Provjera

1

Provjera

offline
  • Anunnaki
  • Pridružio: 20 Apr 2012
  • Poruke: 1645

Zdravo mail.ru mi se pojavio toolbar kad sam nesto skidao ja sam uklonio koliko sam mogao ali ponekad mi se sam otvori google chrome i kad hocu da udjem u neku stranicu iskoci mi reklama.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 08-05-2017
Ran by Fox (administrator) on DESKTOP-C5N35CO (13-05-2017 02:14:40)
Running from C:\Users\Fox\Desktop
Loaded Profiles: Fox (Available Profiles: Fox)
Platform: Windows 10 Pro Version 1703 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-t.....scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Ralink Technology, Corp.) C:\Program Files (x86)\TP-LINK\Common\RaRegistry.exe
(Ralink Technology, Corp.) C:\Program Files (x86)\TP-LINK\Common\RaRegistry64.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.15.597.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Electronic Arts) C:\Program Files (x86)\Origin\Origin.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
() C:\Program Files (x86)\Origin\QtWebEngineProcess.exe
() C:\Program Files (x86)\Origin\QtWebEngineProcess.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\bcastdvr.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [VirtualCloneDrive] => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [88984 2013-03-10] (Elaborate Bytes AG)
HKU\S-1-5-21-2678727347-3077865498-453496965-1001\...\Run: [Gaijin.Net Agent] => C:\Users\Fox\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe [2012616 2017-05-05] (Gaijin Entertainment)
HKU\S-1-5-21-2678727347-3077865498-453496965-1001\...\Run: [okfifwpquv] => explorer "hxxp://tetrado.ru/?utm_source=uoua03&utm_content=ae2b9d8e2f3a3bfac9cb8d4e494de36a&utm_term=66D9ADAED5BF8B13522F37D4B46539A7&utm_d=20170512" <===== ATTENTION
IFEO\SppExtComObj.exe: [Debugger] SppExtComObjPatcher.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AnyDesk.lnk [2017-04-12]
ShortcutTarget: AnyDesk.lnk -> C:\Program Files (x86)\AnyDesk\AnyDesk.exe (No File)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TP-LINK Wireless Utility.lnk [2017-04-08]
ShortcutTarget: TP-LINK Wireless Utility.lnk -> C:\Program Files (x86)\TP-LINK\Common\TWCU.exe (TP-LINK TECHNOLOGIES CO., LTD. )
GroupPolicy: Restriction <======= ATTENTION
GroupPolicy\User: Restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{ee870d53-b527-48da-8d98-37b94af573aa}: [DhcpNameServer] 192.168.1.254

Internet Explorer:
==================
HKU\S-1-5-21-2678727347-3077865498-453496965-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://go.microsoft.com/fwlink/p/?LinkId=619797&pc=UE03&ocid=UE03DHP
SearchScopes: HKU\S-1-5-21-2678727347-3077865498-453496965-1001 -> DefaultScope {A06ED961-D98F-4CF9-A89B-80AB11DB149C} URL = hxxp://go-search.ru/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-2678727347-3077865498-453496965-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02&pc=UE04
SearchScopes: HKU\S-1-5-21-2678727347-3077865498-453496965-1001 -> {A06ED961-D98F-4CF9-A89B-80AB11DB149C} URL = hxxp://go-search.ru/search?q={searchTerms}

FireFox:
========
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-05-01] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-05-01] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-27] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-27] (Google Inc.)

