Hakovanje emaila

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Uloguj se preko Facebooka da bi skinuo fajl:

Već neko vreme imam problem sa hakovanjem emaila i u jednom trenutku i Facebook naloga (kojeg sam na jedvite jade vratio. Dotle je išlo da su uspeli da mi ukradu čak i validnu lozinku:

(... Hey bim82@mts.rs,
I have to share bad news with you.
Approximately few months ago I have gained access to your devices, which you use for internet browsing.
After that, I have started tracking your internet activities.
Some time ago I hacked you and got access to your email accounts
bim82@mts.rs

Obviously, I have easily hack to log in to your email.
Your password:
...!s7ighport
.........)

Lik je ušao na moj email pa je čak i kreirao folder na koji mi je slao ucenu i to tako da izgleda kao da sam sam sebi slao email.
Pokušao sam da preskeniram Avastom i Mbamom i našlo se tu ponešto ali izgleda da nisam uspeo da se rešim bede. Danas sam pokušavao više puta da udjem na svoj email putem outlooka i putem pregledača ali sam svaki put morao da menjam lozinku.



Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 24-07-2023
Ran by Lenovo (administrator) on DESKTOP-O6HALP8 (LENOVO 82C7) (24-07-2023 13:28:37)
Running from C:\Users\Lenovo\Desktop\FRST64.exe
Loaded Profiles: Lenovo
Platform: Microsoft Windows 10 Pro Version 22H2 19045.3208 (X64) Language: English (United States)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(0A0B0503-04C2-4CCF-9BC2-4F164DC80FEE -> Advanced Micro Devices, Inc.) C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.20.10028.0_x64__0a9344xs7nr4m\radeonsoftware\AMDRSServ.exe
(0A0B0503-04C2-4CCF-9BC2-4F164DC80FEE -> Advanced Micro Devices, Inc.) C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.20.10028.0_x64__0a9344xs7nr4m\radeonsoftware\RadeonSoftware.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <8>
(C:\Program Files\Avast Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(C:\Users\Lenovo\AppData\Local\Wondershare\Wondershare NativePush\WsNativePushService.exe ->) (Wondershare Technology Group Co.,Ltd -> Wondershare) C:\Users\Lenovo\AppData\Local\Wondershare\Wondershare NativePush\WsToastNotification.exe
(DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_0222c12a396c055f\DAX3API.exe ->) (Dolby Laboratories, Inc. -> Dolby Laboratories) C:\Windows\System32\DriverStore\FileRepository\DAX3_S~1.INF\DAX3API.exe
(DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_ec25230d3e6604c8\LenovoUtilityService.exe ->) (Lenovo -> Lenovo(beijing) Limited) C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_ec25230d3e6604c8\FnHotkeyCapsLKNumLK.exe
(DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_ec25230d3e6604c8\LenovoUtilityService.exe ->) (Lenovo -> Lenovo(beijing) Limited) C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_ec25230d3e6604c8\FnHotkeyUtility.exe
(DriverStore\FileRepository\u0385914.inf_amd64_728327554da2f068\B382773\atiesrxx.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0385914.inf_amd64_728327554da2f068\B382773\atieclxx.exe
(explorer.exe ->) (Avanquest Software SAS -> Avanquest Software) C:\Users\Lenovo\AppData\Local\Avanquest\Avanquest Message\AQNotif.exe
(explorer.exe ->) (Betacom, S.A. -> InterAction studios) C:\Program Files (x86)\ChickenInvadersUniverse\CIU.exe
(explorer.exe ->) (DOTPDN LLC -> ) C:\Program Files\paint.net\paintdotnet.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <41>
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\OUTLOOK.EXE
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(explorer.exe ->) (Telegram FZ-LLC -> Telegram FZ-LLC) C:\Users\Lenovo\AppData\Roaming\Telegram Desktop\Telegram.exe
(explorer.exe ->) (Viber Media S.à r.l. -> Viber Media S.à r.l.) C:\Users\Lenovo\AppData\Local\Viber\Viber.exe
(explorer.exe ->) (Wondershare) [File not signed] C:\Program Files\Wondershare\Wondershare Filmora\Wondershare Filmora X.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.272\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.272\GoogleCrashHandler64.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\HP\StatusAlerts\bin\HPStatusAlerts.exe
(Hewlett-Packard Company -> Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(LNBITSSvc.exe ->) (Lenovo -> Lenovo(beijing) Limited) C:\Windows\System32\AutoModeDetect.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MusNotifyIcon.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(services.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0385914.inf_amd64_728327554da2f068\B382773\atiesrxx.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\afwServ.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(services.exe ->) (Dolby Laboratories, Inc. -> Dolby Laboratories) C:\Windows\System32\DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_0222c12a396c055f\DAX3API.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Lenovo -> Lenovo(beijing) Limited) C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_ec25230d3e6604c8\LenovoUtilityService.exe
