MyCity » Ambulanta -> Arhiva Ambulante » Reklame na Chromu i Mozili ?

Reklame na Chromu i Mozili ?

Napisano na dan: 5.1.2015

Strana:
1
2

Reklame na Chromu i Mozili ?

Sledeća strana

Pagination

Odgovori

Strana:
1
2

katanaa Poslao: 05 Jan 2015 23:05 Idi na vrh
offline katanaa Građanin Pridružio: 04 Avg 2009 Poruke: 166	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Reklame toliko iskacu da bukvalno ne moze nista da se otvori,Mozilu sam morao da pobrisem jel mi je totalno bloirala.I mnogo mi lose radi na netu. Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 04-01-2015 Ran by ACER-PC (administrator) on ACER on 05-01-2015 22:59:09 Running from C:\Users\ACER-PC\Downloads Loaded Profile: ACER-PC (Available profiles: ACER-PC) Platform: Windows 8 (X64) OS Language: English (United Kingdom) Internet Explorer Version 10 (Default browser: Launcher) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: geekstogo.com/forum/topic/335081-frst-t.....scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (AMD) C:\Windows\System32\atiesrxx.exe (AMD) C:\Windows\System32\atieclxx.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe () C:\Program Files (x86)\TotalPlusHD-3.1V10.12\64dea3d5-fb87-47ff-b2c6-36487d0106b9.exe (Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe (HDPlus-3.1TotalV10.12) C:\Program Files (x86)\TotalPlusHD-3.1V10.12\6954389b-5362-496d-8d01-372637cc2f78.exe (Microsoft Corporation) C:\Windows\System32\rundll32.exe (Acer Incorporated) C:\Program Files\Acer\Acer Updater\UpdaterService.exe (LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe (IObit) C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe (IObit) C:\Program Files (x86)\IObit\Start Menu 8\StartMenu8.exe (LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe (IObit) C:\Program Files (x86)\IObit\Start Menu 8\InstallServices64.exe (LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe (IObit) C:\Program Files (x86)\IObit\Start Menu 8\StartMenu_Hook.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe (MyCity) C:\Program Files (x86)\MCShield\MCShieldRTM.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (Dropbox, Inc.) C:\Users\ACER-PC\AppData\Roaming\Dropbox\bin\Dropbox.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\ng\ngservice.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Microsoft Corporation) C:\Windows\System32\SppExtComObj.Exe (Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe (Avast Software) C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe (Opera Software) C:\Program Files (x86)\Opera\26.0.1656.60\opera.exe () C:\Program Files (x86)\Opera\26.0.1656.60\opera_crashreporter.exe (Opera Software) C:\Program Files (x86)\Opera\26.0.1656.60\opera.exe (Opera Software) C:\Program Files (x86)\Opera\26.0.1656.60\opera.exe (Opera Software) C:\Program Files (x86)\Opera\26.0.1656.60\opera.exe (Opera Software) C:\Program Files (x86)\Opera\26.0.1656.60\opera.exe (Opera Software) C:\Program Files (x86)\Opera\26.0.1656.60\opera.exe (Opera Software) C:\Program Files (x86)\Opera\26.0.1656.60\opera.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500208 2010-03-06] (Adobe Systems Incorporated) HKLM\...\Run: [CIS_{81EFDD93-DBBE-415B-BE6E-49B9664E3E82}] => "C:\ProgramData\cis81AD.exe" --PostUninstall {81EFDD93-DBBE-415B-BE6E-49B9664E3E82} HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1808168 2009-06-18] (Synaptics Incorporated) HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [641704 2012-11-16] (Advanced Micro Devices, Inc.) HKLM-x32\...\Run: [AMD AVT] => C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe [20992 2012-03-19] () HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1021128 2014-11-20] (Adobe Systems Incorporated) HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) HKLM-x32\...\Run: [AdobeCS5ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [402432 2010-07-22] (Adobe Systems Incorporated) HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5226600 2015-01-03] (AVAST Software) HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3838800 2014-12-13] (LogMeIn Inc.) HKU\S-1-5-21-1228184892-4111478447-2213813170-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [20917408 2014-02-10] (Skype Technologies S.A.) HKU\S-1-5-21-1228184892-4111478447-2213813170-1001\...\Run: [MCShield Monitor] => C:\Program Files (x86)\MCShield\mcshieldrtm.exe [650816 2014-04-11] (MyCity) HKU\S-1-5-21-1228184892-4111478447-2213813170-1001\...\Run: [Kies3PDLR.exe] => C:\Program Files (x86)\Samsung\Kies3\FirmwareUpdate\Kies3PDLR.exe [845120 2014-12-10] (Samsung) HKU\S-1-5-21-1228184892-4111478447-2213813170-1001\...\RunOnce: [Adobe Speed Launcher] => 1420481270 Startup: C:\Users\ACER-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk ShortcutTarget: Dropbox.lnk -> C:\Users\ACER-PC\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKU\S-1-5-21-1228184892-4111478447-2213813170-1001\Software\Microsoft\Internet Explorer\Main,Start Page = uk.yahoo.com?fr=fp-comodo HKU\S-1-5-21-1228184892-4111478447-2213813170-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = t.uk.msn.com/ SearchScopes: HKU\S-1-5-21-1228184892-4111478447-2213813170-1001 -> DefaultScope {8EEAC88A-079B-4b2c-80C1-7836F79EB40A} URL = SearchScopes: HKU\S-1-5-21-1228184892-4111478447-2213813170-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = google.com/search?q={searchTerms} BHO: TotalPlusHD-3.1V10.12 -> {11111111-1111-1111-1111-110611321185} -> C:\Program Files (x86)\TotalPlusHD-3.1V10.12\TotalPlusHD-3.1V10.12-bho64.dll (HDPlus-3.1TotalV10.12) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_25\bin\ssv.dll (Oracle Corporation) BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_25\bin\jp2ssv.dll (Oracle Corporation) BHO-x32: TotalPlusHD-3.1V10.12 -> {11111111-1111-1111-1111-110611321185} -> C:\Program Files (x86)\TotalPlusHD-3.1V10.12\TotalPlusHD-3.1V10.12-bho.dll (HDPlus-3.1TotalV10.12) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies) FireFox: ======== FF ProfilePath: C:\Users\ACER-PC\AppData\Roaming\Mozilla\Firefox\Profiles\3ek7hamo.default FF Homepage: hxxp://uk.yahoo.com?fr=fp-comodo FF DefaultSearchEngine: Yahoo FF SelectedSearchEngine: Yahoo FF Keyword.URL: hxxp://uk.search.yahoo.com/search?fr=ytff-comodo&p= FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_235.dll () FF Plugin: @java.com/DTPlugin,version=11.25.2 -> C:\Program Files\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files\Java\jre1.8.0_25\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_235.dll () FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw_1213153.dll No File FF Plugin-x32: @java.com/DTPlugin,version=10.71.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=10.71.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF Plugin-x32: @staging.google.com/globalUpdate Update;version=10 -> C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll (globalUpdate) FF Plugin-x32: @staging.google.com/globalUpdate Update;version=4 -> C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll (globalUpdate) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF Extension: TotalPlusHD-3.1V10.12 - C:\Users\ACER-PC\AppData\Roaming\Mozilla\Firefox\Profiles\3ek7hamo.default\Extensions\6cfae8cc4676442fa78d9dcdf@bd4ea874e76d4af1994ba.com [2014-12-10] FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-10-26] FF Extension: No Name - C:\Users\ACER-PC\AppData\Roaming\Mozilla\Firefox\Profiles\3ek7hamo.default\extensions\DoesAmazonShipTo@usefulhelper.com.xpi [Not Found] FF Extension: No Name - C:\Users\ACER-PC\AppData\Roaming\Mozilla\Firefox\Profiles\3ek7hamo.default\extensions\45633fba7e7d40fea9c29@9dc18447eea04021a325caf3.com [Not Found] FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [Not Found] Chrome: ======= CHR StartupUrls: Default -> "hxxp://www.google.com/" CHR Profile: C:\Users\ACER-PC\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Docs) - C:\Users\ACER-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-05-02] CHR Extension: (Google Drive) - C:\Users\ACER-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-05-02] CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\ACER-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-09-05] CHR Extension: (YouTube) - C:\Users\ACER-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-05-02] CHR Extension: (Google Search) - C:\Users\ACER-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-05-02] CHR Extension: (Avast SafePrice) - C:\Users\ACER-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2014-11-04] CHR Extension: (Moon Phase) - C:\Users\ACER-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\jjbbfjkgenpehcokclfggnfniaiglaai [2014-10-13] CHR Extension: (TotalPlusHD-3.1V10.12) - C:\Users\ACER-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\ljefoakgfhcoeobgicjgejglnpfpemgb [2014-12-10] CHR Extension: (Google Wallet) - C:\Users\ACER-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-05-02] CHR Extension: (Disable AntiAdblock) - C:\Users\ACER-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\oimhabmdhenmcaligiilhadkdliolpah [2014-09-07] CHR Extension: (AVIM Vietnamese Input Method) - C:\Users\ACER-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\opgbbffpdglhkpglnlkiclakjlpiedoh [2014-09-21] CHR Extension: (Gmail) - C:\Users\ACER-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-05-02] CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx [2015-01-03] CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-01-03] ==================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2012-11-16] (Advanced Micro Devices, Inc.) [File not signed] R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2015-01-03] (AVAST Software) R3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [4012248 2015-01-03] (Avast Software) S2 globalUpdate; C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [68608 2014-12-10] (globalUpdate) [File not signed] S3 globalUpdatem; C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [68608 2014-12-10] (globalUpdate) [File not signed] S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [File not signed] R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2014-12-02] (LogMeIn, Inc.) S4 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2014-11-21] (Malwarebytes Corporation) S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [969016 2014-11-21] (Malwarebytes Corporation) S2 slsvc; C:\Windows\slsvc.exe [10240 2012-09-25] (Microsoft Corporation) [File not signed] R2 StartMenuService; C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe [72992 2014-09-23] (IObit) S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed] S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16032 2014-09-22] (Microsoft Corporation) S2 trntv; C:\Users\ACER-PC\AppData\Roaming\TornTV.com\TornTVSvc.exe [X] ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R2 AODDriver4.1; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [53888 2012-03-05] (Advanced Micro Devices) R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2015-01-03] () R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [83280 2015-01-03] (AVAST Software) R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2015-01-03] (AVAST Software) R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2015-01-03] () R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1050432 2015-01-03] (AVAST Software) R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [436624 2015-01-03] (AVAST Software) R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [116728 2015-01-03] (AVAST Software) R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [267632 2015-01-03] () R3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45112 2014-12-13] (LogMeIn Inc.) R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-11-21] (Malwarebytes Corporation) S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2014-11-21] (Malwarebytes Corporation) S3 RTL8192cu; C:\Windows\system32\DRIVERS\rtwlanu.sys [1576080 2012-09-17] (Realtek Semiconductor Corporation ) S3 RtlWlanu; C:\Windows\system32\DRIVERS\rtwlanu.sys [1576080 2012-09-17] (Realtek Semiconductor Corporation ) U4 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [271752 2015-01-03] (Avast Software) ==================== NetSvcs (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) ==================== One Month Created Files and Folders ======== (If an entry is included in the fixlist, the file\folder will be moved.) 2015-01-05 22:59 - 2015-01-05 22:59 - 00017216 _____ () C:\Users\ACER-PC\Downloads\FRST.txt 2015-01-05 22:58 - 2015-01-05 22:59 - 00000000 ____D () C:\FRST 2015-01-05 22:57 - 2015-01-05 22:57 - 02123776 _____ (Farbar) C:\Users\ACER-PC\Downloads\FRST64.exe 2015-01-05 22:47 - 2015-01-05 22:53 - 00018281 _____ () C:\zoek-results.log 2015-01-05 22:46 - 2015-01-05 22:46 - 00000000 ____D () C:\zoek_backup 2015-01-05 19:18 - 2015-01-05 19:18 - 00000247 _____ () C:\Windows\system32\2015-01-05-18-18-10.046-aswFe.exe-4048.log 2015-01-05 19:18 - 2015-01-05 19:18 - 00000197 _____ () C:\Windows\system32\2015-01-05-18-18-06.030-AvastVBoxSVC.exe-5072.log 2015-01-05 15:03 - 2015-01-05 15:08 - 00000247 _____ () C:\Windows\system32\2015-01-05-14-03-06.039-aswFe.exe-3704.log 2015-01-05 15:03 - 2015-01-05 15:03 - 00000197 _____ () C:\Windows\system32\2015-01-05-14-03-01.052-AvastVBoxSVC.exe-4980.log 2015-01-03 23:55 - 2015-01-03 23:54 - 00364512 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe 2015-01-03 23:54 - 2015-01-03 23:54 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr 2015-01-02 22:46 - 2015-01-02 22:46 - 00279016 _____ () C:\Windows\Minidump\010215-28875-01.dmp 2015-01-02 11:00 - 2015-01-02 11:00 - 01055936 _____ (Adobe) C:\Users\ACER-PC\Downloads\install_flashplayer16x32pp_chrd_dn_aaa_aih.exe 2015-01-01 21:51 - 2015-01-01 21:51 - 00279072 _____ () C:\Windows\Minidump\010115-27658-01.dmp 2015-01-01 16:12 - 2015-01-01 16:12 - 00000000 ____D () C:\Users\ACER-PC\Downloads\Adobe Photoshop CS5 Extended 2015-01-01 16:11 - 2015-01-01 16:11 - 00020588 _____ () C:\Users\ACER-PC\Downloads\[kat.sites(zabranjeno).com]adobe.photoshop.cs5.extended.(zabranjeno).torrent 2014-12-28 10:10 - 2014-12-28 10:10 - 00279072 _____ () C:\Windows\Minidump\122814-33321-01.dmp 2014-12-25 19:24 - 2014-12-25 19:51 - 960495616 _____ () C:\Users\ACER-PC\Downloads\xubuntu-14.04.1-desktop-i386.iso 2014-12-25 02:04 - 2014-12-25 02:04 - 00279016 _____ () C:\Windows\Minidump\122514-27378-01.dmp 2014-12-23 18:13 - 2014-12-23 18:35 - 808452096 _____ () C:\Users\ACER-PC\Downloads\crunchbang-11-20130506-i686.iso 2014-12-19 01:14 - 2014-12-19 01:14 - 00279016 _____ () C:\Windows\Minidump\121914-33462-01.dmp 2014-12-16 20:01 - 2014-10-09 05:00 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\vsstrace.dll 2014-12-16 20:01 - 2014-10-09 04:59 - 01195520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vssapi.dll 2014-12-16 20:01 - 2014-10-09 04:59 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vsstrace.dll 2014-12-16 20:00 - 2014-10-09 05:00 - 01519104 _____ (Microsoft Corporation) C:\Windows\system32\vssapi.dll 2014-12-16 20:00 - 2014-10-09 05:00 - 01484288 _____ (Microsoft Corporation) C:\Windows\system32\VSSVC.exe 2014-12-16 18:17 - 2014-10-11 06:57 - 17562112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll 2014-12-16 18:17 - 2014-10-09 04:59 - 00623616 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll 2014-12-16 18:17 - 2014-10-09 04:59 - 00212992 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll 2014-12-16 18:17 - 2014-10-09 04:58 - 00458240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll 2014-12-16 18:17 - 2014-09-22 06:38 - 00673792 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll 2014-12-16 18:17 - 2014-09-22 04:56 - 00513536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmpeg2srcsnk.dll 2014-12-16 18:17 - 2012-09-19 10:25 - 19778048 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll 2014-12-16 18:16 - 2014-11-21 09:38 - 02237952 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2014-12-16 18:16 - 2014-11-21 09:38 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2014-12-16 18:16 - 2014-11-21 09:37 - 01409536 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2014-12-16 18:16 - 2014-11-21 09:37 - 00915968 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll 2014-12-16 18:16 - 2014-11-21 09:37 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\UXInit.dll 2014-12-16 18:16 - 2014-11-21 09:36 - 19283456 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2014-12-16 18:16 - 2014-11-21 09:36 - 15400960 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2014-12-16 18:16 - 2014-11-21 09:36 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2014-12-16 18:16 - 2014-11-21 09:36 - 02655232 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2014-12-16 18:16 - 2014-11-21 09:36 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2014-12-16 18:16 - 2014-11-21 09:36 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2014-12-16 18:16 - 2014-11-21 09:36 - 00451584 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2014-12-16 18:16 - 2014-11-21 09:36 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2014-12-16 18:16 - 2014-11-21 09:36 - 00255488 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2014-12-16 18:16 - 2014-11-21 09:36 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2014-12-16 18:16 - 2014-11-21 09:36 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll 2014-12-16 18:16 - 2014-11-21 09:36 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2014-12-16 18:16 - 2014-11-21 09:36 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2014-12-16 18:16 - 2014-11-21 09:36 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2014-12-16 18:16 - 2014-11-21 09:36 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2014-12-16 18:16 - 2014-11-21 09:35 - 01509376 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2014-12-16 18:16 - 2014-11-21 08:17 - 14364672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2014-12-16 18:16 - 2014-11-21 08:17 - 01762816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2014-12-16 18:16 - 2014-11-21 08:17 - 01181696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2014-12-16 18:16 - 2014-11-21 08:17 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2014-12-16 18:16 - 2014-11-21 08:17 - 00080384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2014-12-16 18:16 - 2014-11-21 08:17 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UXInit.dll 2014-12-16 18:16 - 2014-11-21 08:16 - 13758976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2014-12-16 18:16 - 2014-11-21 08:16 - 02861568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2014-12-16 18:16 - 2014-11-21 08:16 - 02054656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2014-12-16 18:16 - 2014-11-21 08:16 - 01441280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2014-12-16 18:16 - 2014-11-21 08:16 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2014-12-16 18:16 - 2014-11-21 08:16 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2014-12-16 18:16 - 2014-11-21 08:16 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2014-12-16 