MyCity » Ambulanta -> Arhiva Ambulante » Inficirana Mozilla

Inficirana Mozilla

Napisano na dan: 27.12.2015

Strana:
1
2

Inficirana Mozilla

Sledeća strana

Pagination

Odgovori

Strana:
1
2

bobo 75 Poslao: 27 Dec 2015 23:15 Idi na vrh
offline bobo 75 Ugledni građanin Pridružio: 14 Sep 2008 Poruke: 424 Gde živiš: Podgorica	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Javljam se povodom ovog problema koji sam opisao u sekciji Web browseri... http://www.mycity.rs/Web-browseri/Problem-mozilla-Milion-prozora.html AV nista nije detektovao i ovaj problem mi se javlja samo kod Mozille... Imam optiku 20Mb. Problem sam uklonio bio tako sto sam deinstalirao Mozillu pa je ponovo instalirao ali posle nekoliko dana opet isto. Additional scan result of Farbar Recovery Scan Tool (x64) Version:27-12-2015 Ran by Darija-Marija (2015-12-27 23:14:03) Running from C:\Users\Darija-Marija\Desktop Windows 10 Pro (X64) (2015-12-22 02:09:26) Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-441648292-4210431568-626584666-500 - Administrator - Disabled) Darija-Marija (S-1-5-21-441648292-4210431568-626584666-1001 - Administrator - Enabled) => C:\Users\Darija-Marija DefaultAccount (S-1-5-21-441648292-4210431568-626584666-503 - Limited - Disabled) Guest (S-1-5-21-441648292-4210431568-626584666-501 - Limited - Disabled) ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736} ==================== Installed Programs ====================== (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) Adobe Flash Player 20 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 20.0.0.235 - Adobe Systems Incorporated) AMD Catalyst Control Center (HKLM-x32\...\WUCCCApp) (Version: 1.00.0000 - AMD) AMD Catalyst Install Manager (HKLM\...\{1113B31C-097E-644C-7242-829DFC0CED38}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.) AMD Quick Stream (HKLM\...\{E9EED4AE-682B-4501-9574-D09A21717599}_is1) (Version: 3.10.0.0 - AppEx Networks) Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 11.1.2245 - AVAST Software) BitTorrent (HKU\S-1-5-21-441648292-4210431568-626584666-1001\...\BitTorrent) (Version: 7.9.5.41373 - BitTorrent Inc.) CCleaner (HKLM\...\CCleaner) (Version: 5.12 - Piriform) Combat Arms EU (HKLM-x32\...\Combat Arms EU) (Version: - ) K-Lite Mega Codec Pack 10.5.5 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 10.5.5 - ) Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.4734.1000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation) Mozilla Firefox 43.0.2 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 43.0.2 (x86 en-US)) (Version: 43.0.2 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 43.0.2.5833 - Mozilla) My Lockbox 3.8.1 (HKLM\...\My Lockbox_is1) (Version: 3.8.1 - ) Raptr (HKLM-x32\...\Raptr) (Version: - ) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7687 - Realtek Semiconductor Corp.) Speccy (HKLM\...\Speccy) (Version: 1.29 - Piriform) WinRAR 5.30 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.30.0 - win.rar GmbH) ==================== Custom CLSID (Whitelisted): ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) CustomCLSID: HKU\S-1-5-21-441648292-4210431568-626584666-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Darija-Marija\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\FileCoAuth.exe (Microsoft Corporation) ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {02649356-B42D-4CC6-93D9-5D2737EC7127} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-12-22] (AVAST Software) Task: {8A7C1EA4-15A9-4907-A09D-6739A99C691B} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2015-11-23] (Microsoft Corporation) (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) ==================== Shortcuts ============================= (The entries could be listed to be restored or removed.) ==================== Loaded Modules (Whitelisted) ============== 2015-07-10 12:00 - 2015-07-10 12:00 - 00032768 _____ () C:\Windows\SYSTEM32\licensemanagerapi.dll 2015-07-10 11:59 - 2015-07-10 11:59 - 00403968 _____ () C:\Windows\System32\diagtrack_wininternal.dll 2014-08-12 20:05 - 2014-08-12 20:05 - 00127488 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll 2015-07-10 12:00 - 2015-07-10 12:00 - 02498296 _____ () C:\Windows\system32\CoreUIComponents.dll 2015-07-10 12:00 - 2015-07-10 12:00 - 02498296 _____ () C:\Windows\System32\CoreUIComponents.dll 2010-01-09 20:17 - 2010-01-09 20:17 - 04254560 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF 2010-01-21 01:40 - 2010-01-21 01:40 - 08794464 _____ () C:\Program Files\Microsoft Office\Office14\1033\GrooveIntlResource.dll 2015-07-10 11:59 - 2015-07-10 11:59 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll 2015-07-10 12:00 - 2015-07-10 14:14 - 06579712 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2015-07-10 12:00 - 2015-07-10 14:14 - 00471040 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2015-07-10 12:00 - 2015-07-10 14:14 - 02274816 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 2015-07-10 12:00 - 2015-07-10 14:14 - 00210432 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.ProxyStub.dll 2014-08-12 20:06 - 2014-08-12 20:06 - 00102400 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll 2015-12-22 03:45 - 2015-12-22 03:45 - 00103888 _____ () C:\Program Files\AVAST Software\Avast\log.dll 2015-12-22 03:45 - 2015-12-22 03:45 - 00125512 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll 2015-12-27 00:45 - 2015-12-27 00:45 - 02806272 _____ () C:\Program Files\AVAST Software\Avast\defs\15122601\algo.dll 2015-12-22 03:45 - 2015-12-22 03:45 - 00469008 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll 2015-12-22 03:45 - 2015-12-22 03:45 - 40539648 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll ==================== Alternate Data Streams (Whitelisted) ========= (If an entry is included in the fixlist, only the ADS will be removed.) ==================== Safe Mode (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) ==================== EXE Association (Whitelisted) =============== (If an entry is included in the fixlist, the registry item will be restored to default or removed.) ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, it will be removed from the registry.) ==================== Hosts content: =============================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2015-07-10 12:04 - 2015-07-10 12:02 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-441648292-4210431568-626584666-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Darija-Marija\Desktop\Wallpapers\earth_14-wallpaper-1920x1200.jpg DNS Servers: 192.168.100.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Windows Firewall is disabled. ==================== MSCONFIG/TASK MANAGER disabled items == (Currently there is no automatic fix for this section.) HKLM\...\StartupApproved\Run: => "RTHDVCPL" HKLM\...\StartupApproved\Run: => "StartCCC" HKLM\...\StartupApproved\Run32: => "Raptr" HKLM\...\StartupApproved\Run32: => "mylbx" HKU\S-1-5-21-441648292-4210431568-626584666-1001\...