Chrome:
=======
CHR HomePage: Default -> hxxps://www.google.co.uk/
CHR StartupUrls: Default -> "hxxps://www.google.co.uk/"
CHR DefaultSearchURL: Default -> hxxp://go-search.ru/search?q={searchTerms}
CHR DefaultSearchKeyword: Default -> gosearch
CHR DefaultSuggestURL: Default -> hxxp://suggest.yandex.net/suggest-ff.cgi?part={searchTerms}
CHR Profile: C:\Users\Fox\AppData\Local\Google\Chrome\User Data\Default [2017-05-13]
CHR Extension: (Google Drive) - C:\Users\Fox\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-04-08]
CHR Extension: (YouTube) - C:\Users\Fox\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-04-08]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Fox\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-04-08]
CHR Extension: (Gmail) - C:\Users\Fox\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-04-08]
CHR Extension: (Chrome Media Router) - C:\Users\Fox\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-05-12]
CHR HKLM-x32\...\Chrome\Extension: [epgjfmblhacacphaljkdcjllkomdcjpc] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [319096 2016-05-12] (Intel Corporation)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [495224 2017-05-03] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [495224 2017-05-03] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462968 2017-05-01] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [450168 2017-05-03] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2119688 2017-05-12] (Electronic Arts)
S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [2180624 2017-05-12] (Electronic Arts)
S3 PAExec; C:\Windows\PAExec.exe [189112 2017-04-10] (Power Admin LLC)
R2 RalinkRegistryWriter; C:\Program Files (x86)\TP-LINK\Common\RaRegistry.exe [185632 2010-07-30] (Ralink Technology, Corp.)
R2 RalinkRegistryWriter64; C:\Program Files (x86)\TP-LINK\Common\RaRegistry64.exe [212256 2010-07-30] (Ralink Technology, Corp.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [3913064 2017-03-19] (Microsoft Corporation)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10888944 2017-04-25] (TeamViewer GmbH)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [342264 2017-03-18] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [102816 2017-03-18] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_a2b0acab06663645\nvlddmkm.sys [14456944 2017-05-02] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30328 2017-05-03] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [48248 2017-05-03] (NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\drivers\nvvhci.sys [59448 2017-05-02] (NVIDIA Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [604160 2017-03-18] (Realtek )
S3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [14024 2016-10-24] ()
S3 SDFRd; C:\Windows\System32\drivers\SDFRd.sys [31128 2017-03-18] ()
S3 semav6msr64; C:\Windows\system32\drivers\semav6msr64.sys [21984 2016-10-18] ()
R3 taphss6; C:\Windows\System32\drivers\taphss6.sys [42064 2017-04-26] (Anchorfree Inc.)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44632 2017-03-18] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [294816 2017-03-18] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [121248 2017-03-18] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-05-13 02:14 - 2017-05-13 02:15 - 00011113 _____ C:\Users\Fox\Desktop\FRST.txt
2017-05-13 02:14 - 2017-05-13 02:14 - 02429440 _____ (Farbar) C:\Users\Fox\Desktop\FRST64.exe
2017-05-13 02:14 - 2017-05-13 02:14 - 00000000 ____D C:\FRST
2017-05-13 00:22 - 2017-05-13 00:22 - 00003528 _____ C:\Windows\System32\Tasks\One Drive Update
2017-05-13 00:12 - 2017-05-13 00:22 - 00000000 ____D C:\Users\Fox\AppData\Local\wupdate
2017-05-13 00:12 - 2017-05-13 00:12 - 00003476 _____ C:\Windows\System32\Tasks\wupdate
2017-05-12 23:19 - 2017-05-12 23:19 - 00000000 ____D C:\Users\Fox\AppData\Local\Steam
2017-05-12 23:18 - 2017-05-13 02:07 - 00000000 ____D C:\Users\Fox\AppData\Local\wutphost
2017-05-12 23:18 - 2017-05-13 00:11 - 00003638 _____ C:\Windows\System32\Tasks\wutphost
2017-05-12 23:14 - 2017-05-13 00:08 - 00003268 __RSH C:\Windows\System32\Tasks\MSI
2017-05-12 16:31 - 2017-05-12 16:31 - 00002002 _____ C:\Users\Public\Desktop\Origin Sanal Hesap.lnk
2017-05-12 16:30 - 2017-05-13 00:28 - 00000000 ____D C:\Users\Fox\AppData\Roaming\Origin
2017-05-12 16:30 - 2017-05-12 16:42 - 00000000 ____D C:\ProgramData\Origin
2017-05-12 16:30 - 2017-05-12 16:31 - 00000000 ____D C:\Users\Fox\AppData\Local\Origin
2017-05-12 16:30 - 2017-05-12 16:30 - 00000000 ____D C:\Program Files (x86)\Origin
2017-05-12 16:26 - 2017-05-12 16:33 - 00000000 ____D C:\Users\Fox\Documents\FIFA 17
2017-05-12 16:26 - 2017-05-12 16:26 - 00000000 ____D C:\ProgramData\Electronic Arts
2017-05-12 00:29 - 2017-05-12 00:29 - 00002145 _____ C:\Users\Fox\Desktop\JDownloader 2.lnk
2017-05-12 00:29 - 2017-05-12 00:29 - 00000000 ____D C:\Users\Fox\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader
2017-05-12 00:28 - 2017-05-12 09:05 - 00000000 ____D C:\Users\Fox\AppData\Local\JDownloader v2.0
2017-05-11 23:53 - 2017-05-11 23:53 - 00000000 ____D C:\Program Files (x86)\Origin Games
2017-05-11 23:52 - 2017-05-11 23:52 - 00000000 ____D C:\Users\Fox\.Origin
2017-05-11 23:52 - 2017-05-11 23:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2017-05-10 14:38 - 2017-05-10 19:23 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2017-05-10 14:38 - 2017-05-01 22:14 - 00134592 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2017-05-10 14:38 - 2017-03-10 23:17 - 00536864 _____ C:\Windows\system32\vulkan-1.dll
2017-05-10 14:38 - 2017-03-10 23:17 - 00525600 _____ C:\Windows\SysWOW64\vulkan-1.dll
2017-05-10 14:38 - 2017-03-10 23:17 - 00254240 _____ C:\Windows\system32\vulkaninfo.exe
2017-05-10 14:38 - 2017-03-10 23:17 - 00233760 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2017-05-10 14:36 - 2017-05-02 00:38 - 40201848 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2017-05-10 14:36 - 2017-05-02 00:38 - 35388864 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2017-05-10 14:36 - 2017-05-02 00:38 - 35281528 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2017-05-10 14:36 - 2017-05-02 00:38 - 28623480 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2017-05-10 14:36 - 2017-05-02 00:38 - 11056456 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
2017-05-10 14:36 - 2017-05-02 00:38 - 11024384 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2017-05-10 14:36 - 2017-05-02 00:38 - 10547440 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2017-05-10 14:36 - 2017-05-02 00:38 - 09245744 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2017-05-10 14:36 - 2017-05-02 00:38 - 09014792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
2017-05-10 14:36 - 2017-05-02 00:38 - 08805232 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2017-05-10 14:36 - 2017-05-02 00:38 - 03792320 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2017-05-10 14:36 - 2017-05-02 00:38 - 03247736 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2017-05-10 14:36 - 2017-05-02 00:38 - 01988032 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6438205.dll
2017-05-10 14:36 - 2017-05-02 00:38 - 01589696 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6438205.dll
2017-05-10 14:36 - 2017-05-02 00:38 - 01054144 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2017-05-10 14:36 - 2017-05-02 00:38 - 00991168 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2017-05-10 14:36 - 2017-05-02 00:38 - 00960960 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2017-05-10 14:36 - 2017-05-02 00:38 - 00911992 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2017-05-10 14:36 - 2017-05-02 00:38 - 00688968 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
2017-05-10 14:36 - 2017-05-02 00:38 - 00577728 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2017-05-10 14:16 - 2017-05-10 14:16 - 00004000 _____ C:\Windows\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-10 14:16 - 2017-05-03 22:21 - 00175736 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2017-05-10 14:16 - 2017-05-03 22:21 - 00143480 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2017-05-10 13:29 - 2017-04-28 03:38 - 01411128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32full.dll
2017-05-10 13:29 - 2017-04-28 03:19 - 01839872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2017-05-10 13:29 - 2017-04-28 03:19 - 00605936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2017-05-10 13:29 - 2017-04-28 03:18 - 02259760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CoreUIComponents.dll
2017-05-10 13:29 - 2017-04-28 03:16 - 00599576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2017-05-10 13:29 - 2017-04-28 03:12 - 01604312 _____ (Microsoft Corporation) C:\Windows\system32\gdi32full.dll
2017-05-10 13:29 - 2017-04-28 03:12 - 00543640 _____ (Microsoft Corporation) C:\Windows\system32\securekernel.exe
2017-05-10 13:29 - 2017-04-28 03:11 - 02158544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2017-05-10 13:29 - 2017-04-28 03:09 - 01557288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2017-05-10 13:29 - 2017-04-28 03:08 - 08320920 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2017-05-10 13:29 - 2017-04-28 03:08 - 02399728 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2017-05-10 13:29 - 2017-04-28 03:08 - 02330520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll
2017-05-10 13:29 - 2017-04-28 03:08 - 00775824 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2017-05-10 13:29 - 2017-04-28 03:07 - 06759512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2017-05-10 13:29 - 2017-04-28 03:07 - 00988168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2017-05-10 13:29 - 2017-04-28 03:06 - 02969880 _____ (Microsoft Corporation) C:\Windows\system32\CoreUIComponents.dll
2017-05-10 13:29 - 2017-04-28 03:06 - 00708712 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2017-05-10 13:29 - 2017-04-28 03:05 - 00923040 _____ (Microsoft Corporation) C:\Windows\system32\CoreMessaging.dll
2017-05-10 13:29 - 2017-04-28 03:04 - 00583160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CoreMessaging.dll
2017-05-10 13:29 - 2017-04-28 03:03 - 00667040 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2017-05-10 13:29 - 2017-04-28 03:00 - 02444192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2017-05-10 13:29 - 2017-04-28 02:59 - 05477088 _____ (Microsoft Corporation) C:\Windows\system32\OneCoreUAPCommonProxyStub.dll
2017-05-10 13:29 - 2017-04-28 02:59 - 02635336 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2017-05-10 13:29 - 2017-04-28 02:59 - 00388000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBXHCI.SYS
2017-05-10 13:29 - 2017-04-28 02:59 - 00207264 _____ (Microsoft Corporation) C:\Windows\system32\browserbroker.dll
2017-05-10 13:29 - 2017-04-28 02:59 - 00027040 _____ (Microsoft Corporation) C:\Windows\system32\browser_broker.exe
2017-05-10 13:29 - 2017-04-28 02:58 - 01852776 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2017-05-10 13:29 - 2017-04-28 02:58 - 00872472 _____ (Microsoft Corporation) C:\Windows\system32\ClipSVC.dll
2017-05-10 13:29 - 2017-04-28 02:57 - 03116184 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll
2017-05-10 13:29 - 2017-04-28 02:56 - 07904784 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2017-05-10 13:29 - 2017-04-28 02:55 - 21353200 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2017-05-10 13:29 - 2017-04-28 02:55 - 01325456 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2017-05-10 13:29 - 2017-04-28 02:53 - 00387928 _____ (Microsoft Corporation) C:\Windows\system32\wmpps.dll
2017-05-10 13:29 - 2017-04-28 02:52 - 02957824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys
2017-05-10 13:29 - 2017-04-28 02:52 - 00790528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.dll
