Премини към съдържанието

wasew1914

Потребител
  • Публикации

    14
  • Регистрация

  • Последно онлайн

Харесвания

0 Неутрална репутация

5 Последователи

Всичко за wasew1914

  • Титла
    Потребител
  1. wasew1914

    Много вируси + изкачащи

    Results of screen317's Security Check version 0.99.89 Windows 7 Service Pack 1 x64 (UAC is enabled) Internet Explorer 11 ``````````````Antivirus/Firewall Check:`````````````` Windows Firewall Enabled! Microsoft Security Essentials Antivirus up to date! `````````Anti-malware/Other Utilities Check:````````` Adobe Flash Player 15.0.0.223 Adobe Reader 8 Adobe Reader out of Date! Mozilla Firefox 31.0 Firefox out of Date! Google Chrome 38.0.2125.122 ````````Process Check: objlist.exe by Laurent```````` Microsoft Security Essentials MSMpEng.exe Microsoft Security Essentials msseces.exe Malwarebytes Anti-Malware mbamservice.exe Malwarebytes Anti-Malware mbam.exe Malwarebytes Anti-Malware mbamscheduler.exe `````````````````System Health check````````````````` Total Fragmentation on Drive C: 0% ````````````````````End of Log``````````````````````
  2. wasew1914

