MyCity » Ambulanta -> Arhiva Ambulante » kms-r@1n pomoc

kms-r@1n pomoc

Napisano na dan: 3.7.2017

Strana:
1
2

kms-r@1n pomoc

Sledeća strana

Pagination

Odgovori

Strana:
1
2

KRCO95 Poslao: 03 Jul 2017 16:24 Idi na vrh
offline KRCO95 Ugledni građanin Milan Pridružio: 11 Apr 2012 Poruke: 465	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Danas mi avast izbacio upozorenja da je pronasao virus i da ga je uspesno obrisao ali ja isti naziv virusa vidim u task manageru cuo sam da je virus jedan od opasnijih plus ja imam dosta podataka na racunaru stvarno ne znam kako sam ga pokupio... Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 02-07-2017 Ran by KRCO (administrator) on KRCO (03-07-2017 17:22:19) Running from C:\Users\KRCO\Desktop Loaded Profiles: KRCO (Available Profiles: KRCO) Platform: Windows 10 Pro Version 1607 (X64) Language: English (United States) Internet Explorer Version 11 (Default browser: Chrome) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-t.....scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (Intel Corporation) C:\Windows\System32\igfxCUIService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe (Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe () C:\Windows\SysWOW64\PnkBstrA.exe () C:\Windows\KMS-R@1n.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe (Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe (Intel Corporation) C:\Windows\System32\igfxEM.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.8.190.0_x64__kzf8qxf38zg5c\SkypeHost.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe () C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe (Razer, Inc.) C:\Program Files (x86)\Razer\InGameEngine\32bit\RazerIngameEngine.exe (Razer, Inc.) C:\Users\KRCO\AppData\Local\Razer\InGameEngine\cache\RzStats.Manager\rzcefrenderprocess.exe (Samsung Electronics Co. Ltd.) C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe (Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (AVAST Software s.r.o.) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe (Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe (Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Viber Media S.Ã r.l.) C:\Users\KRCO\AppData\Local\Viber\Viber.exe (Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\System32\InstallAgent.exe (Microsoft Corporation) C:\Windows\System32\InstallAgentUserBroker.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\System32\wbem\WMIC.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\reader_sl.exe ==================== Registry (Whitelisted) ==================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated) HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [213832 2017-07-02] (AVAST Software) HKLM-x32\...\Run: [] => [X] HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [596640 2017-04-13] (Razer Inc.) HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2383040 2016-10-12] (Adobe Systems Incorporated) HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION HKU\S-1-5-21-4243106807-3281007250-2583883116-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3042592 2017-06-08] (Valve Corporation) HKU\S-1-5-21-4243106807-3281007250-2583883116-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27784672 2017-06-27] (Skype Technologies S.A.) HKU\S-1-5-21-4243106807-3281007250-2583883116-1001\...\Run: [Yahoo Messenger Updater] => C:\Users\KRCO\AppData\Roaming\Yahoo Messenger\YMUpdater\YMUpdater.exe [115656 2017-03-24] (Yahoo!, Inc.) HKU\S-1-5-21-4243106807-3281007250-2583883116-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9364696 2017-03-03] (Piriform Ltd) HKU\S-1-5-21-4243106807-3281007250-2583883116-1001\...\Run: [MCShield Monitor] => C:\Program Files (x86)\MCShield\MCShieldRTM.exe [650816 2014-04-11] (MyCity) HKU\S-1-5-21-4243106807-3281007250-2583883116-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4701888 2017-06-06] (Disc Soft Ltd) HKU\S-1-5-21-4243106807-3281007250-2583883116-1001\...\Run: [Viber] => C:\Users\KRCO\AppData\Local\Viber\Viber.exe [31344720 2017-06-26] (Viber Media S.Ã r.l.) HKU\S-1-5-21-4243106807-3281007250-2583883116-1001\...\MountPoints2: {dbaa33a6-fa98-11e6-ac72-408d5cc83ab0} - "E:\HiSuiteDownLoader.exe" ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt Tcpip\..\Interfaces\{d8301356-9fc0-40bc-a7ad-eb528f291851}: [NameServer] 8.8.8.8,8.8.4.4 Internet Explorer: ================== HKU\S-1-5-21-4243106807-3281007250-2583883116-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs FireFox: ======== FF DefaultProfile: m8xel4zc.default FF ProfilePath: C:\Users\KRCO\AppData\Roaming\Mozilla\Firefox\Profiles\m8xel4zc.default [2017-07-02] FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2016-10-12] (Adobe Systems) FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-06-08] (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-06-08] (NVIDIA Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-04-05] (Adobe Systems Inc.) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2016-10-12] (Adobe Systems) Chrome: ======= CHR StartupUrls: Default -> "hxxps://www.google.com/?gws_rd=ssl" CHR Profile: C:\Users\KRCO\AppData\Local\Google\Chrome\User Data\Default [2017-07-03] CHR Extension: (Google Drive) - C:\Users\KRCO\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-04-12] CHR Extension: (YouTube) - C:\Users\KRCO\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-04-12] CHR Extension: (Avira Safe Shopping) - C:\Users\KRCO\AppData\Local\Google\Chrome\User Data\Default\Extensions\ccbpbkebodcjkknkfkpmfeciinhidaeh [2017-07-02] CHR Extension: (Adblock Plus) - C:\Users\KRCO\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2017-03-22] CHR Extension: (Steam Inventory Helper) - C:\Users\KRCO\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmeakgjggjdlcpncigglobpjbkabhmjl [2017-06-30] CHR Extension: (Slither.io) - C:\Users\KRCO\AppData\Local\Google\Chrome\User Data\Default\Extensions\dmplapbomebhmdffmlhgbelgcnfajapj [2016-04-25] CHR Extension: (Chrome Web Store Payments) - C:\Users\KRCO\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-09] CHR Extension: (Gmail) - C:\Users\KRCO\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-04-12] CHR Extension: (Chrome Media Router) - C:\Users\KRCO\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-06-28] CHR HKLM\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh] - hxxps://clients2.google.com/service/update2/crx CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx <not found> CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx ==================== Services (Whitelisted) ==================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [744640 2016-10-12] (Adobe Systems Incorporated) R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2246256 2017-05-18] (Adobe Systems, Incorporated) R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7430992 2017-07-02] (AVAST Software s.r.o.) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [263312 2017-07-02] (AVAST Software) S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1471168 2017-04-24] (Disc Soft Ltd) S3 EasyAntiCheat; C:\WINDOWS\SysWOW64\EasyAntiCheat.exe [383016 2017-05-26] (EasyAntiCheat Ltd) R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [373744 2016-11-01] (Intel Corporation) R2 KMS-R@1n; C:\Windows\KMS-R@1n.exe [26112 2017-07-03] () [File not signed] S3 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [495040 2017-06-08] (NVIDIA Corporation) S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [495040 2017-06-08] (NVIDIA Corporation) R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462968 2017-06-08] (NVIDIA Corporation) R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [449984 2017-06-08] (NVIDIA Corporation) S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2168208 2017-06-15] (Electronic Arts) R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3148184 2017-06-15] (Electronic Arts) S3 PAExec; C:\WINDOWS\PAExec.exe [189112 2017-06-10] (Power Admin LLC) R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [76888 2016-12-24] () R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [189264 2016-09-25] () S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2889896 2016-07-16] (Microsoft Corporation) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation) ===================== Drivers (Whitelisted) ====================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R1 aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdrivera.sys [319984 2017-07-02] (AVAST Software s.r.o.) R0 aswbidsh; C:\WINDOWS\system32\drivers\aswbidsha.sys [198944 2017-07-02] (AVAST Software s.r.o.) R0 aswblog; C:\WINDOWS\system32\drivers\aswbloga.sys [343264 2017-07-02] (AVAST Software s.r.o.) R0 aswbuniv; C:\WINDOWS\system32\drivers\aswbuniva.sys [57704 2017-07-02] (AVAST Software s.r.o.) S3 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [46984 2017-07-02] (AVAST Software) R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [41800 2017-07-02] (AVAST Software) R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [146664 2017-07-02] (AVAST Software) R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [110352 2017-07-02] (AVAST Software) R0 aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [84392 2017-07-02] (AVAST Software) R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [1015848 2017-07-02] (AVAST Software) R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [585608 2017-07-02] (AVAST Software) R2 aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [198768 2017-07-02] (AVAST Software) R0 aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [361336 2017-07-03] (AVAST Software) R0 avdevprot; C:\WINDOWS\System32\DRIVERS\avdevprot.sys [60920 2017-06-02] (Avira Operations GmbH & Co. KG) R1 avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [44488 2017-06-02] (Avira Operations GmbH & Co. KG) R2 avnetflt; C:\WINDOWS\system32\DRIVERS\avnetflt.sys [88488 2017-06-02] (Avira Operations GmbH & Co. KG) R0 avusbflt; C:\WINDOWS\System32\Drivers\avusbflt.sys [38048 2017-06-02] (Avira Operations GmbH & Co. KG) R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2016-06-07] (Disc Soft Ltd) R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2016-06-07] (Disc Soft Ltd) R1 ESEADriver2; C:\Users\KRCO\AppData\Local\Temp\ESEADriver2.sys [340096 2017-06-06] () <==== ATTENTION R1 FACEIT; C:\WINDOWS\System32\Drivers\FACEIT.sys [8100864 2017-07-01] () S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] () R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_2d81f3535ced17c6\nvlddmkm.sys [14461344 2017-06-09] (NVIDIA Corporation) S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30144 2017-06-08] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48064 2017-06-08] (NVIDIA Corporation) R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [57792 2017-06-08] (NVIDIA Corporation) R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [589824 2016-07-16] (Realtek ) R3 rzdaendpt; C:\WINDOWS\System32\drivers\rzdaendpt.sys [43720 2015-08-13] (Razer Inc) R2 rzpmgrk; C:\WINDOWS\system32\drivers\rzpmgrk.sys [44144 2016-09-17] (Razer, Inc.) R2 rzpnk; C:\WINDOWS\system32\drivers\rzpnk.sys [137840 2016-09-07] (Razer, Inc.) R3 rzvkeyboard; C:\WINDOWS\System32\drivers\rzvkeyboard.sys [44232 2015-08-13] (Razer Inc) R0 sptd2; C:\WINDOWS\System32\Drivers\sptd2.sys [203296 2017-06-06] (Duplex Secure Ltd) S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation) R3 XtuAcpiDriver; C:\WINDOWS\System32\drivers\XtuAcpiDriver.sys [63840 2015-06-06] (Intel Corporation) U1 aswbdisk; no ImagePath S0 MBAMSwissArmy; system32\drivers\MBAMSwissArmy.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One Month Created files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2017-07-03 17:22 - 2017-07-03 17:22 - 00016897 _____ C:\Users\KRCO\Desktop\FRST.txt 2017-07-03 17:20 - 2017-07-03 17:22 - 00000000 ____D C:\FRST 2017-07-03 17:20 - 2017-07-03 17:20 - 00000000 ____D C:\ProgramData\SWCUTemp 2017-07-03 17:18 - 2017-07-03 17:18 - 02435584 _____ (Farbar) C:\Users\KRCO\Desktop\FRST64.exe 2017-07-03 17:10 - 2017-07-03 17:10 - 00000000 _____ C:\WINDOWS\cd_127 2017-07-03 17:03 - 2017-07-03 17:09 - 00003585 _____ C:\Users\Public\Desktop\R@1n.txt 2017-07-03 17:03 - 2017-07-03 17:03 - 00004096 _____ C:\WINDOWS\KMS-R@1nHook.dll 2017-07-03 16:59 - 2017-07-03 16:59 - 00004608 _____ C:\WINDOWS\SECOH-QAD.exe 2017-07-03 16:59 - 2017-07-03 16:59 - 00003584 _____ C:\WINDOWS\SECOH-QAD.dll 2017-07-03 13:42 - 2017-07-02 20:50 - 00400464 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe 2017-07-03 13:29 - 2017-07-03 13:29 - 00000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job 