MyCity » Ambulanta » Trojanaci mi upali, pokradene sifre

Trojanaci mi upali, pokradene sifre

Napisano na dan: 23.8.2025

Trojanaci mi upali, pokradene sifre

Odgovori

Rocky I Poslao: 27 Avg 2025 17:09 Idi na vrh
offline Rocky I Građanin Pridružio: 26 Dec 2007 Poruke: 133	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Napisano: 23 Avg 2025 21:04 Pre 2 dana mi je upao trojanac preko torrenta. Iskljucio je Win defender (Win 11 pro imam), takodje i windows update, ubrzo sam video da su krenuli uspesni i neuspesni pokusaju upada na razne moje naloge,... Instalirao sam Malwerbytes, nasao je svasta, ali nije odradio posao do kraja, zatim sam koristio ESET rescue offline, takodje i Kaspersky offline, video sam sumljive besmilsene nazive koji se pokrecu uz sistem koje sam obrisao iz starta. Defender je u ovom trenutku vidljiv ali ne mogu da pokrenem nikakav scan. Nadam se da moze da se sredi. Na slici mozete videti winloghelper.exe koji iskace na 2 min. Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 21-08-2025 Ran by dejan (administrator) on BATTLESHIP5 (Micro-Star International Co., Ltd MS-7C02) (23-08-2025 20:49:27) Running from C:\Users\dejan\OneDrive\Desktop\FRST64.exe Loaded Profiles: dejan Platform: Microsoft Windows 11 Pro Version 24H2 26100.4946 (X64) Language: English (United States) Default browser: "C:\Users\dejan\AppData\Local\Programs\Opera\opera.exe" -noautoupdate -- "%1" Boot Mode: Normal ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (A225F3B5-240D-4EE9-BCF4-697A07F5E93E -> Micro-Star INT'L CO., LTD.) C:\Program Files\WindowsApps\9426MICRO-STARINTERNATION.MSICenter_2.0.57.0_x64__kzh8wxbdkxb8p\DCv2\DCv2.exe (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe (C:\Program Files (x86)\MSI\MSI Center\MSI.CentralServer.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\MSI Center\Engine\CC_Engine_x64.exe (C:\Program Files (x86)\MSI\MSI Center\MSI_Central_Service.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MSI Center\MSI.CentralServer.exe (C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe (C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSSrcExt.exe (C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cncmd.exe (C:\Program Files\Google\Drive File Stream\112.0.3.0\GoogleDriveFS.exe ->) (Google LLC -> ) C:\Program Files\Google\Drive File Stream\112.0.3.0\crashpad_handler.exe (C:\Program Files\Google\Drive File Stream\112.0.3.0\GoogleDriveFS.exe ->) (Opera Norway AS -> Opera Software) C:\Users\dejan\AppData\Local\Programs\Opera\opera.exe <26> (C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\Malwarebytes.exe (C:\Users\dejan\AppData\Local\Programs\Opera\opera.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe <2> (C:\Users\dejan\AppData\Local\Programs\Opera\opera.exe ->) (Opera Norway AS -> Opera Software) C:\Users\dejan\AppData\Local\Programs\Opera\120.0.5543.161\opera_crashreporter.exe (cmd.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe (cmd.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MbamBgNativeMsg.exe (CrystalMark Inc. -> Crystal Dew World) C:\Program Files\CrystalDiskInfo\DiskInfo64.exe (DriverStore\FileRepository\u0417878.inf_amd64_cf56f0cbce08e931\B417693\atiesrxx.exe ->) (Advanced Micro Devices -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0417878.inf_amd64_cf56f0cbce08e931\B417693\atieclxx.exe (explorer.exe ->) (Ghisler Software GmbH -> Ghisler Software GmbH) C:\Program Files\totalcmd\TOTALCMD64.EXE (explorer.exe ->) (Google LLC -> Google LLC.) C:\Program Files\Google\Drive File Stream\112.0.3.0\GoogleDriveFS.exe <6> (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\CCleaner\CCleaner64.exe (Kilonova LLC -> Skillbrains) C:\Program Files (x86)\Skillbrains\lightshot\5.5.0.7\Lightshot.exe (services.exe ->) (Advanced Micro Devices -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0417878.inf_amd64_cf56f0cbce08e931\B417693\atiesrxx.exe (services.exe ->) (Ascensio System SIA -> Ascensio System SIA) C:\Program Files\ONLYOFFICE\DesktopEditors\updatesvc.exe (services.exe ->) (CLEVERFILES INC. -> CleverFiles) C:\Program Files\CleverFiles\Disk Drill\cfbackd.w32.exe (services.exe ->) (HP Inc.) [File not signed] C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe (services.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WSL\wslservice.exe (services.exe ->) (Microsoft Corporation -> MSPCManagerService) C:\Program Files\WindowsApps\Microsoft.MicrosoftPCManager_3.17.12.0_x64__8wekyb3d8bbwe\PCManager\MSPCManagerService.exe (services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\DriverStore\FileRepository\amdfendr.inf_amd64_1aafc0a9b0693712\amdfendrsr.exe (services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI Center\Case\MSI_Case_Service.exe (services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MSI Center\MSI_Central_Service.exe (services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\MSI Center\Super Charger\MSI_Super_Charger_Service.exe (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_32b266092fc6592d\RtkAudUService64.exe <2> (sihost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\CrossDeviceResume.exe (svchost.exe ->) (Microsoft Corporation -> ) C:\Program Files\WindowsApps\Microsoft.WindowsAlarms_11.2503.4.0_x64__8wekyb3d8bbwe\ClockWidgets\ClockWidgets.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_7.325.7090.0_x64__8wekyb3d8bbwe\GameBar.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_7.325.7090.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\dejan\AppData\Local\Microsoft\OneDrive\25.140.0720.0001\FileCoAuth.exe (svchost.exe ->) (Microsoft Corporation -> MSPCManagerWidget) C:\Program Files\WindowsApps\Microsoft.MicrosoftPCManager_3.17.12.0_x64__8wekyb3d8bbwe\PCMWidgetProvider\MSPCManagerWidget.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\NgcIso.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe (svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MSI Center\AI Engine\PowerModeWatcher.exe (svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MSI Center\MSI.TerminalServer.exe (svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI Center\Speed Up\StorageMonitor.exe (svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MSI Center\True Color\New\MSI.True Color.exe ==================== Registry (Whitelisted) =================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_32b266092fc6592d\RtkAudUService64.exe [2177368 2024-08-06] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [226728 2019-07-21] (Kilonova LLC -> ) HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard) HKLM-x32\...\Run: [StatusAlerts] => C:\Program Files (x86)\HP\StatusAlerts\bin\HPStatusAlerts.exe [329992 2015-06-17] (Hewlett-Packard Company -> HP Development Company, L.P.) HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\112.0.3.0\GoogleDriveFS.exe [67033240 2025-08-05] (Google LLC -> Google LLC.) HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\112.0.3.0\GoogleDriveFS.exe [67033240 2025-08-05] (Google LLC -> Google LLC.) HKU\S-1-5-21-609623560-524961366-3877464449-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\112.0.3.0\GoogleDriveFS.exe [67033240 2025-08-05] (Google LLC -> Google LLC.) HKU\S-1-5-21-609623560-524961366-3877464449-1001\...\Run: [Opera Browser Assistant] => C:\Users\dejan\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [4536216 2025-04-14] (Opera Norway AS -> Opera Software) HKU\S-1-5-21-609623560-524961366-3877464449-1001\...\Run: [MicrosoftEdgeAutoLaunch_A9AE4A14A8BD639F4AB91FC16A3CB162] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4117544 2025-08-15] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-609623560-524961366-3877464449-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [45988576 2025-08-14] (Gen Digital Inc. -> Gen Digital Inc.) HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\112.0.3.0\GoogleDriveFS.exe [67033240 2025-08-05] (Google LLC -> Google LLC.) HKU\S-1-5-18\...\Run: [AMDNoiseSuppression] => "C:\WINDOWS\system32\AMD\ANR\AMDNoiseSuppression.exe" (No File) HKU\S-1-5-18\...\RunOnce: [StartRSX] => C:\Program Files\AMD\CNext\CNext\LauncherRSXRuntime.exe [73480 2025-07-24] (Advanced Micro Devices -> Advanced Micro Devices, Inc.) HKLM\...