(services.exe ->) (Lenovo -> Lenovo(beijing) Limited) C:\Windows\System32\LNBITSSvc.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia) C:\Windows\System32\FMService64.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MsMpEng.exe
(services.exe ->) (Qualcomm Atheros -> Qualcomm Technologies Inc.) C:\Windows\System32\drivers\QcomWlanSrvx64.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_3d345565ec73a109\RtkAudUService64.exe <2>
(services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnhService.exe
(services.exe ->) (Wondershare Technology Group Co.,Ltd -> Wondershare) C:\Users\Lenovo\AppData\Local\Wondershare\Wondershare NativePush\WsNativePushService.exe
(sihost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <2>
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\SDXHelper.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
(SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnh.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_3d345565ec73a109\RtkAudUService64.exe [1230392 2021-01-14] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [220056 2023-07-05] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [Combo Cleaner] => "C:\Program Files (x86)\Combo Cleaner\ComboCleaner.exe" -minimized (No File)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2133728 2017-09-12] (Wondershare Technology Co.,Ltd -> Wondershare)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [StatusAlerts] => C:\Program Files (x86)\HP\StatusAlerts\bin\HPStatusAlerts.exe [330040 2014-02-12] (Hewlett-Packard Company -> Hewlett-Packard Company)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-699055456-4220227270-3419461705-1002\...\Run: [Viber] => C:\Users\Lenovo\AppData\Local\Viber\Viber.exe [76043984 2023-06-28] (Viber Media S.à r.l. -> Viber Media S.à r.l.)
HKU\S-1-5-21-699055456-4220227270-3419461705-1002\...\Run: [Avanquest Message] => C:\Users\Lenovo\AppData\Local\Avanquest\Avanquest Message\AQNotif.exe [602264 2022-09-15] (Avanquest Software SAS -> Avanquest Software)
HKU\S-1-5-21-699055456-4220227270-3419461705-1002\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [40496032 2023-06-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-699055456-4220227270-3419461705-1002\...\Run: [Microsoft Edge Update] => C:\Users\Lenovo\AppData\Local\Microsoft\EdgeUpdate\1.3.177.11\MicrosoftEdgeUpdateCore.exe [263648 2023-07-08] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-699055456-4220227270-3419461705-1002\...\RunOnce: [Delete Cached Update Binary] => C:\Windows\system32\cmd.exe /q /c del /q "C:\Users\Lenovo\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe"
HKU\S-1-5-21-699055456-4220227270-3419461705-1002\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\Windows\system32\cmd.exe /q /c del /q "C:\Users\Lenovo\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe"
HKU\S-1-5-21-699055456-4220227270-3419461705-1002\...\RunOnce: [Uninstall 23.127.0618.0001] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Lenovo\AppData\Local\Microsoft\OneDrive\23.127.0618.0001"
HKU\S-1-5-21-699055456-4220227270-3419461705-1002\...\RunOnce: [Uninstall 23.132.0625.0001] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Lenovo\AppData\Local\Microsoft\OneDrive\23.132.0625.0001"
HKLM\...\Print\Monitors\HP Standard TCP/IP Port: C:\Windows\system32\HpTcpMon.dll [331264 2009-09-16] (Hewlett Packard) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\114.0.5735.248\Installer\chrmstp.exe [2023-07-21] (Google LLC -> Google LLC)
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Edge: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {F34E712E-2473-43E4-9824-2BE7EF291CFD} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564152 2023-04-03] (Adobe Inc. -> Adobe Inc.)
Task: {1A0DEFC9-5A7C-4570-A174-E8A985F31BC3} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4940696 2023-07-05] (Avast Software s.r.o. -> AVAST Software)
Task: {CD13C35F-D678-451E-ADDF-E545A6E8DF33} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2135448 2023-04-14] (Avast Software s.r.o. -> Avast Software)
Task: {70AE5472-E409-49C3-A3A5-64A722677006} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-06-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {10647494-E793-461F-983D-B1E46053270E} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-06-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "99f87b47-f05e-42bf-b090-2beb7e2076ed" --version "6.13.10517" --silent
Task: {D29450C0-7E8A-4468-94AE-32867C8B873C} - System32\Tasks\CCleanerSkipUAC - Lenovo => C:\Program Files\CCleaner\CCleaner.exe [34304928 2023-06-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {B0D1A11D-A2FE-4EF9-9AF0-9E5DB44CCB65} - System32\Tasks\GoogleUpdateTaskMachineCore{4D477CB2-51E1-4685-8BA4-66C7E9473506} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [162072 2023-05-24] (Google LLC -> Google LLC)
Task: {F4B252E4-AD6B-4D33-A5B7-97DB353D969F} - System32\Tasks\GoogleUpdateTaskMachineUA{3B6CECCE-1938-4CA6-AA4F-9C5DEF1FE539} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [162072 2023-05-24] (Google LLC -> Google LLC)
Task: {1F50BC2D-81D9-45B4-BAAE-0F2BE2CE57B0} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [58832 2023-04-12] (HP Inc. -> HP Inc.)