18:16 - 2014-11-21 08:16 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2014-12-16 18:16 - 2014-11-21 08:16 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2014-12-16 18:16 - 2014-11-21 08:16 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll 2014-12-16 18:16 - 2014-11-21 08:16 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2014-12-16 18:16 - 2014-11-21 08:16 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2014-12-16 18:16 - 2014-11-21 08:16 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2014-12-16 18:16 - 2014-11-21 08:00 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2014-12-16 18:16 - 2014-11-21 07:54 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2014-12-16 18:16 - 2014-11-21 05:30 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uxtheme.dll 2014-12-16 18:16 - 2014-11-06 07:50 - 01627648 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll 2014-12-16 18:16 - 2014-11-06 06:03 - 01339392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll 2014-12-16 18:14 - 2014-10-30 08:20 - 01890816 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll 2014-12-16 18:14 - 2014-10-30 06:22 - 01569792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll 2014-12-16 18:01 - 2014-12-16 18:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi 2014-12-16 18:01 - 2014-12-16 18:01 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi 2014-12-15 18:34 - 2014-12-15 18:34 - 00005682 _____ () C:\Windows\DPINST.LOG 2014-12-15 18:34 - 2014-12-15 18:34 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_SynTP_01009.Wdf 2014-12-15 18:34 - 2014-12-15 18:34 - 00000000 ____D () C:\Program Files\Synaptics 2014-12-15 18:34 - 2009-06-18 20:12 - 00272432 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\SynTP.sys 2014-12-15 18:34 - 2009-06-18 20:10 - 00395048 _____ (Synaptics Incorporated) C:\Windows\system32\SynCOM.dll 2014-12-15 18:34 - 2009-06-18 20:10 - 00260904 _____ (Synaptics Incorporated) C:\Windows\system32\SynCtrl.dll 2014-12-15 18:34 - 2009-06-18 20:10 - 00206120 _____ (Synaptics Incorporated) C:\Windows\SysWOW64\SynCtrl.dll 2014-12-15 18:34 - 2009-06-18 20:10 - 00203560 _____ (Synaptics Incorporated) C:\Windows\system32\SynTPAPI.dll 2014-12-15 18:34 - 2009-06-18 20:10 - 00169256 _____ (Synaptics Incorporated) C:\Windows\SysWOW64\SynCOM.dll 2014-12-15 18:34 - 2009-06-18 20:10 - 00147752 _____ (Synaptics Incorporated) C:\Windows\system32\SynTPCo4.dll 2014-12-15 18:34 - 2009-06-18 20:10 - 00107816 _____ (Synaptics Incorporated) C:\Windows\SysWOW64\SynTPCOM.dll 2014-12-15 18:34 - 2009-05-21 09:43 - 01436920 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01009.dll 2014-12-15 18:23 - 2014-12-15 18:48 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable) 2014-12-15 18:16 - 2015-01-04 17:56 - 00011776 ___SH () C:\Users\ACER-PC\Thumbs.db 2014-12-13 17:01 - 2014-12-13 17:01 - 00045112 ____H (LogMeIn Inc.) C:\Windows\system32\Drivers\Hamdrv.sys 2014-12-12 20:38 - 2014-12-12 20:38 - 00001337 _____ () C:\Users\ACER-PC\Desktop\Movie Maker.lnk 2014-12-12 20:31 - 2014-12-12 20:31 - 00001406 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo Gallery.lnk 2014-12-12 20:31 - 2014-12-12 20:31 - 00001337 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk 2014-12-12 20:31 - 2014-12-12 20:31 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server Compact Edition 2014-12-12 20:30 - 2014-12-12 20:31 - 00000000 ____D () C:\Program Files (x86)\Windows Live 2014-12-12 20:30 - 2014-12-12 20:30 - 00000000 ____D () C:\Windows\PCHEALTH 2014-12-12 20:29 - 2014-12-12 20:29 - 00000198 _____ () C:\Windows\DirectX.log 2014-12-12 20:29 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll 2014-12-12 20:29 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll 2014-12-12 20:29 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll 2014-12-12 20:29 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll 2014-12-12 20:29 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll 2014-12-12 20:29 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll 2014-12-12 20:29 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll 2014-12-12 20:29 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll 2014-12-12 20:29 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll 2014-12-12 20:29 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll 2014-12-12 20:29 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll 2014-12-12 20:29 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll 2014-12-12 20:28 - 2014-12-12 20:38 - 00000000 ____D () C:\Users\ACER-PC\AppData\Local\Windows Live 2014-12-10 18:14 - 2015-01-05 19:06 - 00003480 _____ () C:\Windows\Tasks\09551595-b6d5-4ca7-9bea-99a3e1c58989-1.job 2014-12-10 18:14 - 2015-01-05 19:06 - 00001460 _____ () C:\Windows\Tasks\6954389b-5362-496d-8d01-372637cc2f78.job 2014-12-10 18:14 - 2014-12-10 18:14 - 00006484 _____ () C:\Windows\System32\Tasks\09551595-b6d5-4ca7-9bea-99a3e1c58989-1 2014-12-10 18:14 - 2014-12-10 18:14 - 00004464 _____ () C:\Windows\System32\Tasks\6954389b-5362-496d-8d01-372637cc2f78 2014-12-10 18:13 - 2015-01-05 22:18 - 00005532 _____ () C:\Windows\Tasks\09551595-b6d5-4ca7-9bea-99a3e1c58989-6.job 2014-12-10 18:13 - 2015-01-05 19:07 - 00005196 _____ () C:\Windows\Tasks\09551595-b6d5-4ca7-9bea-99a3e1c58989-7.job 2014-12-10 18:13 - 2015-01-05 19:06 - 00000662 _____ () C:\Windows\Tasks\64dea3d5-fb87-47ff-b2c6-36487d0106b9.job 2014-12-10 18:13 - 2015-01-05 00:18 - 00001012 _____ () C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job 2014-12-10 18:13 - 2015-01-01 16:09 - 00000000 ____D () C:\Program Files (x86)\30943bdf-59a2-4fd5-8a78-3543acef7a22 2014-12-10 18:13 - 2014-12-10 18:13 - 00008536 _____ () C:\Windows\System32\Tasks\09551595-b6d5-4ca7-9bea-99a3e1c58989-6 2014-12-10 18:13 - 2014-12-10 18:13 - 00008200 _____ () C:\Windows\System32\Tasks\09551595-b6d5-4ca7-9bea-99a3e1c58989-7 2014-12-10 18:13 - 2014-12-10 18:13 - 00003984 _____ () C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineUA 2014-12-10 18:13 - 2014-12-10 18:13 - 00003748 _____ () C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineCore 2014-12-10 18:13 - 2014-12-10 18:13 - 00003658 _____ () C:\Windows\System32\Tasks\64dea3d5-fb87-47ff-b2c6-36487d0106b9 2014-12-10 18:12 - 2015-01-05 19:06 - 00001008 _____ () C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job 2014-12-10 18:12 - 2015-01-01 16:09 - 00000000 ____D () C:\Program Files (x86)\TotalPlusHD-3.1V10.12 2014-12-10 18:12 - 2014-12-10 18:12 - 00000000 ____D () C:\Users\ACER-PC\AppData\Local\globalUpdate 2014-12-10 18:12 - 2014-12-10 18:12 - 00000000 ____D () C:\Program Files (x86)\globalUpdate 2014-12-10 18:10 - 2015-01-01 16:09 - 00000000 ____D () C:\Users\ACER-PC\AppData\Roaming\TornTV.com 2014-12-10 18:10 - 2014-12-10 18:10 - 00000000 ____D () C:\Users\ACER-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TornTV.com 2014-12-09 18:25 - 2014-12-09 18:25 - 00278960 _____ () C:\Windows\Minidump\120914-42245-01.dmp 2014-12-09 18:12 - 2014-12-09 23:50 - 00000000 ____D () C:\Windows\system32\AutoUpdateLicense 2014-12-09 18:07 - 2014-11-19 08:29 - 00582552 _____ (Microsoft Corporation) C:\Windows\system32\AutoUpdate.exe 2014-12-09 18:07 - 2014-11-19 08:29 - 00462760 _____ (Microsoft Corporation) C:\Windows\system32\NotificationUI.exe 2014-12-09 18:07 - 2014-10-22 04:34 - 00010777 _____ () C:\Windows\system32\AutoconfigV2.cab 2014-12-09 18:07 - 2014-10-22 02:08 - 00568832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll 2014-12-09 18:07 - 2014-10-22 02:08 - 00124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll 2014-12-09 18:07 - 2014-10-22 02:01 - 00695808 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll 2014-12-09 18:07 - 2014-10-22 02:01 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.dll 2014-12-09 18:07 - 2014-10-22 02:01 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll 2014-12-09 18:07 - 2014-10-22 02:00 - 00125952 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll 2014-12-09 18:05 - 2014-10-11 08:44 - 02885632 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll 2014-12-09 18:05 - 2014-10-11 08:44 - 00393216 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll 2014-12-09 18:05 - 2014-10-11 08:43 - 02307072 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll 2014-12-09 18:05 - 2014-10-11 06:58 - 08858624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll 2014-12-09 18:05 - 2014-10-11 06:57 - 02416640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll 2014-12-09 18:05 - 2014-10-11 06:57 - 00295424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll 2014-12-09 18:05 - 2014-10-11 06:56 - 02037760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll 2014-12-09 18:05 - 2013-03-02 09:23 - 00375808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgent.dll 2014-12-09 18:05 - 2013-03-02 03:44 - 01011200 _____ (Microsoft Corporation) C:\Windows\system32\reseteng.dll 2014-12-09 18:05 - 2012-12-15 05:55 - 00443392 _____ (Microsoft Corporation) C:\Windows\system32\ReAgent.dll 2014-12-09 18:05 - 2012-11-03 06:26 - 00132096 _____ (Microsoft Corporation) C:\Windows\system32\sysreset.exe 2014-12-09 18:05 - 2012-11-03 06:25 - 00945152 _____ (Microsoft Corporation) C:\Windows\system32\resetengmig.dll 2014-12-09 18:05 - 2012-10-24 04:25 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\ReAgentc.exe 2014-12-09 18:05 - 2012-10-24 03:48 - 00024064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgentc.exe 2014-12-09 18:05 - 2012-10-07 01:32 - 10094592 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll 2014-12-09 18:03 - 2013-12-05 00:43 - 00583680 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll 2014-12-09 18:03 - 2013-12-05 00:37 - 00451072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdrm.dll 2014-12-09 18:03 - 2013-11-23 07:43 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll 2014-12-09 18:03 - 2013-11-23 06:05 - 00368640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll 2014-12-09 18:03 - 2013-08-23 08:22 - 02062848 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll 2014-12-09 18:03 - 2013-08-23 02:44 - 01711616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll 2014-12-09 18:03 - 2013-03-22 04:49 - 02382336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll 2014-12-09 18:03 - 2013-03-21 23:47 - 02851840 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll 2014-12-09 18:03 - 2012-10-24 04:25 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe 2014-12-09 18:03 - 2012-10-24 04:24 - 00405504 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll 2014-12-09 18:03 - 2012-10-24 04:24 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll 2014-12-09 18:03 - 2012-10-24 04:05 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll 2014-12-09 18:02 - 2013-11-01 06:38 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll 2014-12-09 18:02 - 2013-11-01 04:49 - 00273408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msieftp.dll 2014-12-09 18:02 - 2013-04-03 00:37 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll 2014-12-09 18:02 - 2013-04-03 00:12 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll 2014-12-09 17:54 - 2014-12-09 17:54 - 00278960 _____ () C:\Windows\Minidump\120914-24663-01.dmp 2014-12-08 17:59 - 2014-12-08 17:59 - 00001261 _____ () C:\Users\ACER-PC\Desktop\CrystalDiskInfo Shizuku Edition.lnk 2014-12-08 17:59 - 2014-12-08 17:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo 2014-12-08 17:39 - 2014-12-08 17:39 - 00278960 _____ () C:\Windows\Minidump\120814-30373-01.dmp 2014-12-07 13:16 - 2015-01-05 20:46 - 00000000 ____D () C:\Users\ACER-PC\AppData\Local\LogMeIn Hamachi 2014-12-07 13:16 - 2014-12-07 13:16 - 00000000 ____H () C:\Users\ACER-PC\Documents\Default.rdp 2014-12-07 13:16 - 2014-12-07 13:16 - 00000000 ____D () C:\Users\ACER-PC\AppData\Local\LogMeIn 2014-12-07 13:16 - 2014-12-07 13:16 - 00000000 ____D () C:\ProgramData\LogMeIn 2014-12-07 13:09 - 2014-12-16 18:01 - 00000958 _____ () C:\Users\Public\Desktop\LogMeIn Hamachi.lnk ==================== One Month Modified Files and Folders ======= (If an entry is included in the fixlist, the file\folder will be moved.) 2015-01-05 23:00 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\system32\sru 2015-01-05 22:48 - 2014-05-02 11:44 - 00000000 ____D () C:\Users\ACER-PC\AppData\Roaming\Skype 2015-01-05 22:44 - 2014-05-02 11:09 - 00000910 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2015-01-05 22:35 - 2014-05-02 12:03 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job 2015-01-05 19:53 - 2014-05-02 11:29 - 00000000 ___RD () C:\Users\ACER-PC\Dropbox 2015-01-05 19:08 - 2014-05-02 11:21 - 00000000 ____D () C:\Users\ACER-PC\AppData\Roaming\Dropbox 2015-01-05 19:07 - 2014-05-02 12:06 - 00000000 ____D () C:\ProgramData\MCShield 2015-01-05 19:06 - 2014-05-02 11:09 - 00000906 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2015-01-05 19:06 - 2012-07-26 08:22 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2015-01-05 14:53 - 2014-07-12 00:19 - 00751726 _____ () C:\Windows\PFRO.log 2015-01-05 00:03 - 2014-05-02 10:45 - 01085335 _____ () C:\Windows\WindowsUpdate.log 2015-01-04 15:46 - 2014-05-02 10:58 - 00003600 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1228184892-4111478447-2213813170-1001 2015-01-03 23:59 - 2014-05-16 17:02 - 01194496 ___SH () C:\Users\ACER-PC\Desktop\Thumbs.db 2015-01-03 23:55 - 2014-10-26 19:21 - 01050432 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys 2015-01-03 23:55 - 2014-10-26 19:21 - 00003924 _____ () C:\Windows\System32\Tasks\avast! Emergency Update 2015-01-03 23:55 - 2014-10-26 19:21 - 00001996 _____ () C:\Users\Public\Desktop\Avast Free Antivirus.lnk 2015-01-03 23:54 - 2014-10-26 19:21 - 00436624 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys 2015-01-03 23:54 - 2014-10-26 19:21 - 00267632 _____ () C:\Windows\system32\Drivers\aswVmm.sys 2015-01-03 23:54 - 2014-10-26 19:21 - 00116728 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys 2015-01-03 23:54 - 2014-10-26 19:21 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys 2015-01-03 23:54 - 2014-10-26 19:21 - 00083280 _____ (AVAST Software) C:\Windows\system32\Drivers\aswmonflt.sys 2015-01-03 23:54 - 2014-10-26 19:21 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys 2015-01-03 23:54 - 2014-10-26 19:21 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys 2015-01-03 23:54 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\AUInstallAgent 2015-01-02 22:46 - 2014-05-05 22:12 - 361249239 _____ () C:\Windows\MEMORY.DMP 2015-01-02 22:46 - 2014-05-05 22:12 - 00000000 ____D () C:\Windows\Minidump 2015-01-02 21:22 - 2014-09-05 18:49 - 00000258 __RSH () C:\ProgramData\ntuser.pol 2015-01-02 20:53 - 2012-07-26 08:28 - 00848230 _____ () C:\Windows\system32\PerfStringBackup.INI 2015-01-02 10:47 - 2014-08-17 19:07 - 00000000 ____D () C:\Users\ACER-PC\AppData\Local\Adobe 2015-01-02 10:47 - 2014-05-02 12:03 - 00003718 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater 2015-01-01 16:54 - 2014-07-17 19:04 - 00001730 _____ () C:\Users\ACER-PC\Desktop\Photoshop -.lnk 2015-01-01 16:53 - 2014-11-02 11:35 - 00000000 ____D () C:\Users\ACER-PC\AppData\Roaming\tixati 2015-01-01 16:09 - 2014-07-17 18:59 - 00000000 ____D () C:\Program Files (x86)\Adobe Media Player 2015-01-01 15:14 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\system32\NDF 2015-01-01 13:10 - 2014-05-02 11:57 - 00000000 ____D () C:\Users\ACER-PC\AppData\Roaming\BitTorrent 2015-01-01 00:17 - 2012-07-26 06:26 - 00262144 ___SH () C:\Windows\system32\config\BBI 2014-12-30 22:17 - 2014-05-02 11:24 - 00000962 _____ () C:\Users\Public\Desktop\CPUID HWMonitor.lnk 2014-12-30 21:35 - 2014-10-26 13:48 - 00002005 _____ () C:\Users\Public\Desktop\Samsung Kies 3.lnk 2014-12-27 23:15 - 2014-05-02 11:09 - 00002349 _____ () C:\Users\Public\Desktop\Google Chrome.lnk 2014-12-27 17:15 - 2014-10-23 16:53 - 00007903 _____ () C:\Windows\setupact.log 2014-12-24 20:41 - 2014-07-17 19:10 - 00000132 _____ () C:\Users\ACER-PC\AppData\Roaming\Adobe PNG Format CS5 Prefs 2014-12-22 17:34 - 2014-10-29 18:00 - 00000000 ____D () C:\Program Files (x86)\Opera 2014-12-17 20:27 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\rescache 2014-12-17 17:53 - 2014-11-22 17:14 - 00001077 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera 26.lnk 2014-12-17 17:53 - 2014-10-29 18:01 - 00003816 _____ () C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1414602053 2014-12-17 17:46 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\system32\en-GB 2014-12-16 23:59 - 2012-07-26 09:12 - 00000000 ___RD () C:\Windows\ToastData 2014-12-16 23:59 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\SysWOW64\en-GB 2014-12-16 20:14 - 2014-05-02 11:10 - 00000000 ____D () C:\Program Files (x86)\Adobe 2014-12-16 20:10 - 2012-07-26 08:59 - 00000000 ____D () C:\Windows\CbsTemp 2014-12-16 20:08 - 2014-07-14 09:04 - 00000000 ____D () C:\Windows\system32\MRT 2014-12-16 20:02 - 2014-07-14 09:04 - 112710672 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2014-12-15 18:23 - 2014-10-26 10:29 - 00135384 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2014-12-15 18:16 - 2014-10-26 10:28 - 00096472 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys 2014-12-15 18:16 - 2014-05-02 10:45 - 00000000 ____D () C:\Users\ACER-PC 2014-12-13 10:27 - 2014-05-02 11:22 - 00001019 _____ () C:\Users\ACER-PC\Desktop\Dropbox.lnk 2014-12-13 10:27 - 2014-05-02 11:22 - 00000000 ____D () C:\Users\ACER-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox 2014-12-12 20:31 - 2012-07-26 10:43 - 00000000 ____D () C:\Windows\en-GB 2014-12-12 20:30 - 2012-07-26 09:12 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared 2014-12-12 20:13 - 2014-05-02 11:23 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk 2014-12-12 20:09 - 2014-07-17 18:45 - 00000000 ____D () C:\ProgramData\regid.1986-12.com.adobe 2014-12-09 18:12 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\WinStore 2014-12-09 18:09 - 2012-07-26 06:38 - 00000000 ____D () C:\Windows\system32\oobe 2014-12-08 17:59 - 2014-07-13 11:00 - 00000000 ____D () C:\Program Files (x86)\CrystalDiskInfo Some content of TEMP: ==================== C:\Users\ACER-PC\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp9uf5xv.dll C:\Users\ACER-PC\AppData\Local\Temp\Execute2App.exe C:\Users\ACER-PC\AppData\Local\Temp\msvcp90.dll C:\Users\ACER-PC\AppData\Local\Temp\msvcr90.dll ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\System32\winlogon.exe => File is digitally signed C:\Windows\System32\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\System32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\System32\services.exe => File is digitally signed C:\Windows\System32\User32.dll => File is digitally signed C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\System32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\System32\rpcss.dll => File is digitally signed C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2015-01-01 13:34 ==================== End Of Log ============================ mycity.rs/must-login.png mycity.rs/must-login.png