2017-07-03 13:06 - 2017-07-03 13:25 - 776220165 _____ C:\Users\KRCO\Desktop\Club Dance Music Mix 2017 🔥 Best Remixes of Popular Songs 2017 🔥 Melbourne Bounce Remix.flac 2017-07-02 22:53 - 2017-07-02 22:58 - 00000000 ___SD C:\WINDOWS\UpdateAssistantV2 2017-07-02 20:52 - 2017-07-03 13:42 - 00003988 _____ C:\WINDOWS\System32\Tasks\SafeZone scheduled Autoupdate 1499021573 2017-07-02 20:52 - 2017-07-03 13:42 - 00001088 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk 2017-07-02 20:52 - 2017-07-02 20:52 - 00041800 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys 2017-07-02 20:50 - 2017-07-03 13:42 - 00361336 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswvmm.sys 2017-07-02 20:50 - 2017-07-03 13:42 - 00003994 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update 2017-07-02 20:50 - 2017-07-03 13:42 - 00001979 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk 2017-07-02 20:50 - 2017-07-02 20:50 - 01015848 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys 2017-07-02 20:50 - 2017-07-02 20:50 - 00585608 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys 2017-07-02 20:50 - 2017-07-02 20:50 - 00343264 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbloga.sys 2017-07-02 20:50 - 2017-07-02 20:50 - 00319984 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbidsdrivera.sys 2017-07-02 20:50 - 2017-07-02 20:50 - 00198944 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbidsha.sys 2017-07-02 20:50 - 2017-07-02 20:50 - 00198768 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys 2017-07-02 20:50 - 2017-07-02 20:50 - 00146664 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys 2017-07-02 20:50 - 2017-07-02 20:50 - 00110352 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys 2017-07-02 20:50 - 2017-07-02 20:50 - 00084392 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys 2017-07-02 20:50 - 2017-07-02 20:50 - 00057704 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbuniva.sys 2017-07-02 20:50 - 2017-07-02 20:50 - 00046984 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys 2017-07-02 20:50 - 2017-07-02 20:50 - 00000000 ____D C:\Users\KRCO\AppData\Roaming\AVAST Software 2017-07-02 20:48 - 2017-07-02 20:52 - 00000000 ____D C:\Program Files\AVAST Software 2017-07-02 20:33 - 2017-07-02 20:33 - 00000000 ____D C:\Users\KRCO\AppData\Local\Viber Media S.à r.l 2017-07-02 20:33 - 2017-07-02 20:33 - 00000000 ____D C:\Users\KRCO\AppData\Local\Viber 2017-07-02 19:54 - 2017-07-02 19:54 - 00000000 ____D C:\Users\KRCO\AppData\Roaming\Avira 2017-07-02 19:53 - 2017-07-02 19:53 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_avusbflt_01011.Wdf 2017-07-02 19:53 - 2017-06-02 19:05 - 00167504 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys 2017-07-02 19:53 - 2017-06-02 19:05 - 00164824 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys 2017-07-02 19:53 - 2017-06-02 19:05 - 00088488 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avnetflt.sys 2017-07-02 19:53 - 2017-06-02 19:05 - 00060920 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avdevprot.sys 2017-07-02 19:53 - 2017-06-02 19:05 - 00044488 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avkmgr.sys 2017-07-02 19:53 - 2017-06-02 19:05 - 00038048 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avusbflt.sys 2017-07-02 19:49 - 2017-07-03 11:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira 2017-07-02 19:49 - 2017-07-03 11:06 - 00000000 ____D C:\ProgramData\Avira 2017-07-02 19:49 - 2017-07-03 11:06 - 00000000 ____D C:\Program Files (x86)\Avira 2017-07-02 19:34 - 2017-07-02 19:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro 2017-07-02 19:34 - 2017-07-02 19:34 - 00000000 ____D C:\Program Files\VS Revo Group 2017-07-02 19:34 - 2016-12-21 14:52 - 00040240 _____ (VS Revo Group) C:\WINDOWS\system32\Drivers\revoflt.sys 2017-07-02 19:29 - 2017-07-02 19:29 - 00000000 ____D C:\WINDOWS\Minidump 2017-07-01 11:18 - 2017-07-01 11:18 - 00003354 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4243106807-3281007250-2583883116-1001 2017-06-30 14:50 - 2017-06-30 14:50 - 00000000 ____D C:\Users\KRCO\Documents\Avalanche Studios 2017-06-28 12:23 - 2017-06-28 12:23 - 00000000 ____D C:\Users\Public\Documents\Sports Interactive 2017-06-28 12:23 - 2017-06-28 12:23 - 00000000 ____D C:\Users\KRCO\Documents\Sports Interactive 2017-06-28 12:23 - 2017-06-28 12:23 - 00000000 ____D C:\Users\KRCO\AppData\Local\Sports Interactive 2017-06-28 12:23 - 2017-06-28 12:23 - 00000000 ____D C:\ProgramData\Football Manager 2017 2017-06-28 12:10 - 2017-06-28 12:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Football Manager 2017 2017-06-26 19:17 - 2017-06-26 19:17 - 00000000 ____D C:\ProgramData\F1 2016 2017-06-26 19:16 - 2017-06-26 19:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\F1 2016 2017-06-23 13:45 - 2017-06-23 13:45 - 00000000 ____D C:\Users\KRCO\AppData\Local\SniperElite4 2017-06-23 13:45 - 2017-06-23 13:45 - 00000000 ____D C:\ProgramData\Sniper Elite 4 2017-06-23 13:42 - 2017-06-23 13:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sniper Elite 4 2017-06-23 12:48 - 2017-06-23 13:42 - 00000000 ____D C:\Program Files\Sniper Elite 4 2017-06-18 12:52 - 2017-06-18 12:52 - 00000000 ____D C:\Users\KRCO\AppData\Roaming\The Creative Assembly 2017-06-18 12:50 - 2017-06-18 12:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Total War WARHAMMER 2017-06-16 22:07 - 2017-06-16 22:07 - 00000000 ____D C:\ProgramData\WRC 6 2017-06-16 12:55 - 2017-06-26 23:11 - 00000000 ____D C:\Program Files (x86)\CorePack 2017-06-16 12:55 - 2017-06-16 13:39 - 00000000 ____D C:\Users\KRCO\AppData\Local\Microsoft Windows 2017-06-14 22:05 - 2017-06-14 22:05 - 00000000 ____D C:\WINDOWS\System32\Tasks\HardDiskSentinel 2017-06-14 20:57 - 2017-07-01 22:58 - 08100864 _____ C:\WINDOWS\system32\Drivers\FACEIT.sys 2017-06-12 23:14 - 2017-06-12 23:14 - 00000000 ____D C:\Users\KRCO\AppData\Local\AbzuGame 2017-06-11 21:23 - 2017-06-11 21:23 - 00000000 ____D C:\Users\KRCO\AppData\Roaming\FACEIT 2017-06-11 21:22 - 2017-06-11 21:22 - 00000000 ____D C:\Users\KRCO\AppData\Local\FACEIT 2017-06-11 01:29 - 2017-06-22 20:12 - 00000000 ____D C:\Users\KRCO\Desktop\ggg 2017-06-11 01:29 - 2017-06-11 01:29 - 00000000 ____D C:\Users\KRCO\AppData\Local\IdleMaster 2017-06-10 21:36 - 2017-06-16 12:57 - 00000000 ____D C:\Users\KRCO\AppData\Roaming\NVIDIA 