Task: {974F4327-8BF9-4A5C-B542-E28AAB4162A6} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor Logon => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [58832 2023-04-12] (HP Inc. -> HP Inc.)
Task: {CE4BF237-8C4F-4142-909A-BD068539CAD9} - System32\Tasks\HPLJCustParticipation => C:\Program Files (x86)\HP\HPLJUT\HPLJUTSCH.exe [89840 2014-10-19] (Hewlett-Packard Company -> Hewlett Packard)
Task: {B2DF58D0-046B-4D09-AD08-378F7CF813C0} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [1907712 2021-11-05] () [File not signed]
Task: {564C524B-6A48-442A-85D2-B080605B8634} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26616832 2023-07-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {067A7F48-41AE-442A-87AE-E1134663FC0A} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26616832 2023-07-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {1FD82A87-8B08-4CDF-B3F6-A5A7A4238A96} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158664 2023-07-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {32AF8FC7-7237-4F70-8C47-1C12F5AD3E3C} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158664 2023-07-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {13C2CA94-32F3-43E9-83E6-9BE53618E085} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [164752 2023-07-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {581F82D8-7811-48F9-B78E-CAB6D8074FD2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MpCmdRun.exe [1650040 2023-07-20] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {8D51E8AD-A54F-4042-AC1E-B9B90D56ED15} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MpCmdRun.exe [1650040 2023-07-20] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {721C29AC-2304-4629-895A-6245516845D9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MpCmdRun.exe [1650040 2023-07-20] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {D4E236DB-99F5-497A-8A7C-CA0254452207} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MpCmdRun.exe [1650040 2023-07-20] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {6D1AF3AC-DEA4-47E2-8DE1-9ECC1DBDE504} - System32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-699055456-4220227270-3419461705-1002Core => C:\Users\Lenovo\AppData\Local\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [205744 2022-06-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {85C8839E-A538-4AAF-AE2E-55ED0893BE0C} - System32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-699055456-4220227270-3419461705-1002UA => C:\Users\Lenovo\AppData\Local\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [205744 2022-06-19] (Microsoft Corporation -> Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{37dbde66-1e56-49ac-bf7a-f1307dee994a}: [DhcpNameServer] 192.168.1.1

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Lenovo\AppData\Local\Microsoft\Edge\User Data\Default [2023-07-23]
Edge Notifications: Default -> hxxps://www.tiktok.com
Edge Extension: (Adblocker for Youtube™) - C:\Users\Lenovo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ggnchfknjkebijkdlbddehcpgfebapdc [2023-03-25] [UpdateUrl:hxxps://clients16.google.com/service/update2/crx] <==== ATTENTION
Edge Extension: (Edge relevant text changes) - C:\Users\Lenovo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-06-01]

FireFox:
========
FF DefaultProfile: 7ekf1knn.default
FF ProfilePath: C:\Users\Lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\7ekf1knn.default [2021-11-09]
FF ProfilePath: C:\Users\Lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\hvscik5x.default-release [2023-07-13]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-07-11] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2023-07-03] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2023-07-11] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2023-07-11] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @photodex.com/PhotodexPresenter -> C:\Program Files (x86)\Photodex Presenter\npPxPlay.dll [2023-02-18] () [File not signed]

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default [2023-07-24]
CHR DownloadDir: C:\Users\Lenovo\Desktop
CHR Notifications: Default -> hxxps://24sedam.rs; hxxps://en.softonic.com; hxxps://n1info.rs; hxxps://www.facebook.com; hxxps://www.instagram.com; hxxps://www.pinterest.com; hxxps://www.tiktok.com; hxxps://www.unicreditbank.rs; hxxps://www.youtube.com
CHR HomePage: Default -> hxxp://google.rs/
