Hijacker browser malware problem

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Na laptopu kada otvorim chrome i izaberem svoj chrome profile, search mi je searchio Search a ne google Search.
Kada ga otvorim prvi tab je bio taj search dok kada otvorim novi tab bio bi google search, medjutim, probao sam da resetujem podesavanja google profila i sada cak i kada otvorim novi tab i dalje je searchio Search.
Problem je poceo kada sam na laptopu sinhronizovao svoj chrome profil sa racunara, mada na racunaru nisam koristio taj profil bas dosta dugo.
Probao sam sa malwerbytom, sa zemanom i skenirao sam moguce nepozeljne programe sa guglom, ali nista nije pronaslo.
Tacnije po preporuci sa foruma odradio sam sve sa ovog lika [Link mogu videti samo ulogovani korisnici]
Takodje na laptopu nemam puno programa tako da su mi svi poznati.
Jotel: 41.96mbps download speed i 15.05mbps upload speed
Znaci ovo sam primetio kada sam uradio sinhronizaciju na laptopu, tu to i vidim i odatle ne mogu da ga resim jer pretpostavljam da nije problem sa programima na laptopu, ali cak i na racunaru cesto skeniram sa ista dva gore navedena programa i uvek ocistim sta god da pronadje.

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Postavi logove kao u uputstvu.

[Link mogu videti samo ulogovani korisnici]

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Uloguj se preko Facebooka da bi skinuo fajl:

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 14-11-2021
Ran by mlade (administrator) on DESKTOP-5LVBIKS (Acer Aspire A515-56) (14-11-2021 16:26:58)
Running from C:\Users\mlade\Desktop
Loaded Profiles: mlade
Platform: Microsoft Windows 10 Pro Version 21H1 19043.1348 (X64) Language: English (United States)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Inc) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
(ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) C:\Windows\System32\ELANFPService.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler64.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <10>
(Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorvd.inf_amd64_9303e1e719a54774\RstMwService.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_01e62fd23fef9f71\igfxCUIServiceN.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_01e62fd23fef9f71\igfxEMN.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_7de174f2e8b6260b\OneApp.IGCC.WinService.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_bbafec440f419cb1\IntelCpHDCPSvc.exe
(Kilonova LLC -> Skillbrains) C:\Program Files (x86)\Skillbrains\lightshot\5.5.0.7\Lightshot.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2110.13603.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2110.13603.0_x64__8wekyb3d8bbwe\Win32Bridge.Server.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCopyAccelerator.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\NisSrv.exe
(Node.js Foundation -> Node.js) C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_518b8f4878341936\RtkAudUService64.exe
(Smart Sound Technology -> Intel) C:\Windows\System32\DriverStore\FileRepository\intcoed.inf_amd64_692ad4b47bfa6b04\AS\IAS\IntelAudioService.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_518b8f4878341936\RtkAudUService64.exe [1254488 2021-03-22] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [226728 2019-07-21] (Kilonova LLC -> )
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [114824 2020-09-14] (Adobe Inc. -> )
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706344 2021-09-27] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-1533502849-176086691-3893765355-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\mlade\AppData\Local\Microsoft\Teams\Update.exe [2455256 2021-10-21] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-1533502849-176086691-3893765355-1001\...\Run: [Discord] => C:\Users\mlade\AppData\Local\Discord\Update.exe [1512608 2021-09-21] (Discord Inc. -> GitHub)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\95.0.4638.69\Installer\chrmstp.exe [2021-11-04] (Google LLC -> Google LLC)

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {58B78356-B305-414F-B42D-56BAB2281EBA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B501BC9B-2922-47BA-BD55-7394FC3BA8CB} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B999F852-5302-4141-9AAF-87D72793585F} - System32\Tasks\Microsoft\Windows\WindowsUpdate\RUXIM\RUXIMDisplay => C:\Program Files\ruxim\ruximics.exe [477512 2021-07-01] (Microsoft Windows -> Microsoft Corporation)
Task: {C2A270F3-8F69-42EA-A234-C7F0C5916DB9} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1562376 2021-08-16] (Adobe Inc. -> Adobe Inc.)
Task: {CCE53479-7428-4F4E-930B-E6BCEF0C111D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-10-21] (Google LLC -> Google LLC)
Task: {D100C7B1-B841-4ECC-A6F8-EA1025658347} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {D8679DB0-173F-4196-9453-44902BF09C46} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-10-21] (Google LLC -> Google LLC)
Task: {ED08A8D1-8808-4CB4-A5F6-054403254971} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>)
Task: {EF35A188-F529-4ECF-B116-9A319EEC4BE1} - System32\Tasks\update-S-1-5-21-1533502849-176086691-3893765355-1001 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>)
Task: {FC74B300-B012-4479-851E-940F0D902327} - System32\Tasks\Microsoft\Windows\WindowsUpdate\RUXIM\RUXIMSync => C:\Program Files\ruxim\ruximics.exe [477512 2021-07-01] (Microsoft Windows -> Microsoft Corporation)
Task: {FC83E548-6A9A-4361-A731-22AD6B016B5B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-04] (Microsoft Windows Publisher -> Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\update-S-1-5-21-1533502849-176086691-3893765355-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 93.184.80.109 93.184.80.108
Tcpip\..\Interfaces\{4aaa8562-7c21-4856-b5eb-db234ce0f70f}: [DhcpNameServer] 93.184.80.109 93.184.80.108
Tcpip\..\Interfaces\{703a14ed-c7dc-4089-954e-be5cfbf73beb}: [DhcpNameServer] 93.184.80.109 93.184.80.108

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\mlade\AppData\Local\Microsoft\Edge\User Data\Default [2021-11-14]
Edge Profile: C:\Users\mlade\AppData\Local\Microsoft\Edge\User Data\Profile 1 [2021-11-08]
Edge Profile: C:\Users\mlade\AppData\Local\Microsoft\Edge\User Data\Profile 2 [2021-11-08]

FireFox:
========
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2021-10-05] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=11.311.2 -> E:\Java\bin\dtplugin\npDeployJava1.dll [2021-10-28] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.311.2 -> E:\Java\bin\plugin2\npjp2.dll [2021-10-28] (Oracle America, Inc. -> Oracle Corporation)