2017-05-10 13:29 - 2017-04-28 02:52 - 00584192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIRibbonRes.dll
2017-05-10 13:29 - 2017-04-28 02:51 - 20505600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2017-05-10 13:29 - 2017-04-28 02:49 - 00072192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2017-05-10 13:29 - 2017-04-28 02:49 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcconf.dll
2017-05-10 13:29 - 2017-04-28 02:46 - 19335168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2017-05-10 13:29 - 2017-04-28 02:46 - 00329728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webplatstorageserver.dll
2017-05-10 13:29 - 2017-04-28 02:46 - 00080384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2017-05-10 13:29 - 2017-04-28 02:45 - 00124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2017-05-10 13:29 - 2017-04-28 02:44 - 00338432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2017-05-10 13:29 - 2017-04-28 02:44 - 00266240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2017-05-10 13:29 - 2017-04-28 02:42 - 00806400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StoreAgent.dll
2017-05-10 13:29 - 2017-04-28 02:42 - 00663040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2017-05-10 13:29 - 2017-04-28 02:42 - 00636416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WpcWebFilter.dll
2017-05-10 13:29 - 2017-04-28 02:42 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InstallAgentUserBroker.exe
2017-05-10 13:29 - 2017-04-28 02:41 - 01248768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AzureSettingSyncProvider.dll
2017-05-10 13:29 - 2017-04-28 02:40 - 11870208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2017-05-10 13:29 - 2017-04-28 02:40 - 06292992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2017-05-10 13:29 - 2017-04-28 02:40 - 02008576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2017-05-10 13:29 - 2017-04-28 02:40 - 00799232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TokenBroker.dll
2017-05-10 13:29 - 2017-04-28 02:40 - 00328704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InstallAgent.exe
2017-05-10 13:29 - 2017-04-28 02:40 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cldapi.dll
2017-05-10 13:29 - 2017-04-28 02:39 - 05225984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2017-05-10 13:29 - 2017-04-28 02:39 - 03655680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2017-05-10 13:29 - 2017-04-28 02:39 - 02859520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2017-05-10 13:29 - 2017-04-28 02:38 - 03667456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_47.dll
2017-05-10 13:29 - 2017-04-28 02:38 - 01019904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aadtb.dll
2017-05-10 13:29 - 2017-04-28 02:37 - 04559360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbgeng.dll
2017-05-10 13:29 - 2017-04-28 02:37 - 01626624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2017-05-10 13:29 - 2017-04-28 02:34 - 00891904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\autochk.exe
2017-05-10 13:29 - 2017-04-28 02:33 - 00089088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\olepro32.dll
2017-05-10 13:29 - 2017-04-28 02:26 - 23677440 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2017-05-10 13:29 - 2017-04-28 02:15 - 03672064 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2017-05-10 13:29 - 2017-04-28 02:15 - 01051648 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.dll
2017-05-10 13:29 - 2017-04-28 02:14 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbonRes.dll
2017-05-10 13:29 - 2017-04-28 02:11 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2017-05-10 13:29 - 2017-04-28 02:11 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BasicRender.sys
2017-05-10 13:29 - 2017-04-28 02:11 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\odbcconf.dll
2017-05-10 13:29 - 2017-04-28 02:09 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2017-05-10 13:29 - 2017-04-28 02:09 - 00064512 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2017-05-10 13:29 - 2017-04-28 02:08 - 00457728 _____ (Microsoft Corporation) C:\Windows\system32\webplatstorageserver.dll
2017-05-10 13:29 - 2017-04-28 02:08 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\SettingsEnvironment.Desktop.dll
2017-05-10 13:29 - 2017-04-28 02:08 - 00096256 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2017-05-10 13:29 - 2017-04-28 02:07 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2017-05-10 13:29 - 2017-04-28 02:06 - 01302528 _____ (Microsoft Corporation) C:\Windows\system32\MSVPXENC.dll
2017-05-10 13:29 - 2017-04-28 02:06 - 00527360 _____ (Microsoft Corporation) C:\Windows\system32\aadcloudap.dll
2017-05-10 13:29 - 2017-04-28 02:06 - 00386560 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2017-05-10 13:29 - 2017-04-28 02:06 - 00274944 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2017-05-10 13:29 - 2017-04-28 02:05 - 01075712 _____ (Microsoft Corporation) C:\Windows\system32\StoreAgent.dll
2017-05-10 13:29 - 2017-04-28 02:05 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2017-05-10 13:29 - 2017-04-28 02:04 - 23681024 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2017-05-10 13:29 - 2017-04-28 02:04 - 01878016 _____ (Microsoft Corporation) C:\Windows\system32\AzureSettingSyncProvider.dll
2017-05-10 13:29 - 2017-04-28 02:04 - 00422400 _____ (Microsoft Corporation) C:\Windows\system32\WpAXHolder.dll
2017-05-10 13:29 - 2017-04-28 02:04 - 00416256 _____ (Microsoft Corporation) C:\Windows\system32\InstallAgentUserBroker.exe
2017-05-10 13:29 - 2017-04-28 02:03 - 01085440 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2017-05-10 13:29 - 2017-04-28 02:03 - 01027584 _____ (Microsoft Corporation) C:\Windows\system32\modernexecserver.dll
2017-05-10 13:29 - 2017-04-28 02:03 - 00925696 _____ (Microsoft Corporation) C:\Windows\system32\WpcWebFilter.dll
2017-05-10 13:29 - 2017-04-28 02:03 - 00751104 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2017-05-10 13:29 - 2017-04-28 02:03 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\cldapi.dll
2017-05-10 13:29 - 2017-04-28 02:02 - 01260544 _____ (Microsoft Corporation) C:\Windows\system32\GamePanel.exe
2017-05-10 13:29 - 2017-04-28 02:01 - 02077184 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2017-05-10 13:29 - 2017-04-28 02:01 - 01886208 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.onecore.dll
2017-05-10 13:29 - 2017-04-28 02:00 - 08244736 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2017-05-10 13:29 - 2017-04-28 01:59 - 04396032 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_47.dll
2017-05-10 13:29 - 2017-04-28 01:59 - 03307008 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2017-05-10 13:29 - 2017-04-28 01:59 - 02056192 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2017-05-10 13:29 - 2017-04-28 01:59 - 01293824 _____ (Microsoft Corporation) C:\Windows\system32\aadtb.dll
2017-05-10 13:29 - 2017-04-28 01:59 - 00373760 _____ (Microsoft Corporation) C:\Windows\system32\InstallAgent.exe
2017-05-10 13:29 - 2017-04-28 01:58 - 12787200 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2017-05-10 13:29 - 2017-04-28 01:58 - 01054208 _____ (Microsoft Corporation) C:\Windows\system32\TokenBroker.dll
2017-05-10 13:29 - 2017-04-28 01:57 - 05557760 _____ (Microsoft Corporation) C:\Windows\system32\dbgeng.dll
2017-05-10 13:29 - 2017-04-28 01:57 - 04730368 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2017-05-10 13:29 - 2017-04-28 01:57 - 02800128 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2017-05-10 13:29 - 2017-04-28 01:57 - 01803264 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2017-05-10 13:29 - 2017-04-28 01:54 - 00985600 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2017-05-10 13:29 - 2017-04-28 01:54 - 00970240 _____ (Microsoft Corporation) C:\Windows\system32\autochk.exe
2017-05-10 13:29 - 2017-04-28 01:54 - 00722944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2017-05-10 13:29 - 2017-04-28 01:54 - 00414208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2017-05-10 13:29 - 2017-04-28 01:52 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Streaming.ps.dll
2017-05-05 17:22 - 2017-05-05 17:22 - 00001300 _____ C:\Users\Fox\Desktop\Pro Evolution Soccer 2017.lnk
2017-05-05 17:22 - 2017-05-05 17:22 - 00000000 ____D C:\Users\Fox\Documents\KONAMI
2017-05-05 14:27 - 2017-05-10 19:33 - 00000000 ____D C:\Users\Fox\Downloads\Guns.Gore.and.Cannoli-CODEX
2017-04-28 15:29 - 2017-05-12 18:28 - 00548392 _____ C:\Windows\system32\Drivers\EasyAntiCheat.sys
2017-04-28 15:29 - 2017-04-28 15:29 - 00000000 ____D C:\Users\Fox\AppData\Roaming\EasyAntiCheat
2017-04-28 12:28 - 2017-04-19 09:07 - 00712600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms2.sys
2017-04-28 12:28 - 2017-04-19 09:06 - 00651680 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncHost.exe
2017-04-28 12:28 - 2017-04-19 09:04 - 00142240 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wcifs.sys
2017-04-28 12:28 - 2017-04-19 09:02 - 00716440 _____ (Microsoft Corporation) C:\Windows\system32\MSVideoDSP.dll
2017-04-28 12:28 - 2017-04-19 08:19 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\musdialoghandlers.dll
2017-04-28 12:28 - 2017-04-19 08:18 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netvsc.sys
2017-04-28 12:28 - 2017-04-19 08:16 - 00280064 _____ (Microsoft Corporation) C:\Windows\system32\WiFiDisplay.dll
2017-04-28 12:28 - 2017-04-19 08:15 - 00232960 _____ (Microsoft Corporation) C:\Windows\system32\wcmcsp.dll
2017-04-28 12:28 - 2017-04-19 08:14 - 00646656 _____ (Microsoft Corporation) C:\Windows\system32\LockHostingFramework.dll
2017-04-28 12:28 - 2017-04-19 08:13 - 00585728 _____ (Microsoft Corporation) C:\Windows\system32\OneDriveSettingSyncProvider.dll
2017-04-28 12:28 - 2017-04-19 08:13 - 00409600 _____ (Microsoft Corporation) C:\Windows\system32\updatehandlers.dll
2017-04-28 12:28 - 2017-04-19 08:12 - 00805888 _____ (Microsoft Corporation) C:\Windows\system32\ieproxy.dll
2017-04-28 12:28 - 2017-04-19 08:12 - 00590848 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2017-04-28 12:28 - 2017-04-19 08:12 - 00203776 _____ (Microsoft Corporation) C:\Windows\system32\PackageStateRoaming.dll
2017-04-28 12:28 - 2017-04-19 08:11 - 04446208 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_nt.dll
2017-04-28 12:28 - 2017-04-19 08:11 - 00687104 _____ (Microsoft Corporation) C:\Windows\system32\LogonController.dll
2017-04-28 12:28 - 2017-04-19 08:10 - 04175872 _____ (Microsoft Corporation) C:\Windows\system32\StartTileData.dll
2017-04-28 12:28 - 2017-04-19 08:10 - 02765824 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Shell.UnifiedTile.CuratedTileCollections.dll
2017-04-28 12:28 - 2017-04-19 08:10 - 01600512 _____ (Microsoft Corporation) C:\Windows\system32\dbghelp.dll
2017-04-28 12:28 - 2017-04-19 08:08 - 01103872 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncCore.dll
2017-04-28 12:28 - 2017-04-19 08:08 - 00681984 _____ (Microsoft Corporation) C:\Windows\system32\usocore.dll
2017-04-28 12:28 - 2017-04-19 08:07 - 01242624 _____ (Microsoft Corporation) C:\Windows\system32\SharedStartModel.dll
2017-04-28 12:28 - 2017-04-19 08:07 - 00707072 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2017-04-28 12:28 - 2017-04-19 08:06 - 02651648 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2017-04-28 12:28 - 2017-04-19 08:04 - 01356800 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2017-04-28 12:28 - 2017-04-19 08:04 - 00624640 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll
2017-04-28 12:28 - 2017-04-19 08:02 - 00559000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncHost.exe
2017-04-28 12:28 - 2017-04-19 08:01 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\catsrvps.dll