\StartupApproved\Run: => "AppEx Accelerator UI" ==================== FirewallRules (Whitelisted) =============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [{DB30C957-F46B-4AFF-81DE-AA9EC5493FB0}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe FirewallRules: [{3C995ED3-6962-4804-A81B-A305C7DF1CF4}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe FirewallRules: [{E288B3C8-6AD0-4C79-A743-05A6088676BA}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe FirewallRules: [{648355E8-7187-4760-BD73-D2117ABB5A3D}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe FirewallRules: [{B5FBC563-7AD6-4603-9E7D-F5A923E427C1}] => (Allow) C:\Users\Darija-Marija\AppData\Roaming\BitTorrent\BitTorrent.exe FirewallRules: [{C67B7FF6-898A-4A25-B91F-B9969972F69A}] => (Allow) C:\Users\Darija-Marija\AppData\Roaming\BitTorrent\BitTorrent.exe FirewallRules: [{1BD253C8-2265-4A61-B678-61767768AFD0}] => (Allow) C:\Users\Darija-Marija\AppData\Roaming\BitTorrent\BitTorrent.exe FirewallRules: [{C5B15E81-6278-4171-AB16-50AAF155BD7A}] => (Allow) C:\Users\Darija-Marija\AppData\Roaming\BitTorrent\BitTorrent.exe FirewallRules: [{1290EB7F-7D20-4ADA-BA07-14F134647CC2}] => (Allow) C:\Users\Darija-Marija\AppData\Roaming\BitTorrent\BitTorrent.exe FirewallRules: [{491887D2-C467-4F55-AA7D-0DA38EB600F1}] => (Allow) C:\Users\Darija-Marija\AppData\Roaming\BitTorrent\BitTorrent.exe FirewallRules: [{A33C0913-3E90-422A-AFC6-6FE443A9B25E}] => (Allow) C:\Nexon\Combat Arms EU\NMService.exe FirewallRules: [{8D98A71F-4799-4846-ADCE-42ED00716C14}] => (Allow) C:\Nexon\Combat Arms EU\NMService.exe FirewallRules: [{5DA21251-F81A-40C9-8197-9AC3B039F0BB}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe FirewallRules: [{9A92BC9B-03C6-4E49-91A6-8EEC0324F9EC}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe FirewallRules: [{30DCAF7A-3622-4D7B-9F87-E4F03346C7E0}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{12759050-D7D7-42E7-BA44-38B57B66BC4C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe ==================== Restore Points ========================= ATTENTION: System Restore is disabled ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (12/26/2015 02:31:08 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-M3U6RAH) Description: Activation of app Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI failed with error: -2144927141 See the Microsoft-Windows-TWinUI/Operational log for additional information. Error: (12/25/2015 11:27:49 AM) (Source: Application Hang) (EventID: 1002) (User: ) Description: The program firefox.exe version 43.0.1.5828 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel. Process ID: 17a4 Start Time: 01d13efe7fde3308 Termination Time: 4294967295 Application Path: C:\Program Files (x86)\Mozilla Firefox\firefox.exe Report Id: 23da553c-aaf2-11e5-9bca-60a44c251dc9 Faulting package full name: Faulting package-relative application ID: Error: (12/25/2015 03:41:39 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-M3U6RAH) Description: Activation of app Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI failed with error: -2144927141 See the Microsoft-Windows-TWinUI/Operational log for additional information. Error: (12/23/2015 07:03:41 PM) (Source: SideBySide) (EventID: 33) (User: ) Description: Activation context generation failed for "Avast.VC110.DebugCRT,processorArchitecture="x86",publicKeyToken="2036b14a11e83e4a",type="win32",version="11.0.60610.1"1". Dependent Assembly Avast.VC110.DebugCRT,processorArchitecture="x86",publicKeyToken="2036b14a11e83e4a",type="win32",version="11.0.60610.1" could not be found. Please use sxstrace.exe for detailed diagnosis. Error: (12/23/2015 10:15:05 AM) (Source: Perflib) (EventID: 1017) (User: ) Description: Outlook Error: (12/23/2015 10:15:05 AM) (Source: Perflib) (EventID: 1021) (User: ) Description: Outlook8 Error: (12/23/2015 02:21:21 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: AccountsControlHost.exe, version: 10.0.10240.16384, time stamp: 0x559f38f2 Faulting module name: CoreUIComponents.dll, version: 0.0.0.0, time stamp: 0x559f3132 Exception code: 0xc0000005 Fault offset: 0x0000000000061dcb Faulting process id: 0x308 Faulting application start time: 0xAccountsControlHost.exe0 Faulting application path: AccountsControlHost.exe1 Faulting module path: AccountsControlHost.exe2 Report Id: AccountsControlHost.exe3 Faulting package full name: AccountsControlHost.exe4 Faulting package-relative application ID: AccountsControlHost.exe5 Error: (12/22/2015 08:45:11 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: License Activation (slui.exe) failed with the following error code: hr=0xC004C003 Command-line arguments: RuleId=31e71c49-8da7-4a2f-ad92-45d98a1c79ba;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=4de7cb65-cdf1-4de9-8ae8-e3cce27b9f2c;NotificationInterval=1440;Trigger=NetworkAvailable Error: (12/22/2015 08:45:11 PM) (Source: Software Protection Platform Service) (EventID: 1014) (User: ) Description: Acquisition of End User License failed. hr=0xC004C003 Sku Id=4de7cb65-cdf1-4de9-8ae8-e3cce27b9f2c Error: (12/22/2015 08:45:11 PM) (Source: Software Protection Platform Service) (EventID: 8200) (User: ) Description: License acquisition failure details. hr=0xC004C003 System errors: ============= Error: (12/27/2015 04:50:56 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: The Sync Host_Session1 service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 10000 milliseconds: Restart the service. Error: (12/27/2015 02:54:23 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: The AppEx Networks Accelerator LWF service failed to start due to the following error: %%31 Error: (12/27/2015 02:54:23 PM) (Source: APXACC) (EventID: 1003) (User: ) Description: The NDIS6 LWF initialization has failed. (0xC0000001) Error: (12/27/2015 02:53:54 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: The Sync Host_Session2 service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 10000 milliseconds: Restart the service. Error: (12/27/2015 01:03:11 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: The Sync Host_Session1 service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 10000 milliseconds: Restart the service. Error: (12/27/2015 10:44:49 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: The AppEx Networks Accelerator LWF service failed to start due to the following error: %%31 Error: (12/27/2015 10:44:49 AM) (Source: APXACC) (EventID: 1003) (User: ) Description: The NDIS6 LWF initialization has failed. (0xC0000001) Error: (12/27/2015 10:44:49 AM) (Source: EventLog) (EventID: 6008) (User: ) Description: The previous system shutdown at 10:36:32 AM on ‎12/‎27/‎2015 was unexpected. Error: (12/27/2015 10:44:41 AM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 29) (User: NT AUTHORITY) Description: 32212256845640254133635408 Error: (12/27/2015 03:12:58 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: The Sync Host_Session2 service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 10000 milliseconds: Restart the service. ==================== Memory info =========================== Processor: AMD A8-5500 APU with Radeon(tm) HD Graphics Percentage of memory in use: 35% Total physical RAM: 7633.36 MB Available physical RAM: 4907.93 MB Total Virtual: 8849.36 MB Available Virtual: 5974.12 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:111.79 GB) (Free:79.48 GB) NTFS ==>[drive with boot components (obtained from BCD)] Drive d: () (Fixed) (Total:487.94 GB) (Free:485.77 GB) NTFS Drive f: (Safe Disk ) (Fixed) (Total:1374.73 GB) (Free:896.78 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 111.8 GB) (Disk ID: B219E782) Partition 1: (Active) - (Size=111.8 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: A4BEED29) Partition 1: (Active) - (Size=487.9 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=1374.7 GB) - (Type=07 NTFS) ==================== End of Addition.txt ============================ https://www.mycity.rs/must-login.png