    Много вируси + изкачащи

    ESETscan C:\AdwCleaner\Quarantine\C\Program Files (x86)\MySearch\pa5W.dll.vir a variant of Win32/AdWare.MultiPlug.N application C:\AdwCleaner\Quarantine\C\Program Files (x86)\MySearch\pa5W.x64.dll.vir a variant of Win64/Adware.MultiPlug.A application C:\AdwCleaner\Quarantine\C\Program Files (x86)\PC_booster\Assistant.dll.vir a variant of Win32/SProtector.L potentially unwanted application C:\AdwCleaner\Quarantine\C\Program Files (x86)\PC_booster\AssistantSvc.dll.vir a variant of Win32/SProtector.D potentially unwanted application C:\AdwCleaner\Quarantine\C\Program Files (x86)\PC_booster\Assistant_x64.dll.vir a variant of Win64/SProtector.B potentially unwanted application C:\AdwCleaner\Quarantine\C\Program Files (x86)\pricecHop\C_9z.dll.vir a variant of Win32/AdWare.MultiPlug.AY application C:\AdwCleaner\Quarantine\C\Program Files (x86)\pricecHop\C_9z.x64.dll.vir a variant of Win64/Adware.MultiPlug.D application C:\AdwCleaner\Quarantine\C\Program Files (x86)\SO_Booster\Assistant.dll.vir a variant of Win32/SProtector.L potentially unwanted application C:\AdwCleaner\Quarantine\C\Program Files (x86)\SO_Booster\AssistantSvc.dll.vir a variant of Win32/SProtector.D potentially unwanted application C:\AdwCleaner\Quarantine\C\Program Files (x86)\SO_Booster\Assistant_x64.dll.vir a variant of Win64/SProtector.B potentially unwanted application C:\AdwCleaner\Quarantine\C\Program Files (x86)\SupTab\DpInterface32.dll.vir Win32/Thinknice.E potentially unwanted application C:\AdwCleaner\Quarantine\C\Program Files (x86)\SupTab\DpInterface64.dll.vir Win64/Thinknice.F potentially unwanted application C:\AdwCleaner\Quarantine\C\Program Files (x86)\SupTab\HpUI.exe.vir a variant of Win32/Thinknice.E potentially unwanted application C:\AdwCleaner\Quarantine\C\Program Files (x86)\SupTab\Loader32.exe.vir Win32/Thinknice.E potentially unwanted application C:\AdwCleaner\Quarantine\C\Program Files (x86)\SupTab\Loader64.exe.vir Win64/Thinknice.E potentially unwanted application C:\AdwCleaner\Quarantine\C\Program Files (x86)\SupTab\RSHP.exe.vir Win32/ELEX.AV potentially unwanted application C:\AdwCleaner\Quarantine\C\Program Files (x86)\SupTab\SearchProtect32.dll.vir a variant of Win32/Thinknice.E potentially unwanted application C:\AdwCleaner\Quarantine\C\Program Files (x86)\SupTab\SearchProtect64.dll.vir Win64/Thinknice.F potentially unwanted application C:\AdwCleaner\Quarantine\C\Program Files (x86)\SupTab\SupIePluginServiceUpdate.exe.vir a variant of Win32/ELEX.AV potentially unwanted application C:\AdwCleaner\Quarantine\C\Program Files (x86)\SupTab\SupTab.dll.vir Win32/Thinknice.B potentially unwanted application C:\AdwCleaner\Quarantine\C\Program Files (x86)\SupTab\uninstall.exe.vir Win32/Thinknice.E potentially unwanted application C:\AdwCleaner\Quarantine\C\Program Files (x86)\SupTab\WindowsSupportDll32.dll.vir a variant of Win32/Thinknice.F potentially unwanted application C:\AdwCleaner\Quarantine\C\Program Files (x86)\SupTab\WindowsSupportDll64.dll.vir a variant of Win32/Thinknice.F potentially unwanted application C:\AdwCleaner\Quarantine\C\Program Files (x86)\trolatunt\bin\0c0bb4a845a446859c1d.dll.vir a variant of Win32/BrowseFox.N potentially unwanted application C:\AdwCleaner\Quarantine\C\Program Files (x86)\trolatunt\bin\0c0bb4a845a446859c1d64.dll.vir a variant of Win64/BrowseFox.AY potentially unwanted application C:\AdwCleaner\Quarantine\C\Program Files (x86)\trolatunt\bin\trolatunt.BOAS.exe.vir