2017-04-28 12:28 - 2017-04-19 07:59 - 02435584 _____ (Microsoft Corporation) C:\Windows\system32\ResetEngine.dll
2017-04-28 12:28 - 2017-04-19 07:59 - 01087488 _____ (Microsoft Corporation) C:\Windows\system32\reseteng.dll
2017-04-28 12:28 - 2017-04-19 07:58 - 20374424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2017-04-28 12:28 - 2017-04-19 07:37 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WiFiDisplay.dll
2017-04-28 12:28 - 2017-04-19 07:36 - 01291776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVPXENC.dll
2017-04-28 12:28 - 2017-04-19 07:35 - 00476672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OneDriveSettingSyncProvider.dll
2017-04-28 12:28 - 2017-04-19 07:34 - 00507392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2017-04-28 12:28 - 2017-04-19 07:34 - 00358400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieproxy.dll
2017-04-28 12:28 - 2017-04-19 07:34 - 00175616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PackageStateRoaming.dll
2017-04-28 12:28 - 2017-04-19 07:32 - 01285120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbghelp.dll
2017-04-28 12:28 - 2017-04-19 07:30 - 00909312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncCore.dll
2017-04-28 12:28 - 2017-04-19 07:29 - 02298880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2017-04-28 12:28 - 2017-04-14 02:35 - 04848440 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2017-04-28 12:28 - 2017-04-14 02:35 - 00741784 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Shell.Broker.dll
2017-04-28 12:28 - 2017-04-14 02:35 - 00673112 _____ (Microsoft Corporation) C:\Windows\system32\AppResolver.dll
2017-04-28 12:28 - 2017-04-14 02:33 - 02085280 _____ (Microsoft Corporation) C:\Windows\system32\UpdateAgent.dll
2017-04-28 12:28 - 2017-04-14 02:32 - 01320352 _____ (Microsoft Corporation) C:\Windows\system32\wpx.dll
2017-04-28 12:28 - 2017-04-14 02:30 - 00105456 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2017-04-28 12:28 - 2017-04-14 02:25 - 01854880 _____ (Microsoft Corporation) C:\Windows\system32\AppVEntVirtualization.dll
2017-04-28 12:28 - 2017-04-14 02:25 - 01452960 _____ (Microsoft Corporation) C:\Windows\system32\AppVEntSubsystemController.dll
2017-04-28 12:28 - 2017-04-14 01:43 - 04469832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2017-04-28 12:28 - 2017-04-14 01:43 - 00523296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppResolver.dll
2017-04-28 12:28 - 2017-04-14 01:41 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\EnterpriseModernAppMgmtCSP.dll
2017-04-28 12:28 - 2017-04-14 01:41 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2017-04-28 12:28 - 2017-04-14 01:40 - 00095584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2017-04-28 12:28 - 2017-04-14 01:39 - 07931392 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2017-04-28 12:28 - 2017-04-14 01:39 - 00974848 _____ (Microsoft Corporation) C:\Windows\system32\mmgaserver.exe
2017-04-28 12:28 - 2017-04-14 01:39 - 00517632 _____ (Microsoft Corporation) C:\Windows\system32\daxexec.dll
2017-04-28 12:28 - 2017-04-14 01:39 - 00334336 _____ (Microsoft Corporation) C:\Windows\system32\wc_storage.dll
2017-04-28 12:28 - 2017-04-14 01:39 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\VEStoreEventHandlers.dll
2017-04-28 12:28 - 2017-04-14 01:38 - 00251904 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Gaming.Preview.dll
2017-04-28 12:28 - 2017-04-14 01:38 - 00208896 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.AppDefaults.dll
2017-04-28 12:28 - 2017-04-14 01:37 - 00450048 _____ (Microsoft Corporation) C:\Windows\system32\bcdedit.exe
2017-04-28 12:28 - 2017-04-14 01:37 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\NotificationObjFactory.dll
2017-04-28 12:28 - 2017-04-14 01:37 - 00301056 _____ (Microsoft Corporation) C:\Windows\system32\EnterpriseAppMgmtSvc.dll
2017-04-28 12:28 - 2017-04-14 01:37 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\domgmt.dll
2017-04-28 12:28 - 2017-04-14 01:36 - 00524800 _____ (Microsoft Corporation) C:\Windows\system32\TileDataRepository.dll
2017-04-28 12:28 - 2017-04-14 01:36 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\CloudBackupSettings.dll
2017-04-28 12:28 - 2017-04-14 01:35 - 01433600 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettings.Handlers.dll
2017-04-28 12:28 - 2017-04-14 01:35 - 00510976 _____ (Microsoft Corporation) C:\Windows\system32\TDLMigration.dll
2017-04-28 12:28 - 2017-04-14 01:35 - 00257024 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2017-04-28 12:28 - 2017-04-14 01:34 - 01468416 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.desktop.dll
2017-04-28 12:28 - 2017-04-14 01:34 - 00406528 _____ (Microsoft Corporation) C:\Windows\system32\InputSwitch.dll
2017-04-28 12:28 - 2017-04-14 01:33 - 01269760 _____ (Microsoft Corporation) C:\Windows\system32\enterprisecsps.dll
2017-04-28 12:28 - 2017-04-14 01:33 - 00864256 _____ (Microsoft Corporation) C:\Windows\system32\NotificationController.dll
2017-04-28 12:28 - 2017-04-14 01:31 - 01611776 _____ (Microsoft Corporation) C:\Windows\system32\SpeechPal.dll
2017-04-28 12:28 - 2017-04-14 01:31 - 00673280 _____ (Microsoft Corporation) C:\Windows\system32\LockAppBroker.dll
2017-04-28 12:28 - 2017-04-14 01:29 - 02499584 _____ (Microsoft Corporation) C:\Windows\system32\twinui.pcshell.dll
2017-04-28 12:28 - 2017-04-14 01:29 - 01583616 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2017-04-28 12:28 - 2017-04-14 01:29 - 01295872 _____ (Microsoft Corporation) C:\Windows\system32\dosvc.dll
2017-04-28 12:28 - 2017-04-14 01:29 - 00840192 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll
2017-04-28 12:28 - 2017-04-14 01:29 - 00647168 _____ (Microsoft Corporation) C:\Windows\system32\RDXService.dll
2017-04-28 12:28 - 2017-04-14 01:28 - 02443776 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2017-04-28 12:28 - 2017-04-14 01:26 - 01257472 _____ (Microsoft Corporation) C:\Windows\system32\wpnapps.dll
2017-04-28 12:28 - 2017-04-14 01:25 - 00750080 _____ (Microsoft Corporation) C:\Windows\system32\StorSvc.dll
2017-04-28 12:28 - 2017-04-14 01:24 - 01628160 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll
2017-04-28 12:28 - 2017-04-14 01:21 - 06728192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2017-04-28 12:28 - 2017-04-14 01:21 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\offreg.dll
2017-04-28 12:28 - 2017-04-14 01:18 - 00731136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmgaserver.exe
2017-04-28 12:28 - 2017-04-14 01:18 - 00362496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\daxexec.dll
2017-04-28 12:28 - 2017-04-14 01:15 - 00282112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VEEventDispatcher.dll
2017-04-28 12:28 - 2017-04-14 01:15 - 00232448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CloudBackupSettings.dll
2017-04-28 12:28 - 2017-04-14 01:13 - 00354304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InputSwitch.dll
2017-04-28 12:28 - 2017-04-14 01:13 - 00232960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2017-04-28 12:28 - 2017-04-14 01:08 - 01463296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2017-04-28 12:28 - 2017-04-14 01:06 - 00987648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpnapps.dll
2017-04-28 12:28 - 2017-04-14 01:04 - 00392704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PlayToManager.dll
2017-04-28 12:28 - 2017-04-14 01:01 - 00057856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\offreg.dll
2017-04-28 11:33 - 2017-04-28 11:33 - 00000035 _____ C:\Users\Fox\Documents\ghost recon wilands.txt
2017-04-27 19:47 - 2017-04-27 19:47 - 00001114 _____ C:\Users\Fox\Desktop\Cheat Engine.lnk
2017-04-27 19:47 - 2017-04-27 19:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.6
2017-04-27 19:47 - 2017-04-27 19:47 - 00000000 ____D C:\Program Files (x86)\Cheat Engine 6.6
2017-04-27 12:00 - 2017-04-27 12:00 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2017-04-27 01:58 - 2017-04-20 03:59 - 01988216 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6438189.dll
2017-04-27 01:58 - 2017-04-20 03:59 - 01589880 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6438189.dll
2017-04-27 01:26 - 2017-05-10 14:16 - 00004308 _____ C:\Windows\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-04-26 15:49 - 2017-04-26 15:49 - 00042064 _____ (Anchorfree Inc.) C:\Windows\system32\Drivers\taphss6.sys
2017-04-25 23:31 - 2017-04-25 23:31 - 00000734 _____ C:\Users\Public\Desktop\FIFA 17.lnk
2017-04-25 23:22 - 2017-04-25 23:22 - 00000000 ____D C:\Program Files (x86)\Firewall App Blocker
2017-04-25 16:22 - 2017-04-25 16:22 - 00000000 ____D C:\Users\Fox\Documents\My Cheat Tables
2017-04-25 13:44 - 2017-04-25 13:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FIFA 17
2017-04-24 19:44 - 2017-05-12 21:31 - 00000000 ____D C:\Users\Fox\AppData\Local\Ubisoft Game Launcher
2017-04-24 19:44 - 2017-04-24 19:44 - 00001234 _____ C:\Users\Fox\Desktop\Uplay.lnk
2017-04-24 19:44 - 2017-04-24 19:44 - 00000000 ____D C:\Users\Fox\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2017-04-24 19:44 - 2017-04-24 19:44 - 00000000 ____D C:\Program Files (x86)\Ubisoft
2017-04-24 19:26 - 2017-05-10 19:33 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2017-04-24 19:26 - 2017-05-10 18:41 - 00001000 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 12.lnk
2017-04-24 19:26 - 2017-05-10 18:41 - 00000988 _____ C:\Users\Public\Desktop\TeamViewer 12.lnk
2017-04-24 19:26 - 2017-04-24 19:35 - 00000000 ____D C:\Users\Fox\AppData\Roaming\TeamViewer
2017-04-24 18:42 - 2017-04-24 18:42 - 00000000 ____D C:\Users\Fox\ansel
2017-04-23 19:59 - 2017-05-12 18:35 - 00000000 ____D C:\Users\Fox\Documents\My Games
2017-04-23 19:59 - 2017-05-11 14:43 - 00000000 ____D C:\Users\Fox\AppData\Local\WarThunder
2017-04-23 19:59 - 2017-04-23 19:59 - 00002015 _____ C:\Users\Fox\Desktop\WarThunder.lnk
2017-04-23 19:59 - 2017-04-23 19:59 - 00000000 ____D C:\Users\Fox\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WarThunder
2017-04-23 19:59 - 2017-04-23 19:59 - 00000000 ____D C:\Users\Fox\AppData\Local\Gaijin
2017-04-23 19:59 - 2017-04-23 19:59 - 00000000 ____D C:\ProgramData\Gaijin
2017-04-23 13:20 - 2017-04-23 13:20 - 00000000 ____D C:\Users\Fox\Documents\CPY_SAVES
2017-04-23 13:20 - 2017-04-23 13:20 - 00000000 ____D C:\ProgramData\KONAMI
2017-04-23 12:59 - 2017-04-23 12:59 - 01460172 _____ C:\Windows\Minidump\042317-18093-01.dmp
2017-04-23 01:57 - 2017-04-26 00:27 - 00000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server
2017-04-23 01:57 - 2017-04-23 01:57 - 00001115 _____ C:\Users\Fox\Desktop\MSI Afterburner.lnk
2017-04-23 01:57 - 2017-04-23 01:57 - 00000000 ____D C:\Users\Fox\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RivaTuner Statistics Server
2017-04-23 01:57 - 2017-04-23 01:57 - 00000000 ____D C:\Users\Fox\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner
2017-04-23 01:56 - 2017-04-26 00:27 - 00000000 ____D C:\Program Files (x86)\MSI Afterburner
2017-04-18 10:12 - 2017-04-18 10:13 - 01479508 _____ C:\Windows\Minidump\041817-20687-01.dmp
2017-04-15 14:33 - 2017-05-02 14:37 - 00000000 ____D C:\Users\Fox\AppData\Roaming\BSplayer PRO
2017-04-15 14:33 - 2017-04-15 14:33 - 00001182 _____ C:\ProgramData\Microsoft\Windows\Start Menu\BS.Player PRO.lnk
2017-04-15 14:33 - 2017-04-15 14:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Webteh
2017-04-15 14:33 - 2017-04-15 14:33 - 00000000 ____D C:\Program Files (x86)\Webteh
2017-04-14 22:45 - 2017-04-14 22:45 - 00000000 ____D C:\Users\Fox\AppData\Local\ElevatedDiagnostics
2017-04-14 11:23 - 2017-04-15 14:39 - 00000000 ____D C:\Users\Fox\Downloads\Aftermath 2017
2017-04-14 11:23 - 2017-04-15 14:38 - 00000000 ____D C:\Users\Fox\Downloads\Boyka Undisputed IV 2016