Profil

helen1 Poslao: 28 Dec 2015 00:17 Idi na vrh
offline helen1 Anti Malware Fighter Rank 2 Master učitelj Pridružio: 27 Avg 2005 Poruke: 8617 Gde živiš: Novi Beograd	1Ovo se svidja korisniku: bobo 75 Registruj se da bi pohvalio/la poruku! Zdravo, kopirao si Addition log, pa si ga i uploadovao. Fali osnovni FRST log. Kopiraj nam i njega.

Profil

bobo 75 Poslao: 28 Dec 2015 00:18 Idi na vrh
offline bobo 75 Ugledni građanin Pridružio: 14 Sep 2008 Poruke: 424 Gde živiš: Podgorica	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Izvinjavam se Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:27-12-2015 Ran by Darija-Marija (administrator) on DESKTOP-M3U6RAH (27-12-2015 23:13:21) Running from C:\Users\Darija-Marija\Desktop Loaded Profiles: Darija-Marija (Available Profiles: Darija-Marija) Platform: Windows 10 Pro (X64) Language: English (United States) Internet Explorer Version 11 (Default browser: Edge) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-t.....scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (AMD) C:\Windows\System32\atiesrxx.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe (Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE (Avast Software) C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe (AMD) C:\Windows\System32\atieclxx.exe (FSPro Labs) C:\Program Files\My Lockbox\mylbx.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (Microsoft Corporation) C:\Windows\System32\Taskmgr.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\ng\ngtool.exe (BitTorrent Inc.) C:\Users\Darija-Marija\AppData\Roaming\BitTorrent\BitTorrent.exe (BitTorrent Inc.) C:\Users\Darija-Marija\AppData\Roaming\BitTorrent\updates\7.9.5_41373\utorrentie.exe (BitTorrent Inc.) C:\Users\Darija-Marija\AppData\Roaming\BitTorrent\updates\7.9.5_41373\utorrentie.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe ==================== Registry (Whitelisted) =========================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8783616 2015-12-22] (Realtek Semiconductor) HKLM\...\Run: [mylbx] => C:\Program Files\My Lockbox\mylbx.exe [2617608 2015-05-25] (FSPro Labs) HKLM-x32\...\Run: [Raptr] => C:\Program Files (x86)\Raptr\raptrstub.exe [56080 2015-12-11] (Raptr, Inc) HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7021880 2015-12-22] (AVAST Software) HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-11-04] (Advanced Micro Devices, Inc.) HKU\S-1-5-21-441648292-4210431568-626584666-1001\...\Run: [AppEx Accelerator UI] => C:\Program Files\AMD Quick Stream\AMDQuickStream.exe [482528 2014-04-01] (AppEx Networks Corporation) HKU\S-1-5-21-441648292-4210431568-626584666-1001\...\RunOnce: [Uninstall C:\Users\Darija-Marija\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Darija-Marija\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64" HKU\S-1-5-21-441648292-4210431568-626584666-1001\...\RunOnce: [Uninstall C:\Users\Darija-Marija\AppData\Local\Microsoft\OneDrive\17.3.5892.0626] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Darija-Marija\AppData\Local\Microsoft\OneDrive\17.3.5892.0626" ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-12-22] (AVAST Software) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Tcpip\Parameters: [DhcpNameServer] 192.168.100.1 Tcpip\..\Interfaces\{8077826f-e84d-4656-83fa-f4ea412d951b}: [DhcpNameServer] 192.168.100.1 Internet Explorer: ================== BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2010-01-21] (Microsoft Corporation) BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-12-22] (AVAST Software) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-01-16] (Microsoft Corporation) BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2010-01-21] (Microsoft Corporation) BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-12-22] (AVAST Software) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-01-16] (Microsoft Corporation) FireFox: ======== FF ProfilePath: C:\Users\Darija-Marija\AppData\Roaming\Mozilla\Firefox\Profiles\gf6ds5wv.default FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_20_0_0_235.dll [2015-12-22] () FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_235.dll [2015-12-22] () FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-01-10] (Microsoft Corporation) FF user.js: detected! => C:\Users\Darija-Marija\AppData\Roaming\Mozilla\Firefox\Profiles\gf6ds5wv.default\user.js [2015-12-27] Chrome: ======= CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-12-22] ==================== Services (Whitelisted) ======================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2014-08-12] (Advanced Micro Devices, Inc.) [File not signed] R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [226440 2015-12-22] (AVAST Software) R3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [5561368 2015-12-22] (Avast Software) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation) ===================== Drivers (Whitelisted) ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 AODDriver4.3; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-12] (Advanced Micro Devices) S2 APXACC; C:\Windows\system32\DRIVERS\appexDrv.sys [229056 2015-04-03] (AppEx Networks Corporation) R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-12-22] (AVAST Software) R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [97648 2015-12-22] (AVAST Software) R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-12-22] (AVAST Software) R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-12-22] (AVAST Software) R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1055560 2015-12-22] (AVAST Software) R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [451040 2015-12-22] (AVAST Software) R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [155304 2015-12-22] (AVAST Software) R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [273784 2015-12-22] (AVAST Software) R0 FSProFilter2; C:\Windows\System32\Drivers\FSPFltd2.sys [57648 2011-06-03] (FSPro Labs) R0 ngvss; C:\Windows\System32\Drivers\ngvss.sys [147088 2015-12-22] (AVAST Software) R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [587264 2015-07-10] (Realtek ) R3 RtlWlanu; C:\Windows\System32\drivers\rtwlanu.sys [3772632 2015-07-10] (Realtek Semiconductor Corporation ) S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] () R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [310904 2015-12-22] (Avast Software) S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation) S3 xhunter1; C:\Windows\xhunter1.sys [35880 2015-12-27] (Wellbia.com Co., Ltd.) S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One Month Created files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2015-12-27 23:13 - 2015-12-27 23:13 - 00009452 _____ C:\Users\Darija-Marija\Desktop\FRST.txt 2015-12-27 23:13 - 2015-12-27 23:13 - 00000000 ____D C:\FRST 2015-12-27 23:12 - 2015-12-27 23:12 - 02370560 _____ (Farbar) C:\Users\Darija-Marija\Desktop\FRST64.exe 2015-12-27 23:00 - 2015-12-27 23:00 - 00000000 ____D C:\Users\Darija-Marija\AppData\LocalLow\BitTorrent 2015-12-27 21:13 - 2015-12-27 21:13 - 00016148 _____ C:\Windows\system32\DESKTOP-M3U6RAH_Darija-Marija_HistoryPrediction.bin 2015-12-27 11:31 - 2015-12-27 11:31 - 00000000 ____D C:\Users\Darija-Marija\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\My Lockbox 2015-12-27 11:31 - 2015-12-27 11:31 - 00000000 ____D C:\Program Files\My Lockbox 2015-12-27 11:31 - 2011-06-03 22:59 - 00057648 _____ (FSPro Labs) C:\Windows\system32\Drivers\FSPFltd2.sys 2015-12-26 18:09 - 2015-12-27 10:44 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2015-12-24 03:01 - 2015-12-24 03:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy 2015-12-24 03:01 - 2015-12-24 03:01 - 00000000 ____D C:\Program Files\Speccy 2015-12-23 12:21 - 2015-12-23 12:21 - 00000000 ____D C:\Users\Darija-Marija\Desktop\Programi i objasnjenja 2015-12-23 10:13 - 2015-12-23 10:15 - 00000000 ____D C:\Windows\system32\MRT 2015-12-23 10:13 - 2015-11-23 19:10 - 140158008 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2015-12-23 10:11 - 2015-12-23 10:11 - 00000000 ____D C:\Windows\system32\SleepStudy 2015-12-23 10:10 - 2015-12-23 10:10 - 00000000 ____D C:\Users\Darija-Marija\AppData\Local\PeerDistRepub 2015-12-23 02:18 - 2015-12-23 02:18 - 00000000 ____D C:\Users\Darija-Marija\AppData\Roaming\MPC-HC 2015-12-22 20:35 - 2015-12-22 20:35 - 00004608 _____ C:\Windows\SECOH-QAD.exe 2015-12-22 20:35 - 2015-12-22 20:35 - 00003584 _____ C:\Windows\SECOH-QAD.dll 2015-12-22 20:33 - 2015-12-27 10:18 - 00000000 ____D C:\Users\Darija-Marija\Desktop\Posao 2015-12-22 20:14 - 2015-12-22 20:14 - 00000000 ____D C:\Windows\PCHEALTH 2015-12-22 20:14 - 2015-12-22 20:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint 2015-12-22 20:14 - 2015-12-22 20:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2015-12-22 20:14 - 2015-12-22 20:14 - 00000000 ____D C:\Program Files (x86)\MSBuild 2015-12-22 20:14 - 2015-12-22 20:14 - 00000000 ____D C:\Program Files (x86)\Microsoft Sync Framework 2015-12-22 20:13 - 2015-12-22 20:13 - 00000000 ____D C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform 2015-12-22 20:12 - 2015-12-22 20:12 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 8 2015-12-22 20:11 - 2015-12-22 20:14 - 00000000 ____D C:\Program Files (x86)\Microsoft Office 2015-12-22 20:11 - 2015-12-22 20:11 - 00000000 ____D C:\Program Files\Microsoft Office 2015-12-22 20:11 - 2015-12-22 20:11 - 00000000 ____D C:\Program Files (x86)\Microsoft Analysis Services 2015-12-22 20:10 - 2015-12-22 20:10 - 00000000 __RHD C:\MSOCache 2015-12-22 20:10 - 2015-12-22 20:10 - 00000000 ____D C:\Users\Darija-Marija\AppData\Local\Microsoft Help 2015-12-22 20:03 - 2015-12-27 10:44 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2015-12-22 20:03 - 2015-12-22 20:03 - 00001228 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk 2015-12-22 19:54 - 2015-12-22 20:37 - 00000000 ____D C:\Program Files (x86)\PowerISO 2015-12-22 19:54 - 2015-12-22 19:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerISO 2015-12-22 19:54 - 2013-10-23 15:11 - 00129944 _____ (Power Software Ltd) C:\Windows\system32\Drivers\scdemu.sys 2015-12-22 19:47 - 2015-12-27 11:31 - 00000000 ____D C:\Users\Darija-Marija\AppData\Roaming\OpenCandy 2015-12-22 19:47 - 2015-12-22 19:47 - 00000000 ____D C:\Users\Darija-Marija\AppData\Roaming\WinRAR 2015-12-22 19:46 - 2015-12-22 19:46 - 00000000 ____D C:\Users\Darija-Marija\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2015-12-22 19:46 - 2015-12-22 19:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2015-12-22 19:46 - 2015-12-22 19:46 - 00000000 ____D C:\Program Files\WinRAR 2015-12-22 15:15 - 2015-12-22 15:15 - 00000000 ____D C:\Users\Darija-Marija\AppData\Local\Macromedia 2015-12-22 15:14 - 2015-12-22 15:15 - 00000000 ____D C:\Users\Darija-Marija\AppData\Local\Adobe 2015-12-22 12:04 - 2015-12-22 12:04 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf 2015-12-22 12:03 - 2015-12-23 22:01 - 00000000 ____D C:\Windows\Panther 2015-12-22 12:03 - 2015-12-22 12:03 - 00008192 __RSH C:\BOOTSECT.BAK 2015-12-22 08:30 - 2015-12-27 22:58 - 00000000 ____D C:\Windows\SysWOW64\vbox 2015-12-22 08:30 - 2015-12-27 22:58 - 00000000 ____D C:\Windows\system32\vbox 2015-12-22 08:12 - 2015-12-22 08:12 - 00000000 ____D C:\ProgramData\Nexon 2015-12-22 08:11 - 2015-12-27 21:14 - 00035880 _____ (Wellbia.com Co., Ltd.) C:\Windows\xhunter1.sys 2015-12-22 08:10 - 2015-12-22 08:10 - 00000000 ____D C:\ProgramData\ATI 2015-12-22 04:03 - 2015-12-27 21:14 - 00000000 ____D C:\Users\Darija-Marija\AppData\Local\NXEPassportClient 2015-12-22 04:01 - 2015-12-22 08:12 - 00000000 ____D C:\ProgramData\NexonEU 2015-12-22 04:01 - 2015-12-22 04:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nexon 2015-12-22 03:53 - 2015-12-22 03:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center 2015-12-22 03:52 - 2015-12-22 03:52 - 00000000 ____D C:\Users\Default\AppData\Roaming\ATI 2015-12-22 03:52 - 2015-12-22 03:52 - 00000000 ____D C:\Users\Default\AppData\Local\ATI 2015-12-22 03:52 - 2015-12-22 03:52 - 00000000 ____D C:\Users\Default User\AppData\Roaming\ATI 2015-12-22 03:52 - 2015-12-22 03:52 - 00000000 ____D C:\Users\Default User\AppData\Local\ATI 2015-12-22 03:47 - 2015-12-22 03:47 - 00147088 _____ (AVAST Software) C:\Windows\system32\Drivers\ngvss.sys 2015-12-22 03:47 - 2015-12-22 03:45 - 00386096 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe 2015-12-22 03:46 - 2015-12-22 03:46 - 00002754 _____ C:\Users\Darija-Marija\AppData\Roaming\Microsoft\Windows\Start Menu\BitTorrent.lnk 2015-12-22 03:46 - 2015-12-22 03:46 - 00001979 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk 2015-12-22 03:46 - 2015-12-22 03:46 - 00000000 ____D C:\Users\Darija-Marija\AppData\Roaming\Macromedia 2015-12-22 03:46 - 2015-12-22 03:46 - 00000000 ____D C:\Users\Darija-Marija\AppData\Roaming\AVAST Software 2015-12-22 03:45 - 2015-12-27 23:12 - 00000000 ____D C:\Users\Darija-Marija\AppData\Roaming\BitTorrent 2015-12-22 03:45 - 2015-12-22 03:47 - 00004006 _____ C:\Windows\System32\Tasks\avast! Emergency Update 2015-12-22 03:45 - 2015-12-22 03:45 - 01055560 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys 2015-12-22 03:45 - 2015-12-22 03:45 - 00451040 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys 2015-12-22 03:45 - 2015-12-22 03:45 - 00273784 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys 2015-12-22 03:45 - 2015-12-22 03:45 - 00155304 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys 2015-12-22 03:45 - 2015-12-22 03:45 - 00097648 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys 2015-12-22 03:45 - 2015-12-22 03:45 - 00093528 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys 2015-12-22 03:45 - 2015-12-22 03:45 - 00065224 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys 2015-12-22 03:45 - 2015-12-22 03:45 - 00043112 _____ (AVAST Software) C:\Windows\avastSS.scr 2015-12-22 03:45 - 2015-12-22 03:45 - 00028656 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys 2015-12-22 03:44 - 2015-12-22 03:44 - 00000000 ____D C:\ProgramData\AVAST Software 2015-12-22 03:44 - 2015-12-22 03:44 - 00000000 ____D C:\Program Files\AVAST Software 2015-12-22 03:43 - 2015-12-22 03:58 - 00000000 ____D C:\Nexon 2015-12-22 03:38 - 2015-12-22 03:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 2015-12-22 03:38 - 2015-12-22 03:38 - 00000000 ____D C:\Program Files\CCleaner 2015-12-22 03:34 - 2015-12-27 11:32 - 00000000 ____D C:\Users\Darija-Marija\Desktop\Precice 2015-12-22 03:34 - 2015-12-26 09:33 - 00000000 ____D C:\Users\Darija-Marija\Desktop\Wallpapers 2015-12-22 03:31 - 2015-12-22 03:37 - 00000000 ____D C:\Users\Darija-Marija\AppData\Local\Mozilla 2015-12-22 03:31 - 2015-12-22 03:31 - 00000000 ____D C:\Users\Darija-Marija\AppData\Roaming\Mozilla 2015-12-22 03:28 - 2015-12-22 03:28 - 00001047 _____ C:\Users\Darija-Marija\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Optional Features.lnk 2015-12-22 03:28 - 2015-07-09 20:37 - 01870848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MLS2.dll 2015-12-22 03:28 - 2015-07-09 20:36 - 07043584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsLexicons081a.dll 2015-12-22 03:28 - 2015-07-09 20:36 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData081a.dll 2015-12-22 03:28 - 2015-07-09 20:26 - 01909248 _____ (Microsoft Corporation) C:\Windows\system32\MLS2.dll 2015-12-22 03:28 - 2015-07-09 20:25 - 07043584 _____ (Microsoft Corporation) C:\Windows\system32\NlsLexicons081a.dll 2015-12-22 03:28 - 2015-07-09 20:25 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\NlsData081a.dll 2015-12-22 03:27 - 2015-12-23 02:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack 2015-12-22 03:27 - 2015-12-23 02:17 - 00000000 ____D C:\Program Files (x86)\K-Lite Codec Pack 2015-12-22 03:27 - 2015-12-22 03:27 - 00000000 ____D C:\Users\Darija-Marija\AppData\Local\MicrosoftEdge 2015-12-22 03:27 - 2014-06-05 19:00 - 00112640 _____ C:\Windows\SysWOW64\ff_vfw.dll 2015-12-22 03:27 - 2013-12-01 13:10 - 00257624 _____ C:\Windows\system32\unrar64.dll 2015-12-22 03:27 - 2013-12-01 13:10 - 00218200 _____ C:\Windows\SysWOW64\unrar.dll 2015-12-22 03:27 - 2013-03-17 18:22 - 03554304 _____ (x264vfw project) C:\Windows\system32\x264vfw64.dll 2015-12-22 03:27 - 2013-03-17 17:21 - 03649536 _____ (x264vfw project) C:\Windows\SysWOW64\x264vfw.dll 2015-12-22 03:27 - 2012-07-21 11:55 - 00180736 _____ (fccHandler) C:\Windows\system32\ac3acm.acm 2015-12-22 03:27 - 2012-07-21 11:54 - 00122880 _____ (fccHandler) C:\Windows\SysWOW64\ac3acm.acm 2015-12-22 03:27 - 2011-12-07 18:37 - 00148992 _____ ( ) C:\Windows\system32\lagarith.dll 2015-12-22 03:27 - 2011-12-07 18:32 - 00216064 _____ ( ) C:\Windows\SysWOW64\lagarith.dll 2015-12-22 03:27 - 2011-06-24 15:45 - 00258560 _____ C:\Windows\system32\xvidvfw.dll 2015-12-22 03:27 - 2011-06-24 15:44 - 00243200 _____ C:\Windows\SysWOW64\xvidvfw.dll 2015-12-22 03:27 - 2011-06-24 15:31 - 00703488 _____ C:\Windows\system32\xvidcore.dll 2015-12-22 03:27 - 2011-06-24 15:28 - 00650752 _____ C:\Windows\SysWOW64\xvidcore.dll 2015-12-22 03:25 - 2015-12-22 03:25 - 00000000 ____D C:\Users\Darija-Marija\AppData\Local\AMD 2015-12-22 03:24 - 2015-12-22 03:24 - 00000000 ____D C:\Users\Darija-Marija\AppData\Local\AppEx Networks 2015-12-22 03:23 - 2015-12-27 14:54 - 00065536 _____ C:\Windows\system32\spu_storage.bin 2015-12-22 03:23 - 2015-12-22 03:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Quick Stream 2015-12-22 03:23 - 2015-12-22 03:23 - 00000000 ____D C:\Program Files\AMD Quick Stream 2015-12-22 03:23 - 2015-12-22 03:23 - 00000000 ____D C:\Program Files (x86)\AMD AVT 2015-12-22 03:23 - 2014-02-16 17:23 - 00060640 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\usbfilter.sys 2015-12-22 03:22 - 2015-12-22 03:53 - 00000000 ____D C:\Program Files (x86)\ATI Technologies 2015-12-22 03:22 - 2015-12-22 03:23 - 00000000 ____D C:\Program Files\ATI Technologies 2015-12-22 03:22 - 2015-12-22 03:22 - 00000000 ____D C:\Program Files\ATI 2015-12-22 03:21 - 2015-12-22 03:21 - 00000794 _____ C:\Users\Darija-Marija\Desktop\Documents.lnk 2015-12-22 03:19 - 2015-12-22 03:50 - 00000420 _____ C:\Users\Darija-Marija\Desktop\This PC.lnk 2015-12-22 03:18 - 2015-12-22 03:18 - 00000000 ____D C:\Users\Darija-Marija\AppData\Roaming\library_dir 2015-12-22 03:18 - 2015-12-22 03:18 - 00000000 ____D C:\Users\Darija-Marija\AppData\Roaming\ATI 2015-12-22 03:18 - 2015-12-22 03:18 - 00000000 ____D C:\Users\Darija-Marija\AppData\Local\ATI 2015-12-22 03:18 - 2015-12-22 03:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Gaming Evolved 2015-12-22 03:17 - 2015-12-22 03:23 - 00000000 ____D C:\ProgramData\AMD 2015-12-22 03:17 - 2015-12-22 03:19 - 00000000 ____D C:\Users\Darija-Marija\AppData\Roaming\Raptr 2015-12-22 03:17 - 2015-12-22 03:18 - 00000000 ____D C:\Program Files (x86)\Raptr 2015-12-22 03:17 - 2015-04-03 10:14 - 00229056 ____N (AppEx Networks Corporation) C:\Windows\system32\Drivers\appexDrv.sys 2015-12-22 03:16 - 2015-12-27 22:50 - 00004180 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{71ABF11B-602A-4EFE-A2EE-87213F9D4FAB} 