\Print\Monitors\HP Standard TCP/IP Port: C:\Windows\system32\HpTcpMon.dll [331264 2009-09-16] (Hewlett Packard) [File not signed] HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\139.0.7258.128\Installer\chrmstp.exe [2025-08-14] (Google LLC -> Google LLC) GroupPolicy: Restriction ? <==== ATTENTION Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION ==================== Scheduled Tasks (Whitelisted) ================= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {0AF6A994-1B3A-4B10-B485-9753CE6DF6A4} - \Microsoft\Windows\UpdateOrchestrator\Start Oobe Expedite Work -> No File <==== ATTENTION Task: {0F95DB85-8F35-4B2A-93DE-E4A31A713F54} - \Microsoft\Windows\UpdateOrchestrator\Schedule Scan Static Task -> No File <==== ATTENTION Task: {1F597908-C76E-463E-A71A-5BCD2F86E75C} - \Microsoft\Windows\Windows Defender\Windows Defender Verification -> No File <==== ATTENTION Task: {225B9244-DF0E-422C-9AE7-C08092255C04} - \Microsoft\Windows\Windows Defender\Windows Defender Cleanup -> No File <==== ATTENTION Task: {4CDD753C-D44A-4CF2-A649-61A9D49B45F7} - \Microsoft\Windows\UpdateOrchestrator\Schedule Work -> No File <==== ATTENTION Task: {5AB39D4B-13FB-4052-9136-2450F6598200} - \Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan -> No File <==== ATTENTION Task: {5D60B1DE-D0F8-469E-BFC4-9770FFFCC697} - \Microsoft\Windows\UpdateOrchestrator\Schedule Wake To Work -> No File <==== ATTENTION Task: {84806EDD-97AA-4DF9-B22D-86F2EE3FEF62} - \Microsoft\Windows\UpdateOrchestrator\Schedule Scan -> No File <==== ATTENTION Task: {95425085-1A14-4B85-9028-E50D0FC160B4} - \Microsoft\Windows\WindowsUpdate\Refresh Group Policy Cache -> No File <==== ATTENTION Task: {A0FB6F87-FEC5-46F8-843B-B58DD5E06AD6} - \Microsoft\Windows\WindowsUpdate\Scheduled Start -> No File <==== ATTENTION Task: {AE889AF2-B6E2-4941-8C89-FCD4EB658F9B} - \Microsoft\Windows\UpdateOrchestrator\UUS Failover Task -> No File <==== ATTENTION Task: {B1B281DE-0AC7-4CF8-8865-D0F80CB10162} - \Microsoft\Windows\UpdateOrchestrator\UIEOrchestrator -> No File <==== ATTENTION Task: {C488BB9C-AC81-4CC1-9BFD-188744791A7B} - \Microsoft\Windows\UpdateOrchestrator\Schedule Maintenance Work -> No File <==== ATTENTION Task: {DD6E2608-767B-4449-BB55-45CAD83FADA4} - \Microsoft\Windows\UpdateOrchestrator\StartOobeAppsScanAfterUpdate -> No File <==== ATTENTION Task: {E410C093-D2A8-45E1-B810-12FFE228F567} - \Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance -> No File <==== ATTENTION Task: {EC2A03E8-2F81-4030-A3A7-53DAC1DB0E2D} - \Microsoft\Windows\UpdateOrchestrator\Report policies -> No File <==== ATTENTION Task: {EDC62534-48CF-4D30-A263-32780ED68B57} - \Microsoft\Windows\UpdateOrchestrator\StartOobeAppsScan_LicenseAccepted -> No File <==== ATTENTION Task: {F3E6E7ED-A196-4E44-8803-55FAB3AD4E29} - \Microsoft\Windows\UpdateOrchestrator\USO_UxBroker -> No File <==== ATTENTION Task: {86A4C592-9AF5-432D-A47E-41884150BC1B} - System32\Tasks\AMD Install Manager - Check For Updates => C:\Program Files\AMD\AMDInstallManager\AMDInstallManager.exe [55427848 2025-07-24] (Advanced Micro Devices -> Advanced Micro Devices, Inc.) -> C:\Program Files\AMD\AMDInstallManager\\-CheckForUpdates Task: {4F128845-1540-4DE0-8DF2-4DF44298B773} - System32\Tasks\AMDRyzenMasterSDKTask => C:\Program Files\AMD\CNext\CNext\cpumetricsserver.exe [191248 2025-07-24] (Advanced Micro Devices -> Advanced Micro Devices, Inc.) Task: {FAB0FA26-DA31-4F6F-AE42-E1F4BFFFEB2F} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [3480504 2025-08-14] (Gen Digital Inc. -> Gen Digital Inc.) Task: {812A917A-48DC-4704-91A8-BE7446676C92} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [6140640 2025-08-14] (Gen Digital Inc. -> Gen Digital Inc.) -> --product 90 --send dumps\|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "6f5f271d-0b68-47d9-9fbb-f3d728414f69" --version "6.39.0.11548" --silent Task: {5C083799-5C62-4B3E-ACDB-C5DAB92C0AC4} - System32\Tasks\CCleanerSkipUAC - dejan => C:\Program Files\CCleaner\CCleaner.exe [39822560 2025-08-14] (Gen Digital Inc. -> Gen Digital Inc.) Task: {70F321B8-316F-46DB-93C3-2AC00584D43C} - System32\Tasks\CrystalDiskInfo => C:\Program Files\CrystalDiskInfo\DiskInfo64.exe [2886392 2025-07-27] (CrystalMark Inc. -> Crystal Dew World) Task: {7163FD97-23AE-4B8C-AAA0-FDE4D378F9F6} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem141.0.7340.0{6A4969A9-FCE7-4708-9E38-FDFF969713BE} => C:\Program Files (x86)\Google\GoogleUpdater\141.0.7340.0\updater.exe [6813336 2025-08-06] (Google LLC -> Google LLC) Task: {0117D86E-8D82-4C18-98ED-2D5A49BAA7AB} - System32\Tasks\HPLJCustParticipation => C:\Program Files (x86)\HP\HPLJUT\HPLJUTSCH.exe [89840 2014-10-19] (Hewlett-Packard Company -> Hewlett Packard) Task: {879246E8-B301-4695-AD5A-5A37E6DD6A15} - System32\Tasks\MEGA\MEGAsync Update Task S-1-5-21-609623560-524961366-3877464449-1001 => C:\Users\dejan\AppData\Local\MEGAsync\MEGAupdater.exe [1949960 2025-02-19] (Mega Limited -> ) Task: {077BA067-7C15-40F0-B22E-C9DC2A54B4A2} - System32\Tasks\Microsoft\Windows\Location\Notifications => %windir%\System32\LocationNotificationWindows.exe (No File) Task: {38F9DA7B-72E7-4F8E-806E-E7E7BC252A0E} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1038608 2025-07-25] (Advanced Micro Devices -> Advanced Micro Devices, Inc.) Task: {2DBED597-2EE4-4F79-996C-C67AFCE27296} - System32\Tasks\OneDrive Startup Task-S-1-5-21-609623560-524961366-3877464449-1001 => C:\Users\dejan\AppData\Local\Microsoft\OneDrive\25.140.0720.0001\OneDriveLauncher.exe [723816 2025-08-13] (Microsoft Corporation -> Microsoft Corporation) Task: {66E52879-ECBA-4CEE-B7A0-8881B29ACDBF} - System32\Tasks\Opera Air scheduled Autoupdate 1740586860 => C:\Users\dejan\AppData\Local\Programs\Opera Air\autoupdate\opera_autoupdate.exe [6246360 2025-07-24] (Opera Norway AS -> Opera Software) Task: {76C34D0C-DB53-414B-8CC7-E77CEAD27E92} - System32\Tasks\Opera scheduled assistant Autoupdate 1724607561 => C:\Users\dejan\AppData\Local\Programs\Opera\autoupdate\opera_autoupdate.exe [6239704 2025-08-06] (Opera Norway AS -> Opera Software) -> --scheduledtask --productiscomponent --bypasslauncher --installdir="C:\Users\dejan\AppData\Local\Programs\Opera\assistant" --producttype=assistant $(Arg0) Task: {C68F0620-B283-463B-A036-EB5568437435} - System32\Tasks\Opera scheduled Autoupdate 1724607559 => C:\Users\dejan\AppData\Local\Programs\Opera\autoupdate\opera_autoupdate.exe [6239704 2025-08-06] (Opera Norway AS -> Opera Software) Task: {88DD1FDC-C029-4BA1-8020-42B9A1A2F198} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [143632 2025-07-24] (Advanced Micro Devices -> Advanced Micro Devices, Inc.) Task: {9F8FDE62-1401-4CBD-9AAE-4FA7BE26DFFB} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [310032 2025-07-24] (Advanced Micro Devices -> Advanced Micro Devices, Inc.) Task: {DC419B65-C2A4-48EB-8ED1-62586530E5B7} - System32\Tasks\update-S-1-5-21-609623560-524961366-3877464449-1001 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>) Task: {9D538D12-ED17-485A-85F5-195CEE2DB446} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>) Task: {D065BCAE-7D95-4B87-8D1B-092F6BF1B2DA} - System32\Tasks\WindowsLogsHelper => C:\Windows\system32\cmd.exe [376832 2025-08-09] (Microsoft Windows -> Microsoft Corporation) -> /c start " " "C:\WINDOWS\winloghelper.exe" (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe Task: C:\WINDOWS\Tasks\update-S-1-5-21-609623560-524961366-3877464449-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{a9094224-a3ae-4b29-bfaf-a43261093d5f}: [DhcpNameServer] 192.168.1.1 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\dejan\AppData\Local\Microsoft\Edge\User Data\Default [2025-08-23] Edge Session Restore: Default -> is enabled. Edge Extension: (Malwarebytes Browser Guard) - C:\Users\dejan\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bojobppfploabceghnmlahpoonbcbacn [2025-08-21] Edge Extension: (Google Docs Offline) - C:\Users\dejan\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-07-28] Edge Extension: (Edge relevant text changes) - C:\Users\dejan\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-08-25] Edge Profile: C:\Users\dejan\AppData\Local\Microsoft\Edge\User Data\Profile 1 [2025-08-23] Edge Session Restore: Profile 1 -> is enabled. Edge Extension: (Immersive Translate - Translate Web & PDF) - C:\Users\dejan\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\amkbmndfnliijdhojkpoglbnaaahippg [2025-02-26] Edge