Profil

magna86 Poslao: 05 Jan 2015 23:39 Idi na vrh
offline magna86 Anti Malware Fighter Rank 2 Pridružio: 21 Jun 2008 Poruke: 6103	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Pozdrav katanaa, Danas (05 Januara) koriscen je Zoek alat oko 22:50. Zasto to nije receno i zasto je taj alat uopste i pokrenut? Preuzmi svezu kopiju smeenk-ovog zoek alata () sa ovog ili ovog linka i sačuvaj ga na Desktop. Raspakuj arhivu u neki folder (uputstvo), a zatim: zatvori browser i ostale pokrenute programe; privremeno deaktiviraj zaštitni softver ( ukoliko je to potrebno ) Uputstvo ; dvoklikom pokreni zoek na ikonicu programa ; pričekaj da se alat startuje ... U beli okvir prozora iskopiraj sledeći tekst: C:\Windows\slsvc.exe;i C:\Program Files (x86)\30943bdf-59a2-4fd5-8a78-3543acef7a22;vs FirefoxLook; ChromeLook; C:\Windows\system32\sru ;vs {11111111-1111-1111-1111-110611321185};c C:\Program Files (x86)\TotalPlusHD-3.1V10.12;fs C:\Users\ACER-PC\AppData\Roaming\Mozilla\Firefox\Profiles\3ek7hamo.default\Extensions;f ljefoakgfhcoeobgicjgejglnpfpemgb;chr globalUpdate;s globalUpdatem;s C:\Program Files (x86)\globalUpdate;f trntv;s C:\Users\ACER-PC\AppData\Roaming\TornTV.com;fs C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job;f C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineUA;f C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineCore;f C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job;f C:\Program Files (x86)\TotalPlusHD-3.1V10.12;f C:\Users\ACER-PC\AppData\Local\globalUpdate;f C:\Program Files (x86)\globalUpdate;f C:\Users\ACER-PC\AppData\Roaming\TornTV.com;f C:\Users\ACER-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TornTV.com;f C:\Program Files (x86)\TotalPlusHD-3.1V10.12;f C:\Windows\System32\Tasks\09551595-b6d5-4ca7-9bea-99a3e1c58989-1;f C:\Windows\System32\Tasks\64dea3d5-fb87-47ff-b2c6-36487d0106b9;f C:\Windows\System32\Tasks\6954389b-5362-496d-8d01-372637cc2f78;f C:\Windows\System32\Tasks\09551595-b6d5-4ca7-9bea-99a3e1c58989-7;f C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineUA;f C:\Windows\System32\Tasks\09551595-b6d5-4ca7-9bea-99a3e1c58989-6;f C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineCore;f C:\Windows\Tasks\09551595-b6d5-4ca7-9bea-99a3e1c58989-1.job;f C:\Windows\Tasks\09551595-b6d5-4ca7-9bea-99a3e1c58989-6.job;f C:\Windows\Tasks\09551595-b6d5-4ca7-9bea-99a3e1c58989-7.job;f C:\Windows\Tasks\64dea3d5-fb87-47ff-b2c6-36487d0106b9.job;f C:\Windows\Tasks\6954389b-5362-496d-8d01-372637cc2f78.job;f C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job;f C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job;f emptyFFcache; emptyrecycle.bin; EmptyTemp; Klikni na dugme i pričekaj da se skeniranje završi. zoek ce po potrebi, restartovati Windows a na kraju rada, otvoriti Notepad sa izveštajem o skeniranju. Napomena:Izveštaj će biti sačuvan pod nazivom zoek-results.log na sistemskoj particiji (tipična lokacija: C:\zoek-results.log) Kopiraj sadrzaj tog loga u poruku.