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-05-13 00:28 - 2017-04-11 11:01 - 00000000 ____D C:\ProgramData\NVIDIA
2017-05-13 00:28 - 2017-04-08 21:07 - 00000000 ____D C:\Users\Fox
2017-05-13 00:25 - 2017-04-09 05:57 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-05-13 00:25 - 2017-03-18 13:40 - 01048576 _____ C:\Windows\system32\config\BBI
2017-05-12 23:45 - 2017-04-08 21:52 - 00000000 ____D C:\Users\Fox\AppData\Roaming\uTorrent
2017-05-12 23:33 - 2017-04-08 21:26 - 00000000 ____D C:\Users\Fox\AppData\Local\Google
2017-05-12 23:16 - 2017-03-18 23:03 - 00000000 ___HD C:\Windows\system32\GroupPolicy
2017-05-12 23:16 - 2017-03-18 23:03 - 00000000 ____D C:\Windows\SysWOW64\GroupPolicy
2017-05-12 22:53 - 2017-04-09 05:57 - 00000000 ____D C:\Windows\system32\SleepStudy
2017-05-12 19:03 - 2017-04-08 22:25 - 00000000 ____D C:\Games
2017-05-12 18:25 - 2017-04-08 21:29 - 00002232 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-05-12 16:32 - 2017-03-18 23:01 - 00000000 ____D C:\Windows\INF
2017-05-12 15:53 - 2017-04-08 22:06 - 00000000 ____D C:\ProgramData\Package Cache
2017-05-12 10:46 - 2017-03-18 23:03 - 00000000 ___HD C:\Program Files\WindowsApps
2017-05-12 10:46 - 2017-03-18 23:03 - 00000000 ____D C:\Windows\AppReadiness
2017-05-11 14:47 - 2017-03-18 23:03 - 00000000 ____D C:\Windows\rescache
2017-05-10 19:48 - 2017-03-18 22:51 - 00000000 ____D C:\Windows\CbsTemp
2017-05-10 19:34 - 2017-03-19 04:31 - 00000000 ___SD C:\Windows\system32\AppV
2017-05-10 19:34 - 2017-03-18 23:03 - 00000000 ___SD C:\Windows\SysWOW64\F12
2017-05-10 19:34 - 2017-03-18 23:03 - 00000000 ___SD C:\Windows\system32\F12
2017-05-10 19:34 - 2017-03-18 23:03 - 00000000 ___RD C:\Windows\PrintDialog
2017-05-10 19:34 - 2017-03-18 23:03 - 00000000 ___RD C:\Windows\ImmersiveControlPanel
2017-05-10 19:34 - 2017-03-18 23:03 - 00000000 ____D C:\Windows\SysWOW64\Dism
2017-05-10 19:34 - 2017-03-18 23:03 - 00000000 ____D C:\Windows\system32\WinBioPlugIns
2017-05-10 19:34 - 2017-03-18 23:03 - 00000000 ____D C:\Windows\system32\appraiser
2017-05-10 19:34 - 2017-03-18 23:03 - 00000000 ____D C:\Windows\ShellExperiences
2017-05-10 19:34 - 2017-03-18 23:03 - 00000000 ____D C:\Windows\security
2017-05-10 19:34 - 2017-03-18 23:03 - 00000000 ____D C:\Windows\schemas
2017-05-10 19:34 - 2017-03-18 23:03 - 00000000 ____D C:\Windows\Provisioning
2017-05-10 19:34 - 2017-03-18 23:03 - 00000000 ____D C:\Windows\PolicyDefinitions
2017-05-10 19:34 - 2017-03-18 23:03 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2017-05-10 19:34 - 2017-03-18 23:03 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2017-05-10 19:34 - 2017-03-18 13:40 - 00000000 ____D C:\Windows\system32\Sysprep
2017-05-10 19:34 - 2017-03-18 13:40 - 00000000 ____D C:\Windows\system32\Dism
2017-05-10 19:34 - 2017-03-18 13:40 - 00000000 ____D C:\Windows\servicing
2017-05-10 19:33 - 2017-04-11 11:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2017-05-10 19:33 - 2017-04-08 21:19 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2017-05-10 19:33 - 2017-04-08 21:08 - 00000000 __RHD C:\Users\Public\AccountPictures
2017-05-10 19:33 - 2017-03-18 23:03 - 00000000 ____D C:\Windows\Help
2017-05-10 19:33 - 2017-03-18 23:03 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2017-05-10 19:28 - 2017-03-18 23:03 - 00000000 ____D C:\Windows\registration
2017-05-10 19:26 - 2017-03-18 23:03 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2017-05-10 19:26 - 2017-03-18 23:03 - 00000000 ____D C:\Windows\SystemResources
2017-05-10 19:26 - 2017-03-18 23:03 - 00000000 ____D C:\Windows\system32\Macromed
2017-05-10 19:24 - 2017-04-11 11:03 - 00000000 ____D C:\Users\Fox\AppData\Local\NVIDIA
2017-05-10 19:24 - 2017-04-08 21:36 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2017-05-10 19:24 - 2017-03-18 23:03 - 00000000 ____D C:\Windows\Branding
2017-05-10 19:23 - 2017-04-11 11:01 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-05-10 19:10 - 2017-04-08 21:50 - 00000000 ____D C:\Users\Fox\AppData\Local\Adobe
2017-05-10 14:42 - 2017-04-08 21:08 - 01572618 _____ C:\Windows\system32\PerfStringBackup.INI
2017-05-10 14:16 - 2017-04-11 11:03 - 00001445 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2017-05-10 14:16 - 2017-04-11 11:02 - 00003994 _____ C:\Windows\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-10 14:16 - 2017-04-11 11:02 - 00003894 _____ C:\Windows\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-10 14:16 - 2017-04-11 11:02 - 00003866 _____ C:\Windows\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-10 14:16 - 2017-04-11 11:02 - 00003858 _____ C:\Windows\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-10 14:16 - 2017-04-11 11:02 - 00003696 _____ C:\Windows\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-10 14:16 - 2017-04-11 11:02 - 00003654 _____ C:\Windows\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-10 13:58 - 2017-04-09 05:57 - 00221848 _____ C:\Windows\system32\FNTCACHE.DAT
2017-05-10 13:21 - 2017-04-08 21:50 - 00004648 _____ C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier
2017-05-03 22:21 - 2017-04-11 13:15 - 00057976 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\SET16EB.tmp
2017-05-03 22:21 - 2017-04-11 11:02 - 01893496 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2017-05-03 22:21 - 2017-04-11 11:02 - 01755256 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2017-05-03 22:21 - 2017-04-11 11:02 - 01477240 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2017-05-03 22:21 - 2017-04-11 11:02 - 01317496 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2017-05-03 22:21 - 2017-04-11 11:02 - 00121464 _____ C:\Windows\system32\NvRtmpStreamer64.dll
2017-05-03 22:21 - 2017-04-11 11:00 - 00048248 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2017-05-03 21:28 - 2017-04-08 22:08 - 00001951 _____ C:\Windows\NvTelemetryContainerRecovery.bat
2017-05-03 12:01 - 2017-01-31 04:15 - 00000000 ____D C:\Users\Fox\Downloads\Wallpapers
2017-05-02 12:25 - 2017-04-08 21:08 - 00000000 ____D C:\Users\Fox\AppData\Local\Packages
2017-05-02 00:38 - 2017-04-11 13:15 - 00059448 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvhci.sys
2017-05-02 00:38 - 2017-04-11 11:00 - 04092088 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2017-05-02 00:38 - 2017-04-11 11:00 - 03607464 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2017-05-02 00:38 - 2017-04-11 11:00 - 00045061 _____ C:\Windows\system32\nvinfo.pb
2017-05-01 22:52 - 2017-04-08 21:36 - 00001951 _____ C:\Windows\NvContainerRecovery.bat
2017-05-01 22:51 - 2017-04-11 11:01 - 06437312 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2017-05-01 22:51 - 2017-04-11 11:01 - 02479552 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2017-05-01 22:51 - 2017-04-11 11:01 - 01762752 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2017-05-01 22:51 - 2017-04-11 11:01 - 00548800 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2017-05-01 22:51 - 2017-04-11 11:01 - 00392312 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2017-05-01 22:51 - 2017-04-11 11:01 - 00081856 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2017-05-01 22:51 - 2017-04-11 11:01 - 00069752 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2017-05-01 11:42 - 2017-04-10 14:55 - 00000000 ____D C:\Users\Fox\AppData\Local\CrashDumps
2017-05-01 00:51 - 2017-03-18 23:03 - 00000000 ____D C:\Windows\system32\NDF
2017-04-29 03:05 - 2017-03-18 23:06 - 00835576 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2017-04-29 03:05 - 2017-03-18 23:06 - 00177656 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2017-04-27 21:39 - 2017-04-08 21:26 - 00003416 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2017-04-27 21:39 - 2017-04-08 21:26 - 00003292 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2017-04-25 23:11 - 2017-04-11 11:01 - 07944687 _____ C:\Windows\system32\nvcoproc.bin
2017-04-23 12:59 - 2017-04-10 13:52 - 530795775 _____ C:\Windows\MEMORY.DMP
2017-04-23 12:59 - 2017-04-10 13:52 - 00000000 ____D C:\Windows\Minidump
2017-04-23 01:57 - 2017-04-11 12:15 - 00000000 ___HD C:\Windows\msdownld.tmp
2017-04-23 01:57 - 2017-04-11 12:15 - 00000000 ____D C:\Windows\SysWOW64\directx
2017-04-22 23:12 - 2017-04-10 14:42 - 00000000 __SHD C:\Users\Fox\IntelGraphicsProfiles
2017-04-20 03:59 - 2017-04-11 13:15 - 00059448 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\SET529.tmp
2017-04-20 03:59 - 2017-04-11 11:00 - 04085712 _____ (NVIDIA Corporation) C:\Windows\system32\SET4082.tmp
2017-04-20 03:59 - 2017-04-11 11:00 - 03602112 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\SET4B1D.tmp
2017-04-19 08:12 - 2017-04-09 06:57 - 00395226 __RSH C:\bootmgr
2017-04-19 01:01 - 2017-04-08 22:17 - 00001214 _____ C:\Users\Fox\Desktop\Documents.lnk
2017-04-18 17:03 - 2017-04-12 20:40 - 00001591 _____ C:\Users\Public\Desktop\Counter Strike Global Offensive.lnk