Extension: (Grammarly: AI Writing and Grammar Checker App) - C:\Users\dejan\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\cnlefmmeadmemmdciolhbnfeacpdfbkd [2025-02-26] Edge Extension: (Google Docs Offline) - C:\Users\dejan\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-02-26] Edge Extension: (Bitwarden Password Manager) - C:\Users\dejan\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\jbkfoedolllekgbhcbcoahefnbanhhlh [2025-02-26] Edge Extension: (Edge relevant text changes) - C:\Users\dejan\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-09-27] Edge Extension: (Octotree - GitHub code tree) - C:\Users\dejan\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\joagmknfcgpikbadjkaikmnhpjadihjg [2025-02-26] Edge Extension: (AdBlock — block ads across the web) - C:\Users\dejan\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\ndcileolkflehcjpmjnfbnaibdcgglog [2025-02-26] Edge HKLM\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn] Edge HKLM-x32\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn] Chrome: ======= CHR Profile: C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Default [2025-08-23] CHR HomePage: Default -> hxxps://www.google.com/ CHR Session Restore: Default -> is enabled. CHR Extension: (Google Translate) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2024-09-07] CHR Extension: (ColorZilla) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhlhnicpbhignbdhedgjhgdocnmhomnp [2024-08-25] CHR Extension: (WOT: Website Security & Safety Checker) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhmmomiinigofkjcapegjjndpbikblnp [2025-07-15] CHR Extension: (uBlock Origin Lite) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ddkjiahejlhfcafbddmgiahcphecmpfh [2025-08-21] CHR Extension: (Malwarebytes Browser Guard) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2025-08-21] [UpdateUrl:0] <==== ATTENTION CHR Extension: (WhatFont) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Default\Extensions\jabopobgcpjmedljpbcaablpmlmfcogm [2024-08-25] CHR Extension: (Grammarly: AI Writing and Grammar Checker App) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbfnbcaeplbcioakkpcpgfkobkghlhen [2025-08-21] CHR Extension: (StayFocusd – Website Blocker & Focus Timer & Shorts Blocker) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Default\Extensions\laankejkbhbdhmipfmgcngdelahlfoji [2025-08-11] CHR Extension: (Chrome Web Store Payments) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-08-25] CHR Extension: (Bitwarden Password Manager) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nngceckbapebfimnlniiiahkandclblb [2025-07-31] CHR Profile: C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Profile 1 [2025-08-23] CHR NewTab: Profile 1 -> "active": false, "entry": "chrome-extension://laookkfknpbbblfpciffpaejjkokdgca/index.html" CHR Session Restore: Profile 1 -> is enabled. CHR Extension: (Google Translate) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2024-09-20] CHR Extension: (JSON Formatter) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\bcjindcccaagfpapjjmafapmmgkkhgoa [2024-08-25] CHR Extension: (Web Developer) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\bfbameneiokkgbdmiekhjnmfkcnldhhm [2024-08-25] CHR Extension: (ColorZilla) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\bhlhnicpbhignbdhedgjhgdocnmhomnp [2024-08-25] CHR Extension: (WOT: Website Security & Safety Checker) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\bhmmomiinigofkjcapegjjndpbikblnp [2025-08-07] CHR Extension: (Weava Highlighter - PDF & Web) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cbnaodkpfinfiipjblikofhlhlcickei [2024-08-25] CHR Extension: (JSONVue) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\chklaanhfefbnpoihckbnefhakgolnmc [2024-08-25] CHR Extension: (OneTab) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\chphlpgkkbolifaimnlloiipkdnihall [2024-08-25] CHR Extension: (Fonts Ninja) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\eljapbgkmlngdpckoiiibecpemleclhh [2025-07-31] CHR Extension: (Google Font Previewer for Chrome) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\engndlnldodigdjamndkplafgmkkencc [2024-08-25] CHR Extension: (GoFullPage - Full Page Screen Capture) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fdpohaocaechififmbbbbbknoalclacl [2025-03-27] CHR Extension: (React Developer Tools) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fmkadmapgofadopljbjfkapdkoienihi [2025-07-07] CHR Extension: (JSON Viewer) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gbmdgpbipfallnflgajpaliibnhdgobh [2024-08-25] CHR Extension: (Toby Mini) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gfdcgfhkelkdmglklfbndgopaihmoeci [2025-08-07] CHR Extension: (WhatFont) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\jabopobgcpjmedljpbcaablpmlmfcogm [2024-08-25] CHR Extension: (Grammarly: AI Writing and Grammar Checker App) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\kbfnbcaeplbcioakkpcpgfkobkghlhen [2025-08-20] CHR Extension: (Momentum) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\laookkfknpbbblfpciffpaejjkokdgca [2025-08-10] CHR Extension: (Huntr - Job Search Tracker & Autofill) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\mihdfbecejheednfigjpdacgeilhlmnf [2025-01-16] CHR Extension: (SelectorsHub) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ndgimibanhlabgdgjcpbbndiehljcpfh [2025-07-31] CHR Extension: (Chrome Web Store Payments) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-08-25] CHR Extension: (Bitwarden Password Manager) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nngceckbapebfimnlniiiahkandclblb [2025-08-07] CHR Extension: (AdBlocker Ultimate) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ohahllgiabjaoigichmmfljhkcfikeof [2025-08-20] CHR Extension: (Teal - Job Search Companion) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\opafjjlpbiaicbbgifbejoochmmeikep [2025-07-31] CHR Profile: C:\Users\dejan\AppData\Local\Google\Chrome\User Data\System Profile [2025-08-18] CHR HKLM\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee] CHR HKU\S-1-5-21-609623560-524961366-3877464449-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee] Opera: ======= OPR DefaultProfile: Default StartMenuInternet: (HKU\S-1-5-21-609623560-524961366-3877464449-1001) Opera AirStable - "C:\Users\dejan\AppData\Local\Programs\Opera Air\opera.exe" ==================== Services (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) S3 AntiCheatExpert Protection; C:\Program Files\AntiCheatExpert\ACE-Service64.exe [3261264 2025-07-31] (ACEVILLE PTE LTD -> ANTICHEATEXPERT.COM) S3 AntiCheatExpert Service; C:\Program Files\AntiCheatExpert\SGuard\x64\SGuardSvc64.exe [2098584 2025-07-31] (ACEVILLE PTE LTD -> ANTICHEATEXPERT.COM) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [20352680 2025-06-11] (BattlEye Innovations e.K. -> ) S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1080544 2025-08-14] (Gen Digital Inc. -> Gen Digital Inc.) R2 cfbackd; C:\Program Files\CleverFiles\Disk Drill\cfbackd.w32.exe [309128 2023-03-23] (CLEVERFILES INC. -> CleverFiles) S3 EAAntiCheatService; C:\Program Files\EA\AC\eaanticheat.gameservice.exe [118805240 2025-07-28] (Electronic Arts, Inc. -> Electronic Arts) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [781440 2024-09-01] (EasyAntiCheat Oy -> EasyAntiCheat Ltd) S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [964336 2025-07-30] (EasyAntiCheat Oy -> Epic Games, Inc.) S3 EpicGamesUpdater; C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesUpdater.exe [3071904 2025-08-12] (Epic Games Inc. -> Epic Games, Inc.) S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [1604512 2025-07-30] (Epic Games Inc. -> Epic Games, Inc.) R2 HP LaserJet Service; C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe [176640 2020-02-11] (HP Inc.) [File not signed] R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9608720 2025-08-21] (Malwarebytes Inc -> Malwarebytes) S3 MBVpnTunnelService; C:\Program Files\Malwarebytes\Anti-Malware\MBVpnTunnelService.exe [2788304 2025-08-21] (Malwarebytes Inc. -> Malwarebytes) R2 MSI_Case_Service; C:\Program Files (x86)\MSI\MSI Center\Case\MSI_Case_Service.exe [134160 2025-05-05] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) R2 MSI_Center_Service; C:\Program