Profil

katanaa Poslao: 05 Jan 2015 23:51 Idi na vrh
offline katanaa Građanin Pridružio: 04 Avg 2009 Poruke: 166	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Izvinjavam se za zoek ,vidio sam slicnu temu gdje se pokrece zoek pa sam mislio da nije program za ciscenje reklama. mycity.rs/must-login.png

Profil

magna86 Poslao: 06 Jan 2015 09:22 Idi na vrh
offline magna86 Anti Malware Fighter Rank 2 Pridružio: 21 Jun 2008 Poruke: 6103	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Tako je, Zoek nije bas za igranje ... Idemo dalje. Korak #1 Ponovo pokreni Zoek na isti nacin kao i malopre ali ovaj put iskopiraj ovaj script; `FFDefaults; C:\Users\ACER-PC\AppData\Roaming\Mozilla;f CHRDefaults; C:\Program Files (x86)\30943bdf-59a2-4fd5-8a78-3543acef7a22;f C:\PROGRA~2\30943B~1;f AutoClean;` Po restartu alat ce formirati svez log, iskopiraj ga ovde da ga pogledam. ----- ----- ----- ----- ----- Korak #2 1. Otvori Notepad (Text Document) i iskopiraj sledeći tekst unutar kod polja ispod: `Hosts: S2 slsvc; C:\Windows\slsvc.exe [10240 2012-09-25] (Microsoft Corporation) [File not signed] Reboot: C:\Windows\slsvc.exe` 2. Sačuvaj notepad na Desktop pod nazivom fixlist.txt To možes uraditi i iz notepad-a => klik na File potom na Save As i u novom prozoru, dole pod File Name: staviš za naziv fixlist.txt Napomena: Važno je da se oba fajla, FRST i fixlist nalaze na istoj lokaciji jer u suprotnom fix nece raditi. 3. Ponovo pokreni FRST/FRST64, klikni jednom na dugme Fix i sačekaj. Ukoliko alat zatraži restart sistema, dozvoli mu i postaraj se da alat kompletira fix nakon restarta sistema. Alat će formirati log (Fixlog.txt) na Desktop-u. Potrebno je sadržaj tog loga iskopirati u poruku. Napomena: Ukoliko te alat upozori da postoji novija verzija, postaraj se da preuzmes i koristiš ažuriranu kopiju FRST-a. ----- ----- ----- ----- ----- Korak #3 Sada slobodno instaliraj Mozila Firefox browser ako zelis, preuzmi instalaciju sa officialne stranice. https://www.mozilla.org/en-US/firefox/new/ Potom je potrebno resetovati njihova podesavanja nazad na defaults. Evo uputstva kako to uraditi. https://support.mozilla.org/en-US/kb/reset-firefox-easily-fix-most-problems https://support.google.com/chrome/answer/3296214?hl=en ----- ----- ----- ----- ----- Korak #4 Ponovo pokreni FRST, udri Scan dugme i iskopiraj u poruku sveze formiran FRST.txt izvestaj.