2015-12-22 03:16 - 2015-12-22 03:16 - 47794160 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl64.dll 2015-12-22 03:16 - 2015-12-22 03:16 - 30775792 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atio6axx.dll 2015-12-22 03:16 - 2015-12-22 03:16 - 25320432 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atioglxx.dll 2015-12-22 03:16 - 2015-12-22 03:16 - 21648880 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmdag.sys 2015-12-22 03:16 - 2015-12-22 03:16 - 15725552 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd64.dll 2015-12-22 03:16 - 2015-12-22 03:16 - 14310896 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticaldd.dll 2015-12-22 03:16 - 2015-12-22 03:16 - 12088000 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atidxx64.dll 2015-12-22 03:16 - 2015-12-22 03:16 - 09355016 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdxc64.dll 2015-12-22 03:16 - 2015-12-22 03:16 - 08009360 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdva.dll 2015-12-22 03:16 - 2015-12-22 03:16 - 07683096 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdxc32.dll 2015-12-22 03:16 - 2015-12-22 03:16 - 07482560 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdag.dll 2015-12-22 03:16 - 2015-12-22 03:16 - 03471376 _____ C:\Windows\SysWOW64\atiumdva.cap 2015-12-22 03:16 - 2015-12-22 03:16 - 03437632 _____ C:\Windows\system32\atiumd6a.cap 2015-12-22 03:16 - 2015-12-22 03:16 - 01479808 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx64.dll 2015-12-22 03:16 - 2015-12-22 03:16 - 01196032 _____ C:\Windows\system32\amdocl_as64.exe 2015-12-22 03:16 - 2015-12-22 03:16 - 01070592 _____ C:\Windows\system32\amdocl_ld64.exe 2015-12-22 03:16 - 2015-12-22 03:16 - 01004032 _____ C:\Windows\SysWOW64\amdocl_as32.exe 2015-12-22 03:16 - 2015-12-22 03:16 - 00935408 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll 2015-12-22 03:16 - 2015-12-22 03:16 - 00935408 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxx.dll 2015-12-22 03:16 - 2015-12-22 03:16 - 00874480 _____ (AMD) C:\Windows\system32\coinst_15.20.dll 2015-12-22 03:16 - 2015-12-22 03:16 - 00807424 _____ C:\Windows\SysWOW64\amdocl_ld32.exe 2015-12-22 03:16 - 2015-12-22 03:16 - 00737410 _____ C:\Windows\system32\atiicdxx.dat 2015-12-22 03:16 - 2015-12-22 03:16 - 00674288 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys 2015-12-22 03:16 - 2015-12-22 03:16 - 00662400 _____ C:\Windows\SysWOW64\atiapfxx.blb 2015-12-22 03:16 - 2015-12-22 03:16 - 00662400 _____ C:\Windows\system32\atiapfxx.blb 2015-12-22 03:16 - 2015-12-22 03:16 - 00375792 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe 2015-12-22 03:16 - 2015-12-22 03:16 - 00341488 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIODE.exe 2015-12-22 03:16 - 2015-12-22 03:16 - 00322868 _____ C:\Windows\system32\ativvaxy_vi.dat 2015-12-22 03:16 - 2015-12-22 03:16 - 00321200 _____ C:\Windows\system32\ativvaxy_vi_nd.dat 2015-12-22 03:16 - 2015-12-22 03:16 - 00255808 _____ C:\Windows\system32\ativvaxy_cz_nd.dat 2015-12-22 03:16 - 2015-12-22 03:16 - 00250884 _____ C:\Windows\system32\ativvaxy_FJ.dat 2015-12-22 03:16 - 2015-12-22 03:16 - 00249088 _____ C:\Windows\system32\ativvaxy_FJ_nd.dat 2015-12-22 03:16 - 2015-12-22 03:16 - 00243696 _____ C:\Windows\system32\clinfo.exe 2015-12-22 03:16 - 2015-12-22 03:16 - 00234420 _____ C:\Windows\system32\ativvaxy_cik.dat 2015-12-22 03:16 - 2015-12-22 03:16 - 00232752 _____ C:\Windows\system32\ativvaxy_cik_nd.dat 2015-12-22 03:16 - 2015-12-22 03:16 - 00204952 _____ C:\Windows\SysWOW64\ativvsvl.dat 2015-12-22 03:16 - 2015-12-22 03:16 - 00204952 _____ C:\Windows\system32\ativvsvl.dat 2015-12-22 03:16 - 2015-12-22 03:16 - 00199664 _____ (AMD) C:\Windows\system32\atitmm64.dll 2015-12-22 03:16 - 2015-12-22 03:16 - 00177344 _____ C:\Windows\system32\ativce03.dat 2015-12-22 03:16 - 2015-12-22 03:16 - 00168944 _____ C:\Windows\system32\atieah64.exe 2015-12-22 03:16 - 2015-12-22 03:16 - 00165360 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll 2015-12-22 03:16 - 2015-12-22 03:16 - 00162232 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiuxp64.dll 2015-12-22 03:16 - 2015-12-22 03:16 - 00157144 _____ C:\Windows\SysWOW64\ativvsva.dat 2015-12-22 03:16 - 2015-12-22 03:16 - 00157144 _____ C:\Windows\system32\ativvsva.dat 2015-12-22 03:16 - 2015-12-22 03:16 - 00152560 _____ C:\Windows\SysWOW64\atieah32.exe 2015-12-22 03:16 - 2015-12-22 03:16 - 00150512 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll 2015-12-22 03:16 - 2015-12-22 03:16 - 00140240 _____ C:\Windows\system32\samu_krnl_ci.sbin 2015-12-22 03:16 - 2015-12-22 03:16 - 00138832 _____ C:\Windows\system32\samu_krnl_isv_ci.sbin 2015-12-22 03:16 - 2015-12-22 03:16 - 00136176 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantle64.dll 2015-12-22 03:16 - 2015-12-22 03:16 - 00122352 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantle32.dll 2015-12-22 03:16 - 2015-12-22 03:16 - 00112360 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiu9pag.dll 2015-12-22 03:16 - 2015-12-22 03:16 - 00111600 _____ C:\Windows\system32\hsa-thunk64.dll 2015-12-22 03:16 - 2015-12-22 03:16 - 00111088 _____ C:\Windows\SysWOW64\hsa-thunk.dll 2015-12-22 03:16 - 2015-12-22 03:16 - 00103408 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantleaxl64.dll 2015-12-22 03:16 - 2015-12-22 03:16 - 00100816 _____ C:\Windows\system32\ativce02.dat 2015-12-22 03:16 - 2015-12-22 03:16 - 00097776 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atisamu64.dll 2015-12-22 03:16 - 2015-12-22 03:16 - 00096752 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantleaxl32.dll 2015-12-22 03:16 - 2015-12-22 03:16 - 00089584 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atisamu32.dll 2015-12-22 03:16 - 2015-12-22 03:16 - 00088000 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll 2015-12-22 03:16 - 2015-12-22 03:16 - 00088000 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll 2015-12-22 03:16 - 2015-12-22 03:16 - 00083952 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6pxx.dll 2015-12-22 03:16 - 2015-12-22 03:16 - 00081160 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll 2015-12-22 03:16 - 2015-12-22 03:16 - 00081160 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll 2015-12-22 03:16 - 2015-12-22 03:16 - 00078320 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiglpxx.dll 2015-12-22 03:16 - 2015-12-22 03:16 - 00078320 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiglpxx.dll 2015-12-22 03:16 - 2015-12-22 03:16 - 00073712 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll 2015-12-22 03:16 - 2015-12-22 03:16 - 00071152 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt64.dll 2015-12-22 03:16 - 2015-12-22 03:16 - 00068080 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll 2015-12-22 03:16 - 2015-12-22 03:16 - 00064496 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl64.dll 2015-12-22 03:16 - 2015-12-22 03:16 - 00060912 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalrt.dll 2015-12-22 03:16 - 2015-12-22 03:16 - 00059888 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIODCLI.exe 2015-12-22 03:16 - 2015-12-22 03:16 - 00057840 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalcl.dll 2015-12-22 03:16 - 2015-12-22 03:16 - 00052208 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\ati2erec.dll 2015-12-22 03:16 - 2015-12-22 03:16 - 00047664 _____ C:\Windows\system32\kapp_ci.sbin 2015-12-22 03:16 - 2015-12-22 03:16 - 00043536 _____ C:\Windows\system32\kapp_si.sbin 2015-12-22 03:16 - 2015-12-22 03:16 - 00038384 _____ (AMD) C:\Windows\system32\atimuixx.dll 2015-12-22 03:16 - 2015-12-22 03:16 - 00012784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\detoured.dll 2015-12-22 03:16 - 2015-12-22 03:16 - 00012784 _____ (Microsoft Corporation) C:\Windows\system32\detoured.dll 2015-12-22 03:16 - 2015-12-22 03:16 - 00000000 ____D C:\ProgramData\Package Cache 2015-12-22 03:16 - 2015-12-22 03:16 - 00000000 ____D C:\Program Files\Common Files\ATI Technologies 2015-12-22 03:16 - 2015-12-22 03:16 - 00000000 _____ C:\Windows\ativpsrm.bin 2015-12-22 03:15 - 2015-12-27 14:58 - 00830266 _____ C:\Windows\system32\PerfStringBackup.INI 2015-12-22 03:15 - 2015-12-22 03:16 - 27544560 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl12cl64.dll 2015-12-22 03:15 - 2015-12-22 03:15 - 39720944 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl.dll 2015-12-22 03:15 - 2015-12-22 03:15 - 22327280 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl12cl.dll 2015-12-22 03:15 - 2015-12-22 03:15 - 06686192 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmantle64.dll 2015-12-22 03:15 - 2015-12-22 03:15 - 05216240 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmantle32.dll 2015-12-22 03:15 - 2015-12-22 03:15 - 00833800 _____ C:\Windows\system32\amdicdxx.dat 2015-12-22 03:15 - 2015-12-22 03:15 - 00631792 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdlvr64.dll 2015-12-22 03:15 - 2015-12-22 03:15 - 00524272 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdlvr32.dll 2015-12-22 03:15 - 2015-12-22 03:15 - 00471320 _____ C:\Windows\system32\amdmiracast.dll 2015-12-22 03:15 - 2015-12-22 03:15 - 00213488 _____ C:\Windows\system32\amdgfxinfo64.dll 2015-12-22 03:15 - 2015-12-22 03:15 - 00198640 _____ C:\Windows\SysWOW64\amdgfxinfo32.dll 2015-12-22 03:15 - 2015-12-22 03:15 - 00175648 _____ C:\Windows\system32\amde31a.dat 2015-12-22 03:15 - 2015-12-22 03:15 - 00151936 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdhcp64.dll 2015-12-22 03:15 - 2015-12-22 03:15 - 00143344 _____ C:\Windows\system32\amdhdl64.dll 2015-12-22 03:15 - 2015-12-22 03:15 - 00138384 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdhcp32.dll 2015-12-22 03:15 - 2015-12-22 03:15 - 00132080 _____ C:\Windows\SysWOW64\amdhdl32.dll 2015-12-22 03:15 - 2015-12-22 03:15 - 00117600 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdave64.dll 2015-12-22 03:15 - 2015-12-22 03:15 - 00110320 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdave32.dll 2015-12-22 03:15 - 2015-12-22 03:15 - 00059376 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmmcl6.dll 2015-12-22 03:15 - 2015-12-22 03:15 - 00048112 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmmcl.dll 2015-12-22 03:14 - 2015-12-22 03:16 - 00000000 ____D C:\Program Files\AMD 2015-12-22 03:13 - 2015-12-22 03:13 - 72203792 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat 2015-12-22 03:13 - 2015-12-22 03:13 - 14057256 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek64.