2017-06-10 21:34 - 2017-06-10 21:34 - 00003994 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2017-06-10 21:34 - 2017-06-08 03:45 - 01893312 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll 2017-06-10 21:34 - 2017-06-08 03:45 - 01755072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll 2017-06-10 21:34 - 2017-06-08 03:45 - 01477056 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll 2017-06-10 21:34 - 2017-06-08 03:45 - 01317312 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll 2017-06-10 21:34 - 2017-06-08 03:45 - 00121280 _____ C:\WINDOWS\system32\NvRtmpStreamer64.dll 2017-06-10 21:33 - 2017-06-10 21:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation 2017-06-10 21:33 - 2017-06-10 21:33 - 00004308 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2017-06-10 21:33 - 2017-06-10 21:33 - 00003894 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2017-06-10 21:33 - 2017-06-10 21:33 - 00003866 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2017-06-10 21:33 - 2017-06-10 21:33 - 00003858 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2017-06-10 21:33 - 2017-06-10 21:33 - 00003696 _____ C:\WINDOWS\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2017-06-10 21:33 - 2017-06-10 21:33 - 00003654 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2017-06-10 21:33 - 2017-06-10 21:33 - 00000000 ____D C:\Program Files (x86)\VulkanRT 2017-06-10 21:33 - 2017-06-08 01:55 - 06467008 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll 2017-06-10 21:33 - 2017-06-08 01:55 - 02479552 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll 2017-06-10 21:33 - 2017-06-08 01:55 - 01762936 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll 2017-06-10 21:33 - 2017-06-08 01:55 - 00549312 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll 2017-06-10 21:33 - 2017-06-08 01:55 - 00392312 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll 2017-06-10 21:33 - 2017-06-08 01:55 - 00082040 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll 2017-06-10 21:33 - 2017-06-08 01:55 - 00069568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll 2017-06-10 21:33 - 2017-06-08 01:38 - 00134592 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe 2017-06-10 21:33 - 2017-06-07 14:42 - 08075477 _____ C:\WINDOWS\system32\nvcoproc.bin 2017-06-10 21:33 - 2017-03-10 23:17 - 00536864 _____ C:\WINDOWS\system32\vulkan-1.dll 2017-06-10 21:33 - 2017-03-10 23:17 - 00525600 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll 2017-06-10 21:33 - 2017-03-10 23:17 - 00254240 _____ C:\WINDOWS\system32\vulkaninfo.exe 2017-06-10 21:33 - 2017-03-10 23:17 - 00233760 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe 2017-06-10 21:32 - 2017-07-03 17:10 - 00000000 ____D C:\ProgramData\NVIDIA 2017-06-10 21:32 - 2017-06-10 21:34 - 00000000 ____D C:\ProgramData\NVIDIA Corporation 2017-06-10 21:32 - 2017-06-10 21:34 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2017-06-10 21:32 - 2017-06-08 03:45 - 00512960 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll 2017-06-10 21:32 - 2017-06-08 03:45 - 00418752 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll 2017-06-10 21:31 - 2017-06-08 03:45 - 40201664 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll 2017-06-10 21:31 - 2017-06-08 03:45 - 35390584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll 2017-06-10 21:31 - 2017-06-08 03:45 - 35281344 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll 2017-06-10 21:31 - 2017-06-08 03:45 - 28624320 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll 2017-06-10 21:31 - 2017-06-08 03:45 - 11056272 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll 2017-06-10 21:31 - 2017-06-08 03:45 - 11028664 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll 2017-06-10 21:31 - 2017-06-08 03:45 - 10551256 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll 2017-06-10 21:31 - 2017-06-08 03:45 - 09248144 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll 2017-06-10 21:31 - 2017-06-08 03:45 - 09014976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll 2017-06-10 21:31 - 2017-06-08 03:45 - 08808488 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll 2017-06-10 21:31 - 2017-06-08 03:45 - 04115112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll 2017-06-10 21:31 - 2017-06-08 03:45 - 03796928 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll 2017-06-10 21:31 - 2017-06-08 03:45 - 03625992 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll 2017-06-10 21:31 - 2017-06-08 03:45 - 03256440 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll 2017-06-10 21:31 - 2017-06-08 03:45 - 01988216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6438253.dll 2017-06-10 21:31 - 2017-06-08 03:45 - 01615448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco6420103.dll 2017-06-10 21:31 - 2017-06-08 03:45 - 01606776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6438253.dll 2017-06-10 21:31 - 2017-06-08 03:45 - 01278712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll 2017-06-10 21:31 - 2017-06-08 03:45 - 01275944 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFThevc.dll 2017-06-10 21:31 - 2017-06-08 03:45 - 01056888 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll 2017-06-10 21:31 - 2017-06-08 03:45 - 00995736 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll 2017-06-10 21:31 - 2017-06-08 03:45 - 00994240 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll 2017-06-10 21:31 - 2017-06-08 03:45 - 00993360 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFThevc.dll 2017-06-10 21:31 - 2017-06-08 03:45 - 00964216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll 2017-06-10 21:31 - 2017-06-08 03:45 - 00914880 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll 2017-06-10 21:31 - 2017-06-08 03:45 - 00775864 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll 2017-06-10 21:31 - 2017-06-08 03:45 - 00725112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll 2017-06-10 21:31 - 2017-06-08 03:45 - 00688784 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll 2017-06-10 21:31 - 2017-06-08 03:45 - 00618928 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll 2017-06-10 21:31 - 2017-06-08 03:45 - 00612088 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll 2017-06-10 21:31 - 2017-06-08 03:45 - 00609728 