CHR Extension: (Adblocker for Youtube™) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\iddmabhekhhonkmomaklnflhhgbfnioe [2023-03-25] [UpdateUrl:hxxps://clients36.google.com/service/update2/crx] <==== ATTENTION
CHR Extension: (Chrome Web Store Payments) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-10-31]
CHR Profile: C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Guest Profile [2023-07-13]
CHR Extension: (Adblocker for Youtube™) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Guest Profile\Extensions\iddmabhekhhonkmomaklnflhhgbfnioe [2023-03-25] [UpdateUrl:hxxps://clients46.google.com/service/update2/crx] <==== ATTENTION
CHR Profile: C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Profile 2 [2023-07-13]
CHR Extension: (Google Docs Offline) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-06-17]
CHR Extension: (Adblocker for Youtube™) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\iddmabhekhhonkmomaklnflhhgbfnioe [2023-03-25] [UpdateUrl:hxxps://clients20.google.com/service/update2/crx] <==== ATTENTION
CHR Extension: (Online Security) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\llbcnfanfmjhpedaedhbcnpgeepdnnok [2023-02-22]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-01-17]
CHR Profile: C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Profile 3 [2023-07-20]
CHR Extension: (Torrent Scanner) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2023-07-19]
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-07-20]
CHR Extension: (Google Docs Offline) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-01-28]
CHR Extension: (Adblocker for Youtube™) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\iddmabhekhhonkmomaklnflhhgbfnioe [2023-03-25] [UpdateUrl:hxxps://clients25.google.com/service/update2/crx] <==== ATTENTION
CHR Extension: (Online Security) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\llbcnfanfmjhpedaedhbcnpgeepdnnok [2023-07-19]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-02-15]
CHR Profile: C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Profile 8 [2023-07-13]
CHR Extension: (Torrent Scanner) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2023-03-26]
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-03-26]
CHR Extension: (Google Docs Offline) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-03-26]
CHR Extension: (Online Security) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\llbcnfanfmjhpedaedhbcnpgeepdnnok [2023-03-26]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-03-26]
CHR Profile: C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\System Profile [2023-07-13]
CHR Extension: (Adblocker for Youtube™) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\iddmabhekhhonkmomaklnflhhgbfnioe [2023-03-25] [UpdateUrl:hxxps://clients97.google.com/service/update2/crx] <==== ATTENTION
CHR HKLM\...\Chrome\Extension: [llbcnfanfmjhpedaedhbcnpgeepdnnok]
CHR HKU\S-1-5-21-699055456-4220227270-3419461705-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKU\S-1-5-21-699055456-4220227270-3419461705-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [llbcnfanfmjhpedaedhbcnpgeepdnnok]
CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [llbcnfanfmjhpedaedhbcnpgeepdnnok]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-04-03] (Adobe Inc. -> Adobe Inc.)
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [8892824 2023-07-05] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [578968 2023-07-05] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Firewall; C:\Program Files\Avast Software\Avast\afwServ.exe [2091928 2023-07-21] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [579992 2023-07-05] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2023-03-25] (Avast Software s.r.o. -> AVAST Software)
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1063840 2023-06-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11851240 2023-07-11] (Microsoft Corporation -> Microsoft Corporation)
R2 DolbyDAXAPI; C:\Windows\System32\DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_0222c12a396c055f\DAX3API.exe [2301912 2021-01-05] (Dolby Laboratories, Inc. -> Dolby Laboratories)
R2 FMAPOService; C:\Windows\System32\FMService64.exe [334728 2020-12-20] (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia)
S2 HP LaserJet Service; C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe [176128 2014-06-25] (HP) [File not signed]
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [229328 2023-04-12] (HP Inc. -> HP Inc.)
