Možda tražite i:
autokms.exe?

MyCity » Ambulanta -> Arhiva Ambulante » HackTool:Win32/AutoKMS

HackTool:Win32/AutoKMS

Napisano na dan: 29.1.2018

HackTool:Win32/AutoKMS

Odgovori

TheSpringEagle Poslao: 29 Jan 2018 22:37 Idi na vrh
offline TheSpringEagle AMF student Anunnaki Pridružio: 20 Apr 2012 Poruke: 1645	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Zdravo, imamo problem sa laptopom usporen je pali se sporo to mi se desava zadnjih par dana prije toga sve je normalno radio.Windio sam u Windows Defenderu virus HackTool:Win32/AutoKMS.I jos samo nesto kad udjem u computer nemam ikonica od local disca c i d, kao sto je na slici Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 27.01.2018 Ran by Milutinac (administrator) on DESKTOP-BD1OKPJ (29-01-2018 22:24:20) Running from C:\Users\Milutinac\Desktop Loaded Profiles: Milutinac (Available Profiles: Milutinac) Platform: Windows 10 Pro Version 1709 16299.125 (X64) Language: English (United States) Internet Explorer Version 11 (Default browser: Chrome) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-t.....scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (Intel Corporation) C:\Windows\System32\igfxCUIService.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe (Autodesk Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe (Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe (Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe () C:\Program Files (x86)\Intel Driver Update Utility\SUR\SurSvc.exe (Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe (Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.12.17007.18011-0\MsMpEng.exe (Microsoft Corporation) C:\Windows\System32\wlanext.exe (Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Intel Corporation) C:\Windows\System32\igfxEM.exe (Intel Corporation) C:\Windows\System32\igfxHK.exe () C:\Windows\System32\igfxTray.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe () C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe (Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.12.17007.18011-0\NisSrv.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler64.exe () C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Registry (Whitelisted) =========================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [630168 2017-09-29] (Microsoft Corporation) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8911872 2016-10-14] (Realtek Semiconductor) HKLM-x32\...\Run: [VirtualCloneDrive] => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [88984 2013-03-10] (Elaborate Bytes AG) HKLM-x32\...\Run: [Autodesk Desktop App] => C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe [704424 2017-06-15] (Autodesk, Inc.) HKU\S-1-5-19\Control Panel\Desktop\\SCRNSAVE.EXE -> HKU\S-1-5-20\Control Panel\Desktop\\SCRNSAVE.EXE -> HKU\S-1-5-21-131887269-2774481433-2147826050-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [53123712 2016-05-17] (Skype Technologies S.A.) HKU\S-1-5-21-131887269-2774481433-2147826050-1001\...\Run: [BingSvc] => C:\Users\Milutinac\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-11-05] (© 2015 Microsoft Corporation) HKU\S-1-5-21-131887269-2774481433-2147826050-1001\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe [1053000 2018-01-12] () HKU\S-1-5-21-131887269-2774481433-2147826050-1001\...\Run: [Akamai NetSession Interface] => C:\Users\Milutinac\AppData\Local\Akamai\netsession_win.exe [4490200 2017-09-08] (Akamai Technologies, Inc.) HKU\S-1-5-21-131887269-2774481433-2147826050-1001\...\Policies\Explorer: [] HKU\S-1-5-21-131887269-2774481433-2147826050-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE -> ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.1.254 Tcpip\..\Interfaces\{93cbdad6-27ec-467f-bd88-4ffb5f0f5afa}: [DhcpNameServer] 192.168.1.254 Tcpip\..