Files (x86)\MSI\MSI Center\MSI_Central_Service.exe [181776 2025-04-17] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) R2 MSI_Super_Charger_Service; C:\Program Files (x86)\MSI\MSI Center\Super Charger\MSI_Super_Charger_Service.exe [37104 2022-05-13] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) R2 ONLYOFFICE Update Service; C:\Program Files\ONLYOFFICE\DesktopEditors\updatesvc.exe [643792 2025-07-07] (Ascensio System SIA -> Ascensio System SIA) R2 PCManager Service Store; C:\Program Files\WindowsApps\Microsoft.MicrosoftPCManager_3.17.12.0_x64__8wekyb3d8bbwe\PCManager\MSPCManagerService.exe [154168 2025-08-20] (Microsoft Corporation -> MSPCManagerService) S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [8264680 2025-05-15] (Rockstar Games, Inc. -> Rockstar Games) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [918456 2025-08-09] (Microsoft Windows Publisher -> Microsoft Corporation) R2 TavernComn_2_1; C:\Program Files\IRONMACE\Tavern\EpicGames\TavernApp_2_1\TavernComn.dll [10847656 2024-12-27] (IRONMACE Co., Ltd. -> IRONMACE Co., Ltd.) S3 TavernWorker_2_1; C:\Program Files\IRONMACE\Tavern\EpicGames\TavernApp_2_1\TavernWorker.exe [23219624 2024-12-27] (IRONMACE Co., Ltd. -> IRONMACE Co., Ltd.) ===================== Drivers (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) S3 ACE-BASE; C:\WINDOWS\system32\drivers\ACE-BASE.sys [4289104 2025-07-31] (Microsoft Windows Hardware Compatibility Publisher -> ANTICHEATEXPERT.COM) S3 ace-game; C:\WINDOWS\System32\drivers\ace-game.sys [1426712 2025-07-31] (Tencent Technology (Shenzhen) Company Limited -> ANTICHEATEXPERT.COM) S3 ACE-SSC-DRV64; C:\Program Files\AntiCheatExpert\SGuard\x64\plugins\ACE-SSC-DRV64.sys [307792 2025-07-31] (Microsoft Windows Hardware Compatibility Publisher -> ANTICHEATEXPERT.COM) R3 amdfendrmgr; C:\WINDOWS\System32\DriverStore\FileRepository\amdfendr.inf_amd64_1aafc0a9b0693712\amdfendrmgr.sys [37208 2025-02-06] (Advanced Micro Devices -> Advanced Micro Devices, Inc.) R3 amdgpio3; C:\WINDOWS\System32\drivers\amdgpio3.sys [33592 2024-09-12] (ASMedia Technology Inc. -> Advanced Micro Devices, Inc) R3 AMDSAFD; C:\WINDOWS\System32\DriverStore\FileRepository\amdsafd.inf_amd64_d4de13a10f2586d0\amdsafd.sys [112952 2024-06-15] (AMD Test Build -> Advanced Micro Devices) R3 amduw23g-417878-33000e3f; C:\WINDOWS\System32\DriverStore\FileRepository\u0417878.inf_amd64_cf56f0cbce08e931\B417693\amdkmdag.sys [101637624 2025-08-01] (Advanced Micro Devices -> Advanced Micro Devices, Inc.) R3 AMDXE; C:\WINDOWS\System32\drivers\amdxe.sys [63008 2024-05-16] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) R2 Dokan2; C:\WINDOWS\system32\drivers\dokan2.sys [395936 2025-01-19] (Microsoft Windows Hardware Compatibility Publisher -> Dokan Project) R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae.sys [159296 2025-08-21] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R0 fse; C:\WINDOWS\System32\drivers\fse.sys [222528 2024-12-10] (Microsoft Windows -> Microsoft Corporation) S3 GemCCID; C:\WINDOWS\System32\drivers\GemCCID.sys [130944 2014-11-10] (Microsoft Windows Hardware Compatibility Publisher -> Gemalto) R2 googledrivefs31931; C:\Program Files\Google\Drive File Stream\Drivers\31931\googledrivefs31931.sys [386256 2025-05-15] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.) S4 IObitUnlocker; C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlocker.sys [41536 2022-08-17] (Microsoft Windows Hardware Compatibility Publisher -> IObit Information Technology) S2 l1vhlwf; C:\WINDOWS\System32\drivers\l1vhlwf.sys [140704 2025-08-09] (Microsoft Windows -> Microsoft Corporation) R2 mbamchameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [234072 2025-08-23] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [22120 2025-08-21] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMFarflt; C:\WINDOWS\System32\Drivers\farflt11.sys [212072 2025-08-21] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMProtection; C:\WINDOWS\System32\Drivers\mbam.sys [80984 2025-08-23] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [242752 2025-08-23] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [190096 2025-08-23] (Malwarebytes Inc -> Malwarebytes) R3 NTIOLib_CC_COMM; C:\Program Files (x86)\MSI\MSI Center\Lib\SYS\NTIOLib_X64.sys [32592 2024-09-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) R3 NTIOLib_CC_CPU; C:\Program Files (x86)\MSI\MSI Center\Super Charger\NTIOLib_X64.sys [32472 2023-11-19] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) S3 vmbusproxy; C:\WINDOWS\system32\drivers\vmbusproxy.sys [98304 2025-06-13] (Microsoft Windows -> Microsoft Corporation) S3 ACE-CORE302915; \??\C:\Program Files\AntiCheatExpert\ACE-CORE302915.sys [X] S3 ace-game-0; \SystemRoot\System32\drivers\ace-game-0.sys [X] S3 EAAntiCheat; system32\drivers\eaanticheat.sys [X] S3 KslD; system32\drivers\wd\KslD.sys [X] S0 WdBoot; system32\drivers\wd\WdBoot.sys [X] S0 WdFilter; system32\drivers\wd\WdFilter.sys [X] S3 WdNisDrv; system32\drivers\wd\WdNisDrv.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One month (created) (Whitelisted) ========= (If an entry is included in the fixlist, the file/folder will be moved.) 2025-08-23 20:49 - 2025-08-23 20:49 - 000035778 _____ C:\Users\dejan\OneDrive\Desktop\FRST.txt 2025-08-23 20:46 - 2025-08-23 20:46 - 000190096 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys 2025-08-23 20:46 - 2025-08-23 20:46 - 000000000 ____D C:\Users\dejan\AppData\LocalLow\IGDump 2025-08-23 20:42 - 2025-08-23 20:42 - 000791508 _____ C:\Users\dejan\OneDrive\Documents\cc_20250823_204227.reg 2025-08-23 20:38 - 2025-08-23 20:47 - 000000000 ____D C:\Program Files\CCleaner 2025-08-23 20:38 - 2025-08-23 20:38 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2025-08-23 20:38 - 2025-08-23 20:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 2025-08-23 20:33 - 2025-08-23 20:36 - 000000000 ____D C:\AdwCleaner 2025-08-23 20:32 - 2025-08-23 20:49 - 000000000 ____D C:\FRST 2025-08-23 20:31 - 2025-08-23 20:32 - 002409472 _____ (Farbar) C:\Users\dejan\OneDrive\Desktop\FRST64.exe 2025-08-23 20:21 - 2025-08-23 20:21 - 000000400 __RSH C:\ProgramData\ntuser.pol 2025-08-23 20:09 - 2025-08-23 20:09 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job 2025-08-21 22:16 - 2025-08-21 22:16 - 040632320 _____ C:\WINDOWS\system32\config\SYSTEM_rs.bak 2025-08-21 22:15 - 2025-08-21 22:15 - 099614720 _____ C:\WINDOWS\system32\config\SOFTWARE_rs.bak 2025-08-21 20:25 - 2025-08-21 20:25 - 002828424 _____ (Malwarebytes) C:\Users\dejan\Downloads\MBSetup.exe 2025-08-21 20:25 - 2025-08-21 20:25 - 000002093 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2025-08-21 18:27 - 2025-08-21 19:25 - 000000000 ____D C:\KRD2024_Data 2025-08-21 16:22 - 2025-08-21 18:09 - 000000000 ____D C:\Users\dejan\AppData\Local\Rufus 2025-08-21 16:10 - 2025-08-21 22:11 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient 2025-08-21 16:10 - 2025-08-21 22:11 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2025-08-21 16:10 - 2025-08-21 16:10 - 000000000 ___RD C:\Program Files\Windows Defender 2025-08-21 16:10 - 2025-08-21 16:10 - 000000000 ___RD C:\Program Files (x86)\Windows Defender 2025-08-21 16:10 - 2025-08-21 16:10 - 000000000 ____D C:\WINDOWS\system32\SecurityHealth 2025-08-21 15:10 - 2025-08-21 15:10 - 000001278 _____ C:\Users\dejan\OneDrive\Desktop\ESET Online Scanner.lnk 2025-08-21 15:10 - 2025-08-21 15:10 - 000000000 ____D C:\Users\dejan\AppData\Local\ESET 2025-08-21 13:32 - 2025-08-23 20:33 - 000000000 ____D C:\Users\dejan\AppData\Local\Malwarebytes 2025-08-21 13:32 - 2025-08-21 20:25 - 000000000 ____D C:\ProgramData\Malwarebytes 2025-08-21 13:32 - 2025-08-21 20:25 - 000000000 ____D C:\Program Files\Malwarebytes 2025-08-21 13:27 - 2025-08-21 02:24 - 000360448 _____ C:\ProgramData\VB54slpyaXrZ 2025-08-21 13:26 - 2025-08-21 22:14 - 000000000 ____D C:\Users\dejan\AppData\Roaming\fM7FYfA 2025-08-21 13:26 - 2025-08-21 21:04 - 000000000 ____D C:\Users\dejan\AppData\Roaming\vtQiSL 2025-08-21 13:26 - 2025-08-21 21:04 - 000000000 ____D C:\Users\dejan\AppData\Roaming\NqDPhRTEZI 2025-08-21 13:26 - 2025-08-21 20:26 - 000000004 ____H C:\ProgramData\or2184rc57.dat 2025-08-21 13:26 - 2025-08-21 13:26 - 000000000 ____D C:\Users\dejan\AppData\Roaming\ulEXZ8TQ 2025-08-21 13:26 - 2025-08-21 13:26 - 