Profil

katanaa Poslao: 06 Jan 2015 19:22 Idi na vrh
offline katanaa Građanin Pridružio: 04 Avg 2009 Poruke: 166	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Napisano: 06 Jan 2015 19:20 Izvinjavam se nisam mogao da ranije odgovorim. mycity.rs/must-login.png mycity.rs/must-login.png Dopuna: 06 Jan 2015 19:22 mycity.rs/must-login.png Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 04-01-2015 Ran by ACER-PC (administrator) on ACER on 06-01-2015 19:17:52 Running from C:\Users\ACER-PC\Desktop Loaded Profile: ACER-PC (Available profiles: ACER-PC) Platform: Windows 8 (X64) OS Language: English (United Kingdom) Internet Explorer Version 10 (Default browser: Launcher) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: geekstogo.com/forum/topic/335081-frst-t.....scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (AMD) C:\Windows\System32\atiesrxx.exe (AMD) C:\Windows\System32\atieclxx.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe (Acer Incorporated) C:\Program Files\Acer\Acer Updater\UpdaterService.exe (LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe (IObit) C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe (IObit) C:\Program Files (x86)\IObit\Start Menu 8\StartMenu8.exe (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe (IObit) C:\Program Files (x86)\IObit\Start Menu 8\InstallServices64.exe (LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe (IObit) C:\Program Files (x86)\IObit\Start Menu 8\StartMenu_Hook.exe (LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe (Avast Software) C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\ng\ngservice.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (MyCity) C:\Program Files (x86)\MCShield\MCShieldRTM.exe (Dropbox, Inc.) C:\Users\ACER-PC\AppData\Roaming\Dropbox\bin\Dropbox.exe (Advanced Micro Devices, Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Microsoft Corporation) C:\Windows\System32\SppExtComObj.Exe (Opera Software) C:\Program Files (x86)\Opera\26.0.1656.60\opera.exe () C:\Program Files (x86)\Opera\26.0.1656.60\opera_crashreporter.exe (Opera Software) C:\Program Files (x86)\Opera\26.0.1656.60\opera.exe (Opera Software) C:\Program Files (x86)\Opera\26.0.1656.60\opera.exe (Opera Software) C:\Program Files (x86)\Opera\26.0.1656.60\opera.exe (Opera Software) C:\Program Files (x86)\Opera\26.0.1656.60\opera.exe (Opera Software) C:\Program Files (x86)\Opera\26.0.1656.60\opera.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500208 2010-03-06] (Adobe Systems Incorporated) HKLM\...\Run: [CIS_{81EFDD93-DBBE-415B-BE6E-49B9664E3E82}] => "C:\ProgramData\cis81AD.exe" --PostUninstall {81EFDD93-DBBE-415B-BE6E-49B9664E3E82} HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1808168 2009-06-18] (Synaptics Incorporated) HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [641704 2012-11-16] (Advanced Micro Devices, Inc.) HKLM-x32\...\Run: [AMD AVT] => C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe [20992 2012-03-19] () HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1021128 2014-11-20] (Adobe Systems Incorporated) HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) HKLM-x32\...\Run: [AdobeCS5ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [402432 2010-07-22] (Adobe Systems Incorporated) HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5226600 2015-01-03] (AVAST Software) HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3838800 2014-12-13] (LogMeIn Inc.) HKU\S-1-5-21-1228184892-4111478447-2213813170-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [20917408 2014-02-10] (Skype Technologies S.A.) HKU\S-1-5-21-1228184892-4111478447-2213813170-1001\...\Run: [MCShield Monitor] => C:\Program Files (x86)\MCShield\mcshieldrtm.exe [650816 2014-04-11] (MyCity) HKU\S-1-5-21-1228184892-4111478447-2213813170-1001\...\Run: [Kies3PDLR.exe] => C:\Program Files (x86)\Samsung\Kies3\FirmwareUpdate\Kies3PDLR.exe [845120 2014-12-10] (Samsung) HKU\S-1-5-21-1228184892-4111478447-2213813170-1001\...\RunOnce: [Adobe Speed Launcher] => 1420568064 Startup: C:\Users\ACER-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk ShortcutTarget: Dropbox.lnk -> C:\Users\ACER-PC\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKU\S-1-5-21-1228184892-4111478447-2213813170-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = t.uk.msn.com/ SearchScopes: HKU\S-1-5-21-1228184892-4111478447-2213813170-1001 -> DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL = google.com/search?q={searchTerms} SearchScopes: HKU\S-1-5-21-1228184892-4111478447-2213813170-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = google.com/search?q={searchTerms} BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_25\bin\ssv.dll (Oracle Corporation) BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_25\bin\jp2ssv.dll (Oracle Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies) FireFox: ======== FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_235.dll () FF Plugin: @java.com/DTPlugin,version=11.25.2 -> C:\Program Files\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files\Java\jre1.8.0_25\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_235.dll () FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw_1213153.dll No File FF Plugin-x32: @java.com/DTPlugin,version=10.71.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=10.71.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF Plugin-x32: @staging.google.com/globalUpdate Update;version=10 -> C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll No File FF Plugin-x32: @staging.google.com/globalUpdate Update;version=4 -> C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll No File FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-10-26] Chrome: ======= CHR Profile: C:\Users\ACER-PC\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Docs) - C:\Users\ACER-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-05-02] CHR Extension: (Google Drive) - C:\Users\ACER-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-05-02] CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\ACER-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-09-05] CHR Extension: (YouTube) - C:\Users\ACER-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-05-02] CHR Extension: (Google Search) - C:\Users\ACER-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-05-02] CHR Extension: (Avast SafePrice) - C:\Users\ACER-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2014-11-04] CHR Extension: (Google Wallet) - C:\Users\ACER-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-05-02] CHR Extension: (Gmail) - C:\Users\ACER-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-05-02] CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx [2015-01-03] CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-01-03] ==================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2012-11-16] (Advanced Micro Devices, Inc.) [File not signed] R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2015-01-03] (AVAST Software) R3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [4012248 2015-01-03] (Avast Software) S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [File not signed] R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2014-12-02] (LogMeIn, Inc.) S4 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2014-11-21] (Malwarebytes Corporation) S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [969016 2014-11-21] (Malwarebytes Corporation) R2 StartMenuService; C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe [72992 2014-09-23] (IObit) S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed] S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16032 2014-09-22] (Microsoft Corporation) ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R2 AODDriver4.1; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [53888 2012-03-05] (Advanced Micro Devices) R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2015-01-03] () R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [83280 2015-01-03] (AVAST Software) R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2015-01-03] (AVAST Software) R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2015-01-03] () R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1050432 2015-01-03] (AVAST Software) R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [436624 2015-01-03] (AVAST Software) R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [116728 2015-01-03] (AVAST Software) R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [267632 2015-01-03] () R3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45112 2014-12-13] (LogMeIn Inc.) R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-11-21] (Malwarebytes Corporation) S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2014-11-21] (Malwarebytes Corporation) S3 RTL8192cu; C:\Windows\system32\DRIVERS\rtwlanu.sys [1576080 2012-09-17] (Realtek Semiconductor Corporation ) S3 RtlWlanu; C:\Windows\system32\DRIVERS\rtwlanu.sys [1576080 2012-09-17] (Realtek Semiconductor Corporation ) U4 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [271752 2015-01-03] (Avast Software) ==================== NetSvcs (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) ==================== One Month Created Files and Folders ======== (If an entry is included in the fixlist, the file\folder will be moved.) 2015-01-06 19:17 - 2015-01-06 19:18 - 00014325 _____ () C:\Users\ACER-PC\Desktop\FRST.txt 2015-01-06 19:11 - 2015-01-06 19:11 - 00000000 _____ () C:\Users\ACER-PC\Desktop\New Text Document.txt 2015-01-06 19:08 - 2015-01-06 19:09 - 00000000 ____D () C:\Users\ACER-PC\Desktop\New folder 2015-01-06 19:05 - 2015-01-06 19:05 - 00036809 _____ () C:\Users\ACER-PC\Desktop\zoek-results.txt 2015-01-06 18:58 - 2015-01-06 18:22 - 00024064 _____ () C:\Windows\zoek-delete.exe 2015-01-06 18:23 - 2015-01-05 23:45 - 00038660 _____ () C:\zoek-results2015-01-05-224541.log 2015-01-05 23:55 - 2015-01-05 23:55 - 00038660 _____ () C:\Users\ACER-PC\Downloads\157602_1494859239_zoek-results.txt 2015-01-05 23:40 - 2015-01-05 22:53 - 00018281 _____ () C:\zoek-results2015-01-05-215340.log 2015-01-05 23:38 - 2015-01-05 23:38 - 01295360 _____ () C:\Users\ACER-PC\Desktop\zoek.exe 2015-01-05 22:58 - 2015-01-06 19:17 - 00000000 ____D () C:\FRST 2015-01-05 22:57 - 2015-01-05 22:57 - 02123776 _____ (Farbar) C:\Users\ACER-PC\Desktop\FRST64.exe 2015-01-05 22:47 - 2015-01-06 19:02 - 00036809 _____ () C:\zoek-results.log 2015-01-05 22:46 - 2015-01-06 18:54 - 00000000 ____D () C:\zoek_backup 2015-01-05 19:18 - 2015-01-05 19:18 - 00000247 _____ () C:\Windows\system32\2015-01-05-18-18-10.046-aswFe.exe-4048.log 2015-01-05 19:18 - 2015-01-05 19:18 - 00000197 _____ () C:\Windows\system32\2015-01-05-18-18-06.030-AvastVBoxSVC.exe-5072.log 2015-01-05 15:03 - 2015-01-05 15:08 - 00000247 _____ () C:\Windows\system32\2015-01-05-14-03-06.039-aswFe.exe-3704.log 2015-01-05 15:03 - 2015-01-05 15:03 - 00000197 _____ () C:\Windows\system32\2015-01-05-14-03-01.052-AvastVBoxSVC.exe-4980.log 2015-01-03 23:55 - 2015-01-03 23:54 - 00364512 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe 2015-01-03 23:54 - 2015-01-03 23:54 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr 2015-01-02 22:46 - 2015-01-02 22:46 - 00279016 _____ () C:\Windows\Minidump\010215-28875-01.dmp 2015-01-02 11:00 - 2015-01-02 11:00 - 01055936 _____ (Adobe) C:\Users\ACER-PC\Downloads\install_flashplayer16x32pp_chrd_dn_aaa_aih.exe 2015-01-01 21:51 - 2015-01-01 21:51 - 00279072 _____ () C:\Windows\Minidump\010115-27658-01.dmp 2015-01-01 16:12 - 2015-01-01 16:12 - 00000000 ____D () C:\Users\ACER-PC\Downloads\Adobe Photoshop CS5 Extended 2015-01-01 16:11 - 2015-01-01 16:11 - 00020588 _____ () C:\Users\ACER-PC\Downloads\[kat.sites(zabranjeno).com]adobe.photoshop.cs5.extended.(zabranjeno).torrent 2014-12-28 10:10 - 2014-12-28 10:10 - 00279072 _____ () C:\Windows\Minidump\122814-33321-01.dmp 2014-12-25 19:24 - 2014-12-25 19:51 - 960495616 _____ () C:\Users\ACER-PC\Downloads\xubuntu-14.04.1-desktop-i386.iso 2014-12-25 02:04 - 2014-12-25 02:04 - 00279016 _____ () C:\Windows\Minidump\122514-27378-01.dmp 2014-12-23 18:13 - 2014-12-23 18:35 - 808452096 _____ () C:\Users\ACER-PC\Downloads\crunchbang-11-20130506-i686.iso 2014-12-19 01:14 - 2014-12-19 01:14 - 00279016 _____ () C:\Windows\Minidump\121914-33462-01.dmp 2014-12-16 20:01 - 2014-10-09 05:00 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\vsstrace.dll 2014-12-16 20:01 - 2014-10-09 04:59 - 01195520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vssapi.dll 2014-12-16 20:01 - 2014-10-09 04:59 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vsstrace.dll 2014-12-16 20:00 - 2014-10-09 05:00 - 01519104 _____ (Microsoft Corporation) C:\Windows\system32\vssapi.dll 2014-12-16 20:00 - 2014-10-09 05:00 - 01484288 _____ (Microsoft Corporation) C:\Windows\system32\VSSVC.exe 2014-12-16 18:17 - 2014-10-11 06:57 - 17562112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll 2014-12-16 18:17 - 2014-10-09 04:59 - 00623616 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll 2014-12-16 18:17 - 2014-10-09 04:59 - 00212992 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll 2014-12-16 18:17 - 2014-10-09 04:58 - 00458240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll 2014-12-16 18:17 - 2014-09-22 06:38 - 00673792 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll 2014-12-16 18:17 - 2014-09-22 04:56 - 00513536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmpeg2srcsnk.dll 2014-12-16 18:17 - 2012-09-19 10:25 - 19778048 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll 2014-12-16 18:16 - 2014-11-21 09:38 - 02237952 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2014-12-16 18:16 - 2014-11-21 09:38 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2014-12-16 18:16 - 2014-11-21 09:37 - 01409536 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2014-12-16 18:16 - 2014-11-21 09:37 - 00915968 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll 2014-12-16 18:16 - 2014-11-21 09:37 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\UXInit.dll 2014-12-16 18:16 - 2014-11-21 09:36 - 19283456 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2014-12-16 18:16 - 2014-11-21 09:36 - 15400960 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2014-12-16 18:16 - 2014-11-21 09:36 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2014-12-16 18:16 - 2014-11-21 09:36 - 02655232 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2014-12-16 18:16 - 2014-11-21 09:36 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2014-12-16 18:16 - 2014-11-21 09:36 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2014-12-16 18:16 - 2014-11-21 09:36 - 00451584 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2014-12-16 18:16 - 2014-11-21 09:36 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2014-12-16 18:16 - 2014-11-21 09:36 - 00255488 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2014-12-16 18:16 - 2014-11-21 09:36 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2014-12-16 18:16 - 2014-11-21 09:36 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll 2014-12-16 18:16 - 2014-11-21 09:36 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2014-12-16 18:16 - 2014-11-21 09:36 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2014-12-16 18:16 - 2014-11-21 09:36 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2014-12-16 18:16 - 2014-11-21 09:36 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2014-12-16 18:16 - 2014-11-21 09:35 - 01509376 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2014-12-16 18:16 - 2014-11-21 08:17 - 14364672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2014-12-16 18:16 - 2014-11-21 08:17 - 01762816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2014-12-16 18:16 - 2014-11-21 08:17 - 01181696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2014-12-16 18:16 - 2014-11-21 08:17 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2014-12-16 18:16 - 2014-11-21 08:17 - 00080384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2014-12-16 18:16 - 2014-11-21 08:17 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UXInit.dll 2014-12-16 18:16 - 2014-11-21 08:16 - 13758976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2014-12-16 18:16 - 2014-11-21 08:16 - 02861568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2014-12-16 18:16 - 2014-11-21 08:16 - 02054656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2014-12-16 18:16 - 2014-11-21 08:16 - 01441280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2014-12-16 18:16 - 2014-11-21 08:16 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2014-12-16 18:16 - 2014-11-21 08:16 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2014-12-16 18:16 - 2014-11-21 08:16 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2014-12-16 18:16 - 2014-11-21 08:16 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2014-12-16 18:16 - 2014-11-21 08:16 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2014-12-16 18:16 - 2014-11-21 08:16 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll 2014-12-16 18:16 - 2014-11-21 08:16 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2014-12-16 18:16 - 2014-11-21 08:16 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2014-12-16 18:16 - 2014-11-21 08:16 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2014-12-16 18:16 - 2014-11-21 08:00 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2014-12-16 18:16 - 2014-11-21 07:54 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2014-12-16 18:16 - 2014-11-21 05:30 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uxtheme.dll 2014-12-16 18:16 - 2014-11-06 07:50 - 01627648 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll 2014-12-16 18:16 - 2014-11-06 06:03 - 01339392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll 2014-12-16 18:14 - 2014-10-30 08:20 - 01890816 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll 2014-12-16 18:14 - 2014-10-30 06:22 - 01569792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll 2014-12-16 18:01 - 2014-12-16 18:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi 2014-12-16 18:01 - 2014-12-16 18:01 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi 2014-12-15 18:34 - 2014-12-15 18:34 - 00005682 _____ () C:\Windows\DPINST.LOG 2014-12-15 18:34 - 2014-12-15 18:34 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_SynTP_01009.Wdf 2014-12-15 18:34 - 2014-12-15 18:34 - 00000000 ____D () C:\Program Files\Synaptics 2014-12-15 18:34 - 2009-06-18 20:12 - 00272432 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\SynTP.sys 2014-12-15 18:34 - 2009-06-18 20:10 - 00395048 _____ (Synaptics Incorporated) C:\Windows\system32\SynCOM.dll 2014-12-15 18:34 - 2009-06-18 20:10 - 00260904 _____ (Synaptics Incorporated) C:\Windows\system32\SynCtrl.dll 2014-12-15 18:34 - 2009-06-18 20:10 - 00206120 _____ (Synaptics Incorporated) C:\Windows\SysWOW64\SynCtrl.dll 2014-12-15 18:34 - 2009-06-18 20:10 - 00203560 _____ (Synaptics Incorporated) C:\Windows\system32\SynTPAPI.dll 2014-12-15 18:34 - 2009-06-18 20:10 - 00169256 _____ (Synaptics Incorporated) C:\Windows\SysWOW64\SynCOM.dll 2014-12-15 18:34 - 2009-06-18 20:10 - 00147752 _____ (Synaptics Incorporated) C:\Windows\system32\SynTPCo4.dll 2014-12-15 18:34 - 2009-06-18 20:10 - 00107816 _____ (Synaptics Incorporated) C:\Windows\SysWOW64\SynTPCOM.dll 2014-12-15 18:34 - 2009-05-21 09:43 - 01436920 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01009.dll 2014-12-15 18:16 - 2015-01-04 17:56 - 00011776 ___SH () C:\Users\ACER-PC\Thumbs.db 2014-12-13 17:01 - 2014-12-13 17:01 - 00045112 ____H (LogMeIn Inc.) C:\Windows\system32\Drivers\Hamdrv.sys 2014-12-12 20:38 - 2014-12-12 20:38 - 00001337 _____ () C:\Users\ACER-PC\Desktop\Movie Maker.lnk 2014-12-12 20:31 - 2014-12-12 20:31 - 00001406 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo Gallery.lnk 2014-12-12 20:31 - 2014-12-12 20:31 - 00001337 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk 2014-12-12 20:31 - 2014-12-12 20:31 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server Compact Edition 2014-12-12 20:30 - 2014-12-12 20:31 - 00000000 ____D () C:\Program Files (x86)\Windows Live 2014-12-12 20:30 - 2014-12-12 20:30 - 00000000 ____D () C:\Windows\PCHEALTH 2014-12-12 20:29 - 2014-12-12 20:29 - 00000198 _____ () C:\Windows\DirectX.log 2014-12-12 20:29 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll 2014-12-12 20:29 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll 2014-12-12 20:29 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll 2014-12-12 20:29 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll 2014-12-12 20:29 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll 2014-12-12 20:29 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll 2014-12-12 20:29 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll 2014-12-12 20:29 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll 2014-12-12 20:29 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll 2014-12-12 20:29 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll 2014-12-12 20:29 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll 2014-12-12 20:29 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll 2014-12-12 20:28 - 2014-12-12 20:38 - 00000000 ____D () C:\Users\ACER-PC\AppData\Local\Windows Live 2014-12-09 18:25 - 2014-12-09 18:25 - 00278960 _____ () C:\Windows\Minidump\120914-42245-01.dmp 2014-12-09 18:12 - 2014-12-09 23:50 - 00000000 ____D () C:\Windows\system32\AutoUpdateLicense 2014-12-09 18:07 - 2014-11-19 08:29 - 00582552 _____ (Microsoft Corporation) C:\Windows\system32\AutoUpdate.exe 2014-12-09 18:07 - 2014-11-19 08:29 - 00462760 _____ (Microsoft Corporation) C:\Windows\system32\NotificationUI.exe 2014-12-09 18:07 - 2014-10-22 04:34 - 00010777 _____ () C:\Windows\system32\AutoconfigV2.cab 2014-12-09 18:07 - 2014-10-22 02:08 - 00568832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll 2014-12-09 18:07 - 2014-10-22 02:08 - 00124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll 2014-12-09 18:07 - 2014-10-22 02:01 - 00695808 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll 2014-12-09 18:07 - 2014-10-22 02:01 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.dll 2014-12-09 18:07 - 2014-10-22 02:01 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll 2014-12-09 18:07 - 2014-10-22 02:00 - 00125952 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll 2014-12-09 18:05 - 2014-10-11 08:44 - 02885632 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll 2014-12-09 18:05 - 2014-10-11 08:44 - 00393216 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll 2014-12-09 18:05 - 2014-10-11 08:43 - 02307072 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll 2014-12-09 18:05 - 2014-10-11 06:58 - 08858624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll 2014-12-09 18:05 - 2014-10-11 06:57 - 02416640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll 2014-12-09 18:05 - 2014-10-11 06:57 - 00295424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll 2014-12-09 18:05 - 2014-10-11 06:56 - 02037760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll 2014-12-09 18:05 - 2013-03-02 09:23 - 00375808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgent.dll 2014-12-09 18:05 - 2013-03-02 03:44 - 01011200 _____ (Microsoft Corporation) C:\Windows\system32\reseteng.dll 2014-12-09 18:05 - 2012-12-15 05:55 - 00443392 _____ (Microsoft Corporation) C:\Windows\system32\ReAgent.dll 2014-12-09 18:05 - 2012-11-03 06:26 - 00132096 _____ (Microsoft Corporation) C:\Windows\system32\sysreset.exe 2014-12-09 18:05 - 2012-11-03 06:25 - 00945152 _____ (Microsoft Corporation) C:\Windows\system32\resetengmig.dll 2014-12-09 18:05 - 2012-10-24 04:25 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\ReAgentc.exe 2014-12-09 18:05 - 2012-10-24 03:48 - 00024064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgentc.exe 2014-12-09 18:05 - 2012-10-07 01:32 - 10094592 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll 2014-12-09 18:03 - 2013-12-05 00:43 - 00583680 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll 2014-12-09 18:03 - 2013-12-05 00:37 - 00451072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdrm.dll 2014-12-09 18:03 - 2013-11-23 07:43 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll 2014-12-09 18:03 - 2013-11-23 06:05 - 00368640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll 2014-12-09 18:03 - 2013-08-23 08:22 - 02062848 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll 2014-12-09 18:03 - 2013-08-23 02:44 - 01711616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll 2014-12-09 18:03 - 2013-03-22 04:49 - 02382336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll 2014-12-09 18:03 - 2013-03-21 23:47 - 02851840 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll 2014-12-09 18:03 - 2012-10-24 04:25 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe 2014-12-09 18:03 - 2012-10-24 04:24 - 00405504 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll 2014-12-09 18:03 - 2012-10-24 04:24 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll 2014-12-09 18:03 - 2012-10-24 04:05 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll 2014-12-09 18:02 - 2013-11-01 06:38 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll 2014-12-09 18:02 - 2013-11-01 04:49 - 00273408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msieftp.dll 2014-12-09 18:02 - 2013-04-03 00:37 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll 2014-12-09 18:02 - 2013-04-03 00:12 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll 2014-12-09 17:54 - 2014-12-09 17:54 - 00278960 _____ () C:\Windows\Minidump\120914-24663-01.dmp 2014-12-08 17:59 - 2014-12-08 17:59 - 00001261 _____ () C:\Users\ACER-PC\Desktop\CrystalDiskInfo Shizuku Edition.lnk 2014-12-08 17:59 - 2014-12-08 17:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo 2014-12-08 17:39 - 2014-12-08 17:39 - 00278960 _____ () C:\Windows\Minidump\120814-30373-01.dmp 2014-12-07 13:16 - 2015-01-06 19:14 - 00000000 ____D () C:\Users\ACER-PC\AppData\Local\LogMeIn Hamachi 2014-12-07 13:16 - 2014-12-07 13:16 - 00000000 ____H () C:\Users\ACER-PC\Documents\Default.rdp 2014-12-07 13:16 - 2014-12-07 13:16 - 00000000 ____D () C:\Users\ACER-PC\AppData\Local\LogMeIn 2014-12-07 13:16 - 2014-12-07 13:16 - 00000000 ____D () C:\ProgramData\LogMeIn 2014-12-07 13:09 - 2014-12-16 18:01 - 00000958 _____ () C:\Users\Public\Desktop\LogMeIn Hamachi.lnk ==================== One Month Modified Files and Folders ======= (If an entry is included in the fixlist, the file\folder will be moved.) 2015-01-06 19:18 - 2014-05-02 11:44 - 00000000 ____D () C:\Users\ACER-PC\AppData\Roaming\Skype 2015-01-06 19:14 - 2014-05-02 12:06 - 00000000 ____D () C:\ProgramData\MCShield 2015-01-06 19:14 - 2014-05-02 11:29 - 00000000 ___RD () C:\Users\ACER-PC\Dropbox 2015-01-06 19:14 - 2014-05-02 11:21 - 00000000 ____D () C:\Users\ACER-PC\AppData\Roaming\Dropbox 2015-01-06 19:13 - 2014-05-02 11:09 - 00000906 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2015-01-06 19:13 - 2012-07-26 08:22 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2015-01-06 19:02 - 2014-09-05 18:49 - 00000008 __RSH () C:\ProgramData\ntuser.pol 2015-01-06 19:01 - 2014-07-12 00:19 - 00753262 _____ () C:\Windows\PFRO.log 2015-01-06 19:01 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\system32\sru 2015-01-06 19:01 - 2012-07-26 06:26 - 00262144 ___SH () C:\Windows\system32\config\BBI 2015-01-06 18:55 - 2014-05-02 11:09 - 00002230 _____ () C:\Users\Public\Desktop\Google Chrome.lnk 2015-01-06 18:52 - 2014-07-17 18:59 - 00000000 ____D () C:\Program Files (x86)\Adobe Media Player 2015-01-06 18:52 - 2012-07-26 09:12 - 00000000 ___HD () C:\Windows\system32\GroupPolicy 2015-01-06 18:52 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\SysWOW64\GroupPolicy 2015-01-06 18:44 - 2014-05-02 11:09 - 00000910 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2015-01-06 18:35 - 2014-05-02 12:03 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job 2015-01-06 14:08 - 2014-10-26 19:21 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update 2015-01-05 00:03 - 2014-05-02 10:45 - 01085335 _____ () C:\Windows\WindowsUpdate.log 2015-01-04 15:46 - 2014-05-02 10:58 - 00003600 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1228184892-4111478447-2213813170-1001 2015-01-03 23:59 - 2014-05-16 17:02 - 01194496 ___SH () C:\Users\ACER-PC\Desktop\Thumbs.db 2015-01-03 23:55 - 2014-10-26 19:21 - 01050432 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys 2015-01-03 23:55 - 2014-10-26 19:21 - 00001996 _____ () C:\Users\Public\Desktop\Avast Free Antivirus.lnk 2015-01-03 23:54 - 2014-10-26 19:21 - 00436624 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys 2015-01-03 23:54 - 2014-10-26 19:21 - 00267632 _____ () C:\Windows\system32\Drivers\aswVmm.sys 2015-01-03 23:54 - 2014-10-26 19:21 - 00116728 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys 2015-01-03 23:54 - 2014-10-26 19:21 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys 2015-01-03 23:54 - 2014-10-26 19:21 - 00083280 _____ (AVAST Software) C:\Windows\system32\Drivers\aswmonflt.sys 2015-01-03 23:54 - 2014-10-26 19:21 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys 2015-01-03 23:54 - 2014-10-26 19:21 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys 2015-01-03 23:54 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\AUInstallAgent 2015-01-02 22:46 - 2014-05-05 22:12 - 361249239 _____ () C:\Windows\MEMORY.DMP 2015-01-02 22:46 - 2014-05-05 22:12 - 00000000 ____D () C:\Windows\Minidump 2015-01-02 20:53 - 2012-07-26 08:28 - 00848230 _____ () C:\Windows\system32\PerfStringBackup.INI 2015-01-02 10:47 - 2014-08-17 19:07 - 00000000 ____D () C:\Users\ACER-PC\AppData\Local\Adobe 2015-01-02 10:47 - 2014-05-02 12:03 - 00003718 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater 2015-01-01 16:54 - 2014-07-17 19:04 - 00001730 _____ () C:\Users\ACER-PC\Desktop\Photoshop -.lnk 2015-01-01 16:53 - 2014-11-02 11:35 - 00000000 ____D () C:\Users\ACER-PC\AppData\Roaming\tixati 2015-01-01 15:14 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\system32\NDF 2015-01-01 13:10 - 2014-05-02 11:57 - 00000000 ____D () C:\Users\ACER-PC\AppData\Roaming\BitTorrent 2014-12-30 22:17 - 2014-05-02 11:24 - 00000962 _____ () C:\Users\Public\Desktop\CPUID HWMonitor.lnk 2014-12-30 21:35 - 2014-10-26 13:48 - 00002005 _____ () C:\Users\Public\Desktop\Samsung Kies 3.lnk 2014-12-27 17:15 - 2014-10-23 16:53 - 00007903 _____ () C:\Windows\setupact.log 2014-12-24 20:41 - 2014-07-17 19:10 - 00000132 _____ () C:\Users\ACER-PC\AppData\Roaming\Adobe PNG Format CS5 Prefs 2014-12-22 17:34 - 2014-10-29 18:00 - 00000000 ____D () C:\Program Files (x86)\Opera 2014-12-17 20:27 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\rescache 2014-12-17 17:53 - 2014-11-22 17:14 - 00001077 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera 26.lnk 2014-12-17 17:53 - 2014-10-29 18:01 - 00003816 _____ () C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1414602053 2014-12-17 17:46 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\system32\en-GB 2014-12-16 23:59 - 2012-07-26 09:12 - 00000000 ___RD () C:\Windows\ToastData 2014-12-16 23:59 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\SysWOW64\en-GB 2014-12-16 20:14 - 2014-05-02 11:10 - 00000000 ____D () C:\Program Files (x86)\Adobe 2014-12-16 20:10 - 2012-07-26 08:59 - 00000000 ____D () C:\Windows\CbsTemp 2014-12-16 20:08 - 2014-07-14 09:04 - 00000000 ____D () C:\Windows\system32\MRT 2014-12-16 20:02 - 2014-07-14 09:04 - 112710672 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2014-12-15 18:23 - 2014-10-26 10:29 - 00135384 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2014-12-15 18:16 - 2014-10-26 10:28 - 00096472 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys 2014-12-15 18:16 - 2014-05-02 10:45 - 00000000 ____D () C:\Users\ACER-PC 2014-12-13 10:27 - 2014-05-02 11:22 - 00001019 _____ () C:\Users\ACER-PC\Desktop\Dropbox.lnk 2014-12-13 10:27 - 2014-05-02 11:22 - 00000000 ____D () C:\Users\ACER-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox 2014-12-12 20:31 - 2012-07-26 10:43 - 00000000 ____D () C:\Windows\en-GB 2014-12-12 20:30 - 2012-07-26 09:12 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared 2014-12-12 20:13 - 2014-05-02 11:23 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk 2014-12-12 20:09 - 2014-07-17 18:45 - 00000000 ____D () C:\ProgramData\regid.1986-12.com.adobe 2014-12-09 18:12 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\WinStore 2014-12-09 18:09 - 2012-07-26 06:38 - 00000000 ____D () C:\Windows\system32\oobe 2014-12-08 17:59 - 2014-07-13 11:00 - 00000000 ____D () C:\Program Files (x86)\CrystalDiskInfo Some content of TEMP: ==================== C:\Users\ACER-PC\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpdco4fo.dll ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\System32\winlogon.exe => File is digitally signed C:\Windows\System32\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\System32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\System32\services.exe => File is digitally signed C:\Windows\System32\User32.dll => File is digitally signed C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\System32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\System32\rpcss.dll => File is digitally signed C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2015-01-01 13:34 ==================== End Of Log ============================