\Interfaces\{fa489374-6741-4728-bbb1-27be01f0e4cf}: [DhcpNameServer] 192.168.0.1 Internet Explorer: ================== HKU\S-1-5-21-131887269-2774481433-2147826050-1001\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com/ie SearchScopes: HKU\S-1-5-21-131887269-2774481433-2147826050-1001 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?q={sear SearchScopes: HKU\S-1-5-21-131887269-2774481433-2147826050-1001 -> {E969F78B-77A9-444D-9D02-EE47C5AC1336} URL = hxxp://websearch.ask.com/redirect?client=ie&tb=NRO&o=101913&src=kw&q={searchTerms}&locale=en_US&apn_ptnrs=^EW&apn_dtid=^YYYYYY^YY^ME&apn_uid=4B92BF90-496F-4724-8EDC-90943D2918C7&apn_sauid=68DD31A1-C37D-4FD9-934C-03AB5175331F BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2010-01-21] (Microsoft Corporation) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-01-16] (Microsoft Corporation) BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2010-01-21] (Microsoft Corporation) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-01-16] (Microsoft Corporation) FireFox: ======== FF DefaultProfile: 3e4grv65.default-1502571770511 FF ProfilePath: C:\Users\Milutinac\AppData\Roaming\Mozilla\Firefox\Profiles\3e4grv65.default-1502571770511 [2017-09-16] FF HKU\S-1-5-21-131887269-2774481433-2147826050-1001\...\Firefox\Extensions: [acewebextension_unlisted@acestream.org] - C:\Users\Milutinac\AppData\Roaming\ACEStream\extensions\awe\firefox\acewebextension_unlisted.xpi => not found FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\Program Files\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-08-24] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-08-24] (Intel Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\Program Files (x86)\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\MICROS~1\Office14\NPSPWRAP.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-16] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-16] (Google Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2017-11-01] (Adobe Systems Inc.) Chrome: ======= CHR HomePage: Default -> msn.com CHR StartupUrls: Default -> "hxxp://www.google.co.uk/" CHR Profile: C:\Users\Milutinac\AppData\Local\Google\Chrome\User Data\Default [2018-01-29] CHR Extension: (Google Drive) - C:\Users\Milutinac\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-02-01] CHR Extension: (YouTube) - C:\Users\Milutinac\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-02-01] CHR Extension: (Ace Script) - C:\Users\Milutinac\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjbepbhonbojpoaenhckjocchgfiaofo [2017-12-02] CHR Extension: (Chrome Web Store Payments) - C:\Users\Milutinac\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-22] CHR Extension: (Gmail) - C:\Users\Milutinac\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-02-01] CHR Extension: (Chrome Media Router) - C:\Users\Milutinac\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-12-09] CHR HKU\S-1-5-21-131887269-2774481433-2147826050-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fkkcgfbgohboipdhliafmacjnhjbhmim] - hxxps://clients2.google.com/service/update2/crx CHR HKU\S-1-5-21-131887269-2774481433-2147826050-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mjbepbhonbojpoaenhckjocchgfiaofo] - hxxps://clients2.google.com/service/update2/crx ==================== Services (Whitelisted) ==================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 AdAppMgrSvc; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [1353208 2017-06-15] (Autodesk Inc.) R2 esifsvc; C:\WINDOWS\SysWOW64\esif_uf.exe [1394360 2016-05-11] (Intel Corporation) R2 ESRV_SVC_WILLAMETTE; C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe [416408 2016-03-09] () R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [373720 2017-04-28] (Intel Corporation) S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel(R) Corporation) R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-07-06] (Intel Corporation) [File not signed] S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-07-06] () [File not signed] R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [207648 2015-12-03] (Intel Corporation) S3 MyWiFiDHCPDNS; c:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [268192 2015-10-28] () S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [1452360 2018-01-12] (Overwolf LTD) R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [326656 2016-10-14] (Realtek