ C:\Users\Public\Desktop\Mozilla Thunderbird.lnk
2020-11-06 11:52 - 2020-11-06 11:52 - 000001270 _____ C:\ProgramData\Desktop\Mozilla Thunderbird.lnk
2020-11-06 11:48 - 2020-11-06 11:48 - 000000000 ____D C:\Users\Brksi\AppData\Roaming\Thunderbird
2020-11-06 11:48 - 2020-11-06 11:48 - 000000000 ____D C:\Users\Brksi\AppData\Local\Thunderbird
2020-10-26 10:42 - 2020-10-26 10:42 - 000310232 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_klark.sys
2020-10-26 10:41 - 2020-10-26 10:41 - 000117456 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_klbg.sys
2020-10-24 16:50 - 2020-10-24 16:50 - 000000214 _____ C:\Users\Brksi\Desktop\X-COM UFO Defense.url
2020-10-22 10:23 - 2020-10-30 14:58 - 000207352 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_mark.sys
2020-10-22 10:23 - 2020-10-22 10:23 - 000257208 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_arkmon.sys

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-11-21 15:00 - 2020-04-02 16:50 - 000000000 ____D C:\Users\Brksi\AppData\Roaming\vlc
2020-11-21 14:38 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2020-11-21 14:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-11-21 14:37 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-11-21 14:26 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2020-11-21 14:21 - 2020-07-25 08:05 - 000011791 _____ C:\ProgramData\DisplaySessionContainer1.log_backup1
2020-11-21 14:21 - 2019-12-12 18:35 - 000017629 _____ C:\ProgramData\NVDisplay.ContainerLocalSystem.log_backup1
2020-11-21 14:21 - 2019-12-12 18:35 - 000017605 _____ C:\ProgramData\NVDisplayContainerWatchdog.log_backup1
2020-11-21 14:21 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2020-11-21 14:14 - 2020-02-06 17:15 - 000000000 ____D C:\Users\Brksi\.VirtualBox
2020-11-21 13:59 - 2019-07-14 18:08 - 000000000 ____D C:\ProgramData\VirtualBox
2020-11-21 12:26 - 2020-05-06 12:36 - 000002440 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-11-21 11:35 - 2019-07-14 13:10 - 000000000 ____D C:\Users\Brksi\AppData\LocalLow\Mozilla
2020-11-21 11:33 - 2020-07-25 08:05 - 000001209 _____ C:\ProgramData\NvcDispCorePlugin.log_backup1
2020-11-20 12:34 - 2019-05-22 17:44 - 000000000 ____D C:\Users\Brksi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome апликације
2020-11-20 12:04 - 2019-05-22 17:35 - 000002398 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-11-20 12:04 - 2019-05-22 17:35 - 000002398 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2020-11-20 12:04 - 2019-05-22 17:35 - 000002303 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-11-19 19:39 - 2019-05-22 13:30 - 000000000 ____D C:\Users\Brksi\AppData\Local\Packages
2020-11-19 19:02 - 2020-03-19 14:31 - 000000000 ____D C:\Users\Brksi\AppData\Roaming\TeamViewer
2020-11-18 01:50 - 2019-05-25 15:20 - 000000000 ____D C:\Users\Brksi\AppData\Roaming\tixati
2020-11-17 20:18 - 2020-03-19 14:31 - 000000000 ____D C:\Users\Brksi\AppData\Local\TeamViewer
2020-11-17 15:33 - 2019-05-22 15:12 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2020-11-17 11:42 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2020-11-16 19:28 - 2020-01-31 19:55 - 000000000 ____D C:\Users\Brksi\AppData\Local\NVIDIA Corporation
2020-11-16 19:27 - 2019-05-22 15:29 - 000000000 ____D C:\ProgramData\Packages
2020-11-16 19:27 - 2019-05-22 13:31 - 000000000 ____D C:\Users\Brksi\AppData\Local\PlaceholderTileLogoFolder
2020-11-16 19:27 - 2019-05-22 13:30 - 000000000 ____D C:\Users\Brksi\AppData\Local\Publishers
2020-11-16 19:26 - 2019-09-15 11:38 - 000000000 ____D C:\Users\Brksi\AppData\Roaming\FileZilla
2020-11-16 17:56 - 2019-06-27 14:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2020-11-16 17:56 - 2019-06-27 14:46 - 000000000 ____D C:\Program Files (x86)\Java
2020-11-16 17:55 - 2019-06-27 14:46 - 000165032 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2020-11-16 16:22 - 2019-12-07 10:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2020-11-13 11:38 - 2020-04-13 12:44 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2020-11-13 11:38 - 2019-05-22 17:28 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-11-11 19:05 - 2019-12-07 10:54 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2020-11-11 19:05 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2020-11-11 19:05 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2020-11-11 19:05 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2020-11-11 19:05 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2020-11-11 19:05 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2020-11-11 19:05 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-11-11 19:05 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2020-11-11 19:05 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-11-11 19:05 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2020-11-11 19:05 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-11-11 18:58 - 2019-05-25 17:30 - 000000877 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++.lnk
2020-11-11 18:58 - 2019-05-25 17:30 - 000000000 ____D C:\Users\Brksi\AppData\Roaming\Notepad++
2020-11-11 18:14 - 2019-05-22 14:15 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-11-11 18:11 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-11-11 18:11 - 2019-05-22 14:15 - 133736600 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-11-11 18:10 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing
2020-11-10 10:28 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\appcompat
2020-11-09 22:34 - 2020-08-24 17:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kodi
2020-11-09 22:34 - 2020-08-14 17:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TechSmith
2020-11-09 22:34 - 2020-06-25 13:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2020-11-09 22:34 - 2020-05-29 16:58 - 000000000 ____D C:\Program Files\UNP
2020-11-09 22:34 - 2020-05-28 17:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung Magician
2020-11-09 22:34 - 2020-04-26 12:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy
2020-11-09 22:34 - 2020-04-10 16:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office alatke
2020-11-09 22:34 - 2020-04-10 12:10 - 000000000 ____D C:\WINDOWS\system32\%Report%
2020-11-09 22:34 - 2020-04-02 16:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2020-11-09 22:34 - 2020-03-24 18:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Everyday Jigsaw
2020-11-09 22:34 - 2020-03-24 15:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-11-09 22:34 - 2020-02-25 18:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DOSBox-0.74-3
2020-11-09 22:34 - 2020-01-30 18:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle VM VirtualBox
2020-11-09 22:34 - 2020-01-08 19:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit Reader
2020-11-09 22:34 - 2019-12-13 19:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2020-11-09 22:34 - 2019-12-13 19:27 - 000000000 ____D C:\Program Files\IIS
2020-11-09 22:34 - 2019-12-13 19:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2015
2020-11-09 22:34 - 2019-12-13 19:25 - 000000000 ____D C:\WINDOWS\SysWOW64\1033
2020-11-09 22:34 - 2019-12-13 19:25 - 000000000 ____D C:\WINDOWS\system32\1033
2020-11-09 22:34 - 2019-12-07 10:54 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2020-11-09 22:34 - 2019-12-07 10:54 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2020-11-09 22:34 - 2019-12-07 10:18 - 000000000 ____D C:\WINDOWS\Setup
2020-11-09 22:34 - 2019-12-07 10:14 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2020-11-09 22:34 - 2019-12-07 10:14 - 000000000 __RHD C:\Users\Public\Libraries
2020-11-09 22:34 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2020-11-09 22:34 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2020-11-09 22:34 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2020-11-09 22:34 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\spool
2020-11-09 22:34 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2020-11-09 22:34 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Macromed
2020-11-09 22:34 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Registration
2020-11-09 22:34 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2020-11-09 22:34 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Help
2020-11-09 22:34 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2020-11-09 22:34 - 2019-10-29 12:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Unlocker
2020-11-09 22:34 - 2019-09-15 11:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
2020-11-09 22:34 - 2019-07-03 17:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinPcap
2020-11-09 22:34 - 2019-06-29 14:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskMark6
2020-11-09 22:34 - 2019-06-25 16:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMP WinOFF
2020-11-09 22:34 - 2019-06-03 14:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero
2020-11-09 22:34 - 2019-05-29 14:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UltraISO
2020-11-09 22:34 - 2019-05-26 19:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recuva
2020-11-09 22:34 - 2019-05-25 16:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wampserver64
2020-11-09 22:34 - 2019-05-25 14:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Total Commander Ultima Prime
2020-11-09 22:34 - 2019-05-23 18:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SmartPSS
2020-11-09 22:34 - 2019-05-23 17:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2020-11-09 22:34 - 2019-05-23 17:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KZOČitač
2020-11-09 22:34 - 2019-05-23 17:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TrustEdgeID
2020-11-09 22:34 - 2019-05-23 17:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MUP RS
2020-11-09 22:34 - 2019-05-23 11:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hard Disk Sentinel
2020-11-09 22:34 - 2019-05-22 18:58 - 000000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2020-11-09 22:34 - 2019-05-22 16:05 - 000000000 ____D C:\Program Files\Intel
2020-11-09 22:34 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2020-11-09 22:34 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\system32\MsDtc
2020-11-09 22:34 - 2017-09-29 14:46 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2020-11-09 22:27 - 2020-07-12 15:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ubisoft
2020-11-09 22:27 - 2020-07-08 12:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare
2020-11-09 22:27 - 2020-06-03 13:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
2020-11-09 22:27 - 2020-01-10 16:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Xilisoft
2020-11-09 22:27 - 2020-01-10 16:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Digiarty
2020-11-09 22:27 - 2019-12-13 19:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Expression
2020-11-09 22:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Resources
2020-11-09 22:27 - 2019-07-03 16:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TP-Link
2020-11-09 22:27 - 2019-05-23 17:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NetSeT
2020-11-09 22:27 - 2019-05-23 10:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Webteh
2020-11-09 22:27 - 2019-05-22 17:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2020-11-09 22:27 - 2019-05-22 16:11 - 000000000 ____D C:\Program Files\Realtek
2020-11-09 22:25 - 2019-12-07 10:54 - 000000000 ___SD C:\WINDOWS\system32\AppV
2020-11-09 22:25 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2020-11-09 22:25 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2020-11-09 22:25 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\F12