Profil

magna86 Poslao: 06 Jan 2015 19:55 Idi na vrh
offline magna86 Anti Malware Fighter Rank 2 Pridružio: 21 Jun 2008 Poruke: 6103	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! U redu je. Idemo dalje ... 1. Otvori Notepad (Text Document) i iskopiraj sledeći tekst unutar kod polja ispod: `CloseProcesses: FF Plugin-x32: @staging.google.com/globalUpdate Update;version=10 -> C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll No File FF Plugin-x32: @staging.google.com/globalUpdate Update;version=4 -> C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll No File Hosts: HKLM\...\Run: [CIS_{81EFDD93-DBBE-415B-BE6E-49B9664E3E82}] => "C:\ProgramData\cis81AD.exe" --PostUninstall {81EFDD93-DBBE-415B-BE6E-49B9664E3E82} Reboot: C:\ProgramData\cis81AD.exe` 2. Sačuvaj notepad na Desktop pod nazivom fixlist.txt To možes uraditi i iz notepad-a => klik na File potom na Save As i u novom prozoru, dole pod File Name: staviš za naziv fixlist.txt Napomena: Važno je da se oba fajla, FRST i fixlist nalaze na istoj lokaciji jer u suprotnom fix nece raditi. 3. Ponovo pokreni FRST/FRST64, klikni jednom na dugme Fix i sačekaj. Ukoliko alat zatraži restart sistema, dozvoli mu i postaraj se da alat kompletira fix nakon restarta sistema. Alat će formirati log (Fixlog.txt) na Desktop-u. Potrebno je sadržaj tog loga iskopirati u poruku. Napomena: Ukoliko te alat upozori da postoji novija verzija, postaraj se da preuzmes i koristiš ažuriranu kopiju FRST-a. ----- ----- ----- ----- ----- Sada mi upload-uj sledeci folder ... C:\FRST\Quarantine ... na dodatnu analizu koristeci ovu formu: http://www.mycity.rs/ambulanta-upload.php Javi mi kada ovo uradis.

Profil

katanaa Poslao: 06 Jan 2015 20:27 Idi na vrh
offline katanaa Građanin Pridružio: 04 Avg 2009 Poruke: 166	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Napisano: 06 Jan 2015 20:26 mycity.rs/must-login.png Dopuna: 06 Jan 2015 20:27 Uplodovao sam Quarantine

Profil

magna86 Poslao: 07 Jan 2015 10:07 Idi na vrh
offline magna86 Anti Malware Fighter Rank 2 Pridružio: 21 Jun 2008 Poruke: 6103	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Pozdrav katanaa, Hristos vaskrese, Pise da mi treba dostaviti FixList, a zatim FRST.txt izvestaj. Trazio sam i da mi se upload-uje ceo Quarantine a ne slsvc.exe.xBAD file. Postavi mi sada FixLog, ponovo svez FRST.txt i upload-uj mi ceo Quarantine (zip/rar-uj ga).