Chrome:
=======
CHR DefaultProfile: Profile 3
CHR Profile: C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-11-14]
CHR Profile: C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 2 [2021-11-13]
CHR Extension: (Slides) - C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-11-08]
CHR Extension: (Safe Torrent Scanner) - C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2021-11-08]
CHR Extension: (Docs) - C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2021-11-08]
CHR Extension: (Google Drive) - C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-11-08]
CHR Extension: (YouTube) - C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-11-08]
CHR Extension: (Adobe Acrobat) - C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2021-11-08]
CHR Extension: (Sheets) - C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-11-08]
CHR Extension: (Google Docs Offline) - C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-11-08]
CHR Extension: (Chrome Web Store Payments) - C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-11-08]
CHR Extension: (Gmail) - C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-11-08]
CHR Profile: C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 3 [2021-11-14]
CHR StartupUrls: Profile 3 -> "hxxps://search.protectedio.com/?u=43e38425c66708fd9addbdee817b4955&c=p1&src=hp&inst=1454010751"
CHR DefaultSearchURL: Profile 3 -> [Link mogu videti samo ulogovani korisnici]{searchTerms}&u=43e38425c66708fd9addbdee817b4955&c=p1&src=srch&inst=1453837953
CHR DefaultSearchKeyword: Profile 3 -> searchio
CHR Extension: (Slides) - C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-11-13]
CHR Extension: (Safe Torrent Scanner) - C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2021-11-13]
CHR Extension: (Docs) - C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aohghmighlieiainnegkcijnfilokake [2021-11-13]
CHR Extension: (Google Drive) - C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-11-13]
CHR Extension: (YouTube) - C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-11-13]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-11-13]
CHR Extension: (Adobe Acrobat) - C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2021-11-13]
CHR Extension: (Sheets) - C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-11-13]
CHR Extension: (Google Docs Offline) - C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-11-13]
CHR Extension: (Chrome Web Store Payments) - C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-11-13]
CHR Extension: (Gmail) - C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-11-13]
CHR Profile: C:\Users\mlade\AppData\Local\Google\Chrome\User Data\System Profile [2021-11-14]
CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-08-16] (Adobe Inc. -> Adobe Inc.)
R2 IntelAudioService; C:\WINDOWS\System32\DriverStore\FileRepository\intcoed.inf_amd64_692ad4b47bfa6b04\\AS\\IAS\\IntelAudioService.exe [536432 2020-12-17] (Smart Sound Technology -> Intel)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6103464 2021-11-13] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\NisSrv.exe [2872024 2021-11-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MsMpEng.exe [128376 2021-11-04] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AcerAirplaneModeController; C:\WINDOWS\System32\drivers\AcerAirplaneModeController.sys [30168 2020-05-13] (Acer Incorporated -> Acer Incorporated)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
R3 iaLPSS2_GPIO2_TGL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_gpio2_tgl.inf_amd64_d0e63c4e3754f42f\iaLPSS2_GPIO2_TGL.sys [128152 2020-08-10] (Intel Corporation -> Intel Corporation)
R3 iaLPSS2_I2C_TGL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_i2c_tgl.inf_amd64_ab87bf17a571e523\iaLPSS2_I2C_TGL.sys [197272 2020-08-10] (Intel Corporation -> Intel Corporation)
R0 iaStorVD; C:\WINDOWS\System32\drivers\iaStorVD.sys [1494192 2021-04-30] (Intel Corporation -> Intel Corporation)
R3 IntcAudioBus; C:\WINDOWS\System32\DriverStore\FileRepository\intcaudiobus.inf_amd64_266f908b1469071e\IntcAudioBus.sys [297352 2020-12-17] ((PREPRODUCTION USE ONLY) Smart Sound Technology -> Intel(R) Corporation)
R3 IntcBTAu; C:\WINDOWS\System32\DriverStore\FileRepository\intcbtau.inf_amd64_919d03cd3d4592af\IntcBTAu.sys [811400 2020-12-17] ((PREPRODUCTION USE ONLY) Smart Sound Technology -> Intel(R) Corporation)
R3 IntcDMic; C:\WINDOWS\System32\DriverStore\FileRepository\intcdmic.inf_amd64_a8b8c3832855e235\IntcDMic.sys [705416 2020-12-17] ((PREPRODUCTION USE ONLY) Smart Sound Technology -> Intel(R) Corporation)
R3 IntcOED; C:\WINDOWS\System32\DriverStore\FileRepository\intcoed.inf_amd64_692ad4b47bfa6b04\IntcOED.sys [1335688 2020-12-17] ((PREPRODUCTION USE ONLY) Smart Sound Technology -> Intel(R) Corporation)
R3 IntelGNA; C:\WINDOWS\System32\DriverStore\FileRepository\gna.inf_amd64_689d3d5fefeef458\gna.sys [84880 2020-11-05] (Gaussian Mixture Models and Neural Networks Accelerator -> Intel Corporation)
R3 MpKsl25d60615; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{9A5B7DBE-8A37-4EC4-8F9B-D612767493BD}\MpKslDrv.sys [130296 2021-11-14] (Microsoft Windows -> Microsoft Corporation)
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [39920 2021-05-26] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48520 2021-11-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [435424 2021-11-04] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86240 2021-11-04] (Microsoft Windows -> Microsoft Corporation)
S1 amsdk; \??\C:\WINDOWS\system32\drivers\amsdk.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-11-14 16:26 - 2021-11-14 16:27 - 000018042 _____ C:\Users\mlade\Desktop\FRST.txt
2021-11-14 16:26 - 2021-11-14 16:27 - 000000000 ____D C:\FRST
2021-11-14 16:26 - 2021-11-14 16:26 - 002311680 _____ (Farbar) C:\Users\mlade\Desktop\FRST64.exe
2021-11-13 18:08 - 2021-11-13 18:08 - 000000046 _____ C:\Users\mlade\Desktop\New Text Document.txt
2021-11-13 17:34 - 2021-11-13 17:55 - 000000000 ____D C:\Users\mlade\Desktop\Hemija zadaci str 83
2021-11-13 17:12 - 2021-11-13 17:12 - 000052942 _____ C:\Users\mlade\Desktop\ZAPISATI.pptx
2021-11-13 16:07 - 2021-11-13 17:00 - 000113304 _____ C:\WINDOWS\ZAM.krnl.trace
2021-11-13 16:07 - 2021-11-13 17:00 - 000000000 ____D C:\Users\mlade\AppData\Local\AMSDK
2021-11-13 16:07 - 2021-11-13 16:07 - 000000000 ____D C:\Users\mlade\AppData\Local\Zemana
2021-11-13 15:31 - 2021-11-13 15:31 - 000068992 _____ C:\Users\mlade\AppData\Local\GDIPFONTCACHEV1.DAT
2021-11-13 15:06 - 2021-11-13 15:06 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2021-11-13 15:06 - 2021-11-13 15:06 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2021-11-13 15:06 - 2021-11-13 15:06 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2021-11-13 15:06 - 2021-11-13 15:06 - 000011363 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-11-13 14:59 - 2021-11-13 14:59 - 000000000 ___HD C:\$WinREAgent
2021-11-09 22:54 - 2021-11-09 22:54 - 000224110 _____ C:\Users\mlade\Downloads\6ED10551FB000BA2_datasheet_en.pdf
2021-11-06 15:10 - 2021-11-06 15:56 - 001902069 _____ C:\Users\mlade\Desktop\Praktikum.pdf
2021-11-06 15:05 - 2021-11-13 15:31 - 000000000 ____D C:\Users\mlade\Desktop\Hemija
2021-11-06 14:56 - 2021-11-06 14:56 - 000000000 ____D C:\Program Files (x86)\MSECache
2021-11-02 18:08 - 2021-11-02 18:08 - 000000000 ____D C:\Users\mlade\Documents\Lightshot
2021-10-28 18:06 - 2021-10-28 18:06 - 000164696 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2021-10-28 18:06 - 2021-10-28 18:06 - 000000000 ____D C:\Users\mlade\AppData\Roaming\Sun
2021-10-28 18:06 - 2021-10-28 18:06 - 000000000 ____D C:\Users\mlade\AppData\LocalLow\Sun
2021-10-28 18:06 - 2021-10-28 18:06 - 000000000 ____D C:\ProgramData\Oracle
2021-10-28 18:06 - 2021-10-28 18:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2021-10-26 17:45 - 2021-10-26 17:45 - 000000883 _____ C:\Users\mlade\Desktop\Adobe Premiere Pro 2020.lnk
2021-10-26 17:45 - 2021-10-26 17:45 - 000000883 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Premiere Pro 2020.lnk
2021-10-26 17:45 - 2021-10-26 17:45 - 000000000 ____D C:\Users\Public\Documents\AdobeInstalledCodecsTier2
2021-10-26 17:45 - 2021-10-26 17:45 - 000000000 ____D C:\Users\Public\Documents\Adobe
2021-10-26 17:44 - 2021-10-26 17:44 - 000000000 ____D C:\Users\Public\Documents\AdobeInstalledCodecs
2021-10-26 17:22 - 2021-10-26 17:22 - 000002404 _____ C:\Users\mlade\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Blockbench.lnk
2021-10-26 17:22 - 2021-10-26 17:22 - 000002396 _____ C:\Users\mlade\Desktop\Blockbench.lnk
2021-10-26 14:22 - 2021-10-26 17:46 - 000000000 ____D C:\Users\mlade\Documents\Adobe
2021-10-26 14:21 - 2021-10-26 14:21 - 000001064 _____ C:\Users\mlade\Desktop\Adobe Photoshop 2021.lnk
2021-10-26 14:20 - 2021-10-26 14:20 - 000001064 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop 2021.lnk
2021-10-26 14:17 - 2021-10-26 14:17 - 000000000 ____D C:\Program Files (x86)\Adobe
2021-10-26 14:06 - 2021-10-26 14:14 - 000000000 ____D C:\Users\mlade\AppData\Local\BitTorrentHelper
2021-10-26 14:05 - 2021-10-26 16:16 - 000000000 ____D C:\Users\mlade\AppData\Roaming\uTorrent
2021-10-26 14:04 - 2021-10-26 14:04 - 000000000 ____D C:\Users\mlade\AppData\Local\UT008
2021-10-26 13:57 - 2021-10-26 13:57 - 000000000 ____D C:\WINDOWS\system32\Tasks\Agent Activation Runtime
2021-10-23 16:38 - 2021-10-23 16:13 - 000000030 _____ C:\AVScanner.ini
2021-10-23 16:19 - 2021-10-26 14:16 - 000000000 ____D C:\ProgramData\Package Cache
2021-10-23 16:19 - 2021-10-23 16:19 - 000000000 ____D C:\Users\mlade\AppData\Local\PeerDistRepub
2021-10-23 16:14 - 2021-10-23 16:14 - 000000000 ____D C:\Users\mlade\AppData\LocalLow\Adobe
2021-10-23 16:14 - 2021-10-23 16:14 - 000000000 ____D C:\Users\mlade\AppData\Local\SolidDocuments
2021-10-23 16:12 - 2021-10-26 17:45 - 000000000 ____D C:\Program Files\Common Files\Adobe
2021-10-23 16:12 - 2021-10-26 17:45 - 000000000 ____D C:\Program Files\Adobe
2021-10-23 16:12 - 2021-10-26 14:18 - 000000000 ____D C:\ProgramData\Adobe
2021-10-23 16:12 - 2021-10-23 16:38 - 000000000 ____D C:\ProgramData\McAfee
2021-10-23 16:12 - 2021-10-23 16:12 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2021-10-23 16:12 - 2021-10-23 16:12 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk
2021-10-23 16:10 - 2021-10-26 15:49 - 000000000 ____D C:\Users\mlade\AppData\Local\Adobe
2021-10-21 15:14 - 2021-10-21 15:15 - 000000801 _____ C:\Users\mlade\Desktop\Blockbench - Shortcut.lnk
2021-10-21 15:09 - 2021-11-06 16:17 - 000000000 ____D C:\Users\mlade\AppData\Roaming\.minecraft
2021-10-21 15:09 - 2021-10-21 15:09 - 000000666 _____ C:\Users\Public\Desktop\Minecraft Launcher.lnk
2021-10-21 15:09 - 2021-10-21 15:09 - 000000000 ____D C:\Users\mlade\AppData\Local\CEF
2021-10-21 15:09 - 2021-10-21 15:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minecraft Launcher
2021-10-21 15:08 - 2021-10-26 17:20 - 000000420 _____ C:\WINDOWS\Tasks\update-sys.job
2021-10-21 15:08 - 2021-10-26 17:20 - 000000420 _____ C:\WINDOWS\Tasks\update-S-1-5-21-1533502849-176086691-3893765355-1001.job
2021-10-21 15:08 - 2021-10-21 15:08 - 000003408 _____ C:\WINDOWS\system32\Tasks\update-S-1-5-21-1533502849-176086691-3893765355-1001
2021-10-21 15:08 - 2021-10-21 15:08 - 000003346 _____ C:\WINDOWS\system32\Tasks\update-sys
2021-10-21 15:08 - 2021-10-21 15:08 - 000000424 _____ C:\Users\mlade\AppData\Local\UserProducts.xml
2021-10-21 15:08 - 2021-10-21 15:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lightshot
2021-10-21 15:08 - 2021-10-21 15:08 - 000000000 ____D C:\Program Files (x86)\Skillbrains
2021-10-21 11:50 - 2021-10-21 11:50 - 000000000 _SHDL C:\Documents and Settings
2021-10-21 11:49 - 2021-11-14 12:03 - 000000000 ____D C:\Intel
2021-10-21 11:49 - 2021-11-04 16:10 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-10-21 11:49 - 2021-10-21 11:49 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2021-10-21 10:10 - 2021-10-21 10:10 - 000000000 ____D C:\WINDOWS\PCHEALTH
2021-10-21 10:10 - 2021-10-21 10:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2021-10-21 10:10 - 2021-10-21 10:10 - 000000000 ____D C:\Program Files (x86)\MSBuild
2021-10-21 10:10 - 2021-10-21 10:10 - 000000000 ____D C:\Program Files (x86)\Microsoft Works
2021-10-21 10:10 - 2021-10-21 10:10 - 000000000 ____D C:\Program Files (x86)\Microsoft Visual Studio
2021-10-21 10:08 - 2021-10-21 10:08 - 000000000 ____D C:\WINDOWS\SHELLNEW
2021-10-21 10:08 - 2021-10-21 10:08 - 000000000 ____D C:\Users\mlade\AppData\Local\Microsoft Help
2021-10-21 10:08 - 2021-10-21 10:08 - 000000000 ____D C:\Program Files\Microsoft Office
2021-10-21 09:55 - 2021-10-21 09:55 - 000000000 ____D C:\Users\mlade\AppData\Roaming\WinRAR
2021-10-21 09:54 - 2021-10-21 09:54 - 000000000 ____D C:\Users\mlade\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2021-10-21 09:54 - 2021-10-21 09:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2021-10-21 09:30 - 2021-11-06 18:12 - 000000000 ____D C:\Users\mlade\AppData\Roaming\discord
2021-10-21 09:30 - 2021-11-06 17:33 - 000000000 ____D C:\Users\mlade\AppData\Local\Discord
2021-10-21 09:30 - 2021-10-21 09:31 - 000002227 _____ C:\Users\mlade\Desktop\Discord.lnk
2021-10-21 09:30 - 2021-10-21 09:30 - 000000000 ____D C:\Users\mlade\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2021-10-21 09:26 - 2021-10-21 09:31 - 000000000 ____D C:\Users\mlade\AppData\Local\SquirrelTemp
2021-10-21 09:26 - 2021-10-21 09:26 - 000002364 _____ C:\Users\mlade\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk
2021-10-21 09:26 - 2021-10-21 09:26 - 000002356 _____ C:\Users\mlade\Desktop\Microsoft Teams.lnk
2021-10-21 09:26 - 2021-10-21 09:26 - 000000000 ____D C:\Users\mlade\AppData\Roaming\Teams
2021-10-21 08:27 - 2021-10-30 21:43 - 000000000 ____D C:\Users\mlade\AppData\Roaming\Blockbench
2021-10-21 08:27 - 2021-10-23 16:16 - 000000000 ____D C:\Users\mlade\AppData\Local\blockbench-updater
2021-10-21 08:05 - 2021-11-14 16:12 - 000000000 ____D C:\Program Files (x86)\Google
2021-10-21 08:05 - 2021-11-04 16:01 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-10-21 08:05 - 2021-10-21 08:10 - 000000000 ____D C:\Users\mlade\AppData\Local\Google
2021-10-21 08:05 - 2021-10-21 08:05 - 000003420 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-10-21 08:05 - 2021-10-21 08:05 - 000003296 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-10-21 08:05 - 2021-10-21 08:05 - 000000000 ____D C:\Program Files\Google
2021-10-20 23:50 - 2021-10-20 23:50 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate
2021-10-20 23:49 - 2021-10-20 23:50 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2021-10-20 23:49 - 2021-10-20 23:49 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2021-10-20 23:47 - 2021-10-20 23:47 - 002371072 _____ C:\WINDOWS\system32\rdpnano.dll
2021-10-20 23:47 - 2021-10-20 23:47 - 002111488 _____ (Digimarc) C:\WINDOWS\SysWOW64\DMRCDecoder.dll
2021-10-20 23:47 - 2021-10-20 23:47 - 001864192 _____ (The ICU Project) C:\WINDOWS\SysWOW64\icu.dll
2021-10-20 23:47 - 2021-10-20 23:47 - 001687040 _____ C:\WINDOWS\system32\libcrypto.dll
2021-10-20 23:47 - 2021-10-20 23:47 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2021-10-20 23:47 - 2021-10-20 23:47 - 000672768 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2021-10-20 23:47 - 2021-10-20 23:47 - 000611960 _____ C:\WINDOWS\SysWOW64\TextShaping.dll
2021-10-20 23:47 - 2021-10-20 23:47 - 000468440 _____ C:\WINDOWS\SysWOW64\WindowManagementAPI.dll
2021-10-20 23:47 - 2021-10-20 23:47 - 000203264 _____ C:\WINDOWS\system32\uwfcfgmgmt.dll
2021-10-20 23:47 - 2021-10-20 23:47 - 000170496 _____ C:\WINDOWS\system32\DeviceUpdateCenterCsp.dll
2021-10-20 23:47 - 2021-10-20 23:47 - 000158208 _____ C:\WINDOWS\system32\uwfcsp.dll
2021-10-20 23:47 - 2021-10-20 23:47 - 000040960 _____ C:\WINDOWS\system32\uwfservicingapi.dll
2021-10-20 23:46 - 2021-10-20 23:46 - 002295296 _____ (Digimarc) C:\WINDOWS\system32\DMRCDecoder.dll
2021-10-20 23:46 - 2021-10-20 23:46 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2021-10-20 23:46 - 2021-10-20 23:46 - 002260480 _____ (The ICU Project) C:\WINDOWS\system32\icu.dll
2021-10-20 23:46 - 2021-10-20 23:46 - 001164288 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-10-20 23:46 - 2021-10-20 23:46 - 000706536 _____ C:\WINDOWS\system32\TextShaping.dll
2021-10-20 23:46 - 2021-10-20 23:46 - 000657464 _____ C:\WINDOWS\system32\WindowManagementAPI.dll
2021-10-20 23:46 - 2021-10-20 23:46 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2021-10-20 23:46 - 2021-10-20 23:46 - 000287232 _____ C:\WINDOWS\system32\CoreMas.dll
2021-10-20 23:46 - 2021-10-20 23:46 - 000162816 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-10-20 23:46 - 2021-10-20 23:46 - 000098304 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2021-10-20 23:46 - 2021-10-20 23:46 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe
2021-10-20 23:04 - 2021-10-20 23:04 - 000000000 ____D C:\Users\mlade\AppData\Local\OneDrive
2021-10-20 22:57 - 2021-10-20 22:57 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2021-10-20 22:56 - 2021-11-14 12:11 - 000795738 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-10-20 22:55 - 2021-10-20 22:55 - 000000020 ___SH C:\Users\mlade\ntuser.ini
2021-10-20 22:53 - 2021-11-14 12:03 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-10-20 22:53 - 2021-11-08 19:29 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1533502849-176086691-3893765355-1001
2021-10-20 22:53 - 2021-10-20 22:53 - 000007623 _____ C:\WINDOWS\diagwrn.xml
2021-10-20 22:53 - 2021-10-20 22:53 - 000007623 _____ C:\WINDOWS\diagerr.xml
2021-10-20 22:53 - 2021-10-20 22:53 - 000003408 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-10-20 22:53 - 2021-10-20 22:53 - 000003214 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d7c5f43c157a60
2021-10-20 22:53 - 2021-10-20 22:53 - 000003186 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-10-20 22:53 - 2021-10-20 22:53 - 000000000 ____D C:\WINDOWS\system32\Tasks\Intel
2021-10-20 22:51 - 2021-11-14 16:00 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-10-20 22:51 - 2021-11-13 18:28 - 000353752 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-10-20 22:51 - 2021-11-08 19:29 - 000002424 _____ C:\Users\mlade\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-10-20 22:51 - 2021-10-26 17:19 - 000000000 ____D C:\Users\mlade
2021-10-20 22:19 - 2021-11-06 18:14 - 000000000 ___DC C:\WINDOWS\Panther
2021-10-20 22:18 - 2021-10-20 22:19 - 000000036 _____ C:\WINDOWS\progress.ini
2021-10-20 22:13 - 2021-10-28 17:14 - 000000000 ____D C:\Users\mlade\AppData\Local\D3DSCache
2021-10-20 22:11 - 2021-10-20 22:53 - 000000000 ___HD C:\$GetCurrent
2021-10-20 22:08 - 2021-03-22 11:18 - 006433280 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2021-10-20 22:08 - 2021-03-22 11:07 - 045159558 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2021-10-20 22:08 - 2013-05-31 23:57 - 000249524 _____ C:\WINDOWS\system32\Drivers\RtPCEE4.DAT
2021-10-20 22:08 - 2010-09-23 19:21 - 000039672 _____ C:\WINDOWS\system32\Drivers\RtPCEE3.DAT
2021-10-20 22:08 - 2010-03-22 15:21 - 000247560 _____ C:\WINDOWS\system32\Drivers\RTConvEQ.dat
2021-10-20 22:08 - 2009-12-11 15:59 - 000059936 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\AzMixerSel.exe
2021-10-20 21:57 - 2021-11-14 13:50 - 000000000 __SHD C:\Users\mlade\IntelGraphicsProfiles
2021-10-20 21:57 - 2021-10-20 22:51 - 000000000 ____D C:\WINDOWS\Firmware
2021-10-20 21:57 - 2021-10-20 22:08 - 000000000 ____D C:\Users\mlade\AppData\Local\Intel
2021-10-20 21:57 - 2021-10-20 21:57 - 000000000 ____D C:\Users\mlade\AppData\LocalLow\Intel
2021-10-20 21:56 - 2021-08-27 05:15 - 024605184 _____ (Intel Corporation) C:\WINDOWS\system32\libmfxhw64.dll
2021-10-20 21:56 - 2021-08-27 05:15 - 023248440 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\libmfxhw32.dll
2021-10-20 21:56 - 2021-08-27 05:15 - 000456024 _____ C:\WINDOWS\system32\ze_loader.dll
2021-10-20 21:56 - 2021-08-27 05:15 - 000145232 _____ C:\WINDOWS\system32\ze_validation_layer.dll
2021-10-20 21:56 - 2021-08-27 05:14 - 026669392 _____ (Intel Corporation) C:\WINDOWS\system32\mfxplugin64_hw.dll
2021-10-20 21:56 - 2021-08-27 05:14 - 013513040 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\mfxplugin32_hw.dll
2021-10-20 21:56 - 2021-08-27 05:14 - 001754392 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2021-10-20 21:56 - 2021-08-27 05:14 - 001754392 _____ C:\WINDOWS\system32\vulkaninfo.exe
2021-10-20 21:56 - 2021-08-27 05:14 - 001360144 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2021-10-20 21:56 - 2021-08-27 05:14 - 001360144 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2021-10-20 21:56 - 2021-08-27 05:14 - 001057912 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2021-10-20 21:56 - 2021-08-27 05:14 - 001057912 _____ C:\WINDOWS\system32\vulkan-1.dll
2021-10-20 21:56 - 2021-08-27 05:14 - 000921208 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2021-10-20 21:56 - 2021-08-27 05:14 - 000921208 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2021-10-20 21:56 - 2021-08-27 05:14 - 000171504 _____ (Intel Corporation) C:\WINDOWS\system32\intel_gfx_api-x64.dll
2021-10-20 21:56 - 2021-08-27 05:14 - 000146776 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\intel_gfx_api-x86.dll
2021-10-20 21:56 - 2021-08-27 05:14 - 000128344 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2021-10-20 21:56 - 2021-08-27 05:14 - 000112984 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2021-10-20 21:50 - 2021-11-14 12:03 - 000008192 ___SH C:\DumpStack.log.tmp
2021-10-20 21:37 - 2021-10-20 21:57 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-10-20 21:35 - 2021-11-13 14:59 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-10-20 21:35 - 2021-10-20 21:55 - 000000000 ____D C:\Program Files\ruxim
2021-10-20 21:23 - 2021-10-20 21:23 - 000000000 ____H C:\$WINRE_BACKUP_PARTITION.MARKER
2021-10-20 21:17 - 2021-10-20 21:17 - 000000000 ____D C:\Users\mlade\AppData\Local\Comms
2021-10-20 21:12 - 2021-10-25 16:25 - 000000000 ____D C:\ProgramData\Packages
2021-10-20 20:58 - 2021-10-20 20:58 - 000000000 ___HD C:\OneDriveTemp
2021-10-20 20:57 - 2021-11-14 12:04 - 000000000 ____D C:\Users\mlade\AppData\Local\PlaceholderTileLogoFolder
2021-10-20 20:57 - 2021-10-20 23:04 - 000000000 ___RD C:\Users\mlade\OneDrive
2021-10-20 20:56 - 2021-10-20 20:56 - 000000000 ____D C:\Users\mlade\AppData\Local\Publishers
2021-10-20 20:55 - 2021-10-30 19:43 - 000000000 ____D C:\Users\mlade\AppData\Local\Packages
2021-10-20 20:55 - 2021-10-26 17:46 - 000000000 ____D C:\Users\mlade\AppData\Roaming\Adobe
2021-10-20 20:55 - 2021-10-21 15:09 - 000000000 __RHD C:\Users\Public\AccountPictures
2021-10-20 20:55 - 2021-10-21 09:28 - 000000000 ____D C:\Users\mlade\AppData\Local\ConnectedDevicesPlatform
2021-10-20 20:55 - 2021-10-20 22:55 - 000000000 ___RD C:\Users\mlade\3D Objects
2021-10-20 20:55 - 2021-10-20 20:55 - 000000000 ____D C:\Users\mlade\AppData\Local\VirtualStore
2021-10-20 20:50 - 2021-11-14 12:27 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-10-20 20:50 - 2021-10-20 20:50 - 000000000 ____D C:\WINDOWS\CSC