a variant of Win32/BrowseFox.R potentially unwanted application C:\AdwCleaner\Quarantine\C\Program Files (x86)\trolatunt\bin\trolatunt.BOASHelper.exe.vir a variant of Win32/BrowseFox.R potentially unwanted application C:\AdwCleaner\Quarantine\C\Program Files (x86)\trolatunt\bin\trolatunt.BOASPRT.exe.vir a variant of Win32/BrowseFox.R potentially unwanted application C:\AdwCleaner\Quarantine\C\Program Files (x86)\trolatunt\bin\trolatunt.BrowserAdapter.exe.vir a variant of Win32/BrowseFox.P potentially unwanted application C:\AdwCleaner\Quarantine\C\Program Files (x86)\trolatunt\bin\trolatunt.BrowserAdapter64.exe.vir a variant of Win64/BrowseFox.B potentially unwanted application C:\AdwCleaner\Quarantine\C\Program Files (x86)\trolatunt\bin\trolatunt.PurBrowse64.exe.vir a variant of Win64/BrowseFox.AY potentially unwanted application C:\AdwCleaner\Quarantine\C\Program Files (x86)\trolatunt\bin\utiltrolatunt.exe.vir a variant of MSIL/BrowseFox.H potentially unwanted application C:\AdwCleaner\Quarantine\C\Program Files (x86)\trolatunt\bin\{0c0bb4a8-45a4-4685-9c1d-08d98af4b926}.dll.vir a variant of Win32/BrowseFox.M potentially unwanted application C:\AdwCleaner\Quarantine\C\Program Files (x86)\trolatunt\bin\{0c0bb4a8-45a4-4685-9c1d-08d98af4b926}64.dll.vir Win64/BrowseFox.D potentially unwanted application C:\AdwCleaner\Quarantine\C\ProgramData\DSearchLink\DSearchLink.exe.vir Win32/Toolbar.Babylon.Y potentially unwanted application C:\AdwCleaner\Quarantine\C\ProgramData\IePluginServices\PluginService.exe.vir a variant of Win32/ELEX.AV potentially unwanted application C:\AdwCleaner\Quarantine\C\ProgramData\pricecHop\qkByE.exe.vir a variant of Win32/AdWare.MultiPlug.AG application C:\AdwCleaner\Quarantine\C\Users\alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\olnkgiapbjhdboldbhkagdodklkphaip\1.26.180_0\extensionData\plugins\91.js.vir JS/Toolbar.Crossrider.B potentially unwanted application C:\AdwCleaner\Quarantine\C\Users\alex\AppData\Local\pay-by-ads\Yahoo! Search\1.3.15.4\chromext.dll.vir a variant of Win32/Toolbar.Montiera.N potentially unwanted application C:\AdwCleaner\Quarantine\C\Users\alex\AppData\Local\pay-by-ads\Yahoo! Search\1.3.15.4\dsrlte.exe.vir a variant of Win32/Toolbar.Montiera.Q potentially unwanted application C:\AdwCleaner\Quarantine\C\Users\alex\AppData\Local\pay-by-ads\Yahoo! Search\1.3.15.4\dsrsetup.exe.vir a variant of Win32/Toolbar.Montiera.R potentially unwanted application C:\AdwCleaner\Quarantine\C\Users\alex\AppData\Local\pay-by-ads\Yahoo! Search\1.3.15.4\firefoxt.dll.vir a variant of Win32/Toolbar.Montiera.R potentially unwanted application C:\AdwCleaner\Quarantine\C\Users\alex\AppData\Local\torch\User Data\Default\Extensions\olnkgiapbjhdboldbhkagdodklkphaip\1.26.180_0\extensionData\plugins\91.js.vir JS/Toolbar.Crossrider.B potentially unwanted application C:\AdwCleaner\Quarantine\C\Users\alex\AppData\Roaming\BabSolution\Shared\BabMaint.exe.vir Win32/Toolbar.Babylon.I potentially unwanted application C:\AdwCleaner\Quarantine\C\Users\alex\AppData\Roaming\BabSolution\Shared\GUninstaller.exe.vir a variant of Win32/Toolbar.Babylon.AD potentially unwanted application C:\AdwCleaner\Quarantine\C\Users\alex\AppData\Roaming\OpenCandy\4AC2FC283AF443BBBFF42B6EEE8ACEB9\Linkey_p1v5-703.exe.vir a variant of Win32/Toolbar.SearchSuite.U potentially unwanted application C:\AdwCleaner\Quarantine\C\Users\alex\AppData\Roaming\OpenCandy\4AC2FC283AF443BBBFF42B6EEE8ACEB9\SettingsManagerSetup.exe.vir