Profil

katanaa Poslao: 07 Jan 2015 12:02 Idi na vrh
offline katanaa Građanin Pridružio: 04 Avg 2009 Poruke: 166	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Vaistinu Vaskrse. evo sad sam uplodaovao cio Quarantin Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 04-01-2015 Ran by ACER-PC at 2015-01-06 20:16:07 Run:2 Running from C:\Users\ACER-PC\Desktop Loaded Profile: ACER-PC (Available profiles: ACER-PC) Boot Mode: Normal ============================================== Content of fixlist: *************** CloseProcesses: FF Plugin-x32: @staging.google.com/globalUpdate Update;version=10 -> C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll No File FF Plugin-x32: @staging.google.com/globalUpdate Update;version=4 -> C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll No File Hosts: HKLM\...\Run: [CIS_{81EFDD93-DBBE-415B-BE6E-49B9664E3E82}] => "C:\ProgramData\cis81AD.exe" --PostUninstall {81EFDD93-DBBE-415B-BE6E-49B9664E3E82} Reboot: C:\ProgramData\cis81AD.exe *************** Processes closed successfully. "HKLM\Software\Wow6432Node\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10" => Key deleted successfully. "HKLM\Software\Wow6432Node\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4" => Key deleted successfully. C:\Windows\System32\Drivers\etc\hosts => Moved successfully. Hosts was reset successfully. HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\CIS_{81EFDD93-DBBE-415B-BE6E-49B9664E3E82} => value deleted successfully. "C:\ProgramData\cis81AD.exe" => File/Directory not found. The system needed a reboot. ==== End of Fixlog 20:16:08 ==== mycity.rs/must-login.png mycity.rs/must-login.png Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 04-01-2015 Ran by ACER-PC (administrator) on ACER on 07-01-2015 11:55:36 Running from C:\Users\ACER-PC\Desktop Loaded Profile: ACER-PC (Available profiles: ACER-PC) Platform: Windows 8 (X64) OS Language: English (United Kingdom) Internet Explorer Version 10 (Default browser: Launcher) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: geekstogo.com/forum/topic/335081-frst-t.....scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (AMD) C:\Windows\System32\atiesrxx.exe (AMD) C:\Windows\System32\atieclxx.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe (Acer Incorporated) C:\Program Files\Acer\Acer Updater\UpdaterService.exe (LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe (IObit) C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe (IObit) C:\Program Files (x86)\IObit\Start Menu 8\StartMenu8.exe (LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe (IObit) C:\Program Files (x86)\IObit\Start Menu 8\InstallServices64.exe (IObit) C:\Program Files (x86)\IObit\Start Menu 8\StartMenu_Hook.exe (LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe (Avast Software) C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\ng\ngservice.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (MyCity) C:\Program Files (x86)\MCShield\MCShieldRTM.exe (Dropbox, Inc.) C:\Users\ACER-PC\AppData\Roaming\Dropbox\bin\Dropbox.exe (Advanced Micro Devices, Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Microsoft Corporation) C:\Windows\System32\SppExtComObj.Exe (Opera Software) C:\Program Files (x86)\Opera\26.0.1656.60\opera.exe () C:\Program Files (x86)\Opera\26.0.1656.60\opera_crashreporter.exe (Opera Software) C:\Program Files (x86)\Opera\26.0.1656.60\opera.exe (Opera Software) C:\Program Files (x86)\Opera\26.0.1656.60\opera.exe (Opera Software) C:\Program Files (x86)\Opera\26.0.1656.60\opera.exe (Opera Software) C:\Program Files (x86)\Opera\26.0.1656.60\opera.exe (Opera Software) C:\Program Files (x86)\Opera\26.0.1656.60\opera.exe (Opera Software) C:\Program Files (x86)\Opera\26.0.1656.60\opera.exe (Opera Software) C:\Program Files (x86)\Opera\26.0.1656.60\opera.exe (Microsoft Corporation) C:\Windows\System32\msiexec.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500208 2010-03-06] (Adobe Systems Incorporated) HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1808168 2009-06-18] (Synaptics Incorporated) HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [641704 2012-11-16] (Advanced Micro Devices, Inc.) HKLM-x32\...\Run: [AMD AVT] => C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe [20992 2012-03-19] () HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1021128 2014-11-20] (Adobe Systems Incorporated) HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) HKLM-x32\...\Run: [AdobeCS5ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [402432 2010-07-22] (Adobe Systems Incorporated) HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5226600 2015-01-03] (AVAST Software) HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3838800 2014-12-13] (LogMeIn Inc.) HKU\S-1-5-21-1228184892-4111478447-2213813170-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [20917408 2014-02-10] (Skype Technologies S.A.) HKU\S-1-5-21-1228184892-4111478447-2213813170-1001\...\Run: [MCShield Monitor] => C:\Program Files (x86)\MCShield\mcshieldrtm.exe [650816 2014-04-11] (MyCity) HKU\S-1-5-21-1228184892-4111478447-2213813170-1001\...\Run: [Kies3PDLR.exe] => C:\Program Files (x86)\Samsung\Kies3\FirmwareUpdate\Kies3PDLR.exe [845120 2014-12-10] (Samsung) Startup: C:\Users\ACER-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk ShortcutTarget: Dropbox.lnk -> C:\Users\ACER-PC\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKU\S-1-5-21-1228184892-4111478447-2213813170-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = t.uk.msn.com/ SearchScopes: HKU\S-1-5-21-1228184892-4111478447-2213813170-1001 -> DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL = google.com/search?q={searchTerms} SearchScopes: HKU\S-1-5-21-1228184892-4111478447-2213813170-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = google.com/search?q={searchTerms} BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_25\bin\ssv.dll (Oracle Corporation) BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_25\bin\jp2ssv.dll (Oracle Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies) FireFox: ======== FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_235.dll () FF Plugin: @java.com/DTPlugin,version=11.25.2 -> C:\Program Files\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files\Java\jre1.8.0_25\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_235.dll () FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw_1213153.dll No File FF Plugin-x32: @java.com/DTPlugin,version=10.71.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=10.71.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-10-26] Chrome: ======= CHR Profile: C:\Users\ACER-PC\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Docs) - C:\Users\ACER-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-05-02] CHR Extension: (Google Drive) - C:\Users\ACER-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-05-02] CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\ACER-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-09-05] CHR Extension: (YouTube) - C:\Users\ACER-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-05-02] CHR Extension: (Google Search) - C:\Users\ACER-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-05-02] CHR Extension: (Avast SafePrice) - C:\Users\ACER-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2014-11-04] CHR Extension: (Google Wallet) - C:\Users\ACER-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-05-02] CHR Extension: (Gmail) - C:\Users\ACER-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-05-02] CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx [2015-01-03] CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-01-03] ==================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2012-11-16] (Advanced Micro Devices, Inc.) [File not signed] R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2015-01-03] (AVAST Software) R3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [4012248 2015-01-03] (Avast Software) S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [File not signed] R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2014-12-02] (LogMeIn, Inc.) S4 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2014-11-21] (Malwarebytes Corporation) S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [969016 2014-11-21] (Malwarebytes Corporation) R2 StartMenuService; C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe [72992 2014-09-23] (IObit) S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed] S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16032 2014-09-22] (Microsoft Corporation) ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R2 AODDriver4.1; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [53888 2012-03-05] (Advanced Micro Devices) R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2015-01-03] () R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [83280 2015-01-03] (AVAST Software) R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2015-01-03] (AVAST Software) R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2015-01-03] () R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1050432 2015-01-03] (AVAST Software) R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [436624 2015-01-03] (AVAST Software) R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [116728 2015-01-03] (AVAST Software) R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [267632 2015-01-03] () R3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45112 2014-12-13] (LogMeIn Inc.) R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-11-21] (Malwarebytes Corporation) S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2014-11-21] (Malwarebytes Corporation) S3 RTL8192cu; C:\Windows\system32\DRIVERS\rtwlanu.sys [1576080 2012-09-17] (Realtek Semiconductor Corporation ) S3 RtlWlanu; C:\Windows\system32\DRIVERS\rtwlanu.sys [1576080 2012-09-17] (Realtek Semiconductor Corporation ) U4 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [271752 2015-01-03] (Avast Software) ==================== NetSvcs (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) ==================== One Month Created Files and Folders ======== (If an entry is included in the fixlist, the file\folder will be moved.) 2015-01-07 11:55 - 2015-01-07 11:56 - 00013860 _____ () C:\Users\ACER-PC\Desktop\FRST.txt 2015-01-07 11:54 - 2015-01-07 11:54 - 00000000 ____D () C:\Users\ACER-PC\Desktop\New folder 2015-01-06 19:49 - 2015-01-06 21:09 - 2501894144 _____ () C:\Users\ACER-PC\Downloads\Windows 7 Home Premium x86 (32-bit).iso 2015-01-06 19:48 - 2015-01-06 19:48 - 00581760 _____ () C:\Users\ACER-PC\Downloads\setup.exe 2015-01-06 18:58 - 2015-01-06 18:22 - 00024064 _____ () C:\Windows\zoek-delete.exe 2015-01-06 18:23 - 2015-01-05 23:45 - 00038660 _____ () C:\zoek-results2015-01-05-224541.log 2015-01-05 23:55 - 2015-01-05 23:55 - 00038660 _____ () C:\Users\ACER-PC\Downloads\157602_1494859239_zoek-results.txt 2015-01-05 23:40 - 2015-01-05 22:53 - 00018281 _____ () C:\zoek-results2015-01-05-215340.log 2015-01-05 23:38 - 2015-01-05 23:38 - 01295360 _____ () C:\Users\ACER-PC\Desktop\zoek.exe 2015-01-05 22:58 - 2015-01-07 11:55 - 00000000 ____D () C:\FRST 2015-01-05 22:57 - 2015-01-05 22:57 - 02123776 _____ (Farbar) C:\Users\ACER-PC\Desktop\FRST64.exe 2015-01-05 22:47 - 2015-01-06 19:02 - 00036809 _____ () C:\zoek-results.log 2015-01-05 22:46 - 2015-01-06 18:54 - 00000000 ____D () C:\zoek_backup 2015-01-05 19:18 - 2015-01-05 19:18 - 00000247 _____ () C:\Windows\system32\2015-01-05-18-18-10.046-aswFe.exe-4048.log 2015-01-05 19:18 - 2015-01-05 19:18 - 00000197 _____ () C:\Windows\system32\2015-01-05-18-18-06.030-AvastVBoxSVC.exe-5072.log 2015-01-05 15:03 - 2015-01-05 15:08 - 00000247 _____ () C:\Windows\system32\2015-01-05-14-03-06.039-aswFe.exe-3704.log 2015-01-05 15:03 - 2015-01-05 15:03 - 00000197 _____ () C:\Windows\system32\2015-01-05-14-03-01.052-AvastVBoxSVC.exe-4980.log 2015-01-03 23:55 - 2015-01-03 23:54 - 00364512 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe 2015-01-03 23:54 - 2015-01-03 23:54 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr 2015-01-02 22:46 - 2015-01-02 22:46 - 00279016 _____ () C:\Windows\Minidump\010215-28875-01.dmp 2015-01-02 11:00 - 2015-01-02 11:00 - 01055936 _____ (Adobe) C:\Users\ACER-PC\Downloads\install_flashplayer16x32pp_chrd_dn_aaa_aih.exe 2015-01-01 21:51 - 2015-01-01 21:51 - 00279072 _____ () C:\Windows\Minidump\010115-27658-01.dmp 2015-01-01 16:12 - 2015-01-06 19:49 - 00000000 ____D () C:\Users\ACER-PC\Downloads\Adobe Photoshop CS5 Extended 2015-01-01 16:11 - 2015-01-01 16:11 - 00020588 _____ () C:\Users\ACER-PC\Downloads\[kat.sites(zabranjeno).com]adobe.photoshop.cs5.extended.(zabranjeno).torrent 2014-12-28 10:10 - 2014-12-28 10:10 - 00279072 _____ () C:\Windows\Minidump\122814-33321-01.dmp 2014-12-25 19:24 - 2014-12-25 19:51 - 960495616 _____ () C:\Users\ACER-PC\Downloads\xubuntu-14.04.1-desktop-i386.iso 2014-12-25 02:04 - 2014-12-25 02:04 - 00279016 _____ () C:\Windows\Minidump\122514-27378-01.dmp 2014-12-23 18:13 - 2014-12-23 18:35 - 808452096 _____ () C:\Users\ACER-PC\Downloads\crunchbang-11-20130506-i686.iso 2014-12-19 01:14 - 2014-12-19 01:14 - 00279016 _____ () C:\Windows\Minidump\121914-33462-01.dmp 2014-12-16 20:01 - 2014-10-09 05:00 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\vsstrace.dll 2014-12-16 20:01 - 2014-10-09 04:59 - 01195520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vssapi.dll 2014-12-16 20:01 - 2014-10-09 04:59 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vsstrace.dll 2014-12-16 20:00 - 2014-10-09 05:00 - 01519104 _____ (Microsoft Corporation) C:\Windows\system32\vssapi.dll 2014-12-16 20:00 - 2014-10-09 05:00 - 01484288 _____ (Microsoft Corporation) C:\Windows\system32\VSSVC.exe 2014-12-16 18:17 - 2014-10-11 06:57 - 17562112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll 2014-12-16 18:17 - 2014-10-09 04:59 - 00623616 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll 2014-12-16 18:17 - 2014-10-09 04:59 - 00212992 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll 2014-12-16 18:17 - 2014-10-09 04:58 - 00458240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll 2014-12-16 18:17 - 2014-09-22 06:38 - 00673792 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll 2014-12-16 18:17 - 2014-09-22 04:56 - 00513536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmpeg2srcsnk.dll 2014-12-16 18:17 - 2012-09-19 10:25 - 19778048 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll 2014-12-16 18:16 - 2014-11-21 09:38 - 02237952 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2014-12-16 18:16 - 2014-11-21 09:38 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2014-12-16 18:16 - 2014-11-21 09:37 - 01409536 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2014-12-16 18:16 - 2014-11-21 09:37 - 00915968 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll 2014-12-16 18:16 - 2014-11-21 09:37 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\UXInit.dll 2014-12-16 18:16 - 2014-11-21 09:36 - 19283456 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2014-12-16 18:16 - 2014-11-21 09:36 - 15400960 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2014-12-16 18:16 - 2014-11-21 09:36 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2014-12-16 18:16 - 2014-11-21 09:36 - 02655232 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2014-12-16 18:16 - 2014-11-21 09:36 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2014-12-16 18:16 - 2014-11-21 09:36 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2014-12-16 18:16 - 2014-11-21 09:36 - 00451584 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2014-12-16 18:16 - 2014-11-21 09:36 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2014-12-16 18:16 - 2014-11-21 09:36 - 00255488 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2014-12-16 18:16 - 2014-11-21 09:36 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2014-12-16 18:16 - 2014-11-21 09:36 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll 2014-12-16 18:16 - 2014-11-21 09:36 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2014-12-16 18:16 - 2014-11-21 09:36 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2014-12-16 18:16 - 2014-11-21 09:36 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2014-12-16 18:16 - 2014-11-21 09:36 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2014-12-16 18:16 - 2014-11-21 09:35 - 01509376 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2014-12-16 18:16 - 2014-11-21 08:17 - 14364672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2014-12-16 18:16 - 2014-11-21 08:17 - 01762816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2014-12-16 18:16 - 2014-11-21 08:17 - 01181696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2014-12-16 18:16 - 2014-11-21 08:17 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2014-12-16 18:16 - 2014-11-21 08:17 - 00080384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2014-12-16 18:16 - 2014-11-21 08:17 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UXInit.dll 2014-12-16 18:16 - 2014-11-21 08:16 - 13758976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2014-12-16 18:16 - 2014-11-21 08:16 - 02861568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2014-12-16 18:16 - 2014-11-21 08:16 - 02054656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2014-12-16 18:16 - 2014-11-21 08:16 - 01441280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2014-12-16 18:16 - 2014-11-21 08:16 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2014-12-16 18:16 - 2014-11-21 08:16 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2014-12-16 18:16 - 2014-11-21 08:16 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2014-12-16 18:16 - 2014-11-21 08:16 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2014-12-16 18:16 - 2014-11-21 08:16 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2014-12-16 18:16 - 2014-11-21 08:16 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll 2014-12-16 18:16 - 2014-11-21 08:16 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2014-12-16 18:16 - 2014-11-21 08:16 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2014-12-16 18:16 - 2014-11-21 08:16 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2014-12-16 18:16 - 2014-11-21 08:00 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2014-12-16 18:16 - 2014-11-21 07:54 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2014-12-16 18:16 - 2014-11-21 05:30 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uxtheme.dll 2014-12-16 18:16 - 2014-11-06 07:50 - 01627648 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll 2014-12-16 18:16 - 2014-11-06 06:03 - 01339392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll 2014-12-16 18:14 - 2014-10-30 08:20 - 01890816 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll 2014-12-16 18:14 - 2014-10-30 06:22 - 01569792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll 2014-12-16 18:01 - 2014-12-16 18:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi 2014-12-16 18:01 - 2014-12-16 18:01 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi 2014-12-15 18:34 - 2014-12-15 18:34 - 00005682 _____ () C:\Windows\DPINST.LOG 2014-12-15 18:34 - 2014-12-15 18:34 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_SynTP_01009.Wdf 2014-12-15 18:34 - 2014-12-15 18:34 - 00000000 ____D () C:\Program Files\Synaptics 2014-12-15 18:34 - 2009-06-18 20:12 - 00272432 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\SynTP.sys 2014-12-15 18:34 - 2009-06-18 20:10 - 00395048 _____ (Synaptics Incorporated) C:\Windows\system32\SynCOM.dll 2014-12-15 18:34 - 2009-06-18 20:10 - 00260904 _____ (Synaptics Incorporated) C:\Windows\system32\SynCtrl.dll 2014-12-15 18:34 - 2009-06-18 20:10 - 00206120 _____ (Synaptics Incorporated) C:\Windows\SysWOW64\SynCtrl.dll 2014-12-15 18:34 - 2009-06-18 20:10 - 00203560 _____ (Synaptics Incorporated) C:\Windows\system32\SynTPAPI.dll 2014-12-15 18:34 - 2009-06-18 20:10 - 00169256 _____ (Synaptics Incorporated) C:\Windows\SysWOW64\SynCOM.dll 2014-12-15 18:34 - 2009-06-18 20:10 - 00147752 _____ (Synaptics Incorporated) C:\Windows\system32\SynTPCo4.dll 2014-12-15 18:34 - 2009-06-18 20:10 - 00107816 _____ (Synaptics Incorporated) C:\Windows\SysWOW64\SynTPCOM.dll 2014-12-15 18:34 - 2009-05-21 09:43 - 01436920 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01009.dll 2014-12-15 18:16 - 2015-01-04 17:56 - 00011776 ___SH () C:\Users\ACER-PC\Thumbs.db 2014-12-13 17:01 - 2014-12-13 17:01 - 00045112 ____H (LogMeIn Inc.) C:\Windows\system32\Drivers\Hamdrv.sys 2014-12-12 20:38 - 2014-12-12 20:38 - 00001337 _____ () C:\Users\ACER-PC\Desktop\Movie Maker.lnk 2014-12-12 20:31 - 2014-12-12 20:31 - 00001406 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo Gallery.lnk 2014-12-12 20:31 - 2014-12-12 20:31 - 00001337 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk 2014-12-12 20:31 - 2014-12-12 20:31 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server Compact Edition 2014-12-12 20:30 - 2014-12-12 20:31 - 00000000 ____D () C:\Program Files (x86)\Windows Live 2014-12-12 20:30 - 2014-12-12 20:30 - 00000000 ____D () C:\Windows\PCHEALTH 2014-12-12 20:29 - 2014-12-12 20:29 - 00000198 _____ () C:\Windows\DirectX.log 2014-12-12 20:29 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll 2014-12-12 20:29 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll 2014-12-12 20:29 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll 2014-12-12 20:29 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll 2014-12-12 20:29 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll 2014-12-12 20:29 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll 2014-12-12 20:29 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll 2014-12-12 20:29 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll 2014-12-12 20:29 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll 2014-12-12 20:29 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll 2014-12-12 20:29 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll 2014-12-12 20:29 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll 2014-12-12 20:28 - 2014-12-12 20:38 - 00000000 ____D () C:\Users\ACER-PC\AppData\Local\Windows Live 2014-12-09 18:25 - 2014-12-09 18:25 - 00278960 _____ () C:\Windows\Minidump\120914-42245-01.dmp 2014-12-09 18:12 - 2014-12-09 23:50 - 00000000 ____D () C:\Windows\system32\AutoUpdateLicense 2014-12-09 18:07 - 2014-11-19 08:29 - 00582552 _____ (Microsoft Corporation) C:\Windows\system32\AutoUpdate.exe 2014-12-09 18:07 - 2014-11-19 08:29 - 00462760 _____ (Microsoft Corporation) C:\Windows\system32\NotificationUI.exe 2014-12-09 18:07 - 2014-10-22 04:34 - 00010777 _____ () C:\Windows\system32\AutoconfigV2.cab 2014-12-09 18:07 - 2014-10-22 02:08 - 00568832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll 2014-12-09 18:07 - 2014-10-22 02:08 - 00124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll 2014-12-09 18:07 - 2014-10-22 02:01 - 00695808 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll 2014-12-09 18:07 - 2014-10-22 02:01 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.dll 2014-12-09 18:07 - 2014-10-22 02:01 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll 2014-12-09 18:07 - 2014-10-22 02:00 - 00125952 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll 2014-12-09 18:05 - 2014-10-11 08:44 - 02885632 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll 2014-12-09 18:05 - 2014-10-11 08:44 - 00393216 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll 2014-12-09 18:05 - 2014-10-11 08:43 - 02307072 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll 2014-12-09 18:05 - 2014-10-11 06:58 - 08858624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll 2014-12-09 18:05 - 2014-10-11 06:57 - 02416640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll 2014-12-09 18:05 - 2014-10-11 06:57 - 00295424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll 2014-12-09 18:05 - 2014-10-11 06:56 - 02037760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll 2014-12-09 18:05 - 2013-03-02 09:23 - 00375808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgent.dll 2014-12-09 18:05 - 2013-03-02 03:44 - 01011200 _____ (Microsoft Corporation) C:\Windows\system32\reseteng.dll 2014-12-09 18:05 - 2012-12-15 05:55 - 00443392 _____ (Microsoft Corporation) C:\Windows\system32\ReAgent.dll 2014-12-09 18:05 - 2012-11-03 06:26 - 00132096 _____ (Microsoft Corporation) C:\Windows\system32\sysreset.exe 2014-12-09 18:05 - 2012-11-03 06:25 - 00945152 _____ (Microsoft Corporation) C:\Windows\system32\resetengmig.dll 2014-12-09 18:05 - 2012-10-24 04:25 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\ReAgentc.exe 2014-12-09 18:05 - 2012-10-24 03:48 - 00024064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgentc.exe 2014-12-09 18:05 - 2012-10-07 01:32 - 10094592 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll 2014-12-09 18:03 - 2013-12-05 00:43 - 00583680 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll 2014-12-09 18:03 - 2013-12-05 00:37 - 00451072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdrm.dll 2014-12-09 18:03 - 2013-11-23 07:43 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll 2014-12-09 18:03 - 2013-11-23 06:05 - 00368640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll 2014-12-09 18:03 - 2013-08-23 08:22 - 02062848 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll 2014-12-09 18:03 - 2013-08-23 02:44 - 01711616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll 2014-12-09 18:03 - 2013-03-22 04:49 - 02382336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll 2014-12-09 18:03 - 2013-03-21 23:47 - 02851840 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll 2014-12-09 18:03 - 2012-10-24 04:25 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe 2014-12-09 18:03 - 2012-10-24 04:24 - 00405504 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll 2014-12-09 18:03 - 2012-10-24 04:24 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll 2014-12-09 18:03 - 2012-10-24 04:05 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll 2014-12-09 18:02 - 2013-11-01 06:38 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll 2014-12-09 18:02 - 2013-11-01 04:49 - 00273408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msieftp.dll 2014-12-09 18:02 - 2013-04-03 00:37 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll 2014-12-09 18:02 - 2013-04-03 00:12 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll 2014-12-09 17:54 - 2014-12-09 17:54 - 00278960 _____ () C:\Windows\Minidump\120914-24663-01.dmp 2014-12-08 17:59 - 2014-12-08 17:59 - 00001261 _____ () C:\Users\ACER-PC\Desktop\CrystalDiskInfo Shizuku Edition.lnk 2014-12-08 17:59 - 2014-12-08 17:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo 2014-12-08 17:39 - 2014-12-08 17:39 - 00278960 _____ () C:\Windows\Minidump\120814-30373-01.dmp ==================== One Month Modified Files and Folders ======= (If an entry is included in the fixlist, the file\folder will be moved.) 2015-01-07 11:51 - 2014-12-07 13:16 - 00000000 ____D () C:\Users\ACER-PC\AppData\Local\LogMeIn Hamachi 2015-01-07 11:51 - 2014-05-02 12:06 - 00000000 ____D () C:\ProgramData\MCShield 2015-01-07 11:51 - 2014-05-02 11:44 - 00000000 ____D () C:\Users\ACER-PC\AppData\Roaming\Skype 2015-01-07 11:51 - 2014-05-02 11:29 - 00000000 ___RD () C:\Users\ACER-PC\Dropbox 2015-01-07 11:51 - 2014-05-02 11:21 - 00000000 ____D () C:\Users\ACER-PC\AppData\Roaming\Dropbox 2015-01-07 11:50 - 2014-05-02 11:09 - 00000906 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2015-01-07 11:50 - 2012-07-26 08:22 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2015-01-07 01:00 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\system32\sru 2015-01-07 00:44 - 2014-05-02 11:09 - 00000910 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2015-01-07 00:35 - 2014-05-02 12:03 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job 2015-01-06 21:29 - 2014-11-02 11:35 - 00000000 ____D () C:\Users\ACER-PC\AppData\Roaming\tixati 2015-01-06 21:23 - 2014-09-05 18:49 - 00000258 __RSH () C:\ProgramData\ntuser.pol 2015-01-06 21:10 - 2012-07-26 09:12 - 00000000 ___HD () C:\Windows\system32\GroupPolicy 2015-01-06 21:10 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\SysWOW64\GroupPolicy 2015-01-06 19:01 - 2014-07-12 00:19 - 00753262 _____ () C:\Windows\PFRO.log 2015-01-06 19:01 - 2012-07-26 06:26 - 00262144 ___SH () C:\Windows\system32\config\BBI 2015-01-06 18:55 - 2014-05-02 11:09 - 00002230 _____ () C:\Users\Public\Desktop\Google Chrome.lnk 2015-01-06 18:52 - 2014-07-17 18:59 - 00000000 ____D () C:\Program Files (x86)\Adobe Media Player 2015-01-06 14:08 - 2014-10-26 19:21 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update 2015-01-05 00:03 - 2014-05-02 10:45 - 01085335 _____ () C:\Windows\WindowsUpdate.log 2015-01-04 15:46 - 2014-05-02 10:58 - 00003600 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1228184892-4111478447-2213813170-1001 2015-01-03 23:59 - 2014-05-16 17:02 - 01194496 ___SH () C:\Users\ACER-PC\Desktop\Thumbs.db 2015-01-03 23:55 - 2014-10-26 19:21 - 01050432 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys 2015-01-03 23:55 - 2014-10-26 19:21 - 00001996 _____ () C:\Users\Public\Desktop\Avast Free Antivirus.lnk 2015-01-03 23:54 - 2014-10-26 19:21 - 00436624 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys 2015-01-03 23:54 - 2014-10-26 19:21 - 00267632 _____ () C:\Windows\system32\Drivers\aswVmm.sys 2015-01-03 23:54 - 2014-10-26 19:21 - 00116728 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys 2015-01-03 23:54 - 2014-10-26 19:21 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys 2015-01-03 23:54 - 2014-10-26 19:21 - 00083280 _____ (AVAST Software) C:\Windows\system32\Drivers\aswmonflt.sys 2015-01-03 23:54 - 2014-10-26 19:21 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys 2015-01-03 23:54 - 2014-10-26 19:21 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys 2015-01-03 23:54 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\AUInstallAgent 2015-01-02 22:46 - 2014-05-05 22:12 - 361249239 _____ () C:\Windows\MEMORY.DMP 2015-01-02 22:46 - 2014-05-05 22:12 - 00000000 ____D () C:\Windows\Minidump 2015-01-02 20:53 - 2012-07-26 08:28 - 00848230 _____ () C:\Windows\system32\PerfStringBackup.INI 2015-01-02 10:47 - 2014-08-17 19:07 - 00000000 ____D () C:\Users\ACER-PC\AppData\Local\Adobe 2015-01-02 10:47 - 2014-05-02 12:03 - 00003718 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater 2015-01-01 16:54 - 2014-07-17 19:04 - 00001730 _____ () C:\Users\ACER-PC\Desktop\Photoshop -.lnk 2015-01-01 15:14 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\system32\NDF 2015-01-01 13:10 - 2014-05-02 11:57 - 00000000 ____D () C:\Users\ACER-PC\AppData\Roaming\BitTorrent 2014-12-30 22:17 - 2014-05-02 11:24 - 00000962 _____ () C:\Users\Public\Desktop\CPUID HWMonitor.lnk 2014-12-30 21:35 - 2014-10-26 13:48 - 00002005 _____ () C:\Users\Public\Desktop\Samsung Kies 3.lnk 2014-12-27 17:15 - 2014-10-23 16:53 - 00007903 _____ () C:\Windows\setupact.log 2014-12-24 20:41 - 2014-07-17 19:10 - 00000132 _____ () C:\Users\ACER-PC\AppData\Roaming\Adobe PNG Format CS5 Prefs 2014-12-22 17:34 - 2014-10-29 18:00 - 00000000 ____D () C:\Program Files (x86)\Opera 2014-12-17 20:27 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\rescache 2014-12-17 17:53 - 2014-11-22 17:14 - 00001077 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera 26.lnk 2014-12-17 17:53 - 2014-10-29 18:01 - 00003816 _____ () C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1414602053 2014-12-17 17:46 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\system32\en-GB 2014-12-16 23:59 - 2012-07-26 09:12 - 00000000 ___RD () C:\Windows\ToastData 2014-12-16 23:59 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\SysWOW64\en-GB 2014-12-16 20:14 - 2014-05-02 11:10 - 00000000 ____D () C:\Program Files (x86)\Adobe 2014-12-16 20:10 - 2012-07-26 08:59 - 00000000 ____D () C:\Windows\CbsTemp 2014-12-16 20:08 - 2014-07-14 09:04 - 00000000 ____D () C:\Windows\system32\MRT 2014-12-16 20:02 - 2014-07-14 09:04 - 112710672 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2014-12-16 18:01 - 2014-12-07 13:09 - 00000958 _____ () C:\Users\Public\Desktop\LogMeIn Hamachi.lnk 2014-12-15 18:23 - 2014-10-26 10:29 - 00135384 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2014-12-15 18:16 - 2014-10-26 10:28 - 00096472 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys 2014-12-15 18:16 - 2014-05-02 10:45 - 00000000 ____D () C:\Users\ACER-PC 2014-12-13 10:27 - 2014-05-02 11:22 - 00001019 _____ () C:\Users\ACER-PC\Desktop\Dropbox.lnk 2014-12-13 10:27 - 2014-05-02 11:22 - 00000000 ____D () C:\Users\ACER-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox 2014-12-12 20:31 - 2012-07-26 10:43 - 00000000 ____D () C:\Windows\en-GB 2014-12-12 20:30 - 2012-07-26 09:12 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared 2014-12-12 20:13 - 2014-05-02 11:23 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk 2014-12-12 20:09 - 2014-07-17 18:45 - 00000000 ____D () C:\ProgramData\regid.1986-12.com.adobe 2014-12-09 18:12 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\WinStore 2014-12-09 18:09 - 2012-07-26 06:38 - 00000000 ____D () C:\Windows\system32\oobe 2014-12-08 17:59 - 2014-07-13 11:00 - 00000000 ____D () C:\Program Files (x86)\CrystalDiskInfo Some content of TEMP: ==================== C:\Users\ACER-PC\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpepuvjv.dll ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\System32\winlogon.exe => File is digitally signed C:\Windows\System32\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\System32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\System32\services.exe => File is digitally signed C:\Windows\System32\User32.dll => File is digitally signed C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\System32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\System32\rpcss.dll => File is digitally signed C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2015-01-01 13:34 ==================== End Of Log ============================