000000000 ____D C:\Users\dejan\AppData\Roaming\lapLyEXHvrl 2025-08-21 13:26 - 2025-08-21 13:26 - 000000000 ____D C:\Users\dejan\AppData\Roaming\K2q2gXehK 2025-08-21 13:26 - 2025-08-21 13:26 - 000000000 ____D C:\ProgramData\0zcb1 2025-08-21 13:25 - 2025-08-21 21:04 - 000000000 ____D C:\Users\dejan\AppData\Roaming\04ed4f9f7fe100 2025-08-21 13:25 - 2025-08-21 19:22 - 000000000 ____D C:\Users\dejan\AppData\Local\DataVista Technologies Co 2025-08-21 13:25 - 2025-08-21 19:08 - 000000000 ____D C:\Users\dejan\AppData\Local\TypeId 2025-08-21 13:25 - 2025-08-21 13:25 - 000000128 ____H C:\ProgramData\or2184resa.dat 2025-08-21 13:25 - 2025-08-21 13:25 - 000000008 ____H C:\ProgramData\or2184it57.dat 2025-08-21 13:25 - 2025-08-21 13:25 - 000000000 ____D C:\Users\dejan\AppData\Roaming\LoWLm 2025-08-21 13:25 - 2025-08-21 13:25 - 000000000 ____D C:\Users\dejan\AppData\Roaming\a5S82XMPT 2025-08-21 13:25 - 2025-08-21 13:25 - 000000000 ____D C:\Users\dejan\AppData\Roaming\6U1l02hc 2025-08-21 13:25 - 2025-08-21 13:25 - 000000000 _____ C:\WINDOWS\TotalQt 2025-08-21 13:25 - 2025-08-21 13:25 - 000000000 _____ C:\WINDOWS\NetscapeStreaming 2025-08-21 13:25 - 2025-08-21 13:25 - 000000000 _____ C:\WINDOWS\LaceStatus 2025-08-21 13:25 - 2025-08-21 13:25 - 000000000 _____ C:\WINDOWS\FossilFundraising 2025-08-21 13:25 - 2025-08-21 13:25 - 000000000 _____ C:\WINDOWS\DfTires 2025-08-21 13:25 - 2025-08-21 13:25 - 000000000 _____ C:\WINDOWS\BlindBiology 2025-08-21 13:25 - 2025-08-21 13:25 - 000000000 _____ C:\WINDOWS\ArrangementConfigure 2025-08-21 13:24 - 2025-08-21 22:14 - 000000000 ____D C:\Users\dejan\AppData\Roaming\6MPLIbnCSF 2025-08-21 13:24 - 2025-08-21 21:04 - 000000000 ____D C:\Users\dejan\AppData\Roaming\U2Cn0R2Ljt 2025-08-21 13:24 - 2025-08-21 21:04 - 000000000 ____D C:\Users\dejan\AppData\Roaming\A480wit 2025-08-21 13:24 - 2025-08-21 21:04 - 000000000 ____D C:\Users\dejan\AppData\Roaming\4O1tjr 2025-08-21 13:24 - 2025-08-21 21:04 - 000000000 ____D C:\Users\dejan\AppData\Local\Phone Backup Extractor 7.3.6.4533 2025-08-21 13:24 - 2025-08-21 20:23 - 000000000 ____D C:\ProgramData\PhoneBackupExtractor 2025-08-21 13:24 - 2025-08-21 13:24 - 000000000 ____D C:\Users\dejan\AppData\Roaming\PjdKMICQz9 2025-08-21 13:24 - 2025-08-21 13:24 - 000000000 ____D C:\Users\dejan\AppData\Roaming\JviOLw2VQ 2025-08-21 13:24 - 2025-08-21 13:24 - 000000000 ____D C:\Users\dejan\AppData\Roaming\EUpvjNUk 2025-08-21 13:23 - 2025-08-21 22:14 - 000000000 ____D C:\Users\dejan\AppData\Roaming\HEgLLuY2ue 2025-08-21 13:23 - 2025-08-21 21:04 - 000000000 ____D C:\Users\dejan\AppData\Roaming\wKTqtVfd9 2025-08-21 13:23 - 2025-08-21 21:04 - 000000000 ____D C:\Users\dejan\AppData\Roaming\LuONw 2025-08-21 13:23 - 2025-08-21 21:04 - 000000000 ____D C:\Users\dejan\AppData\Roaming\8O0pu 2025-08-21 13:23 - 2025-08-21 13:23 - 000003342 _____ C:\WINDOWS\system32\Tasks\WindowsLogsHelper 2025-08-21 13:23 - 2025-08-21 13:23 - 000000000 ____D C:\Users\dejan\AppData\Roaming\xsTsHtvkr6v 2025-08-21 13:23 - 2025-08-21 13:23 - 000000000 ____D C:\Users\dejan\AppData\Roaming\WcHSv 2025-08-21 13:23 - 2025-08-21 13:23 - 000000000 ____D C:\Users\dejan\AppData\Roaming\RZ4nTSoA 2025-08-21 13:23 - 2025-08-21 13:23 - 000000000 ____D C:\Users\dejan\AppData\Roaming\p31rQzKrt0 2025-08-21 13:23 - 2025-08-21 13:23 - 000000000 ____D C:\Users\dejan\AppData\Roaming\owzpc 2025-08-21 13:23 - 2025-08-21 13:23 - 000000000 ____D C:\Users\dejan\AppData\Roaming\mMF8DdwM 2025-08-21 13:23 - 2025-08-21 13:23 - 000000000 ____D C:\Users\dejan\AppData\Roaming\7QiNcP 2025-08-21 13:23 - 2025-08-21 13:23 - 000000000 ____D C:\Users\dejan\AppData\Roaming\6NRIIl5JA98 2025-08-21 13:10 - 2025-08-21 13:29 - 000000000 ____D C:\WINDOWS\system32\appmgmt 2025-08-21 00:54 - 2025-08-21 22:14 - 000000618 _____ C:\Users\dejan\OneDrive\Desktop\New Text Document (2).txt 2025-08-21 00:31 - 2025-08-21 00:31 - 000000218 _____ C:\Users\dejan\AppData\Local\recently-used.xbel 2025-08-20 23:57 - 2025-08-20 23:57 - 000000000 ____D C:\Users\dejan\AppData\Local\gtk-3.0 2025-08-20 20:08 - 2025-08-21 01:24 - 000000000 ____D C:\Users\dejan\AppData\Local\DiskDrill 2025-08-20 20:08 - 2025-08-20 20:08 - 000000000 ____D C:\Users\dejan\AppData\Local\CrashRpt 2025-08-20 20:08 - 2025-08-20 20:08 - 000000000 ____D C:\ProgramData\CleverFiles 2025-08-20 20:05 - 2025-08-20 20:05 - 000000018 _____ C:\Users\dejan\AppData\Roaming\.cache9050425797200915815.dat 2025-08-20 20:05 - 2025-08-20 20:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CleverFiles Disk Drill (x64) 2025-08-20 20:05 - 2025-08-20 20:05 - 000000000 ____D C:\Program Files\dotnet 2025-08-20 20:05 - 2025-08-20 20:05 - 000000000 ____D C:\Program Files\Dokan 2025-08-20 20:05 - 2025-08-20 20:05 - 000000000 ____D C:\Program Files\CleverFiles 2025-08-20 19:25 - 2025-08-23 20:38 - 000000000 ____D C:\ProgramData\Piriform 2025-08-20 19:12 - 2025-08-21 19:22 - 000000000 ____D C:\Users\dejan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bitwar 2025-08-20 19:12 - 2025-08-20 19:14 - 000000000 ____D C:\Users\dejan\AppData\Roaming\BitwarDataRecovery 2025-08-20 19:12 - 2025-08-20 19:12 - 000000000 ____D C:\Program Files (x86)\Bitwar 2025-08-20 19:10 - 2025-08-20 19:10 - 000000000 ____D C:\Users\dejan\AppData\Roaming\Wondershare 2025-08-20 19:10 - 2025-08-20 19:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare 2025-08-20 19:09 - 2025-08-20 19:10 - 000000000 ____D C:\ProgramData\Wondershare 2025-08-20 19:09 - 2025-08-20 19:09 - 000000000 ____D C:\Program Files\Wondershare 2025-08-20 18:49 - 2025-08-20 18:49 - 000001095 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tenorshare 4DDiG.lnk 2025-08-20 18:49 - 2025-08-20 18:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tenorshare 4DDiG 2025-08-20 18:49 - 2025-08-20 18:49 - 000000000 ____D C:\Program Files\Tenorshare 2025-08-20 17:53 - 2025-05-07 21:25 - 006723544 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys 2025-08-20 17:40 - 2025-08-20 17:40 - 000000000 ____D C:\Users\dejan\AppData\Roaming\KSM_Gen15 2025-08-19 00:41 - 2025-08-19 00:41 - 000000000 ____D C:\Users\dejan\AppData\Roaming\Terrible Toybox 2025-08-16 13:02 - 2025-08-16 13:02 - 000000000 ____D C:\Users\dejan\AppData\LocalLow\Adriaan de Jongh 2025-08-16 12:56 - 2025-08-16 12:56 - 000000000 ____D C:\Users\dejan\AppData\Local\Prologue 2025-08-16 11:43 - 2025-08-21 22:18 - 000000000 ____D C:\WINDOWS\CbsTemp 2025-08-15 15:37 - 2025-08-15 15:37 - 000000000 ___RD C:\Users\dejan\OneDrive\Documents\Power BI Desktop 2025-08-15 15:35 - 2025-08-15 15:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Power BI Desktop 2025-08-15 15:34 - 2025-08-15 15:35 - 000000000 ____D C:\Program Files\Microsoft Power BI Desktop 2025-08-10 22:48 - 2025-08-11 04:38 - 000000000 ___RD C:\Users\dejan\OneDrive\Documents\Battlefield 1 2025-08-10 22:33 - 2025-08-10 22:33 - 000000000 ____D C:\Users\dejan\AppData\Roaming\EAAntiCheat.Installer.Tool 2025-08-09 22:38 - 2025-08-09 22:38 - 000000000 ____D C:\Users\dejan\AppData\Roaming\SEGA 2025-08-09 22:38 - 2025-08-09 22:38 - 000000000 ____D C:\Users\dejan\AppData\LocalLow\SEGA 2025-08-09 20:26 - 2025-08-09 20:26 - 000034314 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json 2025-08-09 20:26 - 2025-08-09 20:26 - 000034314 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json 2025-08-08 21:16 - 2025-08-08 21:16 - 000000000 ____D C:\Users\dejan\AppData\Roaming\Aspyr Media 2025-08-08 21:16 - 2025-08-08 21:16 - 000000000 ____D C:\Users\dejan\AppData\Local\TheObserver 2025-08-08 21:16 - 2025-08-08 21:16 - 000000000 ____D C:\Users\dejan\AppData\Local\Aspyr Media 2025-08-08 17:59 - 2025-08-08 17:59 - 000000000 ___RD C:\Users\dejan\OneDrive\Documents\Road Redemption 2025-08-08 17:59 - 2025-08-08 17:59 - 000000000 ____D C:\Users\dejan\AppData\LocalLow\Pixel Dash Studios _ EQ Games 2025-08-08 17:05 - 2025-08-08 17:05 - 000003484 _____ C:\WINDOWS\system32\Tasks\ModifyLinkUpdate 2025-08-08 17:05 - 2025-08-08 17:05 - 000003152 _____ C:\WINDOWS\system32\Tasks\StartCN 2025-08-08 17:05 - 2025-08-08 17:05 - 000003072 _____ C:\WINDOWS\system32\Tasks\StartDVR 2025-08-08 17:05 - 2025-08-08 17:05 - 000002546 _____ C:\WINDOWS\system32\Tasks\AMDRyzenMasterSDKTask 2025-08-08 17:05 - 2025-08-08 17:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMDInstallManager 2025-08-08 17:05 - 2025-08-08 17:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Software꞉ Adrenalin Edition 2025-08-08 17:05 - 2025-08-08 17:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Bug Report Tool 2025-08-08 17:03 - 2025-08-01 17:59 - 002413560 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe 2025-08-08 17:03 - 2025-08-01 17:59 - 002413560 _____ C:\WINDOWS\system32\vulkaninfo.exe 2025-08-08 17:03 - 2025-08-01 17:59 - 002193912 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiadlxx.dll 2025-08-08 17:03 - 2025-08-01 17:59 - 001918944 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2025-08-08 17:03 - 2025-08-01 17:59 - 001918944 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe 2025-08-08 17:03 - 2025-08-01 17:59 - 001831928 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxy.dll 2025-08-08 17:03 - 2025-08-01 17:59 - 001831928 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxx.dll 2025-08-08 17:03 - 2025-08-01 17:59 - 001615864 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll 2025-08-08 17:03 - 2025-08-01 17:59 - 001615864 _____ C:\WINDOWS\system32\vulkan-1.dll 2025-08-08 17:03 - 2025-08-01 17:59 - 001427816 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll 2025-08-08 17:03 - 2025-08-01 17:59 - 001427816 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll 2025-08-08 17:03 - 2025-08-01 17:59 - 001068536 _____ (AMD) C:\WINDOWS\system32\atieclxx.exe 2025-08-08 17:03 - 2025-08-01 17:59 - 000631288 _____ C:\WINDOWS\system32\GameManager64.dll 2025-08-08 17:03 - 2025-08-01 17:59 - 000559608 _____ C:\WINDOWS\system32\atieah64.exe 2025-08-08 17:03 - 2025-08-01 17:59 - 000526328 _____ C:\WINDOWS\system32\EEURestart.exe 2025-08-08 17:03 - 2025-08-01 17:59 - 000479248 _____ C:\WINDOWS\SysWOW64\GameManager32.dll 2025-08-08 17:03 - 2025-08-01 17:59 - 000473568 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atidemgy.dll 2025-08-08 17:03 - 2025-08-01 17:59 - 000422392 _____ C:\WINDOWS\SysWOW64\atieah32.exe 2025-08-08 17:03 - 2025-08-01 17:59 - 000200696 _____ (AMD) C:\WINDOWS\system32\atimuixx.dll 2025-08-08 17:03 - 2025-08-01 17:59 - 000190968 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atisamu64.dll 2025-08-08 17:03 - 2025-08-01 17:59 - 000150544 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atisamu32.dll 2025-08-08 17:03 - 2025-08-01 17:59 - 000147448 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amfrt64.dll 2025-08-08 17:03 - 2025-08-01 17:59 - 000132880 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atidxx32.dll 2025-08-08 17:03 - 2025-08-01 17:59 - 000122336 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amfrt32.dll 2025-08-08 17:03 - 2025-08-01 17:58 - 121146888 _____ C:\WINDOWS\system32\amd_comgr_2.dll 2025-08-08 17:03 - 2025-08-01 17:58 - 103184888 _____ C:\WINDOWS\SysWOW64\amd_comgr32.dll 2025-08-08 17:03 - 2025-08-01 17:58 - 005221904 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdadlx64.dll 2025-08-08 17:03 - 2025-08-01 17:58 - 005008400 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdadlx32.dll 2025-08-08 17:03 - 2025-08-01 17:58 - 001329144 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdsasrv64.dll 2025-08-08 17:03 - 2025-08-01 17:58 - 001184240 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdlvr64.dll 2025-08-08 17:03 - 2025-08-01 17:58 - 000998392 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdlvr32.dll 2025-08-08 17:03 - 2025-08-01 17:58 - 000801776 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Rapidfire64.dll 2025-08-08 17:03 - 2025-08-01 17:58 - 000787984 _____ C:\WINDOWS\system32\hiprt0200064.dll 2025-08-08 17:03 - 2025-08-01 17:58 - 000678904 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\Rapidfire.dll 2025-08-08 17:03 - 2025-08-01 17:58 - 000610176 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdsacli64.dll 2025-08-08 17:03 - 2025-08-01 17:58 - 000592368 _____ C:\WINDOWS\system32\amdgfxinfo64.dll 2025-08-08 17:03 - 2025-08-01 17:58 - 000556976 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdsacli32.dll 2025-08-08 17:03 - 2025-08-01 17:58 - 000549392 _____ C:\WINDOWS\system32\dgtrayicon.exe 2025-08-08 17:03 - 2025-08-01 17:58 - 000471568 _____ C:\WINDOWS\system32\amdlogum.exe 2025-08-08 17:03 - 2025-08-01 17:58 - 000450040 _____ C:\WINDOWS\SysWOW64\amdgfxinfo32.dll 2025-08-08 17:03 - 2025-08-01 17:58 - 000405216 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdfendr.stz 2025-08-08 17:03 - 2025-08-01 17:58 - 000344592 _____ C:\WINDOWS\system32\clinfo.exe 2025-08-08 17:03 - 2025-08-01 17:58 - 000227856 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll 2025-08-08 17:03 - 2025-08-01 17:58 - 000197648 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll 2025-08-08 17:03 - 2025-08-01 17:58 - 000140248 _____ C:\WINDOWS\system32\amdxc64.dll 2025-08-08 17:03 - 2025-08-01 17:58 - 000116704 _____ C:\WINDOWS\SysWOW64\amdxc32.dll 2025-08-08 17:03 - 2025-08-01 17:58 - 000067320 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdfendrmgr.stz 2025-08-08 17:03 - 2025-08-01 17:58 - 000051728 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\RapidFireServer64.dll 2025-08-08 17:03 - 2025-08-01 17:58 - 000048632 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\RapidFireServer.dll 2025-08-08 17:03 - 2025-08-01 17:57 - 001748488 _____ (AMD) C:\WINDOWS\system32\amf-mft-mjpeg-decoder64.dll 2025-08-08 17:03 - 2025-08-01 17:57 - 001423136 _____ (AMD) C:\WINDOWS\SysWOW64\amf-mft-mjpeg-decoder32.dll 2025-08-08 17:03 - 2025-08-01 17:57 - 000554848 _____ C:\WINDOWS\system32\amdmiracast.dll 2025-08-08 17:03 - 2025-08-01 17:57 - 000179776 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdave64.dll 2025-08-08 17:03 - 2025-08-01 17:57 - 000177168 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmmcl6.dll 2025-08-08 17:03 - 2025-08-01 17:57 - 000169320 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atimpc64.dll 2025-08-08 17:03 - 2025-08-01 17:57 - 000169312 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdpcom64.dll 2025-08-08 17:03 - 2025-08-01 17:57 - 000162448 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atidxx64.dll 2025-08-08 17:03 - 2025-08-01 17:57 - 000154848 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdave32.dll 2025-08-08 17:03 - 2025-08-01 17:57 - 000145936 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmmcl.dll 2025-08-08 17:03 - 2025-08-01 17:57 - 000141320 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atimpc32.dll 2025-08-08 17:03 - 2025-08-01 17:57 - 000141312 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdpcom32.dll 2025-08-08 17:03 - 2025-08-01 17:17 - 125680512 _____ C:\WINDOWS\system32\amdxc64.so 2025-08-08 17:03 - 2025-08-01 17:17 - 009979672 _____ C:\WINDOWS\system32\hiprt02000_amd.hipfb 2025-08-08 17:03 - 2025-08-01 17:17 - 002459536 _____ C:\WINDOWS\system32\oro_compiled_kernels.hipfb 2025-08-07 21:00 - 2025-08-07 21:00 - 000000000 ____D C:\Users\dejan\AppData\LocalLow\JutsuGames 2025-08-07 20:27 - 2025-08-07 20:27 - 000000000 ____D C:\Users\dejan\AppData\Local\BattlefieldGameData.CH1-qol.Win32 2025-08-07 20:26 - 2025-08-07 21:23 - 000000000 ___RD C:\Users\dejan\OneDrive\Documents\Battlefield 6 Open Beta 2025-08-07 17:31 - 2025-08-07 17:31 - 000002599 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WSL.lnk 2025-08-07 17:31 - 2025-08-07 17:31 - 000002546 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WSL Settings.lnk 2025-08-07 17:31 - 2025-08-07 17:31 - 000000000 ____D C:\Program Files\WSL 2025-08-05 19:03 - 2025-08-05 19:21 - 000000000 ___HD C:\Users\dejan\AppData\Roaming\Cache 2025-08-05 19:03 - 2025-08-05 19:03 - 000000000 ____D C:\Users\dejan\AppData\Local\Dakar2Game 2025-08-01 00:41 - 2025-08-01 00:54 - 000000000 ____D C:\ProgramData\AntiCheatExpert 2025-08-01 00:41 - 2025-08-01 00:53 - 000000000 ____D C:\Program Files\AntiCheatExpert 2025-08-01 00:41 - 2025-08-01 00:41 - 001426712 _____ (ANTICHEATEXPERT.COM) C:\WINDOWS\system32\Drivers\ace-game.sys 2025-08-01 00:40 - 2025-08-01 00:53 - 000000000 ____D C:\Users\dejan\AppData\Roaming\df_launcher_global_Steam_30029601 2025-08-01 00:04 - 2025-08-01 00:04 - 000000000 ____D C:\Users\dejan\AppData\LocalLow\Sysiac Games 2025-07-31 23:45 - 2025-07-31 23:45 - 000000000 ____D C:\Users\dejan\AppData\Local\Conarium 2025-07-31 21:24 - 2025-07-31 21:24 - 000000000 ____D C:\Users\dejan\AppData\Local\Riot Games 2025-07-31 21:24 - 2025-07-31 