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-11-14 16:26 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2021-11-14 16:00 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-11-14 12:27 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-11-14 12:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-11-14 12:04 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-11-14 12:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-11-13 18:28 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-11-13 18:27 - 2019-12-07 10:54 - 000000000 ___SD C:\WINDOWS\system32\AppV
2021-11-13 18:27 - 2019-12-07 10:54 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-11-13 18:27 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2021-11-13 18:27 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-11-13 18:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-11-13 18:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-11-13 18:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-11-13 18:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-11-13 18:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-11-13 18:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-11-13 18:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2021-11-13 18:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-11-13 18:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-11-13 18:27 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing
2021-11-10 19:36 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-10-26 14:16 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2021-10-23 15:37 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\appcompat
2021-10-21 10:08 - 2019-03-19 05:49 - 000000167 _____ C:\WINDOWS\win.ini
2021-10-20 23:50 - 2019-12-07 10:14 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2021-10-20 23:50 - 2019-12-07 10:14 - 000000000 __RHD C:\Users\Public\Libraries
2021-10-20 23:50 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2021-10-20 23:50 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2021-10-20 23:50 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\spool
2021-10-20 23:50 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\USOPrivate
2021-10-20 23:50 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\MsDtc
2021-10-20 23:49 - 2019-12-07 10:51 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2021-10-20 23:49 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2021-10-20 23:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2021-10-20 23:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2021-10-20 23:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2021-10-20 23:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2021-10-20 23:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2021-10-20 23:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2021-10-20 23:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2021-10-20 23:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2021-10-20 23:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2021-10-20 23:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2021-10-20 23:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2021-10-20 23:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-10-20 23:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\DiagTrack
2021-10-20 23:48 - 2019-12-07 10:54 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2021-10-20 23:43 - 2019-12-07 10:18 - 000000000 ____D C:\WINDOWS\Setup
2021-10-20 23:26 - 2019-12-07 10:52 - 000000000 ____D C:\WINDOWS\OCR
2021-10-20 23:25 - 2019-12-07 10:54 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2021-10-20 23:25 - 2019-12-07 10:54 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2021-10-20 23:25 - 2019-12-07 10:50 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
2021-10-20 23:25 - 2019-12-07 10:50 - 000000000 ____D C:\WINDOWS\system32\WCN
2021-10-20 23:25 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2021-10-20 23:25 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\F12
2021-10-20 23:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-10-20 23:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-10-20 23:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2021-10-20 23:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2021-10-20 23:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\IME
2021-10-20 23:25 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender
2021-10-20 23:25 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\System
2021-10-20 23:25 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2021-10-20 23:12 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-10-20 22:53 - 2019-12-07 10:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2021-10-20 22:52 - 2019-12-07 10:14 - 000000000 __RSD C:\WINDOWS\Media
2021-10-20 22:51 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-10-20 22:49 - 2019-10-07 03:52 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies

==================== Files in the root of some directories ========

2021-10-21 15:08 - 2021-10-21 15:08 - 000000003 _____ () C:\Users\mlade\AppData\Local\updater.log
2021-10-21 15:08 - 2021-10-21 15:08 - 000000424 _____ () C:\Users\mlade\AppData\Local\UserProducts.xml

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================


[Link mogu videti samo ulogovani korisnici]

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Probaj, pa javi.

1. Otvori Notepad (Text Document) i iskopiraj sledeći tekst unutar kod polja ispod:

CHR StartupUrls: Profile 3 -> "hxxps://search.protectedio.com/?u=43e38425c66708fd9addbdee817b4955&c=p1&src=hp&inst=1454010751"
CHR DefaultSearchURL: Profile 3 -> hxxps://search.protectedio.com/search.php/?q={searchTerms}&u=43e38425c66708fd9addbdee817b4955&c=p1&src=srch&inst=1453837953
CHR DefaultSearchKeyword: Profile 3 -> searchio


2. Sačuvaj notepad na Desktop pod nazivom fixlist.txt
To možes uraditi i iz notepad-a => klik na File potom na Save As i u novom prozoru, dole pod File Name: staviš za naziv fixlist.txt
Napomena: Važno je da se oba fajla, FRST i fixlist nalaze na istoj lokaciji jer u suprotnom fix nece raditi.

3. Ponovo pokreni FRST/FRST64, klikni jednom na dugme Fix i sačekaj.
Ukoliko alat zatraži restart sistema, dozvoli mu i postaraj se da alat kompletira fix nakon restarta sistema.