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll 2017-06-10 21:31 - 2017-06-08 03:45 - 00584128 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll 2017-06-10 21:31 - 2017-06-08 03:45 - 00577728 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll 2017-06-10 21:31 - 2017-06-08 03:45 - 00499320 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll 2017-06-10 21:31 - 2017-06-08 03:45 - 00218712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys 2017-06-10 21:31 - 2017-06-08 03:45 - 00175552 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll 2017-06-10 21:31 - 2017-06-08 03:45 - 00143296 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll 2017-06-10 21:31 - 2017-06-08 03:45 - 00057792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys 2017-06-10 21:31 - 2017-06-08 03:45 - 00048064 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys 2017-06-10 21:31 - 2017-06-08 03:45 - 00045976 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll 2017-06-10 21:31 - 2017-06-08 03:45 - 00045163 _____ C:\WINDOWS\system32\nvinfo.pb 2017-06-10 21:31 - 2017-06-08 03:45 - 00000669 _____ C:\WINDOWS\SysWOW64\nv-vk32.json 2017-06-10 21:31 - 2017-06-08 03:45 - 00000669 _____ C:\WINDOWS\system32\nv-vk64.json 2017-06-10 21:30 - 2017-06-10 21:34 - 00000000 ____D C:\Program Files\NVIDIA Corporation 2017-06-09 00:48 - 2017-06-09 00:49 - 00000124 _____ C:\Users\KRCO\Desktop\shutdown.txt 2017-06-08 18:59 - 2017-06-08 18:15 - 00223432 ____N (Tonec Inc.) C:\WINDOWS\system32\Drivers\idmwfp.sys 2017-06-07 23:40 - 2017-06-07 23:40 - 00000000 ____D C:\Users\KRCO\AppData\Local\TekkenGame 2017-06-06 20:55 - 2017-06-06 20:55 - 00000000 ____D C:\Program Files\ESEA 2017-06-06 20:08 - 2017-07-03 13:42 - 00061304 _____ () C:\WINDOWS\system32\Drivers\lpsport.sys 2017-06-06 15:44 - 2017-07-02 21:10 - 00000000 ____D C:\Users\KRCO\AppData\Roaming\DAEMON Tools Lite 2017-06-06 15:44 - 2017-06-06 15:45 - 00000000 ____D C:\Program Files\DAEMON Tools Lite 2017-06-06 15:44 - 2017-06-06 15:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite 2017-06-06 15:43 - 2017-06-06 15:44 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite 2017-06-03 13:20 - 2017-06-03 13:22 - 00000000 ____D C:\ProgramData\MCShield 2017-06-03 13:20 - 2017-06-03 13:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MCShield 2017-06-03 13:20 - 2017-06-03 13:20 - 00000000 ____D C:\Program Files (x86)\MCShield 2017-06-03 11:56 - 2017-06-03 11:56 - 00005112 _____ C:\ProgramData\mudtcpaz.vzs 2017-06-03 11:56 - 2017-06-03 11:56 - 00000016 _____ C:\ProgramData\mntemp 2017-06-03 11:56 - 2017-06-03 11:56 - 00000000 ____D C:\Users\KRCO\AppData\Local\Movavi 2017-06-03 11:56 - 2017-06-03 11:56 - 00000000 ____D C:\Users\KRCO\AppData\Local\converter 2017-06-03 11:56 - 2017-06-03 11:56 - 00000000 ____D C:\Users\KRCO\.fontconfig 2017-06-03 11:56 - 2017-06-03 11:56 - 00000000 ____D C:\ProgramData\Movavi ==================== One Month Modified files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2017-07-03 17:16 - 2016-09-18 15:49 - 03174484 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2017-07-03 17:12 - 2016-10-28 22:16 - 00000000 ____D C:\Users\KRCO\AppData\Roaming\ViberPC 2017-07-03 17:12 - 2016-07-06 22:21 - 00000000 ____D C:\Program Files (x86)\Steam 2017-07-03 17:10 - 2016-09-18 15:43 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT 2017-07-03 17:10 - 2016-09-18 15:40 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat 2017-07-03 17:10 - 2016-04-12 23:53 - 00000000 __SHD C:\Users\KRCO\IntelGraphicsProfiles 2017-07-03 17:09 - 2016-07-16 08:04 - 02621440 _____ C:\WINDOWS\system32\config\BBI 2017-07-03 17:09 - 2016-04-12 23:58 - 00000000 ____D C:\Users\KRCO\AppData\Roaming\uTorrent 2017-07-03 17:03 - 2016-04-13 00:01 - 00026112 _____ C:\WINDOWS\KMS-R@1n.exe 2017-07-03 16:56 - 2016-07-16 08:04 - 00032768 _____ C:\WINDOWS\system32\config\ELAM 2017-07-03 16:04 - 2016-09-18 15:39 - 00000000 ____D C:\WINDOWS\system32\SleepStudy 2017-07-03 15:37 - 2016-04-13 06:04 - 00000000 ____D C:\Users\KRCO\AppData\Roaming\vlc 2017-07-03 13:44 - 2016-04-13 00:06 - 00000000 ___RD C:\Users\KRCO\Desktop\Programi 2017-07-03 11:06 - 2016-04-12 23:51 - 00000000 ____D C:\ProgramData\Package Cache 2017-07-03 10:43 - 2016-04-13 06:50 - 00000000 ____D C:\Users\KRCO\AppData\Local\Adobe 2017-07-02 23:20 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\AppReadiness 2017-07-02 23:19 - 2016-07-16 13:47 - 00000000 ___HD C:\Program Files\WindowsApps 2017-07-02 23:15 - 2016-04-12 23:32 - 00000000 ____D C:\Users\KRCO\AppData\Local\Packages 2017-07-02 23:06 - 2016-07-16 13:45 - 00000000 ____D C:\WINDOWS\INF 2017-07-02 23:00 - 2016-09-18 15:39 - 00212504 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2017-07-02 22:58 - 2016-07-16 16:29 - 00000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2017-07-02 22:58 - 2016-07-16 13:47 - 00000000 ___SD C:\WINDOWS\SysWOW64\F12 2017-07-02 22:58 - 2016-07-16 13:47 - 00000000 ___SD C:\WINDOWS\system32\F12 2017-07-02 22:58 - 2016-07-16 13:47 - 00000000 ___SD C:\WINDOWS\system32\DiagSvcs 2017-07-02 22:58 - 2016-07-16 13:47 - 00000000 ___RD C:\WINDOWS\PrintDialog 2017-07-02 22:58 - 2016-07-16 13:47 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2017-07-02 22:58 - 2016-07-16 13:47 - 00000000 ___RD C:\Program Files\Windows Defender 2017-07-02 22:58 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\setup 2017-07-02 22:58 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe 2017-07-02 22:58 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2017-07-02 22:58 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform 2017-07-02 22:58 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\setup 2017-07-02 22:58 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\oobe 2017-07-02 22:58 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\migwiz 2017-07-02 22:58 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\appraiser 2017-07-02 22:58 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\ShellExperiences 2017-07-02 22:58 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\Provisioning 2017-07-02 22:58 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\PolicyDefinitions 2017-07-02 22:58 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\bcastdvr 2017-07-02 22:58 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files\Windows