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 13120760 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO3064.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 12986528 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO4064.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 10521552 _____ (Intel Corporation) C:\Windows\system32\IntelSSTAPO.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 07172920 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 07096192 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64A.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 06264640 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64AF3.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 05804772 _____ C:\Windows\system32\Drivers\rtvienna.dat 2015-12-22 03:13 - 2015-12-22 03:13 - 05776688 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICV2apo.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 05338936 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOv211.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 05289952 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOlfx.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 04705536 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys 2015-12-22 03:13 - 2015-12-22 03:13 - 04486133 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT 2015-12-22 03:13 - 2015-12-22 03:13 - 03299832 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE2.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 03282032 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 03271912 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 03195648 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 03152591 _____ C:\Windows\system32\Drivers\rtkSSTsetting.dat 2015-12-22 03:13 - 2015-12-22 03:13 - 03052880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 02893568 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl 2015-12-22 03:13 - 2015-12-22 03:13 - 02823280 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO7064.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 02692848 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RltkAPO.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 02437144 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOv201.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 02190992 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 02110600 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 02050184 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 02030208 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 01965816 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64A.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 01959608 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64AF3.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 01928632 _____ (DTS, Inc.) C:\Windows\system32\sltech64.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 01780624 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 01601952 _____ (Conexant Systems Inc.) C:\Windows\system32\CX64APO.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 01591064 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 01508936 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 01435152 _____ (Synopsys, Inc.) C:\Windows\system32\SRRPTR64.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 01421104 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO6064.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 01382240 _____ (TOSHIBA Corporation) C:\Windows\system32\tosade.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 01356504 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 01322656 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxSpeechAPO64.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 01286160 _____ (DTS, Inc.) C:\Windows\system32\slcnt64.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 01211840 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO5064.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 01186160 _____ (Intel Corporation) C:\Windows\system32\IntelSstCApoPropPage.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 01164336 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO4064.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 01008360 _____ (DTS, Inc.) C:\Windows\system32\sl3apo64.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 01003864 _____ (Nahimic Inc) C:\Windows\system32\NahimicAPONSControl.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00998032 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO2064.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00965032 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00952984 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOProp.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00933640 _____ (Sound Research, Corp.) C:\Windows\system32\SEHDRA64.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00931624 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00923752 _____ (Sony Corporation) C:\Windows\system32\MISS_APO.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00888472 _____ (TOSHIBA Corporation) C:\Windows\system32\tossaeapo64.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00873472 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo264.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00743968 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00727440 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00716112 _____ (Sound Research, Corp.) C:\Windows\system32\SECOMN64.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00708312 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00689888 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00678192 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00677680 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00618192 _____ (Knowles Acoustics ) C:\Windows\system32\KAAPORT64.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00596120 _____ (TOSHIBA Corporation) C:\Windows\system32\tosasfapo64.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00589072 _____ (Sound Research, Corp.) C:\Windows\SysWOW64\SECOMN32.DLL 2015-12-22 03:13 - 2015-12-22 03:13 - 00574760 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00532384 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00514528 _____ (DTS) C:\Windows\system32\DTSU2PLFX64.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00504312 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00500560 _____ (DTS) C:\Windows\system32\DTSU2PGFX64.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00467160 _____ (Synopsys, Inc.) C:\Windows\system32\SRAPO64.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00448592 _____ (Sound Research, Corp.) C:\Windows\system32\SEAPO64.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00447728 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00445408 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00441272 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00428232 _____ (DTS) C:\Windows\system32\DTSU2PREC64.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00387320 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00381416 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM64.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00369304 _____ (Dolby Laboratories) C:\Windows\system32\HiFiDAX2API.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00362064 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64AF3.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00343712 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00341160 _____ (Synopsys, Inc.) C:\Windows\SysWOW64\SRCOM.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00341160 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00340648 _____ (ICEpower a/s) C:\Windows\system32\ICEsoundAPO64.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00330568 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00327464 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64A.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00321720 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00321720 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00310432 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64F3.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00272720 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00258504 _____ (TODO: <Company name>) C:\Windows\system32\slprp64.