Alat će formirati log (Fixlog.txt) na Desktop-u. Potrebno je sadržaj tog loga iskopirati u poruku.
Napomena: Ukoliko te alat upozori da postoji novija verzija, postaraj se da preuzmes i koristiš ažuriranu kopiju FRST-a.

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Izgleda da mi je popravilo

Fix result of Farbar Recovery Scan Tool (x64) Version: 14-11-2021
Ran by mlade (14-11-2021 19:23:32) Run:1
Running from C:\Users\mlade\Desktop
Loaded Profiles: mlade
Boot Mode: Normal
==============================================

fixlist content:
*****************
CHR StartupUrls: Profile 3 -> "hxxps://search.protectedio.com/?u=43e38425c66708fd9addbdee817b4955&c=p1&src=hp&inst=1454010751"
CHR DefaultSearchURL: Profile 3 -> [Link mogu videti samo ulogovani korisnici]{searchTerms}&u=43e38425c66708fd9addbdee817b4955&c=p1&src=srch&inst=1453837953
CHR DefaultSearchKeyword: Profile 3 -> searchio
*****************

"Chrome StartupUrls" => removed successfully
"Chrome DefaultSearchURL" => removed successfully
"Chrome DefaultSearchKeyword" => removed successfully

==== End of Fixlog 19:23:33 ====

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Ako je to to, odradi sledece:

Preimenuj FRST.exe sa Desktop-a u uninstall.exe i pokreni ga. To ce obrisati FRST i njegove dodatne fajlove.

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Napisano: 15 Nov 2021 8:28

Uspelo je da ga ukloni ali se sinhronizacija iskljucila i ponovo kada sam sinhronizovao vratilo se. Probao sam sad i na racunaru opet i tu ga takodje nema sve dok ne upalim sinhronizaciju.

Dopuna: 15 Nov 2021 9:21

Sinhronizovao sam na racunaru i tamo se pojavio kao sto rekoh, ali se takodje pojavio i na laptopu ponovo nakon sto sam upalio i ugasio sinhronizaciju na racunaru. Sada ga ponovo ima na laptopu, iako je sinhronizacija iskljucena.

Ne znam kako google nalozi rade, ali pretpostavljam da je u njemu problem, jer kada se upali sinhronizacija on uzme te neke sacuvane podatke i podesavanja i izgleda da je ovaj search.protectido jedno od podesavanja.

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Verovatno, jedino da probamo da uklonimo taj profil. Ako hoces da probamo, postavi mi novi log, da vidim sta se promenilo.

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Uloguj se preko Facebooka da bi skinuo fajl:

Kada ga uklonimo da li se brise i mejl i sve sa njim ili taj deo ostaje a samo uklanjamo sa google profila ?

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 14-11-2021
Ran by mlade (administrator) on DESKTOP-5LVBIKS (Acer Aspire A515-56) (16-11-2021 17:23:33)
Running from C:\Users\mlade\Desktop
Loaded Profiles: mlade
Platform: Microsoft Windows 10 Pro Version 21H1 19043.1348 (X64) Language: English (United States)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Inc) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
(ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) C:\Windows\System32\ELANFPService.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <9>
(Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorvd.inf_amd64_9303e1e719a54774\RstMwService.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_01e62fd23fef9f71\igfxCUIServiceN.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_01e62fd23fef9f71\igfxEMN.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_7de174f2e8b6260b\OneApp.IGCC.WinService.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_bbafec440f419cb1\IntelCpHDCPSvc.exe
(Kilonova LLC -> Skillbrains) C:\Program Files (x86)\Skillbrains\lightshot\5.5.0.7\Lightshot.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2110.13603.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2110.13603.0_x64__8wekyb3d8bbwe\Win32Bridge.Server.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20544.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.721.10202.0_x64__8wekyb3d8bbwe\GameBar.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.721.10202.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\BackgroundTransferHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.1310_none_7e15ec207c87d405\TiWorker.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCopyAccelerator.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\NisSrv.exe
(Node.js Foundation -> Node.js) C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_518b8f4878341936\RtkAudUService64.exe
(Smart Sound Technology -> Intel) C:\Windows\System32\DriverStore\FileRepository\intcoed.inf_amd64_692ad4b47bfa6b04\AS\IAS\IntelAudioService.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_518b8f4878341936\RtkAudUService64.exe [1254488 2021-03-22] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [226728 2019-07-21] (Kilonova LLC -> )
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [114824 2020-09-14] (Adobe Inc. -> )
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706344 2021-09-27] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-1533502849-176086691-3893765355-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\mlade\AppData\Local\Microsoft\Teams\Update.exe [2455256 2021-10-21] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-1533502849-176086691-3893765355-1001\...\Run: [Discord] => C:\Users\mlade\AppData\Local\Discord\Update.exe [1512608 2021-09-21] (Discord Inc. -> GitHub)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\96.0.4664.45\Installer\chrmstp.exe [2021-11-16] (Google LLC -> Google LLC)

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {58B78356-B305-414F-B42D-56BAB2281EBA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B501BC9B-2922-47BA-BD55-7394FC3BA8CB} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B999F852-5302-4141-9AAF-87D72793585F} - System32\Tasks\Microsoft\Windows\WindowsUpdate\RUXIM\RUXIMDisplay => C:\Program Files\ruxim\ruximics.exe [477512 2021-07-01] (Microsoft Windows -> Microsoft Corporation)
Task: {C2A270F3-8F69-42EA-A234-C7F0C5916DB9} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1562376 2021-08-16] (Adobe Inc. -> Adobe Inc.)
Task: {CCE53479-7428-4F4E-930B-E6BCEF0C111D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-10-21] (Google LLC -> Google LLC)
Task: {D100C7B1-B841-4ECC-A6F8-EA1025658347} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {D8679DB0-173F-4196-9453-44902BF09C46} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-10-21] (Google LLC -> Google LLC)
Task: {ED08A8D1-8808-4CB4-A5F6-054403254971} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>)
Task: {EF35A188-F529-4ECF-B116-9A319EEC4BE1} - System32\Tasks\update-S-1-5-21-1533502849-176086691-3893765355-1001 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>)
Task: {FC74B300-B012-4479-851E-940F0D902327} - System32\Tasks\Microsoft\Windows\WindowsUpdate\RUXIM\RUXIMSync => C:\Program Files\ruxim\ruximics.exe [477512 2021-07-01] (Microsoft Windows -> Microsoft Corporation)
Task: {FC83E548-6A9A-4361-A731-22AD6B016B5B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-04] (Microsoft Windows Publisher -> Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\update-S-1-5-21-1533502849-176086691-3893765355-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 93.184.80.109 93.184.80.108
Tcpip\..\Interfaces\{4aaa8562-7c21-4856-b5eb-db234ce0f70f}: [DhcpNameServer] 93.184.80.109 93.184.80.108
Tcpip\..\Interfaces\{703a14ed-c7dc-4089-954e-be5cfbf73beb}: [DhcpNameServer] 93.184.80.109 93.184.80.108

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\mlade\AppData\Local\Microsoft\Edge\User Data\Default [2021-11-14]
Edge Profile: C:\Users\mlade\AppData\Local\Microsoft\Edge\User Data\Profile 1 [2021-11-08]
Edge Profile: C:\Users\mlade\AppData\Local\Microsoft\Edge\User Data\Profile 2 [2021-11-08]

FireFox:
========
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2021-10-05] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=11.311.2 -> E:\Java\bin\dtplugin\npDeployJava1.dll [2021-10-28] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.311.2 -> E:\Java\bin\plugin2\npjp2.dll [2021-10-28] (Oracle America, Inc. -> Oracle Corporation)