Photo Viewer 2017-07-02 22:58 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2017-07-02 22:58 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files (x86)\Windows Defender 2017-07-02 22:58 - 2016-07-16 08:04 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism 2017-07-02 22:58 - 2016-07-16 08:04 - 00000000 ____D C:\WINDOWS\system32\Sysprep 2017-07-02 22:58 - 2016-07-16 08:04 - 00000000 ____D C:\WINDOWS\system32\Dism 2017-07-02 22:58 - 2016-07-16 08:04 - 00000000 ____D C:\WINDOWS\servicing 2017-07-02 22:57 - 2016-07-16 13:47 - 00015462 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml 2017-07-02 22:24 - 2016-07-16 13:36 - 00000000 ____D C:\WINDOWS\CbsTemp 2017-07-02 22:23 - 2016-04-13 23:33 - 00000000 ____D C:\WINDOWS\system32\MRT 2017-07-02 22:21 - 2016-04-13 23:33 - 133627792 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2017-07-02 21:10 - 2016-04-14 20:21 - 00000000 ____D C:\Users\KRCO\AppData\Local\CrashDumps 2017-07-02 20:52 - 2016-04-13 00:17 - 00000000 ____D C:\ProgramData\AVAST Software 2017-07-02 20:30 - 2017-01-28 11:29 - 00000000 ____D C:\Program Files\Common Files\AV 2017-07-02 19:43 - 2017-04-15 14:37 - 00000000 ____D C:\Program Files\FACEIT Client 2017-07-02 19:41 - 2016-09-18 15:41 - 00000000 ____D C:\Users\KRCO 2017-07-02 19:32 - 2016-08-08 13:45 - 00000000 ____D C:\Users\KRCO\AppData\Local\ElevatedDiagnostics 2017-07-02 19:32 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\NDF 2017-07-01 11:18 - 2016-04-12 23:33 - 00002364 _____ C:\Users\KRCO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2017-07-01 11:18 - 2016-04-12 23:33 - 00000000 ___RD C:\Users\KRCO\OneDrive 2017-06-30 23:53 - 2016-09-01 15:14 - 00000000 ____D C:\Users\KRCO\AppData\Roaming\Origin 2017-06-30 23:53 - 2016-05-30 12:42 - 00000000 ____D C:\ProgramData\Origin 2017-06-30 21:35 - 2017-05-17 11:28 - 00000000 ____D C:\Users\KRCO\AppData\Local\Ubisoft Game Launcher 2017-06-30 19:58 - 2016-05-01 22:42 - 00000000 ____D C:\ProgramData\Skype 2017-06-30 15:45 - 2017-02-03 18:18 - 00000000 ____D C:\Users\KRCO\Documents\ViberDownloads 2017-06-28 13:00 - 2016-04-12 23:45 - 00002232 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2017-06-28 12:31 - 2016-04-13 00:27 - 00000000 ___RD C:\Users\KRCO\Desktop\Igre 2017-06-27 20:07 - 2016-09-01 15:12 - 00000000 ____D C:\Program Files (x86)\Origin 2017-06-26 23:06 - 2016-06-22 12:16 - 00000000 ____D C:\Users\KRCO\AppData\Roaming\Milestone 2017-06-26 23:05 - 2017-01-09 13:56 - 00000000 ____D C:\Users\KRCO\Documents\My Games 2017-06-26 23:04 - 2016-04-27 20:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games 2017-06-26 20:09 - 2016-04-13 00:09 - 00000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server 2017-06-26 20:09 - 2016-04-13 00:08 - 00000000 ____D C:\Program Files (x86)\MSI Afterburner 2017-06-26 19:17 - 2016-08-21 17:08 - 00000000 ____D C:\ProgramData\Codemasters 2017-06-18 21:24 - 2016-04-15 04:39 - 00000000 ____D C:\Users\KRCO\AppData\Roaming\TS3Client 2017-06-17 04:02 - 2017-01-21 03:42 - 00004528 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier 2017-06-17 04:02 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed 2017-06-17 04:02 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\Macromed 2017-06-16 13:34 - 2017-01-19 15:16 - 00000000 ____D C:\WINDOWS\SysWOW64\directx 2017-06-12 23:15 - 2016-09-03 16:23 - 00000000 ____D C:\Users\KRCO\AppData\Local\UnrealEngine 2017-06-11 11:17 - 2017-03-11 13:21 - 00000000 ____D C:\Users\KRCO\AppData\Local\NVIDIA Corporation 2017-06-10 21:34 - 2017-05-23 12:43 - 00004000 _____ C:\WINDOWS\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2017-06-10 21:33 - 2017-04-25 17:57 - 00000000 ____D C:\temp 2017-06-10 21:33 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\Help 2017-06-10 21:28 - 2017-03-21 19:08 - 00003632 _____ C:\WINDOWS\System32\Tasks\CreateExplorerShellUnelevatedTask 2017-06-10 21:27 - 2016-04-13 06:16 - 00189112 _____ (Power Admin LLC) C:\WINDOWS\PAExec.exe 2017-06-09 23:35 - 2017-03-15 21:47 - 00000000 ___RD C:\Program Files (x86)\Skype 2017-06-08 03:45 - 2017-01-26 03:22 - 00001951 _____ C:\WINDOWS\NvTelemetryContainerRecovery.bat 2017-06-08 03:45 - 2016-10-21 17:16 - 00001951 _____ C:\WINDOWS\NvContainerRecovery.bat 2017-06-08 00:40 - 2017-06-01 19:48 - 00000000 ____D C:\Users\KRCO\Desktop\Rus gume 2017-06-06 15:44 - 2016-06-08 00:24 - 00203296 _____ (Duplex Secure Ltd) C:\WINDOWS\system32\Drivers\sptd2.sys 2017-06-03 08:36 - 2016-07-16 13:49 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe 2017-06-03 08:36 - 2016-07-16 13:49 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl ==================== Files in the root of some directories ======= 2016-04-13 05:57 - 2016-04-13 05:56 - 0000013 _____ () C:\Program Files\Sistem podignut.txt 2016-04-27 01:57 - 2017-05-30 23:04 - 0007668 _____ () C:\Users\KRCO\AppData\Local\Resmon.ResmonCfg 2017-03-31 20:11 - 2017-04-02 22:25 - 0000015 _____ () C:\Users\KRCO\AppData\Local\X-Plane_drm_11.prf 2017-03-31 20:10 - 2017-03-31 20:10 - 0000021 _____ () C:\Users\KRCO\AppData\Local\x-plane_install_11.txt 2017-06-03 11:56 - 2017-06-03 11:56 - 0000016 _____ () C:\ProgramData\mntemp 2017-06-03 11:56 - 2017-06-03 11:56 - 0005112 _____ () C:\ProgramData\mudtcpaz.vzs ==================== Bamital & volsnap ====================== (There is no automatic fix for files that do not pass verification.) C:\WINDOWS\system32\winlogon.exe => File is digitally signed C:\WINDOWS\system32\wininit.exe => File is digitally signed C:\WINDOWS\explorer.exe => File is digitally signed C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed C:\WINDOWS\system32\svchost.exe => File is digitally signed C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed C:\WINDOWS\system32\services.exe => File is digitally signed C:\WINDOWS\system32\User32.dll => File is digitally signed C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed C:\WINDOWS\system32\userinit.exe => File is digitally signed C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed C:\WINDOWS\system32\rpcss.dll => File is digitally signed C:\WINDOWS\system32\dnsapi.dll => File is digitally signed C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2017-06-30 15:49 ==================== End of FRST.txt ============================ https://www.mycity.rs/must-login.png