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00253904 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00253872 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00252880 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00231920 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK64.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00224264 _____ (TOSHIBA Corporation) C:\Windows\system32\tossaemaxapo64.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00221968 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00214840 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00209536 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00192984 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00172584 _____ (TOSHIBA Corporation) C:\Windows\system32\toseaeapo64.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00166208 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00158704 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00151792 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00134208 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00122328 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00118600 _____ C:\Windows\system32\AcpiServiceVnA64.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00118600 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00110992 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00105312 _____ C:\Windows\system32\audioLibVc.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00090920 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM64.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00088352 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00088328 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO64.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00084624 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00083632 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00075544 _____ (TOSHIBA CORPORATION.) C:\Windows\system32\tepeqapo64.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00023696 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll 2015-12-22 03:13 - 2015-12-22 03:13 - 00000000 ____H C:\ProgramData\DP45977C.lfl 2015-12-22 03:13 - 2015-12-22 03:13 - 00000000 ____D C:\Windows\SysWOW64\RTCOM 2015-12-22 03:13 - 2015-12-22 03:13 - 00000000 ____D C:\Windows\system32\DAX2 2015-12-22 03:13 - 2015-12-22 03:13 - 00000000 ____D C:\Program Files\Realtek 2015-12-22 03:12 - 2015-12-22 03:52 - 00000000 ____D C:\AMD 2015-12-22 03:12 - 2015-12-22 03:12 - 00002387 _____ C:\Users\Darija-Marija\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2015-12-22 03:12 - 2015-12-22 03:12 - 00000000 ___RD C:\Users\Darija-Marija\OneDrive 2015-12-22 03:11 - 2015-12-22 03:11 - 00000000 ____D C:\ProgramData\Microsoft OneDrive 2015-12-22 03:10 - 2015-12-22 16:17 - 00000000 ____D C:\Users\Darija-Marija 2015-12-22 03:10 - 2015-12-22 03:45 - 00000000 ____D C:\Users\Darija-Marija\AppData\Local\Packages 2015-12-22 03:10 - 2015-12-22 03:10 - 00016148 _____ C:\Windows\system32\DESKTOP-M3U6RAH_defaultuser0_HistoryPrediction.bin 2015-12-22 03:10 - 2015-12-22 03:10 - 00000020 ___SH C:\Users\Darija-Marija\ntuser.ini 2015-12-22 03:10 - 2015-12-22 03:10 - 00000000 _SHDL C:\Users\Darija-Marija\My Documents 2015-12-22 03:10 - 2015-12-22 03:10 - 00000000 _SHDL C:\Users\Darija-Marija\Documents\My Videos 2015-12-22 03:10 - 2015-12-22 03:10 - 00000000 _SHDL C:\Users\Darija-Marija\Documents\My Pictures 2015-12-22 03:10 - 2015-12-22 03:10 - 00000000 _SHDL C:\Users\Darija-Marija\Documents\My Music 2015-12-22 03:10 - 2015-12-22 03:10 - 00000000 __RHD C:\Users\Public\AccountPictures 2015-12-22 03:10 - 2015-12-22 03:10 - 00000000 ____D C:\Users\Darija-Marija\AppData\Roaming\Adobe 2015-12-22 03:10 - 2015-12-22 03:10 - 00000000 ____D C:\Users\Darija-Marija\AppData\Local\VirtualStore 2015-12-22 03:10 - 2015-12-22 03:10 - 00000000 ____D C:\Users\Darija-Marija\AppData\Local\TileDataLayer 2015-12-22 03:10 - 2015-12-22 03:10 - 00000000 ____D C:\Users\Darija-Marija\AppData\Local\Publishers 2015-12-22 03:08 - 2015-12-01 08:01 - 02115936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys 2015-12-22 03:08 - 2015-11-18 07:36 - 04532304 _____ (Microsoft Corporation) C:\Windows\explorer.exe 2015-12-22 03:08 - 2015-11-18 06:56 - 04047280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe 2015-12-22 03:08 - 2015-08-19 05:50 - 00609592 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll 2015-12-22 03:08 - 2015-07-22 04:52 - 00988672 _____ (Microsoft Corporation) C:\Windows\system32\RDXService.dll 2015-12-22 03:07 - 2015-12-22 03:07 - 00000000 ____D C:\Windows\CSC 2015-12-22 03:07 - 2015-07-10 11:59 - 02718208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll ==================== One Month Modified files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2015-12-27 23:13 - 2015-07-10 10:05 - 00000000 ____D C:\Windows 2015-12-27 14:58 - 2015-07-10 12:02 - 00000000 ____D C:\Windows\INF 2015-12-27 14:54 - 2015-07-10 13:21 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2015-12-27 14:54 - 2015-07-10 10:05 - 00131072 ___SH C:\Windows\system32\config\BBI 2015-12-25 10:55 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\rescache 2015-12-23 22:00 - 2015-10-30 10:42 - 00000000 ___HD C:\$WINDOWS.~BT 2015-12-23 10:13 - 2015-07-10 11:55 - 00000000 ____D C:\Windows\CbsTemp 2015-12-23 09:49 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\appcompat 2015-12-23 01:14 - 2015-07-10 12:04 - 00000000 ___HD C:\Program Files\WindowsApps 2015-12-23 01:14 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\AppReadiness 2015-12-22 20:37 - 2015-07-10 13:20 - 00347280 _____ C:\Windows\system32\FNTCACHE.DAT 2015-12-22 20:14 - 2015-07-10 14:14 - 00000000 ____D C:\Windows\ShellNew 2015-12-22 20:13 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files\Common Files\microsoft shared 2015-12-22 20:11 - 2015-07-10 12:04 - 00000167 _____ C:\Windows\win.ini 2015-12-22 12:04 - 2015-07-10 10:05 - 00000000 ____D C:\Windows\system32\Sysprep 2015-12-22 12:03 - 2015-07-10 12:04 - 00028672 _____ C:\Windows\system32\config\BCD-Template 2015-12-22 03:25 - 2015-07-10 12:04 - 00000000 ___RD C:\Windows\DevicesFlow 2015-12-22 03:16 - 2014-08-12 17:49 - 00143056 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiuxpag.dll 2015-12-22 03:16 - 2014-08-12 17:48 - 01223544 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\aticfx32.dll 2015-12-22 03:16 - 2014-08-12 17:48 - 00130064 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9p64.dll 2015-12-22 03:16 - 2014-08-12 17:47 - 10211016 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atidxx32.dll 2015-12-22 03:16 - 2014-08-12 17:47 - 08982432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd6a.dll 2015-12-22 03:16 - 2014-08-12 17:47 - 08864920 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd64.dll 2015-12-22 03:16 - 2014-08-12 15:00 - 00451056 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll 2015-12-22 03:16 - 2014-08-12 14:59 - 00683504 _____ (AMD) C:\Windows\system32\atieclxx.exe 2015-12-22 03:16 - 2014-08-12 14:59 - 00255472 _____ (AMD) C:\Windows\system32\atiesrxx.exe 2015-12-22 03:16 - 2014-08-12 14:34 - 01256432 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll 2015-12-22 03:10 - 2015-07-10 12:04 - 00000000 ___RD C:\Windows\PurchaseDialog 2015-12-22 03:10 - 2015-07-10 12:04 - 00000000 ___RD C:\Windows\PrintDialog 2015-12-22 03:10 - 2015-07-10 12:04 - 00000000 ___RD C:\Windows\MiracastView 2015-12-22 03:10 - 2015-07-10 12:04 - 00000000 ___RD C:\Windows\ImmersiveControlPanel 2015-12-22 03:08 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\oobe 2015-12-22 03:07 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\FxsTmp 2015-12-01 01:32 - 2015-07-10 12:06 - 00826872 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2015-12-01 01:32 - 2015-07-10 12:06 - 00176632 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl ==================== Files in the root of some directories ======= 2015-12-22 03:13 - 2015-12-22 03:13 - 0000000 ____H () C:\ProgramData\DP45977C.lfl Some files in TEMP: ==================== C:\Users\Darija-Marija\AppData\Local\Temp\6a246669c4722113966d0cbd29442eb9.dll C:\Users\Darija-Marija\AppData\Local\Temp\a51c6582f690bd57e6e93e2eb3b0e55d.dll C:\Users\Darija-Marija\AppData\Local\Temp\nso9240.tmp.exe C:\Users\Darija-Marija\AppData\Local\Temp\nsx76CB.tmp.exe C:\Users\Darija-Marija\AppData\Local\Temp\raptrpatch.exe C:\Users\Darija-Marija\AppData\Local\Temp\raptr_stub.exe C:\Users\Darija-Marija\AppData\Local\Temp\safeguard.exe C:\Users\Darija-Marija\AppData\Local\Temp\{5E83E341-1A35-47B9-A1B3-7901EB5363F6}.dll C:\Users\Darija-Marija\AppData\Local\Temp\{AEE3A8DE-410F-4378-A6F0-AC5FC7E882AC}.dll C:\Users\Darija-Marija\AppData\Local\Temp\{FF681EDA-7382-409F-A4F5-DA1BD35A2163}.dll ==================== Bamital & volsnap ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\system32\winlogon.exe => File is digitally signed C:\Windows\system32\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\system32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\system32\services.exe => File is digitally signed C:\Windows\system32\User32.dll => File is digitally signed C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\system32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\system32\rpcss.dll => File is digitally signed C:\Windows\system32\dnsapi.dll => File is digitally signed C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2015-12-22 12:04 ==================== End of FRST.txt ============================