a variant of Win32/Toolbar.SearchSuite.U potentially unwanted application C:\AdwCleaner\Quarantine\C\Users\alex\AppData\Roaming\Settings Manager\systemk\components\SystemKHlpFF10.dll.vir a variant of Win32/Toolbar.SearchSuite.Q potentially unwanted application C:\AdwCleaner\Quarantine\C\Users\alex\AppData\Roaming\Settings Manager\systemk\components\SystemKHlpFF11.dll.vir a variant of Win32/Toolbar.SearchSuite.Q potentially unwanted application C:\AdwCleaner\Quarantine\C\Users\alex\AppData\Roaming\Settings Manager\systemk\components\SystemKHlpFF12.dll.vir a variant of Win32/Toolbar.SearchSuite.Q potentially unwanted application C:\AdwCleaner\Quarantine\C\Users\alex\AppData\Roaming\Settings Manager\systemk\components\SystemKHlpFF13.dll.vir a variant of Win32/Toolbar.SearchSuite.Q potentially unwanted application C:\AdwCleaner\Quarantine\C\Users\alex\AppData\Roaming\Settings Manager\systemk\components\SystemKHlpFF14.dll.vir a variant of Win32/Toolbar.SearchSuite.Q potentially unwanted application C:\AdwCleaner\Quarantine\C\Users\alex\AppData\Roaming\Settings Manager\systemk\components\SystemKHlpFF15.dll.vir a variant of Win32/Toolbar.SearchSuite.Q potentially unwanted application C:\AdwCleaner\Quarantine\C\Users\alex\AppData\Roaming\Settings Manager\systemk\components\SystemKHlpFF16.dll.vir a variant of Win32/Toolbar.SearchSuite.Q potentially unwanted application C:\AdwCleaner\Quarantine\C\Users\alex\AppData\Roaming\Settings Manager\systemk\components\SystemKHlpFF17.dll.vir a variant of Win32/Toolbar.SearchSuite.Q potentially unwanted application C:\AdwCleaner\Quarantine\C\Users\alex\AppData\Roaming\Settings Manager\systemk\components\SystemKHlpFF18.dll.vir a variant of Win32/Toolbar.SearchSuite.Q potentially unwanted application C:\AdwCleaner\Quarantine\C\Users\alex\AppData\Roaming\Settings Manager\systemk\components\SystemKHlpFF19.dll.vir a variant of Win32/Toolbar.SearchSuite.Q potentially unwanted application C:\AdwCleaner\Quarantine\C\Users\alex\AppData\Roaming\Settings Manager\systemk\components\SystemKHlpFF2.dll.vir a variant of Win32/Toolbar.SearchSuite.Q potentially unwanted application C:\AdwCleaner\Quarantine\C\Users\alex\AppData\Roaming\Settings Manager\systemk\components\SystemKHlpFF20.dll.vir a variant of Win32/Toolbar.SearchSuite.Q potentially unwanted application C:\AdwCleaner\Quarantine\C\Users\alex\AppData\Roaming\Settings Manager\systemk\components\SystemKHlpFF21.dll.vir a variant of Win32/Toolbar.SearchSuite.Q potentially unwanted application C:\AdwCleaner\Quarantine\C\Users\alex\AppData\Roaming\Settings Manager\systemk\components\SystemKHlpFF22.dll.vir a variant of Win32/Toolbar.SearchSuite.Q potentially unwanted application C:\AdwCleaner\Quarantine\C\Users\alex\AppData\Roaming\Settings Manager\systemk\components\SystemKHlpFF23.dll.vir a variant of Win32/Toolbar.SearchSuite.Q potentially unwanted application C:\AdwCleaner\Quarantine\C\Users\alex\AppData\Roaming\Settings Manager\systemk\components\SystemKHlpFF24.dll.vir a variant of Win32/Toolbar.SearchSuite.Q potentially unwanted application C:\AdwCleaner\Quarantine\C\Users\alex\AppData\Roaming\Settings Manager\systemk\components\SystemKHlpFF25.dll.vir a variant of Win32/Toolbar.SearchSuite.Q potentially unwanted application C:\AdwCleaner\Quarantine\C\Users\alex\AppData\Roaming\Settings Manager\systemk\components\SystemKHlpFF26.dll.vir a variant of Win32/Toolbar.SearchSuite.Q potentially unwanted application