21:24 - 000000000 ____D C:\ProgramData\Riot Games 2025-07-31 21:13 - 2025-07-31 21:13 - 000000000 ____D C:\Users\dejan\AppData\LocalLow\Alt Shift 2025-07-31 20:35 - 2025-07-31 20:35 - 000000000 ____D C:\Users\dejan\AppData\Local\COTS 2025-07-31 20:20 - 2025-07-31 20:20 - 000000000 ____D C:\Users\dejan\AppData\Local\Indiana 2025-07-31 09:07 - 2025-07-31 09:07 - 000000000 ____D C:\Users\dejan\hitman 2025-07-31 09:04 - 2025-07-31 09:04 - 000000000 ____D C:\Users\dejan\AppData\Local\IO Interactive 2025-07-30 23:43 - 2025-07-30 23:44 - 000000000 ___RD C:\Users\dejan\OneDrive\Documents\Paradox Interactive 2025-07-30 23:15 - 2025-07-30 23:15 - 000000000 ____D C:\Users\dejan\AppData\LocalLow\Unfold Games 2025-07-30 23:02 - 2025-07-30 23:02 - 000000000 ____D C:\Users\dejan\AppData\Local\Maneater 2025-07-30 20:45 - 2025-07-30 20:45 - 000000000 ____D C:\Users\dejan\AppData\Local\ToastNotificationManagerCompat 2025-07-29 21:24 - 2025-07-29 21:24 - 000000000 ____D C:\Users\dejan\AppData\LocalLow\Zachtronics 2025-07-29 21:15 - 2025-07-29 21:15 - 000000000 ____D C:\Users\dejan\AppData\LocalLow\Bedtime Digital Games 2025-07-29 21:12 - 2025-07-29 21:13 - 000000000 ____D C:\Users\dejan\AppData\Roaming\MudRunner 2025-07-29 20:42 - 2025-07-29 20:42 - 000000000 ____D C:\Users\dejan\AppData\Local\AVGame 2025-07-28 20:53 - 2025-07-28 20:53 - 000000000 ____D C:\Users\dejan\AppData\Roaming\playway-launcher 2025-07-28 20:53 - 2025-07-28 20:53 - 000000000 ____D C:\Users\dejan\AppData\LocalLow\Red Dot Games 2025-07-28 19:13 - 2025-07-28 19:13 - 000000000 ____D C:\Users\dejan\AppData\LocalLow\AutoAttack Games, Inc_ 2025-07-28 18:39 - 2025-07-28 18:39 - 000000000 ____D C:\Users\dejan\AppData\Local\MidnightGhostHunt 2025-07-24 22:48 - 2025-07-24 22:48 - 000936712 _____ (Advanced Micro Devices) C:\WINDOWS\system32\Device.dll 2025-07-24 22:48 - 2025-07-24 22:48 - 000063752 _____ (Advanced Micro Devices) C:\WINDOWS\system32\Platform.dll ==================== One month (modified) ================== (If an entry is included in the fixlist, the file/folder will be moved.) 2025-08-23 20:48 - 2024-12-29 22:07 - 000003326 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting 2025-08-23 20:48 - 2024-12-29 22:07 - 000000670 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job 2025-08-23 20:47 - 2024-08-25 19:53 - 000000000 ____D C:\Program Files\CrystalDiskInfo 2025-08-23 20:47 - 2024-08-25 18:56 - 000000000 ___RD C:\Users\dejan\OneDrive 2025-08-23 20:47 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SystemTemp 2025-08-23 20:47 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\AppReadiness 2025-08-23 20:46 - 2024-12-10 00:40 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2025-08-23 20:46 - 2024-12-10 00:38 - 000030514 _____ C:\WINDOWS\system32\5E37410B-D6F1-471D-AE27-563CEAC0D6B2 2025-08-23 20:46 - 2024-12-10 00:36 - 000306088 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2025-08-23 20:46 - 2024-12-10 00:36 - 000001607 _____ C:\WINDOWS\system32\config\VSMIDK 2025-08-23 20:46 - 2024-04-01 09:26 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2025-08-23 20:45 - 2024-04-01 09:21 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2025-08-23 20:44 - 2024-12-09 20:03 - 000000000 ___DC C:\WINDOWS\Panther 2025-08-23 20:44 - 2024-08-31 23:25 - 000000000 ____D C:\Users\dejan\AppData\Local\CrashDumps 2025-08-23 20:44 - 2024-08-25 19:39 - 000000000 ____D C:\Program Files (x86)\Steam 2025-08-23 20:38 - 2024-12-29 22:07 - 000002896 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - dejan 2025-08-23 20:00 - 2024-08-25 18:54 - 000000000 ____D C:\Users\dejan\AppData\Local\D3DSCache 2025-08-21 22:23 - 2024-09-21 11:59 - 000000000 ____D C:\Users\dejan\AppData\Roaming\vlc 2025-08-21 20:56 - 2025-03-07 20:34 - 000000000 ____D C:\Users\dejan\AppData\Local\Paradox Interactive 2025-08-21 20:25 - 2024-04-01 09:26 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2025-08-21 20:25 - 2024-04-01 09:26 - 000000000 ___HD C:\Program Files\WindowsApps 2025-08-21 20:21 - 2024-12-12 19:04 - 000836658 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2025-08-21 20:21 - 2024-04-01 09:24 - 000000000 ____D C:\WINDOWS\INF 2025-08-21 19:23 - 2024-12-10 00:37 - 000000000 ____D C:\Users\dejan 2025-08-21 19:22 - 2024-09-28 00:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Topaz Photo AI 2025-08-21 19:22 - 2024-09-02 18:32 - 000000000 ____D C:\ProgramData\IObit 2025-08-21 19:22 - 2024-08-25 19:50 - 000000000 ____D C:\Users\dejan\AppData\Roaming\GHISLER 2025-08-21 19:22 - 2024-08-25 19:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AIMP 2025-08-21 19:22 - 2024-08-25 19:28 - 000000000 ____D C:\Program Files\AIMP 2025-08-21 19:22 - 2024-04-01 09:29 - 000000000 ____D C:\WINDOWS\Setup 2025-08-21 19:22 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\Dism 2025-08-21 19:22 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\appcompat 2025-08-21 19:22 - 2022-05-07 07:24 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy 2025-08-21 19:09 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\Vss 2025-08-21 19:09 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SystemApps 2025-08-21 19:09 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\registration 2025-08-21 19:09 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\PLA 2025-08-21 19:09 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\IdentityCRL 2025-08-21 19:09 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\Help 2025-08-21 19:09 - 2024-04-01 09:21 - 000000000 ____D C:\WINDOWS\servicing 2025-08-21 18:09 - 2024-08-25 18:32 - 000000000 ___SD C:\Users\dejan\AppData\Roaming\Microsoft\Credentials 2025-08-21 15:10 - 2024-08-25 19:05 - 000000000 ____D C:\WINDOWS\system32\MRT 2025-08-21 13:32 - 2024-08-25 18:54 - 000000000 ____D C:\Users\dejan\AppData\Local\Packages 2025-08-21 13:32 - 2024-08-25 18:26 - 000000000 ____D C:\ProgramData\Packages 2025-08-21 13:32 - 2024-04-01 09:26 - 000000000 ___HD C:\Program Files\WindowsApps.tmp 2025-08-21 13:27 - 2024-08-25 19:49 - 000000000 ____D C:\Users\dejan\AppData\Roaming\qBittorrent 2025-08-21 02:28 - 2024-08-26 03:24 - 000012288 ___SH C:\DumpStack.log.tmp 2025-08-21 02:28 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SystemResources 2025-08-21 02:26 - 2024-08-25 20:24 - 000000000 ____D C:\Users\dejan\AppData\Roaming\Microsoft\MMC 2025-08-20 20:23 - 2024-09-27 18:12 - 000000000 ____D C:\Users\dejan\OneDrive\Documents\ViberDownloads 2025-08-20 20:05 - 2024-08-25 18:58 - 000000000 ____D C:\ProgramData\Package Cache 2025-08-20 18:50 - 2024-08-25 19:27 - 000000000 ____D C:\Program Files\7-Zip 2025-08-20 18:45 - 2024-09-27 18:10 - 000000000 ____D C:\Users\dejan\AppData\Roaming\ViberPC 2025-08-20 17:33 - 2024-08-25 19:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo 2025-08-20 15:27 - 2024-08-25 19:50 - 000000000 ____D C:\Users\dejan\AppData\Local\GHISLER 2025-08-20 14:23 - 2024-12-10 00:36 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2025-08-19 17:56 - 2024-08-25 19:12 - 000000000 ____D C:\Users\dejan\AppData\Local\AMD_Common 2025-08-19 00:40 - 2024-08-25 21:05 - 000000000 ____D C:\Program Files\Epic Games 2025-08-18 23:14 - 2024-08-26 18:57 - 000000000 ___RD C:\Users\dejan\OneDrive\Desktop\SyncNShare Hub 2025-08-18 17:51 - 2025-05-09 17:26 - 000000000 ____D C:\Users\dejan\AppData\Roaming\obsidian 2025-08-17 12:09 - 2024-08-26 03:24 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2025-08-15 00:26 - 2024-08-25 19:35 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2025-08-14 01:12 - 2025-02-06 19:33 - 000003564 _____ C:\WINDOWS\system32\Tasks\OneDrive Startup Task-S-1-5-21-609623560-524961366-3877464449-1001 2025-08-14 01:12 - 2024-12-10 00:40 - 000003584 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-609623560-524961366-3877464449-1001 2025-08-14 01:12 - 2024-12-10 00:40 - 000003368 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-609623560-524961366-3877464449-1001 2025-08-14 01:12 - 2024-08-25 18:56 - 000002379 _____ C:\Users\dejan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2025-08-13 02:13 - 2024-04-01 10:03 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView 2025-08-13 02:13 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2025-08-13 02:13 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\oobe 2025-08-13 02:13 