2020-11-09 22:25 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2020-11-09 22:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2020-11-09 22:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2020-11-09 22:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2020-11-09 22:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2020-11-09 22:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2020-11-09 22:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2020-11-09 22:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2020-11-09 22:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2020-11-09 22:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2020-11-09 22:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2020-11-09 22:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2020-11-09 22:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2020-11-09 22:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2020-11-09 22:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Com
2020-11-09 22:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2020-11-09 22:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2020-11-09 22:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2020-11-09 22:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning
2020-11-09 22:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\DiagTrack
2020-11-09 22:25 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\System
2020-11-09 22:24 - 2019-12-07 10:54 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2020-11-09 22:24 - 2019-12-07 10:54 - 000020908 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2020-11-09 22:18 - 2019-12-07 10:51 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2020-11-09 22:18 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemApps
2020-11-09 22:17 - 2019-12-07 10:52 - 000000000 ____D C:\WINDOWS\OCR
2020-11-09 22:17 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2020-11-09 22:17 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2020-11-09 22:17 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2020-11-09 22:17 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2020-11-09 22:17 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2020-11-09 22:17 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2020-11-09 22:17 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2020-11-09 22:16 - 2019-12-07 10:50 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
2020-11-09 22:16 - 2019-12-07 10:50 - 000000000 ____D C:\WINDOWS\system32\WCN
2020-11-09 22:16 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\IME
2020-11-09 22:16 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2020-11-09 14:00 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2020-11-09 13:43 - 2019-12-13 19:31 - 000000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 11.0
2020-11-09 13:43 - 2019-12-13 19:26 - 000000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 12.0
2020-11-09 13:43 - 2019-12-13 19:25 - 000000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 14.0
2020-11-09 13:43 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\USOPrivate
2020-11-09 13:43 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender
2020-11-09 13:43 - 2019-08-17 11:37 - 000000416 __RSH C:\ProgramData\ntuser.pol
2020-11-09 13:43 - 2019-05-22 13:30 - 000000000 __RHD C:\Users\Public\AccountPictures
2020-11-09 13:43 - 2019-05-22 13:30 - 000000000 ___RD C:\Users\Brksi\3D Objects
2020-11-09 13:38 - 2020-06-25 15:07 - 000000000 ____D C:\Users\Brksi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2020-11-09 13:38 - 2020-05-17 19:47 - 000000000 ____D C:\Users\Brksi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rockstar Games
2020-11-09 13:38 - 2020-03-24 15:49 - 000000000 ____D C:\Users\Brksi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-11-09 13:38 - 2019-07-15 15:31 - 000000000 ____D C:\Users\Brksi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WebView_L
2020-11-09 13:37 - 2019-05-25 15:17 - 000000000 ____D C:\Users\Brksi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Tixati
2020-11-09 13:36 - 2020-01-28 17:36 - 000891500 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2020-11-09 13:36 - 2020-01-13 11:43 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2020-11-09 13:36 - 2019-05-22 19:05 - 000000000 ____D C:\Users\Administrator\AppData\Local\Packages
2020-11-09 13:36 - 2019-05-22 13:29 - 000000000 ____D C:\Program Files\Common Files\logishrd
2020-11-09 13:35 - 2019-05-22 16:11 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2020-11-09 12:06 - 2020-04-10 12:16 - 000000000 ____D C:\Program Files (x86)\Kaspersky Lab
2020-11-09 12:06 - 2019-05-25 14:44 - 000000000 ____D C:\Program Files\Common Files\AV
2020-11-09 12:06 - 2019-05-25 14:43 - 000000000 ____D C:\ProgramData\Kaspersky Lab
2020-11-08 19:32 - 2020-07-24 21:20 - 000013985 _____ C:\ProgramData\DisplaySessionContainer3.log_backup1
2020-11-08 18:41 - 2020-08-24 17:34 - 000000000 ____D C:\Users\Brksi\AppData\Roaming\Kodi
2020-11-08 16:24 - 2019-05-25 14:40 - 000000000 ____D C:\ProgramData\Kaspersky Lab Setup Files
2020-11-07 20:05 - 2020-01-07 17:41 - 000014507 _____ C:\ProgramData\DisplaySessionContainer2.log_backup1
2020-11-06 14:24 - 2019-05-22 18:18 - 000000000 ____D C:\Users\Brksi\AppData\Local\ElevatedDiagnostics
2020-11-05 22:01 - 2020-07-31 22:57 - 000013987 _____ C:\ProgramData\DisplaySessionContainer8.log_backup1
2020-11-05 21:41 - 2020-07-31 00:02 - 000013987 _____ C:\ProgramData\DisplaySessionContainer7.log_backup1
2020-11-04 21:01 - 2020-07-29 18:47 - 000013987 _____ C:\ProgramData\DisplaySessionContainer6.log_backup1
2020-11-03 23:16 - 2020-07-28 23:02 - 000013995 _____ C:\ProgramData\DisplaySessionContainer5.log_backup1
2020-11-03 00:56 - 2020-07-27 22:54 - 000013987 _____ C:\ProgramData\DisplaySessionContainer4.log_backup1
2020-10-31 12:14 - 2020-01-02 16:00 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2020-10-30 01:48 - 2020-08-02 23:28 - 000014310 _____ C:\ProgramData\DisplaySessionContainer10.log_backup1
2020-10-29 13:14 - 2019-05-22 13:32 - 000000000 ___RD C:\Users\Brksi\OneDrive
2020-10-28 19:50 - 2020-08-01 20:17 - 000013991 _____ C:\ProgramData\DisplaySessionContainer9.log_backup1
2020-10-26 19:41 - 2019-05-23 20:09 - 000000000 ____D C:\Users\Brksi\AppData\Local\CrashDumps
2020-10-23 16:17 - 2019-09-15 11:38 - 000000000 ____D C:\Program Files\FileZilla FTP Client