C:\AdwCleaner\Quarantine\C\Users\alex\AppData\Roaming\Settings Manager\systemk\components\SystemKHlpFF27.dll.vir a variant of Win32/Toolbar.SearchSuite.Q potentially unwanted application C:\AdwCleaner\Quarantine\C\Users\alex\AppData\Roaming\Settings Manager\systemk\components\SystemKHlpFF28.dll.vir a variant of Win32/Toolbar.SearchSuite.Q potentially unwanted application C:\AdwCleaner\Quarantine\C\Users\alex\AppData\Roaming\Settings Manager\systemk\components\SystemKHlpFF29.dll.vir a variant of Win32/Toolbar.SearchSuite.Q potentially unwanted application C:\AdwCleaner\Quarantine\C\Users\alex\AppData\Roaming\Settings Manager\systemk\components\SystemKHlpFF30.dll.vir a variant of Win32/Toolbar.SearchSuite.Q potentially unwanted application C:\AdwCleaner\Quarantine\C\Users\alex\AppData\Roaming\Settings Manager\systemk\components\SystemKHlpFF31.dll.vir a variant of Win32/Toolbar.SearchSuite.Q potentially unwanted application C:\AdwCleaner\Quarantine\C\Users\alex\AppData\Roaming\Settings Manager\systemk\components\SystemKHlpFF4.dll.vir a variant of Win32/Toolbar.SearchSuite.Q potentially unwanted application C:\AdwCleaner\Quarantine\C\Users\alex\AppData\Roaming\Settings Manager\systemk\components\SystemKHlpFF5.dll.vir a variant of Win32/Toolbar.SearchSuite.Q potentially unwanted application C:\AdwCleaner\Quarantine\C\Users\alex\AppData\Roaming\Settings Manager\systemk\components\SystemKHlpFF6.dll.vir a variant of Win32/Toolbar.SearchSuite.Q potentially unwanted application C:\AdwCleaner\Quarantine\C\Users\alex\AppData\Roaming\Settings Manager\systemk\components\SystemKHlpFF7.dll.vir a variant of Win32/Toolbar.SearchSuite.Q potentially unwanted application C:\AdwCleaner\Quarantine\C\Users\alex\AppData\Roaming\Settings Manager\systemk\components\SystemKHlpFF8.dll.vir a variant of Win32/Toolbar.SearchSuite.Q potentially unwanted application C:\AdwCleaner\Quarantine\C\Users\alex\AppData\Roaming\Settings Manager\systemk\components\SystemKHlpFF9.dll.vir a variant of Win32/Toolbar.SearchSuite.Q potentially unwanted application C:\AdwCleaner\Quarantine\C\Windows\System32\drivers\nethfdrv.sys.vir a variant of Win64/Riskware.NetFilter.C application C:\AdwCleaner\Quarantine\C\Windows\System32\drivers\{0c0bb4a8-45a4-4685-9c1d-08d98af4b926}Gw64.sys.vir a variant of Win64/BrowseFox.AY potentially unwanted application C:\AdwCleaner\Quarantine\C\Windows\SysWOW64\hfpapi.dll.vir a variant of Win32/RiskWare.NetFilter.B application C:\AdwCleaner\Quarantine\C\Windows\SysWOW64\installd.exe.vir a variant of Win32/Amonetize.BC potentially unwanted application C:\AdwCleaner\Quarantine\C\Windows\SysWOW64\nethtsrv.exe.vir a variant of Win32/Amonetize.AZ potentially unwanted application C:\AdwCleaner\Quarantine\C\Windows\SysWOW64\netupdsrv.exe.vir a variant of Win32/Amonetize.AZ potentially unwanted application C:\Downloads\rld-f12014.iso Win32/HackTool.Crack.CS potentially unsafe application C:\FRST\Quarantine\C\ProgramData\29a882f6-268a-4df9-b011-02fdee89f086\maintainer.exe.xBAD Win32/BrowseFox.V potentially unwanted application C:\FRST\Quarantine\C\ProgramData\29a882f6-268a-4df9-b011-02fdee89f086\29a882f6-268a-4df9-b011-02fdee89f086\maintainer.bak Win32/BrowseFox.V potentially unwanted application C:\FRST\Quarantine\C\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\tr76ic8y.default\Extensions\e46480cf-7cf6-495e-af69-573053f52c72@b33ab36d-5952-49aa-adb2-a41b3dbe51a5.com\extensionData\plugins\91.js JS/Toolbar.Crossrider.B