Semiconductor) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [4329952 2017-12-14] (Microsoft Corporation) R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [278616 2017-08-18] (Synaptics Incorporated) R2 SystemUsageReportSvc_WILLAMETTE; C:\Program Files (x86)\Intel Driver Update Utility\SUR\SurSvc.exe [118424 2016-03-09] () S3 USER_ESRV_SVC_WILLAMETTE; C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe [416408 2016-03-09] () R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18011-0\NisSrv.exe [356168 2018-01-19] (Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18011-0\MsMpEng.exe [105792 2018-01-19] (Microsoft Corporation) R2 ZeroConfigService; c:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3831712 2015-10-28] (Intel® Corporation) ===================== Drivers (Whitelisted) ====================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R3 bcbtums; C:\WINDOWS\system32\DRIVERS\bcbtums.sys [177432 2015-12-01] (Broadcom Corporation.) R3 BCMWL63A; C:\WINDOWS\system32\DRIVERS\bcmwl63a.sys [11794376 2017-07-13] (Broadcom Corp) S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd.) R3 dptf_cpu; C:\WINDOWS\System32\drivers\dptf_cpu.sys [53752 2016-05-11] (Intel Corporation) R3 dptf_pch; C:\WINDOWS\System32\drivers\dptf_pch.sys [50696 2016-05-11] (Intel Corporation) R3 esif_lf; C:\WINDOWS\system32\DRIVERS\esif_lf.sys [261624 2016-05-11] (Intel Corporation) R1 MpKsl346d1ec1; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{86D2B41A-F6AF-45BE-BB7F-E229695F70E3}\MpKsl346d1ec1.sys [58120 2018-01-26] (Microsoft Corporation) R1 MpKsl3634fb05; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{1526FFC1-B0D3-441A-A289-06BD85284772}\MpKsl3634fb05.sys [58120 2018-01-25] (Microsoft Corporation) R1 MpKsl4c35f7d3; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{FEAD7797-F995-45C3-81D6-C790F6BF9FEA}\MpKsl4c35f7d3.sys [58120 2018-01-29] (Microsoft Corporation) R1 MpKsl6885a5e6; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{CA4D86CA-0C5C-454D-8CF7-9C0B15440C2A}\MpKsl6885a5e6.sys [58120 2018-01-24] (Microsoft Corporation) S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [23040 2016-03-28] (Apple Inc.) [File not signed] S3 Revoflt; C:\Windows\SysWOW64\DRIVERS\revoflt.sys [40240 2016-12-21] (VS Revo Group) R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [895256 2015-06-16] (Realtek ) R3 semav6msr64; C:\Windows\system32\drivers\semav6msr64.sys [21984 2016-03-09] () R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [55384 2017-08-18] (Synaptics Incorporated) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd.) S3 ssudserd; C:\WINDOWS\system32\DRIVERS\ssudserd.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.) S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2016-03-28] (Apple, Inc.) [File not signed] S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [46072 2018-01-19] (Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [288848 2018-01-19] (Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [129616 2018-01-19] (Microsoft Corporation) R3 WirelessButtonDriver64; C:\WINDOWS\system32\DRIVERS\WirelessButtonDriver64.sys [30392 2017-04-25] (HP) ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One Month Created files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2018-01-29 22:24 - 2018-01-29 22:25 - 000015794 _____ C:\Users\Milutinac\Desktop\FRST.txt 2018-01-29 22:24 - 2018-01-29 22:24 - 000000000 ____D C:\FRST 2018-01-29 22:23 - 2018-01-29 22:23 - 002393088 _____ (Farbar) C:\Users\Milutinac\Desktop\FRST64.exe 2018-01-29 21:49 - 2018-01-29 22:09 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2018-01-23 16:09 - 2018-01-23 16:09 - 000000000 ____D C:\Users\Milutinac\Tracing 2018-01-23 15:53 - 2018-01-23 15:53 - 000000000 ____D C:\Users\Milutinac\Downloads\Mother!.2017.HDRip.XviD.AC3-EVO 2018-01-19 16:08 - 2018-01-19 16:11 - 1450955868 _____ C:\Users\Milutinac\Downloads\261956-baby.driver.2017.brrip.lat.zip 2018-01-19 12:09 - 2018-01-19 12:09 - 000018992 _____ C:\Users\Milutinac\Downloads\225244-forsaken.2015.hdrip.xvid.ac3evo (2).zip 2018-01-19 12:08 - 2018-01-19 12:08 - 000018992 _____ C:\Users\Milutinac\Downloads\225244-forsaken.2015.hdrip.xvid.ac3evo (1).zip 2018-01-19 12:02 - 2018-01-19 12:06 - 689603286 _____ C:\Users\Milutinac\Downloads\225244-forsaken.2015.hdrip.xvid.ac3evo.zip 2018-01-12 13:55 - 2018-01-12 18:15 - 3359731418 ____R C:\Users\Milutinac\Downloads\Euro.Truck.Simulator.2.v1.27.1.7s.Incl.ALL.DLC.zip 2018-01-12 13:48 - 2018-01-13 00:45 - 000000000 ____D C:\Users\Milutinac\AppData\Local\PlaceholderTileLogoFolder 2018-01-12 08:42 - 2018-01-12 08:42 - 000000000 ___HD C:\Users\Milutinac\MicrosoftEdgeBackups 2018-01-11 11:51 - 2018-01-11 11:51 - 000001295 _____ C:\Users\Public\Desktop\Call Of Duty World At War.lnk 2018-01-11 11:51 - 2018-01-11 11:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mr DJ 2018-01-10 01:30 - 2018-01-10 01:30 - 004448768 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerInstaller.exe 2018-01-07 22:38 - 2018-01-08 21:26 - 000000000 ____D C:\Users\Milutinac\Desktop\New folder (2) 2018-01-07 22:28 - 2018-01-07 22:40 - 000000000 ____D C:\Users\Milutinac\Downloads\New folder (4) 2018-01-05 15:46 - 2018-01-11 11:37 - 000000000 ____D C:\WINDOWS\SysWOW64\directx 2018-01-05 15:46 - 2018-01-08 16:48 - 000000000 ____D C:\Program Files (x86)\Mr DJ 2018-01-02 19:48 - 2018-01-02 19:48 - 000448512 _____ (OldTimer Tools) C:\Users\Milutinac\Desktop\TFC.exe 2018-01-02 19:27 - 2018-01-02 19:27 - 000000000 ____D C:\ProgramData\VS Revo Group 2018-01-02 19:27 - 2018-01-02 19:27 - 000000000 ____D C:\Program Files\Revo Uninstaller Pro 2018-01-02 18:11 - 2018-01-02 18:11 - 000001307 _____ C:\Users\Milutinac\Desktop\Documents.lnk 2018-01-02 16:20 - 2018-01-02 16:20 - 000000000 ____D C:\Users\Milutinac\AppData\Roaming\Hard Disk Sentinel 2018-01-02 15:18 - 2018-01-02 16:45 - 000000000 ____D C:\Program Files (x86)\Hard Disk Sentinel 2018-01-02 01:47 - 2018-01-02 01:47 - 000000072 ___SH C:\bootTel.dat 2018-01-02 01:47 - 2018-01-02 01:47 - 000000000 __SHD C:\found.000 2018-01-02 01:37 - 2018-01-02 01:37 - 000000564 _____ C:\WINDOWS\SysWOW64\nativelog.txt 2018-01-01 18:10 - 2018-01-01 18:10 - 000000000 ____D C:\WINDOWS\pss 2017-12-30 11:19 - 2017-12-30 11:19 - 000000000 ____D C:\Users\Milutinac\AppData\Local\DBG ==================== One Month Modified files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2018-01-30 06:47 - 2016-05-11 21:57 - 000000000 ___HD C:\WINDOWS\system32\WLANProfiles 2018-01-30 06:37 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\registration 2018-01-29 22:11 - 2017-12-29 03:38 - 000004174 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{2447E1C6-3AC6-4299-B51E-196E14385942} 2018-01-29 22:10 - 2017-09-29 14:44 - 000000000 ____D C:\WINDOWS\INF 2018-01-29 21:58 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\DeliveryOptimization 2018-01-29 21:57 - 2017-09-29 14:46 - 000000000 ___HD C:\Program Files\WindowsApps 2018-01-29 21:57 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\AppReadiness 2018-01-29 21:54 - 2017-12-29 03:38 - 000003808 _____ C:\WINDOWS\System32\Tasks\AutoKMS 2018-01-29 21:49 - 2017-12-29 03:19 - 000000000 ____D C:\Users\Milutinac 2018-01-29 21:49 - 2016-08-24 06:46 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat 2018-01-29 21:49 - 2016-05-11 02:13 - 000000000 __SHD C:\Users\Milutinac\IntelGraphicsProfiles 2018-01-29 21:48 - 2017-12-29 03:38 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2018-01-29 21:48 - 2017-12-29 03:14 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2018-01-28 10:40 - 2017-12-22 10:02 - 000000000 ____D C:\Users\Milutinac\Downloads\New folder (2) 2018-01-28 00:05 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\system32\NDF 2018-01-24 14:59 - 2017-12-29 21:39 - 000000000 ____D C:\Users\Milutinac\Desktop\Marko kure 2018-01-24 13:51 - 2016-05-13 19:39 - 000548000 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe 2018-01-23 20:38 - 2017-09-29 09:45 - 001048576 _____ C:\WINDOWS\system32\config\BBI 2018-01-23 20:09 - 2016-05-21 11:56 - 000000000 ____D C:\Users\Milutinac\AppData\Roaming\Skype 2018-01-22 15:51 - 2016-05-13 19:05 - 000000000 ____D C:\Users\Milutinac\AppData\Roaming\BSplayer PRO 2018-01-15 17:05 - 2017-01-12 