==================== Files in the root of some directories ========

2019-06-27 14:47 - 2019-06-27 14:47 - 000087552 _____ (IAIK) C:\Users\Brksi\pkcs11wrapper_32.dll
2019-12-22 14:52 - 2019-12-22 14:52 - 000000017 _____ () C:\Users\Brksi\AppData\Local\resmon.resmoncfg
2019-12-16 16:26 - 2019-12-16 16:36 - 000000068 _____ () C:\Users\Brksi\AppData\Local\TempDiskpartScript.txt

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================


https://www.mycity.rs/must-login.png

Dopuna: 25 Nov 2020 12:10

Pregledao sam detaljan izvestaj Kasperskog - evo sta kaze za downloader
11/21/2020 2:17:59 PM;D:\Downloads\CR_Downloader_for_popeye-(1986)(macmillan-software-ltd)_1125598585.exe;CR_Downloader_for_popeye-(1986)(macmillan-software-ltd)_1125598585.exe;D:\Downloads;File;Will be deleted on restart;Object will be deleted on restart;Will be deleted on restart;not-a-virus:UDS:AdWare.Win32.DealPly;Adware;Medium;Exactly;Google Chrome;chrome.exe;C:\Program Files (x86)\Google\Chrome\Application\chrome.exe;C:\Program Files (x86)\Google\Chrome\Application;5060;EX-MAXIMUS\Brksi;Active user;

offline
  • Pridružio: 26 Avg 2010
  • Poruke: 10581
  • Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building

Logovi su čisti tako da je KAV obavio psoao uz prekomjernu upotrebu sile.

offline
  • Pridružio: 18 Jul 2003
  • Poruke: 4198
  • Gde živiš: U zlatnom kavezu

Najlepse hvala

Ko je trenutno na forumu
 

Ukupno su 517 korisnika na forumu :: 33 registrovanih, 4 sakrivenih i 480 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3028 - dana 22 Nov 2019 07:47

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: _Sale, babaroga, bojankrstc, comi991, Dimitrise93, Djokkinen, Doc, galijot, goxin, ikan, indja, ivan979, JOntra, KUZMAR, Marko Marković, n.jokan, nemkea71, Oscar, peruni, Petar35, rodoljub, ruma, sizif, Toni, trajkoni018, Van, VES 11119, Vlad000, Vlada1389, vlvl, x9, yamato, zlaya011