R2 LenovoFnAndFunctionKeys; C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_ec25230d3e6604c8\LenovoUtilityService.exe [279280 2023-05-08] (Lenovo -> Lenovo(beijing) Limited)
R2 LITSSVC; C:\Windows\System32\LNBITSSvc.exe [1820080 2021-02-06] (Lenovo -> Lenovo(beijing) Limited)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9266864 2023-07-13] (Malwarebytes Inc. -> Malwarebytes)
R2 NativePushService; C:\Users\Lenovo\AppData\Local\Wondershare\Wondershare NativePush\WsNativePushService.exe [755600 2022-09-17] (Wondershare Technology Group Co.,Ltd -> Wondershare)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [402216 2023-07-13] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\NisSrv.exe [3232576 2023-07-20] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MsMpEng.exe [133592 2023-07-20] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 ComboCleaner.Guard; C:\Program Files (x86)\Combo Cleaner\ComboCleaner.Guard.exe [X]
S2 ComboCleaner.WinService; C:\Program Files (x86)\Combo Cleaner\ComboCleaner.WinService.exe [X]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 amdfendrmgr; C:\Windows\System32\drivers\amdfendrmgr.sys [54712 2022-11-21] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 amdwddmg; C:\Windows\System32\DriverStore\FileRepository\u0385914.inf_amd64_728327554da2f068\B382773\amdkmdag.sys [94457224 2022-11-21] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [31368 2023-07-05] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [237424 2023-07-05] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [392832 2023-07-05] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [297832 2023-07-05] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [95960 2023-07-05] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswElam; C:\Windows\System32\drivers\aswElam.sys [25576 2023-03-25] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [39600 2023-07-05] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [272016 2023-07-05] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [556576 2023-07-05] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [105248 2023-07-05] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [80416 2023-07-05] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [943456 2023-07-05] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [704264 2023-07-05] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [212632 2023-07-05] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [319512 2023-07-05] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
S3 BdDci; C:\Windows\system32\DRIVERS\bddci.sys [802976 2020-12-04] (Bitdefender SRL -> Bitdefender)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [195224 2020-09-03] (Bitdefender SRL -> BitDefender LLC)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [223176 2023-07-13] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [21480 2023-07-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [239544 2023-07-13] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R1 ReasonCamFilter; C:\Windows\System32\DRIVERS\ReasonCamFilter.sys [49992 2023-01-26] (Reason CyberSecurity Inc. -> Reason Software Company)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 tap0901; C:\Windows\System32\drivers\tap0901.sys [39920 2021-05-26] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S3 Trufos; C:\Windows\System32\DRIVERS\Trufos.sys [641736 2021-02-26] (Bitdefender SRL -> Bitdefender)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [49560 2023-07-20] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [498944 2023-07-20] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [99568 2023-07-20] (Microsoft Windows -> Microsoft Corporation)
U1 avgbdisk; no ImagePath
S3 rsDwf; \SystemRoot\system32\DRIVERS\rsDwf.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2023-07-24 13:22 - 2023-07-24 13:28 - 000056747 _____ C:\Users\Lenovo\Desktop\Addition.txt
2023-07-24 13:21 - 2023-07-24 13:29 - 000033028 _____ C:\Users\Lenovo\Desktop\FRST.txt
2023-07-24 13:21 - 2023-07-24 13:28 - 000000000 ____D C:\FRST
2023-07-24 13:21 - 2023-07-24 13:21 - 002384384 _____ (Farbar) C:\Users\Lenovo\Desktop\FRST64.exe
2023-07-24 08:20 - 2023-07-24 10:26 - 000000000 ____D C:\Users\Lenovo\Desktop\dnevnik
2023-07-24 07:43 - 2023-07-24 07:52 - 000000000 ____D C:\Users\Lenovo\Desktop\New folder (2)