Profil

softwaremaniac Poslao: 03 Jul 2017 18:10 Idi na vrh
offline softwaremaniac AMF pripravnik Pridružio: 14 Jun 2016 Poruke: 535	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Pozdrav, vidim da su na sustavu dva AV programa, molim te da jednog deinstaliraš pomoću njihovog alata za instalaciju. 1. Otvori Notepad (Text Document) i iskopiraj sledeći tekst unutar kod polja ispod: CreateRestorePoint: HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION R1 ESEADriver2; C:\Users\KRCO\AppData\Local\Temp\ESEADriver2.sys [340096 2017-06-06] () <==== ATTENTION C:\Windows\KMS-R@1n.exe C:\WINDOWS\KMS-R@1nHook.dll R2 KMS-R@1n; C:\Windows\KMS-R@1n.exe [26112 2017-07-03] () [File not signed] HKLM-x32\...\Run: [] => [X] CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx <not found> ContextMenuHandlers01: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => -> No File ContextMenuHandlers05: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File ContextMenuHandlers06: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => -> No File Task: {24C0EFED-1105-46DE-A72B-7A4299456D58} - System32\Tasks\R@1n-KMS\Windows64Professional => wmic [Argument = path SoftwareLicensingProduct where (ID="2de67392-b7a7-462a-b1ca-108dd189f588") call Activate] FirewallRules: [{6120ABF1-E0DC-43E3-8EF3-6BDBD35DDB0B}] => (Allow) C:\Windows\KMS-R@1n.exe FirewallRules: [{395F3001-46CD-4604-BF74-32479775F33E}] => (Allow) C:\Windows\KMS-R@1n.exe EmptyTemp: Hosts: 2. Sačuvaj notepad na Desktop pod nazivom fixlist.txt To možes uraditi i iz notepad-a => klik na File potom na Save As i u novom prozoru, dole pod File Name: staviš za naziv fixlist.txt Napomena: Važno je da se oba fajla, FRST i fixlist nalaze na istoj lokaciji jer u suprotnom fix nece raditi. 3. Ponovo pokreni FRST/FRST64, klikni jednom na dugme Fix i sačekaj. Ukoliko alat zatraži restart sistema, dozvoli mu i postaraj se da alat kompletira fix nakon restarta sistema. Alat će formirati log (Fixlog.txt) na Desktop-u. Potrebno je sadržaj tog loga iskopirati u poruku. Napomena: Ukoliko te alat upozori da postoji novija verzija, postaraj se da preuzmes i koristiš ažuriranu kopiju FRST-a. Javi kakvo je stanje.

Profil

KRCO95 Poslao: 03 Jul 2017 19:00 Idi na vrh
offline KRCO95 Ugledni građanin Milan Pridružio: 11 Apr 2012 Poruke: 465	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Fix result of Farbar Recovery Scan Tool (x64) Version: 03-07-2017 Ran by KRCO (03-07-2017 19:55:07) Run:1 Running from C:\Users\KRCO\Desktop Loaded Profiles: KRCO (Available Profiles: KRCO) Boot Mode: Normal ============================================== fixlist content: *************** CreateRestorePoint: HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION R1 ESEADriver2; C:\Users\KRCO\AppData\Local\Temp\ESEADriver2.sys [340096 2017-06-06] () <==== ATTENTION C:\Windows\KMS-R@1n.exe C:\WINDOWS\KMS-R@1nHook.dll R2 KMS-R@1n; C:\Windows\KMS-R@1n.exe [26112 2017-07-03] () [File not signed] HKLM-x32\...\Run: [] => [X] CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx <not found> ContextMenuHandlers01: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => -> No File ContextMenuHandlers05: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File ContextMenuHandlers06: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => -> No File Task: {24C0EFED-1105-46DE-A72B-7A4299456D58} - System32\Tasks\R@1n-KMS\Windows64Professional => wmic [Argument = path SoftwareLicensingProduct where (ID="2de67392-b7a7-462a-b1ca-108dd189f588") call Activate] FirewallRules: [{6120ABF1-E0DC-43E3-8EF3-6BDBD35DDB0B}] => (Allow) C:\Windows\KMS-R@1n.exe FirewallRules: [{395F3001-46CD-4604-BF74-32479775F33E}] => (Allow) C:\Windows\KMS-R@1n.exe EmptyTemp: Hosts: *************** Restore point was successfully created. HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION => restored successfully ESEADriver2 => Unable to stop service. HKLM\System\CurrentControlSet\Services\ESEADriver2 => key removed successfully ESEADriver2 => service removed successfully C:\Windows\KMS-R@1n.exe => moved successfully C:\WINDOWS\KMS-R@1nHook.dll => moved successfully KMS-R@1n => Unable to stop service. HKLM\System\CurrentControlSet\Services\KMS-R@1n => key removed successfully KMS-R@1n => service removed successfully HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => value removed successfully HKLM\SOFTWARE\Google\Chrome\Extensions\ngpampappnmepgilojfohadhhmbhlaek => key removed successfully HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\WinRAR32 => key removed successfully HKLM\Software\Classes\CLSID\{B41DB860-8EE4-11D2-9906-E49FADC173CA} => key not found. HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => key removed successfully HKLM\Software\Classes\CLSID\{3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => key not found. HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\WinRAR32 => key removed successfully HKLM\Software\Classes\CLSID\{B41DB860-8EE4-11D2-9906-E49FADC173CA} => key not found. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{24C0EFED-1105-46DE-A72B-7A4299456D58} => key removed successfully HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{24C0EFED-1105-46DE-A72B-7A4299456D58} => key removed successfully C:\WINDOWS\System32\Tasks\R@1n-KMS\Windows64Professional => moved successfully HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\R@1n-KMS\Windows64Professional => key removed successfully HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6120ABF1-E0DC-43E3-8EF3-6BDBD35DDB0B} => value removed successfully HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{395F3001-46CD-4604-BF74-32479775F33E} => value removed successfully C:\Windows\System32\Drivers\etc\hosts => moved successfully Hosts restored successfully. =========== EmptyTemp: ========== BITS transfer queue => 0 B DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 101552938 B Java, Flash, Steam htmlcache => 304384559 B Windows/system/drivers => 23596809 B Edge => 0 B Chrome => 504896737 B Firefox => 4929866 B Opera => 0 B Temp, IE cache, history, cookies, recent: Default => 0 B Users => 0 B ProgramData => 0 B Public => 0 B systemprofile => 128 B systemprofile32 => 0 B LocalService => 9870 B NetworkService => 895384 B KRCO => 2265454599 B RecycleBin => 0 B EmptyTemp: => 3 GB temporary data Removed. ================================ The system needed a reboot. ==== End of Fixlog 19:55:50 ==== U task manageru vise nema tog procesa kao sto je pre bio i avast nista ne prijavljuje za sad. Sto se tice antivirusa da...otvorio sam nedavno temu https://www.mycity.rs/Zastitni-programi/Ne-mogu-obrisati-aviru.html i mislio da sam ga obrisao skroz a i ja sad vidim u logovima da je jos ti da je iskljucen ali da nije uklonjen ne znam stvrarno kako da ga uklonim.Mislim ne pojavlju se nista ovaj avast radi ok ali ova avira...