Profil

magna86 Poslao: 08 Jan 2015 12:16 Idi na vrh
offline magna86 Anti Malware Fighter Rank 2 Pridružio: 21 Jun 2008 Poruke: 6103	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Odlicno, primljen je upload. Ovo sada izgleda mnogo bolje. Postavi sada Firefox i Chrome browsere nazad na njihova default podesavanja: https://support.google.com/chrome/answer/3296214?hl=en https://support.mozilla.org/en-US/kb/reset-firefox-easily-fix-most-problems Reci mi sada, kako ti se ponasa racunar?

Profil

MyCity » Ambulanta -> Arhiva Ambulante » Reklame na Chromu i Mozili ?

Ko je trenutno na forumu

Ukupno su 1271 korisnika na forumu :: 47 registrovanih, 5 sakrivenih i 1219 gosta :: [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:: Korisnici trenutno na forumu: amaterSRB, amstel, Apok, Areal84, babaroga, Brana01, BraneS, cenejac111, CheefCoach, DPera, DragoslavS, Dvojac005, Gargantua, Georgius, goxin, havoc995, jukeboxer, kobaja77, Luka Blažević, mercedesamg, Mercury, mikrimaus, milenko crazy north, moldway, nemkea71, NoOneEver Dreams, ObelixSRB, ozzy, Panter, panzerwaffe, pein, Petar35, procesor, sasa87, shaja1, Skywhaler, sokars, srbijaiznadsvega, Srki94, theNedjeljko, Vatreni Zmaj, Viceroy, virked, Vlad000, Vlada1389, zillbg, žeks62

Svaki korisnik ovog sajta je odgovoran za sadržaj svoje poruke koju objavi na sajtu. Sajt se odriče svake odgovornosti za sadržaj tih poruka.
Postavljanjem vaše poruke ili vašeg autorskog dela na ovaj sajt, saglasni ste da ovaj sajt postaje distributer vašeg dela, i odričete se mogućnosti njegovog povlačenja ili brisanja, bez saglasnosti uprave sajta.
Distribucija sadržaja sa ovog sajta je dozvoljena samo u nekomercijalne svrhe, uz obaveznu napomenu da je sadržaj preuzet sa ovog sajta, i uz obavezno navođenje adrese MyCity sajta. Za sve ostale vidove distribucije obavezni ste da prethodno zatražite odobrenje od vlasnika MyCity sajta.
MyCity pokrenuo, administrira i razvija Predrag Damnjanović, a o uređenju sajta se brine MyCity Tim.
Ukoliko želite da nas kontaktirate kliknite ovde.
Naši sajtovi:
Vesti, Vojni forum, Zaštita od virusa, TekstPesme.rs

This content is licensed under a Creative Commons License.
Based on phpBB 2, translated by Simke, designed by