==================== Files in the root of some directories =======

2017-05-12 23:14 - 2017-05-12 23:27 - 1262576 __RSH () C:\Users\Fox\AppData\Roaming\Microsoft\msi.exe

Some files in TEMP:
====================
2017-05-12 00:26 - 2017-05-12 00:27 - 0079736 _____ (AppWork GmbH) C:\Users\Fox\AppData\Local\Temp\131390152198418099.exe
2017-05-12 00:27 - 2017-05-12 00:27 - 1534344 _____ ( ) C:\Users\Fox\AppData\Local\Temp\13139015220977085111.exe
2017-05-12 23:18 - 2017-05-12 23:18 - 1299440 ____N () C:\Users\Fox\AppData\Local\Temp\2Ul4UtV2XIRe.exe
2017-05-13 00:11 - 2017-05-13 00:11 - 1262576 ____N () C:\Users\Fox\AppData\Local\Temp\2UvOw42gtfk4.exe
2017-04-10 15:14 - 2017-04-09 14:10 - 1738952 _____ () C:\Users\Fox\AppData\Local\Temp\AnyDeskUninst625c.exe
2017-05-12 23:15 - 2017-05-12 23:15 - 2584280 ____N () C:\Users\Fox\AppData\Local\Temp\cQDncNmWvF2D.exe
2017-05-12 23:15 - 2017-05-12 23:16 - 2584280 ____N () C:\Users\Fox\AppData\Local\Temp\F5n1eANAlEA3.exe
2017-05-12 23:17 - 2017-05-12 23:17 - 1299440 ____N () C:\Users\Fox\AppData\Local\Temp\I5ZSbVEyC7CW.exe
2017-05-12 23:29 - 2017-05-12 23:29 - 0417792 _____ () C:\Users\Fox\AppData\Local\Temp\K0xyrgznBNIF.exe
2017-05-12 23:15 - 2017-05-02 19:50 - 4127960 _____ (Mail.Ru) C:\Users\Fox\AppData\Local\Temp\MailRuUpdater.exe
2017-05-13 00:09 - 2017-05-13 00:09 - 2584280 ____N () C:\Users\Fox\AppData\Local\Temp\Mukz0csjeZDB.exe
2017-04-08 21:36 - 2017-04-20 02:18 - 0867968 _____ (NVIDIA Corporation) C:\Users\Fox\AppData\Local\Temp\nvSCPAPI64.dll
2017-04-08 22:06 - 2017-04-20 02:18 - 0367736 _____ (NVIDIA Corporation) C:\Users\Fox\AppData\Local\Temp\nvStInst.exe
2017-05-12 00:28 - 2017-05-12 00:28 - 0040448 ____N () C:\Users\Fox\AppData\Local\Temp\proxy_vole2284890073881780244.dll
2017-05-12 00:30 - 2017-05-12 00:30 - 0040448 ____N () C:\Users\Fox\AppData\Local\Temp\proxy_vole8796632954421411171.dll
2017-05-12 23:18 - 2017-05-12 23:18 - 0000000 _____ () C:\Users\Fox\AppData\Local\Temp\rKPH8hgSxYkk.exe
2017-05-12 23:28 - 2017-05-12 23:28 - 2584280 ____N () C:\Users\Fox\AppData\Local\Temp\VViqDGsiC1tE.exe
2017-05-13 00:15 - 2017-05-13 00:15 - 1262576 ____N () C:\Users\Fox\AppData\Local\Temp\xnl2hX0kVwvN.exe

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2017-05-10 12:01

==================== End of FRST.txt ============================




https://www.mycity.rs/must-login.png

offline
  • Pridružio: 26 Avg 2010
  • Poruke: 10622
  • Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building

Zbog čega nemaš aktivan antivirusni program?!