Chrome:
=======
CHR DefaultProfile: Profile 3
CHR Profile: C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-11-15]
CHR Profile: C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 2 [2021-11-14]
CHR Extension: (Slides) - C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-11-08]
CHR Extension: (Safe Torrent Scanner) - C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2021-11-08]
CHR Extension: (Docs) - C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2021-11-08]
CHR Extension: (Google Drive) - C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-11-08]
CHR Extension: (YouTube) - C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-11-08]
CHR Extension: (Adobe Acrobat) - C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2021-11-08]
CHR Extension: (Sheets) - C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-11-08]
CHR Extension: (Google Docs Offline) - C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-11-08]
CHR Extension: (Chrome Web Store Payments) - C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-11-08]
CHR Extension: (Gmail) - C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-11-08]
CHR Profile: C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 3 [2021-11-16]
CHR StartupUrls: Profile 3 -> "hxxps://search.protectedio.com/?u=43e38425c66708fd9addbdee817b4955&c=p1&src=hp&inst=1454010751"
CHR Extension: (Charcoal: Dark Mode for Messenger) - C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aaekanoannlhnajolbijaoflfhikcgng [2021-11-14]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-11-14]
CHR Extension: (Chrome Web Store Payments) - C:\Users\mlade\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-11-14]
CHR Profile: C:\Users\mlade\AppData\Local\Google\Chrome\User Data\System Profile [2021-11-15]
CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-08-16] (Adobe Inc. -> Adobe Inc.)
R2 IntelAudioService; C:\WINDOWS\System32\DriverStore\FileRepository\intcoed.inf_amd64_692ad4b47bfa6b04\\AS\\IAS\\IntelAudioService.exe [536432 2020-12-17] (Smart Sound Technology -> Intel)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6103464 2021-11-13] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\NisSrv.exe [2872024 2021-11-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MsMpEng.exe [128376 2021-11-04] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AcerAirplaneModeController; C:\WINDOWS\System32\drivers\AcerAirplaneModeController.sys [30168 2020-05-13] (Acer Incorporated -> Acer Incorporated)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
R3 iaLPSS2_GPIO2_TGL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_gpio2_tgl.inf_amd64_d0e63c4e3754f42f\iaLPSS2_GPIO2_TGL.sys [128152 2020-08-10] (Intel Corporation -> Intel Corporation)
R3 iaLPSS2_I2C_TGL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_i2c_tgl.inf_amd64_ab87bf17a571e523\iaLPSS2_I2C_TGL.sys [197272 2020-08-10] (Intel Corporation -> Intel Corporation)
R0 iaStorVD; C:\WINDOWS\System32\drivers\iaStorVD.sys [1494192 2021-04-30] (Intel Corporation -> Intel Corporation)
R3 IntcAudioBus; C:\WINDOWS\System32\DriverStore\FileRepository\intcaudiobus.inf_amd64_266f908b1469071e\IntcAudioBus.sys [297352 2020-12-17] ((PREPRODUCTION USE ONLY) Smart Sound Technology -> Intel(R) Corporation)
R3 IntcBTAu; C:\WINDOWS\System32\DriverStore\FileRepository\intcbtau.inf_amd64_919d03cd3d4592af\IntcBTAu.sys [811400 2020-12-17] ((PREPRODUCTION USE ONLY) Smart Sound Technology -> Intel(R) Corporation)
R3 IntcDMic; C:\WINDOWS\System32\DriverStore\FileRepository\intcdmic.inf_amd64_a8b8c3832855e235\IntcDMic.sys [705416 2020-12-17] ((PREPRODUCTION USE ONLY) Smart Sound Technology -> Intel(R) Corporation)
R3 IntcOED; C:\WINDOWS\System32\DriverStore\FileRepository\intcoed.inf_amd64_692ad4b47bfa6b04\IntcOED.sys [1335688 2020-12-17] ((PREPRODUCTION USE ONLY) Smart Sound Technology -> Intel(R) Corporation)
R3 IntelGNA; C:\WINDOWS\System32\DriverStore\FileRepository\gna.inf_amd64_689d3d5fefeef458\gna.sys [84880 2020-11-05] (Gaussian Mixture Models and Neural Networks Accelerator -> Intel Corporation)
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [39920 2021-05-26] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48520 2021-11-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [435424 2021-11-04] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86240 2021-11-04] (Microsoft Windows -> Microsoft Corporation)
S1 amsdk; \??\C:\WINDOWS\system32\drivers\amsdk.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-11-16 17:23 - 2021-11-16 17:23 - 000017313 _____ C:\Users\mlade\Desktop\FRST.txt
2021-11-14 16:26 - 2021-11-16 17:23 - 000000000 ____D C:\FRST
2021-11-14 16:26 - 2021-11-14 16:26 - 002311680 _____ (Farbar) C:\Users\mlade\Desktop\FRST64.exe
2021-11-13 18:08 - 2021-11-13 18:08 - 000000046 _____ C:\Users\mlade\Desktop\sajt neki iz bookmarka.txt
2021-11-13 17:34 - 2021-11-13 17:55 - 000000000 ____D C:\Users\mlade\Desktop\Hemija zadaci str 83
2021-11-13 17:12 - 2021-11-13 17:12 - 000052942 _____ C:\Users\mlade\Desktop\ZAPISATI.pptx
2021-11-13 16:07 - 2021-11-13 17:00 - 000113304 _____ C:\WINDOWS\ZAM.krnl.trace
2021-11-13 16:07 - 2021-11-13 17:00 - 000000000 ____D C:\Users\mlade\AppData\Local\AMSDK
2021-11-13 16:07 - 2021-11-13 16:07 - 000000000 ____D C:\Users\mlade\AppData\Local\Zemana
2021-11-13 15:31 - 2021-11-13 15:31 - 000068992 _____ C:\Users\mlade\AppData\Local\GDIPFONTCACHEV1.DAT
2021-11-13 15:06 - 2021-11-13 15:06 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2021-11-13 15:06 - 2021-11-13 15:06 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2021-11-13 15:06 - 2021-11-13 15:06 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2021-11-13 15:06 - 2021-11-13 15:06 - 000011363 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-11-13 14:59 - 2021-11-13 14:59 - 000000000 ___HD C:\$WinREAgent
2021-11-09 22:54 - 2021-11-09 22:54 - 000224110 _____ C:\Users\mlade\Downloads\6ED10551FB000BA2_datasheet_en.pdf
2021-11-06 15:10 - 2021-11-06 15:56 - 001902069 _____ C:\Users\mlade\Desktop\Praktikum.pdf
2021-11-06 15:05 - 2021-11-13 15:31 - 000000000 ____D C:\Users\mlade\Desktop\Hemija
2021-11-06 14:56 - 2021-11-06 14:56 - 000000000 ____D C:\Program Files (x86)\MSECache
2021-11-02 18:08 - 2021-11-02 18:08 - 000000000 ____D C:\Users\mlade\Documents\Lightshot
2021-10-28 18:06 - 2021-10-28 18:06 - 000164696 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2021-10-28 18:06 - 2021-10-28 18:06 - 000000000 ____D C:\Users\mlade\AppData\Roaming\Sun
2021-10-28 18:06 - 2021-10-28 18:06 - 000000000 ____D C:\Users\mlade\AppData\LocalLow\Sun
2021-10-28 18:06 - 2021-10-28 18:06 - 000000000 ____D C:\ProgramData\Oracle
2021-10-28 18:06 - 2021-10-28 18:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2021-10-26 17:45 - 2021-10-26 17:45 - 000000883 _____ C:\Users\mlade\Desktop\Adobe Premiere Pro 2020.lnk
2021-10-26 17:45 - 2021-10-26 17:45 - 000000883 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Premiere Pro 2020.lnk
2021-10-26 17:45 - 2021-10-26 17:45 - 000000000 ____D C:\Users\Public\Documents\AdobeInstalledCodecsTier2
2021-10-26 17:45 - 2021-10-26 17:45 - 000000000 ____D C:\Users\Public\Documents\Adobe
2021-10-26 17:44 - 2021-10-26 17:44 - 000000000 ____D C:\Users\Public\Documents\AdobeInstalledCodecs
2021-10-26 17:22 - 2021-10-26 17:22 - 000002404 _____ C:\Users\mlade\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Blockbench.lnk
2021-10-26 17:22 - 2021-10-26 17:22 - 000002396 _____ C:\Users\mlade\Desktop\Blockbench.lnk
2021-10-26 14:22 - 2021-10-26 17:46 - 000000000 ____D C:\Users\mlade\Documents\Adobe
2021-10-26 14:21 - 2021-10-26 14:21 - 000001064 _____ C:\Users\mlade\Desktop\Adobe Photoshop 2021.lnk
2021-10-26 14:20 - 2021-10-26 14:20 - 000001064 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop 2021.lnk
2021-10-26 14:17 - 2021-10-26 14:17 - 000000000 ____D C:\Program Files (x86)\Adobe
2021-10-26 14:06 - 2021-10-26 14:14 - 000000000 ____D C:\Users\mlade\AppData\Local\BitTorrentHelper
2021-10-26 14:05 - 2021-10-26 16:16 - 000000000 ____D C:\Users\mlade\AppData\Roaming\uTorrent
2021-10-26 14:04 - 2021-10-26 14:04 - 000000000 ____D C:\Users\mlade\AppData\Local\UT008
2021-10-26 13:57 - 2021-10-26 13:57 - 000000000 ____D C:\WINDOWS\system32\Tasks\Agent Activation Runtime
2021-10-23 16:38 - 2021-10-23 16:13 - 000000030 _____ C:\AVScanner.ini
2021-10-23 16:19 - 2021-10-26 14:16 - 000000000 ____D C:\ProgramData\Package Cache
2021-10-23 16:19 - 2021-10-23 16:19 - 000000000 ____D C:\Users\mlade\AppData\Local\PeerDistRepub
2021-10-23 16:14 - 2021-10-23 16:14 - 000000000 ____D C:\Users\mlade\AppData\LocalLow\Adobe
2021-10-23 16:14 - 2021-10-23 16:14 - 000000000 ____D C:\Users\mlade\AppData\Local\SolidDocuments
2021-10-23 16:12 - 2021-10-26 17:45 - 000000000 ____D C:\Program Files\Common Files\Adobe
2021-10-23 16:12 - 2021-10-26 17:45 - 000000000 ____D C:\Program Files\Adobe
2021-10-23 16:12 - 2021-10-26 14:18 - 000000000 ____D C:\ProgramData\Adobe
2021-10-23 16:12 - 2021-10-23 16:38 - 000000000 ____D C:\ProgramData\McAfee
2021-10-23 16:12 - 2021-10-23 16:12 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2021-10-23 16:12 - 2021-10-23 16:12 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk
2021-10-23 16:10 - 2021-10-26 15:49 - 000000000 ____D C:\Users\mlade\AppData\Local\Adobe
2021-10-21 15:14 - 2021-10-21 15:15 - 000000801 _____ C:\Users\mlade\Desktop\Blockbench - Shortcut.lnk
2021-10-21 15:09 - 2021-11-06 16:17 - 000000000 ____D C:\Users\mlade\AppData\Roaming\.minecraft
2021-10-21 15:09 - 2021-10-21 15:09 - 000000666 _____ C:\Users\Public\Desktop\Minecraft Launcher.lnk
2021-10-21 15:09 - 2021-10-21 15:09 - 000000000 ____D C:\Users\mlade\AppData\Local\CEF
2021-10-21 15:09 - 2021-10-21 15:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minecraft Launcher
2021-10-21 15:08 - 2021-10-26 17:20 - 000000420 _____ C:\WINDOWS\Tasks\update-sys.job
2021-10-21 15:08 - 2021-10-26 17:20 - 000000420 _____ C:\WINDOWS\Tasks\update-S-1-5-21-1533502849-176086691-3893765355-1001.job
2021-10-21 15:08 - 2021-10-21 15:08 - 000003408 _____ C:\WINDOWS\system32\Tasks\update-S-1-5-21-1533502849-176086691-3893765355-1001
2021-10-21 15:08 - 2021-10-21 15:08 - 000003346 _____ C:\WINDOWS\system32\Tasks\update-sys
2021-10-21 15:08 - 2021-10-21 15:08 - 000000424 _____ C:\Users\mlade\AppData\Local\UserProducts.xml
2021-10-21 15:08 - 2021-10-21 15:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lightshot
2021-10-21 15:08 - 2021-10-21 15:08 - 000000000 ____D C:\Program Files (x86)\Skillbrains
2021-10-21 11:50 - 2021-10-21 11:50 - 000000000 _SHDL C:\Documents and Settings
2021-10-21 11:49 - 2021-11-14 12:03 - 000000000 ____D C:\Intel
2021-10-21 11:49 - 2021-11-04 16:10 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-10-21 11:49 - 2021-10-21 11:49 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2021-10-21 10:10 - 2021-10-21 10:10 - 000000000 ____D C:\WINDOWS\PCHEALTH
2021-10-21 10:10 - 2021-10-21 10:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2021-10-21 10:10 - 2021-10-21 10:10 - 000000000 ____D C:\Program Files (x86)\MSBuild
2021-10-21 10:10 - 2021-10-21 10:10 - 000000000 ____D C:\Program Files (x86)\Microsoft Works
2021-10-21 10:10 - 2021-10-21 10:10 - 000000000 ____D C:\Program Files (x86)\Microsoft Visual Studio
2021-10-21 10:08 - 2021-10-21 10:08 - 000000000 ____D C:\WINDOWS\SHELLNEW
2021-10-21 10:08 - 2021-10-21 10:08 - 000000000 ____D C:\Users\mlade\AppData\Local\Microsoft Help
2021-10-21 10:08 - 2021-10-21 10:08 - 000000000 ____D C:\Program Files\Microsoft Office
2021-10-21 09:55 - 2021-10-21 09:55 - 000000000 ____D C:\Users\mlade\AppData\Roaming\WinRAR
2021-10-21 09:54 - 2021-10-21 09:54 - 000000000 ____D C:\Users\mlade\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2021-10-21 09:54 - 2021-10-21 09:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2021-10-21 09:30 - 2021-11-15 14:02 - 000000000 ____D C:\Users\mlade\AppData\Roaming\discord
2021-10-21 09:30 - 2021-11-15 13:19 - 000000000 ____D C:\Users\mlade\AppData\Local\Discord
2021-10-21 09:30 - 2021-10-21 09:31 - 000002227 _____ C:\Users\mlade\Desktop\Discord.lnk
2021-10-21 09:30 - 2021-10-21 09:30 - 000000000 ____D C:\Users\mlade\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2021-10-21 09:26 - 2021-10-21 09:31 - 000000000 ____D C:\Users\mlade\AppData\Local\SquirrelTemp
2021-10-21 09:26 - 2021-10-21 09:26 - 000002364 _____ C:\Users\mlade\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk
2021-10-21 09:26 - 2021-10-21 09:26 - 000002356 _____ C:\Users\mlade\Desktop\Microsoft Teams.lnk
2021-10-21 09:26 - 2021-10-21 09:26 - 000000000 ____D C:\Users\mlade\AppData\Roaming\Teams
2021-10-21 08:27 - 2021-10-30 21:43 - 000000000 ____D C:\Users\mlade\AppData\Roaming\Blockbench
2021-10-21 08:27 - 2021-10-23 16:16 - 000000000 ____D C:\Users\mlade\AppData\Local\blockbench-updater
2021-10-21 08:05 - 2021-11-16 17:23 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-10-21 08:05 - 2021-11-16 17:23 - 000000000 ____D C:\Program Files (x86)\Google
2021-10-21 08:05 - 2021-10-21 08:10 - 000000000 ____D C:\Users\mlade\AppData\Local\Google
2021-10-21 08:05 - 2021-10-21 08:05 - 000003420 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-10-21 08:05 - 2021-10-21 08:05 - 000003296 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-10-21 08:05 - 2021-10-21 08:05 - 000000000 ____D C:\Program Files\Google
2021-10-20 23:50 - 2021-10-20 23:50 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate
2021-10-20 23:49 - 2021-10-20 23:50 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2021-10-20 23:49 - 2021-10-20 23:49 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2021-10-20 23:47 - 2021-10-20 23:47 - 002371072 _____ C:\WINDOWS\system32\rdpnano.dll
2021-10-20 23:47 - 2021-10-20 23:47 - 002111488 _____ (Digimarc) C:\WINDOWS\SysWOW64\DMRCDecoder.dll
2021-10-20 23:47 - 2021-10-20 23:47 - 001864192 _____ (The ICU Project) C:\WINDOWS\SysWOW64\icu.dll
2021-10-20 23:47 - 2021-10-20 23:47 - 001687040 _____ C:\WINDOWS\system32\libcrypto.dll
2021-10-20 23:47 - 2021-10-20 23:47 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2021-10-20 23:47 - 2021-10-20 23:47 - 000672768 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2021-10-20 23:47 - 2021-10-20 23:47 - 000611960 _____ C:\WINDOWS\SysWOW64\TextShaping.dll
2021-10-20 23:47 - 2021-10-20 23:47 - 000468440 _____ C:\WINDOWS\SysWOW64\WindowManagementAPI.dll
2021-10-20 23:47 - 2021-10-20 23:47 - 000203264 _____ C:\WINDOWS\system32\uwfcfgmgmt.dll
2021-10-20 23:47 - 2021-10-20 23:47 - 000170496 _____ C:\WINDOWS\system32\DeviceUpdateCenterCsp.dll
2021-10-20 23:47 - 2021-10-20 23:47 - 000158208 _____ C:\WINDOWS\system32\uwfcsp.dll
2021-10-20 23:47 - 2021-10-20 23:47 - 000040960 _____ C:\WINDOWS\system32\uwfservicingapi.dll
2021-10-20 23:46 - 2021-10-20 23:46 - 002295296 _____ (Digimarc) C:\WINDOWS\system32\DMRCDecoder.dll
2021-10-20 23:46 - 2021-10-20 23:46 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2021-10-20 23:46 - 2021-10-20 23:46 - 002260480 _____ (The ICU Project) C:\WINDOWS\system32\icu.dll
2021-10-20 23:46 - 2021-10-20 23:46 - 001164288 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-10-20 23:46 - 2021-10-20 23:46 - 000706536 _____ C:\WINDOWS\system32\TextShaping.dll
2021-10-20 23:46 - 2021-10-20 23:46 - 000657464 _____ C:\WINDOWS\system32\WindowManagementAPI.dll
2021-10-20 23:46 - 2021-10-20 23:46 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2021-10-20 23:46 - 2021-10-20 23:46 - 000287232 _____ C:\WINDOWS\system32\CoreMas.dll
2021-10-20 23:46 - 2021-10-20 23:46 - 000162816 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-10-20 23:46 - 2021-10-20 23:46 - 000098304 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2021-10-20 23:46 - 2021-10-20 23:46 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe
2021-10-20 23:04 - 2021-10-20 23:04 - 000000000 ____D C:\Users\mlade\AppData\Local\OneDrive
2021-10-20 22:57 - 2021-10-20 22:57 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2021-10-20 22:56 - 2021-11-14 12:11 - 000795738 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-10-20 22:55 - 2021-10-20 22:55 - 000000020 ___SH C:\Users\mlade\ntuser.ini
2021-10-20 22:53 - 2021-11-14 12:03 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-10-20 22:53 - 2021-11-08 19:29 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1533502849-176086691-3893765355-1001
2021-10-20 22:53 - 2021-10-20 22:53 - 000007623 _____ C:\WINDOWS\diagwrn.xml
2021-10-20 22:53 - 2021-10-20 22:53 - 000007623 _____ C:\WINDOWS\diagerr.xml
2021-10-20 22:53 - 2021-10-20 22:53 - 000003408 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-10-20 22:53 - 2021-10-20 22:53 - 000003214 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d7c5f43c157a60
2021-10-20 22:53 - 2021-10-20 22:53 - 000003186 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-10-20 22:53 - 2021-10-20 22:53 - 000000000 ____D C:\WINDOWS\system32\Tasks\Intel
2021-10-20 22:51 - 2021-11-15 13:17 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-10-20 22:51 - 2021-11-13 18:28 - 000353752 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-10-20 22:51 - 2021-11-08 19:29 - 000002424 _____ C:\Users\mlade\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-10-20 22:51 - 2021-10-26 17:19 - 000000000 ____D C:\Users\mlade
2021-10-20 22:19 - 2021-11-06 18:14 - 000000000 ___DC C:\WINDOWS\Panther
2021-10-20 22:18 - 2021-10-20 22:19 - 000000036 _____ C:\WINDOWS\progress.ini
2021-10-20 22:13 - 2021-10-28 17:14 - 000000000 ____D C:\Users\mlade\AppData\Local\D3DSCache
2021-10-20 22:11 - 2021-10-20 22:53 - 000000000 ___HD C:\$GetCurrent
2021-10-20 22:08 - 2021-03-22 11:18 - 006433280 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2021-10-20 22:08 - 2021-03-22 11:07 - 045159558 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2021-10-20 22:08 - 2013-05-31 23:57 - 000249524 _____ C:\WINDOWS\system32\Drivers\RtPCEE4.DAT
2021-10-20 22:08 - 2010-09-23 19:21 - 000039672 _____ C:\WINDOWS\system32\Drivers\RtPCEE3.DAT
2021-10-20 22:08 - 2010-03-22 15:21 - 000247560 _____ C:\WINDOWS\system32\Drivers\RTConvEQ.dat
2021-10-20 22:08 - 2009-12-11 15:59 - 000059936 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\AzMixerSel.exe
2021-10-20 21:57 - 2021-11-16 17:22 - 000000000 __SHD C:\Users\mlade\IntelGraphicsProfiles
2021-10-20 21:57 - 2021-10-20 22:51 - 000000000 ____D C:\WINDOWS\Firmware
2021-10-20 21:57 - 2021-10-20 22:08 - 000000000 ____D C:\Users\mlade\AppData\Local\Intel
2021-10-20 21:57 - 2021-10-20 21:57 - 000000000 ____D C:\Users\mlade\AppData\LocalLow\Intel
2021-10-20 21:56 - 2021-08-27 05:15 - 024605184 _____ (Intel Corporation) C:\WINDOWS\system32\libmfxhw64.dll
2021-10-20 21:56 - 2021-08-27 05:15 - 023248440 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\libmfxhw32.dll
2021-10-20 21:56 - 2021-08-27 05:15 - 000456024 _____ C:\WINDOWS\system32\ze_loader.dll
2021-10-20 21:56 - 2021-08-27 05:15 - 000145232 _____ C:\WINDOWS\system32\ze_validation_layer.dll
2021-10-20 21:56 - 2021-08-27 05:14 - 026669392 _____ (Intel Corporation) C:\WINDOWS\system32\mfxplugin64_hw.dll
2021-10-20 21:56 - 2021-08-27 05:14 - 013513040 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\mfxplugin32_hw.dll
2021-10-20 21:56 - 2021-08-27 05:14 - 001754392 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2021-10-20 21:56 - 2021-08-27 05:14 - 001754392 _____ C:\WINDOWS\system32\vulkaninfo.exe
2021-10-20 21:56 - 2021-08-27 05:14 - 001360144 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2021-10-20 21:56 - 2021-08-27 05:14 - 001360144 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2021-10-20 21:56 - 2021-08-27 05:14 - 001057912 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2021-10-20 21:56 - 2021-08-27 05:14 - 001057912 _____ C:\WINDOWS\system32\vulkan-1.dll
2021-10-20 21:56 - 2021-08-27 05:14 - 000921208 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2021-10-20 21:56 - 2021-08-27 05:14 - 000921208 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2021-10-20 21:56 - 2021-08-27 05:14 - 000171504 _____ (Intel Corporation) C:\WINDOWS\system32\intel_gfx_api-x64.dll
2021-10-20 21:56 - 2021-08-27 05:14 - 000146776 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\intel_gfx_api-x86.dll
2021-10-20 21:56 - 2021-08-27 05:14 - 000128344 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2021-10-20 21:56 - 2021-08-27 05:14 - 000112984 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2021-10-20 21:50 - 2021-11-14 12:03 - 000008192 ___SH C:\DumpStack.log.tmp
2021-10-20 21:37 - 2021-10-20 21:57 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-10-20 21:35 - 2021-11-13 14:59 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-10-20 21:35 - 2021-10-20 21:55 - 000000000 ____D C:\Program Files\ruxim
2021-10-20 21:23 - 2021-10-20 21:23 - 000000000 ____H C:\$WINRE_BACKUP_PARTITION.MARKER
2021-10-20 21:17 - 2021-10-20 21:17 - 000000000 ____D C:\Users\mlade\AppData\Local\Comms
2021-10-20 21:12 - 2021-10-25 16:25 - 000000000 ____D C:\ProgramData\Packages
2021-10-20 20:58 - 2021-10-20 20:58 - 000000000 ___HD C:\OneDriveTemp
2021-10-20 20:57 - 2021-11-14 12:04 - 000000000 ____D C:\Users\mlade\AppData\Local\PlaceholderTileLogoFolder
2021-10-20 20:57 - 2021-10-20 23:04 - 000000000 ___RD C:\Users\mlade\OneDrive
2021-10-20 20:56 - 2021-10-20 20:56 - 000000000 ____D C:\Users\mlade\AppData\Local\Publishers
2021-10-20 20:55 - 2021-10-30 19:43 - 000000000 ____D C:\Users\mlade\AppData\Local\Packages
2021-10-20 20:55 - 2021-10-26 17:46 - 000000000 ____D C:\Users\mlade\AppData\Roaming\Adobe
2021-10-20 20:55 - 2021-10-21 15:09 - 000000000 __RHD C:\Users\Public\AccountPictures
2021-10-20 20:55 - 2021-10-21 09:28 - 000000000 ____D C:\Users\mlade\AppData\Local\ConnectedDevicesPlatform
2021-10-20 20:55 - 2021-10-20 22:55 - 000000000 ___RD C:\Users\mlade\3D Objects
2021-10-20 20:55 - 2021-10-20 20:55 - 000000000 ____D C:\Users\mlade\AppData\Local\VirtualStore
2021-10-20 20:50 - 2021-11-14 12:27 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-10-20 20:50 - 2021-10-20 20:50 - 000000000 ____D C:\WINDOWS\CSC