Profil

helen1 Poslao: 28 Dec 2015 10:29 Idi na vrh
offline helen1 Anti Malware Fighter Rank 2 Master učitelj Pridružio: 27 Avg 2005 Poruke: 8617 Gde živiš: Novi Beograd	1Ovo se svidja korisniku: bobo 75 Registruj se da bi pohvalio/la poruku! Preuzmi instalaciju za Malwarebytes Anti-Malware (MBAM) ver.2.0 i instaliraj aplikaciju. Dvoklik na mbam-setup.exe i prati uputstva za instalaciju. Instalacija je klasicna, "Next > I Agree . . > Next > Install" princip. Po zavrsenoj instalaciji, klikni Finish. Napomena: 14 dana besplatna trail verzija je pre-selektovana. Mozes decekirati ovu opciju ako zelis. - Po prvom pokretanju, MBAM ce zapoceti "Update" u nameri da preuzme najsvezije definicije. Ili ... klik na 'Update Now >>' link ili dugme radi preuzimanja svezih definicija. • Konfigurisati skener; Na 'Settings' tabu, Detection and Protection podesiti sledece opcije: 1. pod-tab Detection Options, cekirati kucicu za 'Scan for rootkits'; 2. pod-tab Non-Malware Protection, za 'PUP detections', prostarati se da je selektovana 'Threat detections as malware' opcija. • Izvrsiti 'Threat Scan'; Klik na Scan tab, zatim na 'Scan Now >>' da bi izvrsio skeniranje. Ukoliko MBAM prijavi da je 'update' dostupan, klik na 'Update Now' a potom nastaviti do skeniranja. Obavestenje: kod nekih teskih infekcija, moguce je dobiti sledecu poruku "Could not load DDA driver". U tom slucaju, klik Yes na tu poruku, dopustiti ucitavanje drajvera po restartu racunara, dozvoliti restart. Potom, nastaviti sa ostatkom instrukcija. • Po zavrsenom skeniranju, klik na Apply Action dugme ukoliko je pretnja detektovana. Sacekati da program zatrazi restart! - Klik na Yes na poruku koja govori da ce se sistem restartovati. • Postaviti izvestaj (export-ovati logfile) na uvid; Ponovo pokrenuti MBAM, klik na History tab > Application Logs. Dvoklik na 'Scan Log' koji pokazuje vreme i datum upravo izvrsenog skeniranja. 1. U novom prozoru klik na 'Export' dugme, pa izabrati 'Text file (*.txt)'; 2. Kada se pojavi Save File dialog, izabrati da se log sacuva na Desktop. U tom istom prozoru, dole pod File name: upisi 'mbam' kao naziv izvestaja i klikni dugme Save. - Po dobijenoj poruci ("Your file has been successfully exported") izvestaj koji si nazvao kao 'mbam' bice sacuvan na Desktop. Okaci mbam.txt uz poruku koristeci opciju Prikači fajl. ------- Preuzmi "Xplode"-ov AdwCleaner () i sacuvaj ga na Desktop Dvoklikom pokreni program. Klikni na dugme [Scan] i pricekaj da program zavrsi. Klikni na dugme [Clean] Program ce zatvoriti sve aktivne programe i izbaciti prozor sa tim upozorenjem. Klikni Ok kao potvrdu. Na sledeca dva prozora koja se otvore (Informations i Restart required ) klikni Ok Racunar ce se restartovati a potom otvoriti notepad (C:\AdwCleaner[S1].txt) sa izvestajem. Sacuvaj taj notepad na Desktop i okaci ga uz poruku koristeci opciju "Prikaci fajl" Napomena: Izvestaj ce takodje biti sacuvan na C:\AdwCleaner[S0].txt ------ Preuzmi Junkware Removal Tool ( JRT ) i sacuvaj ga na desktop. zatvori browser i ostale pokrenute programe; Privremeno deaktiviraj zastitni softver (Uputstvo); dvoklikom na ikonicu pokreni program JRT; Kod obavestenja "press any key" pritisnuti bilo koji taster i alat ce zapoceti skeniranje. Napomena: u zavisnosti od sistemske specifikacije vreme skeniranja u nekim slucajevima moze da potraje. Kada zavrsi otvorice se log sa izvestajem koji ce biti sacuvan na desktopu pod nazivom JRT.txt Kopiraj sadrzaj tog loga u temu.

Profil

bobo 75 Poslao: 28 Dec 2015 10:52 Idi na vrh
offline bobo 75 Ugledni građanin Pridružio: 14 Sep 2008 Poruke: 424 Gde živiš: Podgorica	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Pozdrav i veliko hvala na odvojenom vremenu i trudu https://www.mycity.rs/must-login.png https://www.mycity.rs/must-login.png Ovaj poslednji Junkware Removal Tool mi javlja da je link expiried.

Profil

helen1 Poslao: 28 Dec 2015 11:26 Idi na vrh
offline helen1 Anti Malware Fighter Rank 2 Master učitelj Pridružio: 27 Avg 2005 Poruke: 8617 Gde živiš: Novi Beograd	1Ovo se svidja korisniku: bobo 75 Registruj se da bi pohvalio/la poruku! Probaj ovaj link: http://www.bleepingcomputer.com/download/junkware-removal-tool/dl/293/

Profil

bobo 75 Poslao: 28 Dec 2015 12:27 Idi na vrh
offline bobo 75 Ugledni građanin Pridružio: 14 Sep 2008 Poruke: 424 Gde živiš: Podgorica	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Napisano: 28 Dec 2015 12:25 Izvinjavam se sto kasnim u odgovoru... Kad krenem skeniranje izbaci mi samo ovo. Dopuna: 28 Dec 2015 12:27 Izbacio mi je ovo... https://www.mycity.rs/must-login.png

Profil

helen1 Poslao: 28 Dec 2015 17:32 Idi na vrh
offline helen1 Anti Malware Fighter Rank 2 Master učitelj Pridružio: 27 Avg 2005 Poruke: 8617 Gde živiš: Novi Beograd	1Ovo se svidja korisniku: bobo 75 Registruj se da bi pohvalio/la poruku! Da li imas problema sad?

Profil

bobo 75 Poslao: 28 Dec 2015 17:53 Idi na vrh
offline bobo 75 Ugledni građanin Pridružio: 14 Sep 2008 Poruke: 424 Gde živiš: Podgorica	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Nemam vise Jesam li bio puno zarazen ? Hvala puno

Profil

helen1 Poslao: 28 Dec 2015 19:24 Idi na vrh
offline helen1 Anti Malware Fighter Rank 2 Master učitelj Pridružio: 27 Avg 2005 Poruke: 8617 Gde živiš: Novi Beograd	1Ovo se svidja korisniku: bobo 75 Registruj se da bi pohvalio/la poruku! Nisi. Mozes MBAM povremeno i sam koristiti ubuduce. • Sledeća procedura će implementirati završno čišćenje. Preuzmi "Xplode"-ov DelFix alat i snimi ga na Desktop. Dvoklikom pokreni alat i štikliraj kućice ispred sledećih opcija; Remove disinfection tools Create registry backup Purge System Restore Klikni na dugme Run i pričekaj trenutak dok alat ne završi svoj rad. Od ovog trenutka, svi korišćeni alati u ovoj temi bi trebali biti obrisani. Ukoliko neki alat ili izveštaj nije uklonjen, slobodno ih obriši ručno. Alat će takođe formirati izveštaj za tebe. (C:\DelFix.txt) - Alat će snimiti i zdravo stanje registy-ja i napraviti backup koristeci integrisan program "ERUNT" u %windir%\ERUNT\DelFix - DelFix briše stare system restore tačke i pravi novu, svežu tačku nakon čišćenja.

Profil

MyCity » Ambulanta -> Arhiva Ambulante » Inficirana Mozilla

Ko je trenutno na forumu

Ukupno su 870 korisnika na forumu :: 46 registrovanih, 7 sakrivenih i 817 gosta :: [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:: Korisnici trenutno na forumu: A.R.Chafee.Jr., Belac91, bigfoot, Buzdovan, ccoogg123, CikaKURE, dmdr, draganca, elenemste, Excalibur13, FOX, HrcAk47, Kandrbandrdzilo, Karla, Krvava Devetka, kybonacci, Marko Marković, marsovac 2, Mcdado, menges, mercedesamg, mikrimaus, milenko crazy north, Mlav, nebkv, nebojsag, nenad81, Oscar2, Parker, pein, Rakenica, raptorsi, rasok, robert1979, SlaKoj, Smiljke, Srle993, stalja, stegonosa, StepskiVuk, Stoilkovic, Trpe Grozni, tubular, vathra, zlaya011, šumar bk2

Svaki korisnik ovog sajta je odgovoran za sadržaj svoje poruke koju objavi na sajtu. Sajt se odriče svake odgovornosti za sadržaj tih poruka.
Postavljanjem vaše poruke ili vašeg autorskog dela na ovaj sajt, saglasni ste da ovaj sajt postaje distributer vašeg dela, i odričete se mogućnosti njegovog povlačenja ili brisanja, bez saglasnosti uprave sajta.
Distribucija sadržaja sa ovog sajta je dozvoljena samo u nekomercijalne svrhe, uz obaveznu napomenu da je sadržaj preuzet sa ovog sajta, i uz obavezno navođenje adrese MyCity sajta. Za sve ostale vidove distribucije obavezni ste da prethodno zatražite odobrenje od vlasnika MyCity sajta.
MyCity pokrenuo, administrira i razvija Predrag Damnjanović, a o uređenju sajta se brine MyCity Tim.
Ukoliko želite da nas kontaktirate kliknite ovde.
Naši sajtovi:
Vesti, Vojni forum, Zaštita od virusa, TekstPesme.rs

This content is licensed under a Creative Commons License.
Based on phpBB 2, translated by Simke, designed by