Arrow

Otvori Notepad i iskopiraj sljedeći tekst koji se nalazi unutar Kod polja.

HKU\S-1-5-21-2678727347-3077865498-453496965-1001\...\Run: [okfifwpquv] => explorer "hxxp://tetrado.ru/?utm_source=uoua03&utm_content=ae2b9d8e2f3a3bfac9cb8d4e494de36a&utm_term=66D9ADAED5BF8B13522F37D4B46539A7&utm_d=20170512" <===== ATTENTION
SearchScopes: HKU\S-1-5-21-2678727347-3077865498-453496965-1001 -> {A06ED961-D98F-4CF9-A89B-80AB11DB149C} URL = hxxp://go-search.ru/search?q={searchTerms}
CHR DefaultSearchURL: Default -> hxxp://go-search.ru/search?q={searchTerms}
CHR DefaultSearchKeyword: Default -> gosearch
CHR DefaultSuggestURL: Default -> hxxp://suggest.yandex.net/suggest-ff.cgi?part={searchTerms}
CHR HKLM-x32\...\Chrome\Extension: [epgjfmblhacacphaljkdcjllkomdcjpc] - hxxps://clients2.google.com/service/update2/crx
Task: {739D9E48-0A8A-4C79-9727-3B299F69FCF0} - System32\Tasks\wutphost => C:\Users\Fox\AppData\Local\wutphost\wutphost.exe [2017-05-13] () <==== ATTENTION
Task: {C9A612C4-2AC3-43F4-8470-5FF502A24FB9} - System32\Tasks\One Drive Update => C:\Windows\explorer.exe hxxp://dluxuwu.ru
Task: {D795101E-7885-41A6-9165-CDC9AE5516AE} - System32\Tasks\wupdate => C:\Users\Fox\AppData\Local\wupdate\wupdate.exe [2017-05-13] () <==== ATTENTION
Task: {F1ACCBA2-994E-4915-8AA5-8EA07B4F9219} - System32\Tasks\MSI => C:\Users\Fox\AppData\Roaming\Microsoft\msi.exe [2017-05-12] ()
C:\Users\Fox\AppData\Local\wutphost
C:\Users\Fox\AppData\Local\wupdate
C:\Users\Fox\AppData\Roaming\Microsoft\msi.exe
2017-05-12 00:26 - 2017-05-12 00:27 - 0079736 _____ (AppWork GmbH) C:\Users\Fox\AppData\Local\Temp\131390152198418099.exe
2017-05-12 00:27 - 2017-05-12 00:27 - 1534344 _____ ( ) C:\Users\Fox\AppData\Local\Temp\13139015220977085111.exe
2017-05-12 23:18 - 2017-05-12 23:18 - 1299440 ____N () C:\Users\Fox\AppData\Local\Temp\2Ul4UtV2XIRe.exe
2017-05-13 00:11 - 2017-05-13 00:11 - 1262576 ____N () C:\Users\Fox\AppData\Local\Temp\2UvOw42gtfk4.exe
2017-04-10 15:14 - 2017-04-09 14:10 - 1738952 _____ () C:\Users\Fox\AppData\Local\Temp\AnyDeskUninst625c.exe
2017-05-12 23:15 - 2017-05-12 23:15 - 2584280 ____N () C:\Users\Fox\AppData\Local\Temp\cQDncNmWvF2D.exe
2017-05-12 23:15 - 2017-05-12 23:16 - 2584280 ____N () C:\Users\Fox\AppData\Local\Temp\F5n1eANAlEA3.exe
2017-05-12 23:17 - 2017-05-12 23:17 - 1299440 ____N () C:\Users\Fox\AppData\Local\Temp\I5ZSbVEyC7CW.exe
2017-05-12 23:29 - 2017-05-12 23:29 - 0417792 _____ () C:\Users\Fox\AppData\Local\Temp\K0xyrgznBNIF.exe
2017-05-13 00:09 - 2017-05-13 00:09 - 2584280 ____N () C:\Users\Fox\AppData\Local\Temp\Mukz0csjeZDB.exe
2017-05-12 23:18 - 2017-05-12 23:18 - 0000000 _____ () C:\Users\Fox\AppData\Local\Temp\rKPH8hgSxYkk.exe
2017-05-12 23:28 - 2017-05-12 23:28 - 2584280 ____N () C:\Users\Fox\AppData\Local\Temp\VViqDGsiC1tE.exe
2017-05-13 00:15 - 2017-05-13 00:15 - 1262576 ____N () C:\Users\Fox\AppData\Local\Temp\xnl2hX0kVwvN.exe
EmptyTemp:


U okviru Notepad-a klikni na File --> Save As
Pod Encoding izaberi UTF-8.
Fajl nazovi Fixlist i sačuvaj na Desktop
Dvoklikom ponovo pokreni FRST.exe
Klikni na Fix i sačekaj dok program ne završi.
Ukoliko program zatraži restart računara, omogući mu da to nesmetano obavi.
Nakon završetka rada, otvoriće se fixlog.txt, sa sadržajem koji treba da kopiraš u temu.
Takođe, na Desktop-u će se nalaziti (fixlog.txt).

offline
  • Anunnaki
  • Pridružio: 20 Apr 2012
  • Poruke: 1645

Sinoc sam instaliro Zemana Antivirus, @Sass Drake koji Antivirus mi predlazete?

Fix result of Farbar Recovery Scan Tool (x64) Version: 08-05-2017
Ran by Fox (13-05-2017 15:00:35) Run:1
Running from C:\Users\Fox\Desktop
Loaded Profiles: Fox (Available Profiles: Fox)
Boot Mode: Normal
==============================================

fixlist content:
*****************
HKU\S-1-5-21-2678727347-3077865498-453496965-1001\...\Run: [okfifwpquv] => explorer "hxxp://tetrado.ru/?utm_source=uoua03&utm_content=ae2b9d8e2f3a3bfac9cb8d4e494de36a&utm_term=66D9ADAED5BF8B13522F37D4B46539A7&utm_d=20170512" <===== ATTENTION
SearchScopes: HKU\S-1-5-21-2678727347-3077865498-453496965-1001 -> {A06ED961-D98F-4CF9-A89B-80AB11DB149C} URL = hxxp://go-search.ru/search?q={searchTerms}
CHR DefaultSearchURL: Default -> hxxp://go-search.ru/search?q={searchTerms}
CHR DefaultSearchKeyword: Default -> gosearch
CHR DefaultSuggestURL: Default -> hxxp://suggest.yandex.net/suggest-ff.cgi?part={searchTerms}
CHR HKLM-x32\...\Chrome\Extension: [epgjfmblhacacphaljkdcjllkomdcjpc] - hxxps://clients2.google.com/service/update2/crx
Task: {739D9E48-0A8A-4C79-9727-3B299F69FCF0} - System32\Tasks\wutphost => C:\Users\Fox\AppData\Local\wutphost\wutphost.exe [2017-05-13] () <==== ATTENTION
Task: {C9A612C4-2AC3-43F4-8470-5FF502A24FB9} - System32\Tasks\One Drive Update => C:\Windows\explorer.exe hxxp://dluxuwu.ru
Task: {D795101E-7885-41A6-9165-CDC9AE5516AE} - System32\Tasks\wupdate => C:\Users\Fox\AppData\Local\wupdate\wupdate.exe [2017-05-13] () <==== ATTENTION
Task: {F1ACCBA2-994E-4915-8AA5-8EA07B4F9219} - System32\Tasks\MSI => C:\Users\Fox\AppData\Roaming\Microsoft\msi.exe [2017-05-12] ()
C:\Users\Fox\AppData\Local\wutphost
C:\Users\Fox\AppData\Local\wupdate
C:\Users\Fox\AppData\Roaming\Microsoft\msi.exe
2017-05-12 00:26 - 2017-05-12 00:27 - 0079736 _____ (AppWork GmbH) C:\Users\Fox\AppData\Local\Temp\131390152198418099.exe
2017-05-12 00:27 - 2017-05-12 00:27 - 1534344 _____ ( ) C:\Users\Fox\AppData\Local\Temp\13139015220977085111.exe
2017-05-12 23:18 - 2017-05-12 23:18 - 1299440 ____N () C:\Users\Fox\AppData\Local\Temp\2Ul4UtV2XIRe.exe
2017-05-13 00:11 - 2017-05-13 00:11 - 1262576 ____N () C:\Users\Fox\AppData\Local\Temp\2UvOw42gtfk4.exe
2017-04-10 15:14 - 2017-04-09 14:10 - 1738952 _____ () C:\Users\Fox\AppData\Local\Temp\AnyDeskUninst625c.exe
2017-05-12 23:15 - 2017-05-12 23:15 - 2584280 ____N () C:\Users\Fox\AppData\Local\Temp\cQDncNmWvF2D.exe
2017-05-12 23:15 - 2017-05-12 23:16 - 2584280 ____N () C:\Users\Fox\AppData\Local\Temp\F5n1eANAlEA3.exe
2017-05-12 23:17 - 2017-05-12 23:17 - 1299440 ____N () C:\Users\Fox\AppData\Local\Temp\I5ZSbVEyC7CW.exe
2017-05-12 23:29 - 2017-05-12 23:29 - 0417792 _____ () C:\Users\Fox\AppData\Local\Temp\K0xyrgznBNIF.exe
2017-05-13 00:09 - 2017-05-13 00:09 - 2584280 ____N () C:\Users\Fox\AppData\Local\Temp\Mukz0csjeZDB.exe
2017-05-12 23:18 - 2017-05-12 23:18 - 0000000 _____ () C:\Users\Fox\AppData\Local\Temp\rKPH8hgSxYkk.exe
2017-05-12 23:28 - 2017-05-12 23:28 - 2584280 ____N () C:\Users\Fox\AppData\Local\Temp\VViqDGsiC1tE.exe
2017-05-13 00:15 - 2017-05-13 00:15 - 1262576 ____N () C:\Users\Fox\AppData\Local\Temp\xnl2hX0kVwvN.exe
EmptyTemp:
*****************