2023-07-23 23:39 - 2023-07-23 23:39 - 000001956 _____ C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\SumatraPDF.lnk
2023-07-23 23:39 - 2023-07-23 23:39 - 000001932 _____ C:\Users\Lenovo\Desktop\SumatraPDF.lnk
2023-07-17 21:25 - 2023-07-17 21:33 - 000000000 ____D C:\Users\Lenovo\Desktop\mi na demo festu
2023-07-16 00:23 - 2023-07-16 00:23 - 007094638 _____ C:\Users\Lenovo\Desktop\GoogleAi Install msi.rar
2023-07-15 23:43 - 2023-07-15 20:07 - 1691977484 _____ C:\Users\Lenovo\Desktop\20230715_195400.mp4
2023-07-15 17:03 - 2023-07-15 17:03 - 000002663 _____ C:\Users\Lenovo\Desktop\TikTok (1).lnk
2023-07-15 09:31 - 2023-07-15 09:31 - 000000000 ____D C:\Users\Lenovo\Documents\Outlook датотеке
2023-07-14 22:46 - 2023-07-14 22:46 - 000350949 _____ C:\Users\Lenovo\Desktop\rock-roll-logo-fenix.json
2023-07-14 10:33 - 2023-07-14 10:33 - 001792640 _____ (Bleeping Computer, LLC) C:\Users\Lenovo\Desktop\rkill_2.9.1.0.exe
2023-07-14 10:33 - 2023-07-14 10:33 - 000001622 _____ C:\Users\Lenovo\Desktop\Rkill.txt
2023-07-14 10:30 - 2023-07-14 10:30 - 000000542 _____ C:\DelFix.txt
2023-07-13 15:53 - 2023-07-13 15:53 - 000000258 __RSH C:\ProgramData\ntuser.pol
2023-07-13 09:38 - 2023-07-13 09:38 - 000002209 _____ C:\Users\Lenovo\Desktop\mbam.txt
2023-07-13 02:21 - 2023-07-23 14:13 - 000000000 ____D C:\Users\Lenovo\AppData\Local\Malwarebytes
2023-07-13 02:21 - 2023-07-13 02:21 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2023-07-13 02:21 - 2023-07-13 02:21 - 000002021 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2023-07-13 02:20 - 2023-07-13 02:20 - 002649072 _____ (Malwarebytes) C:\Users\Lenovo\Desktop\MBSetup (1).exe
2023-07-13 02:20 - 2023-07-13 02:20 - 000000000 ____D C:\ProgramData\Malwarebytes
2023-07-13 00:15 - 2023-07-13 00:15 - 000000000 ___HD C:\$WinREAgent
2023-07-12 23:47 - 2023-07-12 23:47 - 000001959 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Combo Cleaner.lnk
2023-07-12 23:47 - 2023-07-12 23:47 - 000000000 ____D C:\Users\Lenovo\AppData\Local\RCS_LT
2023-07-12 22:55 - 2023-07-12 22:56 - 000000000 ____D C:\Users\Lenovo\Desktop\New folder
2023-07-12 11:46 - 2023-07-12 11:46 - 000068387 _____ C:\Users\Lenovo\Desktop\contacts.vcf
2023-07-12 09:21 - 2023-07-12 09:26 - 000000000 ____D C:\Users\Lenovo\Desktop\хакован налог
2023-07-09 16:15 - 2023-07-09 16:15 - 000106061 _____ C:\Users\Lenovo\Desktop\Statement_[09.07.2023].pdf
2023-07-06 15:39 - 2023-07-06 15:39 - 000025183 _____ C:\Users\Lenovo\Desktop\vtks-rockino-v2-font.zip
2023-07-06 15:29 - 2021-09-14 15:41 - 081661122 _____ C:\Users\Lenovo\Desktop\rm425-11.psd
2023-07-05 15:50 - 2023-07-05 15:56 - 000000000 ____D C:\Users\Lenovo\AppData\Roaming\JamKazam
2023-07-05 15:50 - 2023-07-05 15:50 - 000000000 ____D C:\Users\Lenovo\AppData\Local\JamKazam
2023-07-05 15:50 - 2023-07-05 15:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JamKazam
2023-07-05 15:50 - 2023-07-05 15:50 - 000000000 ____D C:\Program Files (x86)\JamKazam
2023-07-05 08:48 - 2023-07-05 08:48 - 000313240 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2023-06-27 19:13 - 2023-06-27 19:23 - 000000000 ____D C:\Users\Lenovo\Desktop\Дан липе 2023

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2023-07-24 13:25 - 2021-12-19 09:30 - 000000000 ____D C:\Windows\SystemTemp
2023-07-24 13:25 - 2021-11-08 21:28 - 000000000 ____D C:\Program Files (x86)\Google
2023-07-24 13:19 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-07-24 13:16 - 2021-11-09 10:43 - 000000000 ____D C:\Users\Lenovo\Documents\Outlook Files
2023-07-24 12:54 - 2023-01-16 23:30 - 000000000 ____D C:\ProgramData\Wondershare Filmora
2023-07-24 10:14 - 2021-06-25 09:44 - 000000000 ____D C:\Windows\system32\SleepStudy
2023-07-24 07:44 - 2021-12-06 10:18 - 000000000 ____D C:\Users\Lenovo\Documents\ViberDownloads
2023-07-23 23:39 - 2021-11-09 00:03 - 000000000 ____D C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2023-07-23 23:39 - 2021-11-09 00:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2023-07-23 23:39 - 2021-11-09 00:03 - 000000000 ____D C:\Program Files\WinRAR
2023-07-23 23:39 - 2021-11-08 21:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2023-07-23 23:39 - 2021-11-08 21:28 - 000000000 ____D C:\Program Files\7-Zip
2023-07-23 14:13 - 2021-12-06 10:18 - 000000000 ____D C:\Users\Lenovo\AppData\Roaming\ViberPC
2023-07-23 11:53 - 2021-11-08 22:06 - 000000000 ____D C:\Users\Lenovo\AppData\Roaming\Microsoft\Word