Profil

softwaremaniac Poslao: 03 Jul 2017 19:26 Idi na vrh
offline softwaremaniac AMF pripravnik Pridružio: 14 Jun 2016 Poruke: 535	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Isprati uputstvo ovde: https://www.avira.com/en/support-for-home-knowledgebase-detail/kbid/902 Javi kakvo je stanje nakon toga

Profil

KRCO95 Poslao: 03 Jul 2017 19:47 Idi na vrh
offline KRCO95 Ugledni građanin Milan Pridružio: 11 Apr 2012 Poruke: 465	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Ispratio sam upustvo u oba foldera su bili "avira folderi" obrisao sm ih zatim sa "avira_registry_cleaner_en" sam uradio sve potrebno i na kraju je pisalo da je sve proslo kako treba. Sto se tice virusa u task menageru ga ne vidim i avast ne prijavljuje nista.

Profil

softwaremaniac Poslao: 03 Jul 2017 20:28 Idi na vrh
offline softwaremaniac AMF pripravnik Pridružio: 14 Jun 2016 Poruke: 535	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Preuzmi Kaspersky Lab-ov TDSSKiller sa sledece adrese na Desktop: TDSSKiller Klikni desnim tasterom na link i odaberi opciju Save Target As... (Save Link As..., Save Linked Content As... ili slicnu); Kada se otvori dijalog za izbor lokacije na kojoj treba sacuvati file, odaberi Desktop i klikni Save. Kada preuzimanje programa bude završeno: deaktiviraj zaštitni softver (uputstvo); zatvori pokrenute programe; preimenuj TDSSKiller.exe u MyCity.exe; dvoklikom pokreni program MyCity.exe; klik na dugme Start Scan. Ukoliko maliciozni (malicious) objekti budu pronadjeni, uveri se da je za njih odabrana akcija "Cure" (primer) i klikni Continue, a zatim klikni Reboot Now. Okaci mi sadrzaj log-a sa sledece lokacije: C:\TDSSKiller_verzija programa_DD.MM.GG_HH.MM.SS.txt (DD-dan, MM-mesec, GG-godina, HH-sat, MM-minut, SS-sekunda; datum i vreme kada je log napravljen)

Profil

KRCO95 Poslao: 03 Jul 2017 20:40 Idi na vrh
offline KRCO95 Ugledni građanin Milan Pridružio: 11 Apr 2012 Poruke: 465	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: https://www.mycity.rs/must-login.png

Profil

softwaremaniac Poslao: 03 Jul 2017 21:03 Idi na vrh
offline softwaremaniac AMF pripravnik Pridružio: 14 Jun 2016 Poruke: 535	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Gotovi smo. • Sledeća procedura će implementirati završno čišćenje. Preuzmi "Xplode"-ov DelFix alat i snimi ga na Desktop. Dvoklikom pokreni alat i štikliraj kućice ispred sledećih opcija; Remove disinfection tools Create registry backup Purge System Restore Klikni na dugme Run i pričekaj trenutak dok alat ne završi svoj rad. Od ovog trenutka, svi korišćeni alati u ovoj temi bi trebali biti obrisani. Ukoliko neki alat ili izveštaj nije uklonjen, slobodno ih obriši ručno. Alat će takođe formirati izveštaj za tebe. (C:\DelFix.txt) - Alat će snimiti i zdravo stanje registy-ja i napraviti backup koristeci integrisan program "ERUNT" u %windir%\ERUNT\DelFix - DelFix briše stare system restore tačke i pravi novu, svežu tačku nakon čišćenja.

Profil

KRCO95 Poslao: 03 Jul 2017 21:08 Idi na vrh
offline KRCO95 Ugledni građanin Milan Pridružio: 11 Apr 2012 Poruke: 465	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! @softwaremaniac Xvala puno uradio sam sve kako si naveo u postu gore. Reci mi samo da li je to bio virus i da li je bio jedini ?

Profil

softwaremaniac Poslao: 03 Jul 2017 21:53 Idi na vrh
offline softwaremaniac AMF pripravnik Pridružio: 14 Jun 2016 Poruke: 535	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Nije bio virus, nego aktivator. Aktivator sam ja maknuo (KMS). Tvoj sustav je sada čist. Pozdrav.

Profil

MyCity » Ambulanta -> Arhiva Ambulante » kms-r@1n pomoc

Ko je trenutno na forumu

Ukupno su 852 korisnika na forumu :: 43 registrovanih, 6 sakrivenih i 803 gosta :: [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:: Korisnici trenutno na forumu: aleksmajstor, amstel, anta, babaroga, Bobrock1, bojank, bokisha253, cavatina, CikaKURE, darios, Denaya, Djokislav, DonRumataEstorski, dragoljub11987, FOX, Georgius, Joja, Kaplar2, kikisp, Koridor, mik7, milenko crazy north, Milometer, Milos ZA, MiroslavD, mrav pesadinac, MrNo, Neutral-M, Panter, Petarvu, ruma, shone34, SR-3m, Srle993, Trpe Grozni, vaso1, vathra, VP6919, W123, yrraf, YU-UKI, Zoca, šumar bk2

Svaki korisnik ovog sajta je odgovoran za sadržaj svoje poruke koju objavi na sajtu. Sajt se odriče svake odgovornosti za sadržaj tih poruka.
Postavljanjem vaše poruke ili vašeg autorskog dela na ovaj sajt, saglasni ste da ovaj sajt postaje distributer vašeg dela, i odričete se mogućnosti njegovog povlačenja ili brisanja, bez saglasnosti uprave sajta.
Distribucija sadržaja sa ovog sajta je dozvoljena samo u nekomercijalne svrhe, uz obaveznu napomenu da je sadržaj preuzet sa ovog sajta, i uz obavezno navođenje adrese MyCity sajta. Za sve ostale vidove distribucije obavezni ste da prethodno zatražite odobrenje od vlasnika MyCity sajta.
MyCity pokrenuo, administrira i razvija Predrag Damnjanović, a o uređenju sajta se brine MyCity Tim.
Ukoliko želite da nas kontaktirate kliknite ovde.
Naši sajtovi:
Vesti, Vojni forum, Zaštita od virusa, TekstPesme.rs

This content is licensed under a Creative Commons License.
Based on phpBB 2, translated by Simke, designed by