21:04 - 000000000 ____D C:\Program Files (x86)\Overwolf 2018-01-13 00:45 - 2017-12-29 03:20 - 000000000 ____D C:\Users\Milutinac\AppData\Local\Packages 2018-01-12 20:57 - 2016-05-11 02:17 - 000000000 ____D C:\Users\Milutinac\AppData\Roaming\uTorrent 2018-01-10 01:30 - 2017-12-29 03:38 - 000004560 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier 2018-01-10 01:30 - 2017-12-29 03:38 - 000004386 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater 2018-01-10 01:30 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed 2018-01-10 01:30 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\system32\Macromed 2018-01-09 20:58 - 2017-09-29 14:37 - 000000000 ____D C:\WINDOWS\CbsTemp 2018-01-07 17:13 - 2017-12-29 03:35 - 000949408 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2018-01-05 18:46 - 2017-02-01 15:12 - 000002272 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2018-01-02 19:29 - 2016-05-13 19:05 - 000001222 _____ C:\ProgramData\Microsoft\Windows\Start Menu\BS.Player PRO.lnk 2018-01-02 19:27 - 2016-05-13 19:07 - 000000934 _____ C:\Users\Public\Desktop\Revo Uninstaller Pro.lnk 2018-01-02 18:27 - 2017-05-04 07:26 - 000000000 ____D C:\Users\Milutinac\Downloads\New folder (3) 2018-01-02 18:26 - 2017-03-19 11:59 - 000000000 ____D C:\Users\Milutinac\Downloads\New folder 2018-01-02 18:22 - 2017-08-22 11:42 - 000000000 ____D C:\Users\Milutinac\Documents\Life (2017) [1080p] [YTS.AG] 2018-01-02 18:17 - 2016-05-15 15:20 - 000000000 ____D C:\Users\Milutinac\Desktop\Radovi za skolu 2018-01-02 18:16 - 2016-05-15 17:49 - 000000000 ____D C:\Users\Milutinac\Desktop\Muzika 2018-01-02 16:35 - 2016-09-24 08:05 - 000000000 ____D C:\Program Files\Common Files\Apple 2018-01-02 16:33 - 2016-09-24 08:04 - 000000000 ____D C:\ProgramData\Apple 2018-01-02 16:30 - 2016-09-24 08:09 - 000000000 ____D C:\Users\Milutinac\AppData\Roaming\Apple Computer 2018-01-02 16:30 - 2016-09-24 08:07 - 000000000 ____D C:\ProgramData\Apple Computer 2018-01-02 16:24 - 2017-10-13 18:02 - 000000000 ____D C:\Program Files (x86)\Autodesk 2018-01-02 16:24 - 2017-10-13 09:35 - 000000000 ____D C:\Users\Milutinac\AppData\Roaming\Autodesk 2018-01-02 16:24 - 2017-10-13 09:35 - 000000000 ____D C:\ProgramData\Autodesk 2018-01-02 16:15 - 2017-10-13 17:53 - 000000000 ____D C:\Program Files\Autodesk 2018-01-02 16:15 - 2017-10-13 17:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autodesk 2018-01-02 01:49 - 2017-12-29 03:14 - 000482840 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2018-01-02 01:32 - 2016-10-29 21:42 - 000000000 ____D C:\Program Files (x86)\Google 2018-01-02 01:32 - 2016-05-11 02:08 - 000000000 ____D C:\Users\Milutinac\AppData\Local\Google 2018-01-02 01:24 - 2017-12-02 02:38 - 000000000 ____D C:\Users\Milutinac\AppData\Roaming\.ACEStream 2017-12-30 10:43 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\appcompat Some files in TEMP: ==================== 2018-01-11 11:36 - 2018-01-11 11:36 - 007850088 _____ (Microsoft Corporation) C:\Users\Milutinac\AppData\Local\Temp\BingBarSetup-Partner.exe ==================== Bamital & volsnap ====================== (There is no automatic fix for files that do not pass verification.) C:\WINDOWS\system32\winlogon.exe => File is digitally signed C:\WINDOWS\system32\wininit.exe => File is digitally signed C:\WINDOWS\explorer.exe => File is digitally signed C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed C:\WINDOWS\system32\svchost.exe => File is digitally signed C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed C:\WINDOWS\system32\services.exe => File is digitally signed C:\WINDOWS\system32\User32.dll => File is digitally signed C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed C:\WINDOWS\system32\userinit.exe => File is digitally signed C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed C:\WINDOWS\system32\rpcss.dll => File is digitally signed C:\WINDOWS\system32\dnsapi.dll => File is digitally signed C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2017-12-29 03:14 ==================== End of FRST.txt ============================ https://www.mycity.rs/must-login.png Unaprijed Hvala