HKU\S-1-5-21-2678727347-3077865498-453496965-1001\Software\Microsoft\Windows\CurrentVersion\Run\\okfifwpquv => value not found.
HKU\S-1-5-21-2678727347-3077865498-453496965-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{A06ED961-D98F-4CF9-A89B-80AB11DB149C} => key removed successfully
HKCR\CLSID\{A06ED961-D98F-4CF9-A89B-80AB11DB149C} => key not found.
Chrome DefaultSearchURL => removed successfully
Chrome DefaultSearchKeyword => removed successfully
Chrome DefaultSuggestURL => removed successfully
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\epgjfmblhacacphaljkdcjllkomdcjpc => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{739D9E48-0A8A-4C79-9727-3B299F69FCF0} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{739D9E48-0A8A-4C79-9727-3B299F69FCF0} => key removed successfully
C:\Windows\System32\Tasks\wutphost => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\wutphost => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C9A612C4-2AC3-43F4-8470-5FF502A24FB9} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C9A612C4-2AC3-43F4-8470-5FF502A24FB9} => key removed successfully
C:\Windows\System32\Tasks\One Drive Update => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\One Drive Update => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D795101E-7885-41A6-9165-CDC9AE5516AE} => key not found.
C:\Windows\System32\Tasks\wupdate => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\wupdate => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F1ACCBA2-994E-4915-8AA5-8EA07B4F9219} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F1ACCBA2-994E-4915-8AA5-8EA07B4F9219} => key removed successfully
C:\Windows\System32\Tasks\MSI => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\MSI => key not found.
C:\Users\Fox\AppData\Local\wutphost => moved successfully
"C:\Users\Fox\AppData\Local\wupdate" => not found.
"C:\Users\Fox\AppData\Roaming\Microsoft\msi.exe" => not found.
C:\Users\Fox\AppData\Local\Temp\131390152198418099.exe => moved successfully
C:\Users\Fox\AppData\Local\Temp\13139015220977085111.exe => moved successfully
C:\Users\Fox\AppData\Local\Temp\2Ul4UtV2XIRe.exe => moved successfully
C:\Users\Fox\AppData\Local\Temp\2UvOw42gtfk4.exe => moved successfully
C:\Users\Fox\AppData\Local\Temp\AnyDeskUninst625c.exe => moved successfully
C:\Users\Fox\AppData\Local\Temp\cQDncNmWvF2D.exe => moved successfully
C:\Users\Fox\AppData\Local\Temp\F5n1eANAlEA3.exe => moved successfully
C:\Users\Fox\AppData\Local\Temp\I5ZSbVEyC7CW.exe => moved successfully
C:\Users\Fox\AppData\Local\Temp\K0xyrgznBNIF.exe => moved successfully
C:\Users\Fox\AppData\Local\Temp\Mukz0csjeZDB.exe => moved successfully
C:\Users\Fox\AppData\Local\Temp\rKPH8hgSxYkk.exe => moved successfully
C:\Users\Fox\AppData\Local\Temp\VViqDGsiC1tE.exe => moved successfully
C:\Users\Fox\AppData\Local\Temp\xnl2hX0kVwvN.exe => moved successfully

=========== EmptyTemp: ==========

BITS transfer queue => 7888896 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 54886187 B
Java, Flash, Steam htmlcache => 15748908 B
Windows/system/drivers => 4353278 B
Edge => 2268624 B
Chrome => 263911746 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 128 B
systemprofile32 => 0 B
LocalService => 27062 B
NetworkService => 1142 B
Fox => 1294122660 B

RecycleBin => 0 B
EmptyTemp: => 1.5 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 15:01:08 ====

offline
  • Pridružio: 26 Avg 2010
  • Poruke: 10622
  • Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building

Spakuj u ZIP, RAR ili 7Z arhivu sljedeći folder:

C:\FRST\Quarantine

i pošalji ga preko sljedećeg linka:

http://www.mycity.rs/ambulanta-upload.php


Javi kada to uradiš i sačekaj dalja uputstva.

offline
  • Anunnaki
  • Pridružio: 20 Apr 2012
  • Poruke: 1645

Spakovo sam ga ali sad iznosi 11 mb a upload za ambulantu je max 10 mb, sta da radim?

offline
  • Pridružio: 26 Avg 2010
  • Poruke: 10622
  • Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building

TheSpringEagle ::Spakovo sam ga ali sad iznosi 11 mb a upload za ambulantu je max 10 mb, sta da radim?

Probaj da iskoristiš maksimalni stepen kompresije u arhiveru koji koristiš, a ako ne okači na wikisend.com pa mi pošalji link preko PP.

offline
  • Anunnaki
  • Pridružio: 20 Apr 2012
  • Poruke: 1645

Napisano: 13 Maj 2017 15:33



Dopuna: 13 Maj 2017 15:34

Sad cu preko Wikisend pa saljem u PP.

Dopuna: 13 Maj 2017 15:38


Sta da radim?

offline
  • Pridružio: 26 Avg 2010
  • Poruke: 10622
  • Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building

Preuzmi Malwarebytes Anti-Malware sa ovog ili ovog ili ovog linka i instaliraj aplikaciju.
Pokreni mb3-setup-consumer-{verzija}.exe i isprati uputstva za instalaciju programa. Nakon instalacije, klikni na Finish

Prilikom prvog pokretanja, program će prikazati prozor "dobrodošlice". Slobodno zatvori taj prozor.
Napomena: Premium funkcije programa su već aktivirane i važe 13 dana od trenutka instalacije. Premium funkcije možeš isključiti preko Settings > My Account tab podešavanja.

• Podešavanja skenera - u Settings, klikni na Protection tab. Ispod Scan Options sekcije, uključi "Scan for rootkits" opciju.
• Pripremi podešavanja za Threat Scan - u Dashboard , klikni na Scan Now dugme. MBAM će ažurirati bazu i započeti skeniranje.

Kada se skeniranje završi, ako je infekcija detektovana, obrati pažnju da je sve označeno, pa klikni na Remove Selected. Restartuj računar ako program upita za restart.
• Dostavi log: Pod Reports izaberi trenutni datum izveštaja Scan Report i potom klikni na View Report.

Izvezi log na Desktop;
- Klikni na Export dugme na dnu, pa onda izaberi 'Text file (*.txt)'
# U Save File dijalogu koji se pojavi, klikni na Desktop. U File name: polje, upiši "mbam" (bez navodnika) i klikni na Save.
- Pojaviće se poruka "Your file has been successfully exported", klikni Ok i zatvori prozor.



• U odgovoru prikači mbam.txt log koristeći "Prikači fajl" opciju.

offline
  • Anunnaki
  • Pridružio: 20 Apr 2012
  • Poruke: 1645

https://www.mycity.rs/must-login.png

offline
  • Pridružio: 26 Avg 2010
  • Poruke: 10622
  • Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building

Kakvo je sad stanje?

Ko je trenutno na forumu
 

Ukupno su 1076 korisnika na forumu :: 37 registrovanih, 7 sakrivenih i 1032 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: A.R.Chafee.Jr., Apok, bufanje, DonRumataEstorski, draganl, Duh sa sekirom, Fabius, FileFinder, Frunze, goxin, Istman, kinez88, Kubovac, kybonacci, mackenzie, mean_machine, menges, milos.cbr, mkukoleca, Papadubi, Parker, pavlo, raptorsi, ruma, S2M, sevenino, Sirius, slonic_tonic, sombrero, Srle993, stankolich, Steeeefan, uruk, vlada035, YU-UKI, zdrebac, zillbg