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\bcastdvr 2025-08-13 01:52 - 2024-08-25 19:05 - 223939376 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2025-08-12 23:47 - 2024-12-10 00:38 - 003389952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2025-08-12 14:59 - 2024-08-26 18:57 - 000003532 _____ C:\Users\dejan\OneDrive\Desktop\New Text Document.txt 2025-08-12 11:53 - 2024-12-10 00:40 - 000004242 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1724607559 2025-08-12 11:53 - 2024-08-25 19:39 - 000001386 _____ C:\Users\dejan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Opera Browser.lnk 2025-08-11 21:43 - 2024-09-27 18:10 - 000000000 ____D C:\Users\dejan\AppData\Local\Viber 2025-08-11 15:22 - 2024-08-25 19:28 - 000000000 ____D C:\Users\dejan\AppData\Roaming\AIMP 2025-08-11 00:17 - 2024-08-29 20:38 - 000000000 ____D C:\Users\dejan\AppData\Local\Origin 2025-08-10 22:34 - 2025-01-17 19:53 - 000000000 ____D C:\ProgramData\Packer 2025-08-09 22:43 - 2024-04-01 09:26 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12 2025-08-09 22:43 - 2024-04-01 09:26 - 000000000 ___SD C:\WINDOWS\system32\F12 2025-08-09 22:43 - 2024-04-01 09:26 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2025-08-09 22:43 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\UUS 2025-08-09 22:43 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata 2025-08-09 22:43 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe 2025-08-09 22:43 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\WinMetadata 2025-08-09 22:43 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\migwiz 2025-08-09 22:43 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\DDFs 2025-08-09 22:43 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\appraiser 2025-08-09 22:43 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\ShellExperiences 2025-08-09 22:43 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\ShellComponents 2025-08-09 22:43 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\Provisioning 2025-08-09 22:43 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2025-08-09 22:43 - 2024-04-01 09:26 - 000000000 ____D C:\Program Files\Common Files\System 2025-08-08 21:16 - 2024-08-29 20:38 - 000000000 ____D C:\Users\dejan\AppData\Local\cache 2025-08-08 21:07 - 2024-12-10 00:37 - 000000000 ____D C:\Users\dejan\AppData\Roaming\Microsoft\Spelling 2025-08-08 17:05 - 2025-03-17 21:53 - 000004054 _____ C:\WINDOWS\system32\Tasks\AMD Install Manager - Check For Updates 2025-08-08 17:05 - 2024-08-25 18:59 - 000000000 ____D C:\AMD 2025-08-08 17:05 - 2024-08-25 18:30 - 000000000 ____D C:\Program Files\AMD 2025-08-07 20:27 - 2025-01-17 19:55 - 000000000 ____D C:\Users\dejan\AppData\Roaming\Electronic Arts 2025-08-07 20:27 - 2025-01-17 19:55 - 000000000 ____D C:\ProgramData\Frostbite 2025-08-05 18:00 - 2024-08-25 19:37 - 000002173 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk 2025-08-01 09:51 - 2024-08-31 18:24 - 000000000 ____D C:\ProgramData\GOG.com 2025-08-01 09:51 - 2024-08-31 18:23 - 000000000 ____D C:\Program Files (x86)\GOG Galaxy 2025-08-01 08:54 - 2024-12-10 00:40 - 000003536 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2025-08-01 08:54 - 2024-12-10 00:40 - 000003410 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2025-08-01 00:12 - 2025-04-21 18:32 - 000000000 ____D C:\Users\dejan\AppData\LocalLow\Unity 2025-07-31 23:46 - 2024-08-25 19:40 - 000000000 ____D C:\Users\dejan\AppData\Local\UnrealEngine 2025-07-31 21:09 - 2024-08-26 18:57 - 000000000 ____D C:\Users\dejan\OneDrive\Documents\My Games 2025-07-31 18:04 - 2025-05-15 21:29 - 000000000 ____D C:\Users\dejan\AppData\LocalLow\Amanita Design 2025-07-30 23:54 - 2025-01-09 20:19 - 000000000 ____D C:\Users\dejan\AppData\Roaming\EasyAntiCheat 2025-07-30 23:54 - 2024-08-25 21:01 - 000000000 ____D C:\Program Files (x86)\EasyAntiCheat_EOS 2025-07-30 23:46 - 2025-03-07 20:35 - 000000000 ____D C:\Users\dejan\AppData\Roaming\paradox-launcher-v2 2025-07-30 23:02 - 2024-08-25 19:40 - 000000000 ____D C:\Users\dejan\AppData\Local\EpicGamesLauncher 2025-07-30 20:49 - 2024-08-25 19:05 - 000000000 ____D C:\MSI 2025-07-29 17:55 - 2025-02-26 18:21 - 000004258 _____ C:\WINDOWS\system32\Tasks\Opera Air scheduled Autoupdate 1740586860 2025-07-29 17:55 - 2025-02-26 18:21 - 000001422 _____ C:\Users\dejan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Opera Air Browser.lnk 2025-07-25 05:06 - 2024-08-25 19:23 - 003074200 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\AMDBugReportTool.exe ==================== Files in the root of some directories ======== 2025-08-21 13:25 - 2025-08-21 13:25 - 000000008 ____H () C:\ProgramData\or2184it57.dat 2025-08-21 13:26 - 2025-08-21 20:26 - 000000004 ____H () C:\ProgramData\or2184rc57.dat 2025-08-21 13:25 - 2025-08-21 13:25 - 000000128 ____H () C:\ProgramData\or2184resa.dat 2025-08-20 20:05 - 2025-08-20 20:05 - 000000018 _____ () C:\Users\dejan\AppData\Roaming\.cache9050425797200915815.dat 2024-09-29 19:59 - 2024-09-29 19:59 - 000006046 _____ () C:\Users\dejan\AppData\Roaming\plugin_scan_state_VST2_x32.scan 2024-09-29 19:59 - 2024-09-29 19:59 - 000006046 _____ () C:\Users\dejan\AppData\Roaming\plugin_scan_state_VST2_x64.scan 2024-09-29 19:59 - 2024-09-29 19:59 - 000000059 _____ () C:\Users\dejan\AppData\Roaming\plugin_scan_state_VST3_x32.scan 2024-09-29 19:59 - 2024-09-29 19:59 - 000000059 _____ () C:\Users\dejan\AppData\Roaming\plugin_scan_state_VST3_x64.scan 2025-01-13 20:23 - 2025-01-13 20:23 - 000000048 ____R () C:\Users\dejan\AppData\Local\038C77B05E7DC0DC4D28F7078D01DCA1 2025-08-21 00:31 - 2025-08-21 00:31 - 000000218 _____ () C:\Users\dejan\AppData\Local\recently-used.xbel 2024-08-25 19:37 - 2024-08-25 19:37 - 000000003 _____ () C:\Users\dejan\AppData\Local\updater.log 2024-08-25 19:37 - 2024-08-25 19:37 - 000000424 _____ () C:\Users\dejan\AppData\Local\UserProducts.xml ==================== SigCheck ============================ (There is no automatic fix for files that do not pass verification.) ==================== End of FRST.txt ======================== [Link mogu videti samo ulogovani korisnici] Dopuna: 27 Avg 2025 17:09 Moze da se obrise ili zakljuca jer cu reinstalirati. Nije mi vise pouzdan ovakav sistem

Profil

MyCity » Ambulanta » Trojanaci mi upali, pokradene sifre

Ko je trenutno na forumu

Ukupno su 727 korisnika na forumu :: 81 registrovanih, 9 sakrivenih i 637 gosta :: [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 20624 - dana 04 Apr 2026 04:18

Korisnici koji su trenutno na forumu:: Korisnici trenutno na forumu: Aleksa 3215, AleksSE, aramis s, bato_tata, black venom, blankspace, bojan_t, bojcistv, borkostojicevic, boromir, Botovac, cifra, CikaKURE, cvrle312, cyprus, Deki Duga Devetka, DezurniOperativni, djordjemiklusev, dmitarche, doktor097, Dorcolac, draganl, dusanobr, Feller, Folkstar, FOX, galerija, GeoM, Hamo77, ivan_8282, Jan, janbo, Jeremiah, jimi_agf, joca83, Jovan1983, Kaponi, Khalid ibn al-Walid, KizJ, klepesina, Kobrim, kretino, Levi, M74AB3, Macalone, Medojed, mercedesamg, Mickey91, milanpb, Mile14, milutin134, Mis uz pusku, Mićko, mrav pesadinac, nick79, ozzy, paja69, pceklic, pedja.st, Pilence, Plavi Jadran, PoolbegD02, Ray1973, sajo27, Sevetar, Shajlok, Sharpshooter, siwoti, skok, Sone0883, Srb1346, suton, tamno.nebo, Tila Painen, tuf, Vanderx, Vlada78, Wehicle, zauzet, zgoljo, zivojin32

Svaki korisnik ovog sajta je odgovoran za sadržaj svoje poruke koju objavi na sajtu. Sajt se odriče svake odgovornosti za sadržaj tih poruka.
Postavljanjem vaše poruke ili vašeg autorskog dela na ovaj sajt, saglasni ste da ovaj sajt postaje distributer vašeg dela, i odričete se mogućnosti njegovog povlačenja ili brisanja, bez saglasnosti uprave sajta.
Distribucija sadržaja sa ovog sajta je dozvoljena samo u nekomercijalne svrhe, uz obaveznu napomenu da je sadržaj preuzet sa ovog sajta, i uz obavezno navođenje adrese MyCity sajta. Za sve ostale vidove distribucije obavezni ste da prethodno zatražite odobrenje od vlasnika MyCity sajta.
MyCity pokrenuo, administrira i razvija Predrag Damnjanović, a o uređenju sajta se brine MyCity Tim.
Ukoliko želite da nas kontaktirate kliknite ovde.
Naši sajtovi:
Vesti, Vojni forum, Zaštita od virusa, TekstPesme.rs

This content is licensed under a Creative Commons License.
Based on phpBB 2, translated by Simke, designed by