Profil

Sass Drake Poslao: 29 Jan 2018 22:47 Idi na vrh
offline Sass Drake Anti Malware Fighter Rank 2 Pridružio: 26 Avg 2010 Poruke: 10622 Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building	1Ovo se svidja korisniku: TheSpringEagle Registruj se da bi pohvalio/la poruku! Što se malwarea tiče čist si, a spoemnuta detekcija je za Win&Office aktivator. Za ikonice problem pravi ili tema za WIn 10 ili Virtual Clone Drive po mo mišljenju. • Sledeća procedura će implementirati završno čišćenje. Preuzmi "Xplode"-ov DelFix alat i snimi ga na Desktop. Dvoklikom pokreni alat i štikliraj kućice ispred sledećih opcija; Remove disinfection tools Create registry backup Purge System Restore Klikni na dugme Run i pričekaj trenutak dok alat ne završi svoj rad. Od ovog trenutka, svi korišćeni alati u ovoj temi bi trebali biti obrisani. Alat će takođe formirati izveštaj za tebe. (C:\DelFix.txt) Alat će snimiti i zdravo stanje registy-ja i napraviti backup koristeci integrisan program "ERUNT" u %windir%\ERUNT\DelFix Alat briše stare system restore tačke i pravi novu, svežu tačku nakon čišćenja.

Profil

TheSpringEagle Poslao: 29 Jan 2018 22:56 Idi na vrh
offline TheSpringEagle AMF student Anunnaki Pridružio: 20 Apr 2012 Poruke: 1645	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Odradjeno, za ikonice cu se nekako snaci. Hvala

Profil

MyCity » Ambulanta -> Arhiva Ambulante » HackTool:Win32/AutoKMS

Ko je trenutno na forumu

Ukupno su 1148 korisnika na forumu :: 36 registrovanih, 9 sakrivenih i 1103 gosta :: [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:: Korisnici trenutno na forumu: 8u47, 9k38, A.R.Chafee.Jr., AK - 230, Andrija357, Apok, babaroga, bojanM84, Buzdovan, darios, Denaya, Dimitrise93, djboj, doktor123, flash12, ikan, Karla, kikisp, Krvava Devetka, ksyyaj, kunktator, kybonacci, Marko Marković, mercedesamg, Mercury, milenko crazy north, Milometer, nemkea71, procesor, robertino, Sale.S, Srle993, Stoilkovic, Tvrtko I, virked, W123

Svaki korisnik ovog sajta je odgovoran za sadržaj svoje poruke koju objavi na sajtu. Sajt se odriče svake odgovornosti za sadržaj tih poruka.
Postavljanjem vaše poruke ili vašeg autorskog dela na ovaj sajt, saglasni ste da ovaj sajt postaje distributer vašeg dela, i odričete se mogućnosti njegovog povlačenja ili brisanja, bez saglasnosti uprave sajta.
Distribucija sadržaja sa ovog sajta je dozvoljena samo u nekomercijalne svrhe, uz obaveznu napomenu da je sadržaj preuzet sa ovog sajta, i uz obavezno navođenje adrese MyCity sajta. Za sve ostale vidove distribucije obavezni ste da prethodno zatražite odobrenje od vlasnika MyCity sajta.
MyCity pokrenuo, administrira i razvija Predrag Damnjanović, a o uređenju sajta se brine MyCity Tim.
Ukoliko želite da nas kontaktirate kliknite ovde.
Naši sajtovi:
Vesti, Vojni forum, Zaštita od virusa, TekstPesme.rs

This content is licensed under a Creative Commons License.
Based on phpBB 2, translated by Simke, designed by