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-11-16 17:22 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-11-15 08:51 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2021-11-14 12:27 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-11-14 12:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-11-14 12:04 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-11-14 12:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-11-13 18:28 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-11-13 18:27 - 2019-12-07 10:54 - 000000000 ___SD C:\WINDOWS\system32\AppV
2021-11-13 18:27 - 2019-12-07 10:54 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-11-13 18:27 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2021-11-13 18:27 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-11-13 18:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-11-13 18:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-11-13 18:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-11-13 18:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-11-13 18:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-11-13 18:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-11-13 18:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2021-11-13 18:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-11-13 18:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-11-13 18:27 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing
2021-11-10 19:36 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-10-26 14:16 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2021-10-23 15:37 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\appcompat
2021-10-21 10:08 - 2019-03-19 05:49 - 000000167 _____ C:\WINDOWS\win.ini
2021-10-20 23:50 - 2019-12-07 10:14 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2021-10-20 23:50 - 2019-12-07 10:14 - 000000000 __RHD C:\Users\Public\Libraries
2021-10-20 23:50 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2021-10-20 23:50 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2021-10-20 23:50 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\spool
2021-10-20 23:50 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\USOPrivate
2021-10-20 23:50 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\MsDtc
2021-10-20 23:49 - 2019-12-07 10:51 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2021-10-20 23:49 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2021-10-20 23:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2021-10-20 23:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2021-10-20 23:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2021-10-20 23:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2021-10-20 23:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2021-10-20 23:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2021-10-20 23:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2021-10-20 23:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2021-10-20 23:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2021-10-20 23:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2021-10-20 23:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2021-10-20 23:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-10-20 23:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\DiagTrack
2021-10-20 23:48 - 2019-12-07 10:54 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2021-10-20 23:43 - 2019-12-07 10:18 - 000000000 ____D C:\WINDOWS\Setup
2021-10-20 23:26 - 2019-12-07 10:52 - 000000000 ____D C:\WINDOWS\OCR
2021-10-20 23:25 - 2019-12-07 10:54 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2021-10-20 23:25 - 2019-12-07 10:54 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2021-10-20 23:25 - 2019-12-07 10:50 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
2021-10-20 23:25 - 2019-12-07 10:50 - 000000000 ____D C:\WINDOWS\system32\WCN
2021-10-20 23:25 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2021-10-20 23:25 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\F12
2021-10-20 23:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-10-20 23:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-10-20 23:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2021-10-20 23:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2021-10-20 23:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\IME
2021-10-20 23:25 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender
2021-10-20 23:25 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\System
2021-10-20 23:25 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2021-10-20 23:12 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-10-20 22:53 - 2019-12-07 10:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2021-10-20 22:52 - 2019-12-07 10:14 - 000000000 __RSD C:\WINDOWS\Media
2021-10-20 22:51 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-10-20 22:49 - 2019-10-07 03:52 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies

==================== Files in the root of some directories ========

2021-10-21 15:08 - 2021-10-21 15:08 - 000000003 _____ () C:\Users\mlade\AppData\Local\updater.log
2021-10-21 15:08 - 2021-10-21 15:08 - 000000424 _____ () C:\Users\mlade\AppData\Local\UserProducts.xml

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================


[Link mogu videti samo ulogovani korisnici]

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Preuzmi AdwCleaner i sačuvaj ga na Desktop
Dvoklikom pokreni program.
U EULA prozoru klikni na I agree.
U Tools odaberi Options.
U dijaloškom okviru koji se pojavi isključi Reset Winsock settings ako je uključen.
Klikni na dugme Scan i sačekaj da se završi skeniranje.
Ako ti javi da postoji novija verzija, postaraj se da je preuzmeš.

Klikni na dugme Clean i pričekaj da program završi.
Program će zatvoriti sve aktivne programe i izbaciti prozor sa tim upozorenjem. Klikni OK kao potvrdu.
Pojavit će se poruka da računar treba restartovati. Klikni OK
Računar će se restartovati, a potom otvoriti Notepad (C:\Adwcleaner\AdwCleaner[S00].txt) sa izveštajem.
Sačuvaj taj izveštaj na Desktop i okači ga uz poruku koristeći opciju "Prikači fajl"