2023-07-23 11:52 - 2023-01-22 10:10 - 000000000 ____D C:\Users\Lenovo\AppData\Local\CrashDumps
2023-07-23 11:39 - 2021-11-08 20:10 - 000000000 ____D C:\Users\Lenovo\AppData\Local\Packages
2023-07-23 11:34 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-07-23 11:34 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness
2023-07-23 11:03 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp
2023-07-22 18:56 - 2021-06-25 09:44 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-07-21 23:36 - 2021-12-12 19:07 - 000003588 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-699055456-4220227270-3419461705-1002
2023-07-21 23:36 - 2021-11-08 20:12 - 000003380 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-699055456-4220227270-3419461705-1002
2023-07-21 23:36 - 2021-11-08 20:12 - 000002382 _____ C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-07-21 20:49 - 2023-03-25 20:47 - 000004264 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2023-07-21 14:12 - 2022-02-24 19:44 - 000000000 ____D C:\Users\Lenovo\AppData\Roaming\Telegram Desktop
2023-07-21 11:32 - 2021-06-25 00:50 - 000840598 _____ C:\Windows\system32\PerfStringBackup.INI
2023-07-21 11:32 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF
2023-07-21 03:27 - 2021-11-08 21:28 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-07-20 21:35 - 2023-05-24 21:05 - 000003432 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA{3B6CECCE-1938-4CA6-AA4F-9C5DEF1FE539}
2023-07-20 21:35 - 2023-05-24 21:05 - 000003208 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore{4D477CB2-51E1-4685-8BA4-66C7E9473506}
2023-07-20 21:35 - 2023-03-25 20:47 - 000000000 ____D C:\Windows\system32\Tasks\Avast Software
2023-07-20 21:35 - 2023-01-26 00:53 - 000003046 _____ C:\Windows\system32\Tasks\CCleanerCrashReporting
2023-07-20 21:35 - 2023-01-26 00:53 - 000002988 _____ C:\Windows\system32\Tasks\CCleaner Update
2023-07-20 21:35 - 2023-01-26 00:53 - 000002254 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC - Lenovo
2023-07-20 21:35 - 2023-01-26 00:53 - 000000760 _____ C:\Windows\Tasks\CCleanerCrashReporting.job
2023-07-20 21:35 - 2022-06-19 19:34 - 000003660 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-699055456-4220227270-3419461705-1002UA
2023-07-20 21:35 - 2022-06-19 19:34 - 000003568 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-699055456-4220227270-3419461705-1002Core
2023-07-20 21:35 - 2022-02-24 18:13 - 000003482 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2023-07-20 21:35 - 2022-02-14 10:13 - 000002530 _____ C:\Windows\system32\Tasks\HPLJCustParticipation
2023-07-20 21:35 - 2021-11-08 21:29 - 000003024 _____ C:\Windows\system32\Tasks\klcp_update
2023-07-20 21:35 - 2021-11-08 20:04 - 000002854 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-699055456-4220227270-3419461705-500
2023-07-20 21:35 - 2021-06-25 09:44 - 000003464 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-07-20 21:35 - 2021-06-25 09:44 - 000003240 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-07-20 10:36 - 2021-06-25 09:44 - 000000000 ____D C:\Windows\system32\Drivers\wd
2023-07-20 10:26 - 2021-11-08 20:15 - 000914872 _____ (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2023-07-20 10:26 - 2019-12-07 11:03 - 000032768 _____ C:\Windows\system32\config\ELAM
2023-07-15 17:03 - 2022-01-22 15:52 - 000000000 ____D C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps
2023-07-15 15:42 - 2021-11-08 20:10 - 000000000 ____D C:\Users\Lenovo\AppData\Local\D3DSCache
2023-07-15 09:28 - 2021-06-25 00:47 - 000000000 ____D C:\Program Files\Microsoft Office
2023-07-13 15:53 - 2023-01-17 09:59 - 000000000 ____D C:\ProgramData\Avast Software
2023-07-13 15:52 - 2021-06-25 09:44 - 000008192 ___SH C:\DumpStack.log.tmp
2023-07-13 15:52 - 2021-06-25 09:44 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2023-07-13 15:52 - 2019-12-07 11:03 - 000524288 _____ C:\Windows\system32\config\BBI
2023-07-13 10:51 - 2022-02-27 15:00 - 000000000 ____D C:\Users\Lenovo\AppData\Roaming\uTorrent
2023-07-13 10:50 - 2023-04-09 12:41 - 000000000 ____D C:\Windows\Minidump
2023-07-13 10:50 - 2023-01-26 00:53 - 000000000 ____D C:\Program Files\CCleaner
2023-07-13 02:28 - 2021-06-25 09:44 - 003263520 _____ C:\Windows\system32\FNTCACHE.DAT
2023-07-13 02:27 - 2019-12-07 11:54 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2023-07-13 02:27 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2023-07-13 02:27 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\setup
2023-07-13 02:27 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources
2023-07-13 02:27 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\setup
2023-07-13 02:27 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\SecureBootUpdates
2023-07-13 02:27 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe
2023-07-13 02:27 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr
2023-07-13 02:26 - 2023-02-18 17:23 - 000000000 ____D C:\Program Files (x86)\Photodex ProShow Producer
2023-07-13 02:21 - 2019-12-07 11:14 - 000000000 ___HD C:\Windows\ELAMBKUP
2023-07-13 02:20 - 2023-01-18 12:56 - 000000000 ____D C:\Program Files\Malwarebytes
2023-07-13 00:53 - 2021-11-13 17:17 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2023-07-13 00:28 - 2021-06-25 00:46 - 003015168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2023-07-13 00:12 - 2021-11-08 20:13 - 000000000 ____D C:\Windows\system32\MRT
2023-07-13 00:02 - 2021-11-08 20:13 - 173351160 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2023-07-12 23:09 - 2022-08-29 09:48 - 000000000 ____D C:\Users\Lenovo\AppData\Local\Viber
2023-07-12 23:09 - 2021-11-10 15:05 - 000000000 ____D C:\Users\Lenovo\AppData\Local\BitTorrentHelper
2023-07-12 22:55 - 2022-10-13 10:03 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2023-07-12 22:55 - 2022-10-13 10:03 - 000002061 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk
2023-07-12 18:26 - 2021-11-08 21:28 - 000000000 ____D C:\Users\Lenovo\AppData\Roaming\AIMP
2023-07-11 23:39 - 2021-11-08 20:12 - 000000000 ___RD C:\Users\Lenovo\OneDrive
2023-07-11 23:31 - 2022-11-05 23:07 - 000000000 ____D C:\Users\Lenovo\Desktop\iz telefona
2023-07-09 10:24 - 2023-03-25 20:27 - 000000000 ____D C:\Program Files (x86)\ImageComparer
2023-07-09 10:23 - 2023-03-25 20:30 - 000000000 ____D C:\Program Files (x86)\UyvBmfCPdkUn
2023-07-09 10:23 - 2023-03-25 20:29 - 000000000 ____D C:\Users\Lenovo\AppData\Roaming\NNket
2023-07-09 10:23 - 2023-03-25 20:29 - 000000000 ____D C:\Users\Lenovo\AppData\Roaming\F53DEAA896CAB606
2023-07-09 10:23 - 2023-03-25 20:28 - 000000000 ____D C:\Users\Lenovo\AppData\Roaming\tajCh8V
2023-07-09 10:23 - 2023-03-25 20:28 - 000000000 ____D C:\Program Files (x86)\BGngBackup
2023-07-05 15:50 - 2021-11-08 20:09 - 000000000 ____D C:\Users\Lenovo
2023-07-05 10:31 - 2022-04-11 19:09 - 000000000 ____D C:\Users\Lenovo\Downloads\Telegram Desktop
2023-07-05 08:48 - 2023-03-25 20:47 - 000943456 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2023-07-05 08:48 - 2023-03-25 20:47 - 000704264 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2023-07-05 08:48 - 2023-03-25 20:47 - 000556576 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetHub.sys
2023-07-05 08:48 - 2023-03-25 20:47 - 000392832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
2023-07-05 08:48 - 2023-03-25 20:47 - 000319512 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2023-07-05 08:48 - 2023-03-25 20:47 - 000297832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
2023-07-05 08:48 - 2023-03-25 20:47 - 000272016 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2023-07-05 08:48 - 2023-03-25 20:47 - 000237424 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2023-07-05 08:48 - 2023-03-25 20:47 - 000105248 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2023-07-05 08:48 - 2023-03-25 20:47 - 000095960 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
2023-07-05 08:48 - 2023-03-25 20:47 - 000080416 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2023-07-05 08:48 - 2023-03-25 20:47 - 000039600 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2023-07-05 08:48 - 2023-03-25 20:47 - 000031368 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys

==================== Files in the root of some directories ========

2023-03-25 20:31 - 2023-03-25 20:52 - 000000004 _____ () C:\ProgramData\lock.dat
2023-03-25 20:32 - 2023-03-25 20:48 - 000000004 _____ () C:\ProgramData\rc.dat
2023-03-25 20:31 - 2023-03-25 20:31 - 000000008 _____ () C:\ProgramData\ts.dat
2023-03-14 13:22 - 2023-03-14 13:24 - 000000016 _____ () C:\Users\Lenovo\AppData\Roaming\msregsvv.dll
2023-01-26 00:23 - 2023-01-26 00:23 - 000001533 _____ () C:\Users\Lenovo\AppData\Local\recently-used.xbel

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================
https://www.mycity.rs/must-login.png