potentially unwanted application C:\Windows\KJ\BIOS.EXE Win32/HackTool.SLICMod.C potentially unsafe application C:\Windows\KJ\BIOS_Emulator\royal32.sys a variant of Win32/HackKMS.M potentially unsafe application C:\Windows\KJ\Pirate\WinRR.exe a variant of Win32/HackTool.WinActivator.J potentially unsafe application C:\zoek_backup\C_Windows_Syswow64_hfnapi.dll.vir a variant of Win32/RiskWare.NetFilter.B application C:\zoek_backup\C_PROGRA~2_purIcechop\D.dll a variant of Win32/AdWare.MultiPlug.AY application C:\zoek_backup\C_PROGRA~2_purIcechop\D.x64.dll a variant of Win64/Adware.MultiPlug.D application C:\zoek_backup\C_PROGRA~2_save on\KZ71dlc.dll a variant of Win32/AdWare.MultiPlug.N application C:\zoek_backup\C_PROGRA~2_save on\KZ71dlc.x64.dll a variant of Win64/Adware.MultiPlug.A application C:\zoek_backup\C_PROGRA~3_InstallMate\{CA9D589F-4527-4928-ABC3-0D05117E7A69}\Custom.dll Win32/InstalleRex.M potentially unwanted application C:\zoek_backup\C_Users_alex_AppData_Local_19402\a15426.exe a variant of Win32/Amonetize.BR potentially unwanted application Addition Additional scan result of Farbar Recovery Scan Tool (x64) Version: 09-11-2014 01 Ran by alex at 2014-11-10 19:58:04 Running from C:\Users\alex\Downloads Boot Mode: Normal ========================================================== ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Microsoft Security Essentials (Enabled - Up to date) {4F35CFC4-45A3-FC37-EF17-759A02E39AB1} AS: Microsoft Security Essentials (Enabled - Up to date) {F4542E20-6399-F3B9-D5A7-4EE87964D00C} AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) 2013-14 patch (v1.1.0) for FIFA 11 (HKU\S-1-5-21-2631065296-950240196-2606291329-1000\...\2013-14 patch (v1.1.0) for FIFA 11) (Version: - ) Adobe Flash Player 15 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 15.0.0.152 - Adobe Systems Incorporated) Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated) Adobe Reader 8 (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-A80000000002}) (Version: 8.0.0 - Adobe Systems Incorporated) Alcor Micro USB Card Reader (HKLM-x32\...\AmUStor) (Version: 1.2.0117.08443 - Alcor Micro Corp.) Alcor Micro USB Card Reader (x32 Version: 1.2.0117.08443 - Alcor Micro Corp.) Hidden Apple Application Support (HKLM-x32\...\{D9DAD0FF-495A-472B-9F10-BAE430A26682}) (Version: 3.0.3 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{787136D2-F0F8-4625-AA3F-72D7795AC842}) (Version: 7.1.1.3 - Apple Inc.) Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.) Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.12.5.0 - Asmedia Technology) Atheros Driver Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 9.0 - Atheros) ATI AVIVO64 Codecs (Version: 11.6.0.10419 - ATI Technologies Inc.) Hidden ATI Catalyst Install Manager (HKLM\...\{D9D7384A-8014-EE99-279E-E9BA3F6C4836}) (Version: 3.0.825.0 - ATI Technologies, Inc.) BitComet 1.37 64-bit (HKLM-x32\...\BitComet_x64) (Version: 1.37 - CometNetwork) Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.) Color Efex Pro 4 (HKLM-x32\...\Color Efex Pro 4) (Version: 4.0.0.0 - Nik Software, Inc.) Connection Manager (HKLM-x32\...\Connection Manager_is1) (Version: - TCT Mobile Limited) Counter-Strike LH 2011 2.00 (HKLM-x32\...\Counter-Strike LH 2011 2.00) (Version: - ) Counter-Strike version 1.6 (HKLM-x32\...\Counter-Strike_is1) (Version: 1.6 - ) DAEMON Tools Ultra (HKLM-x32\...\DAEMON Tools Ultra) (Version: 2.3.0.0254 - Disc Soft Ltd) EA SPORTS online 2007 (HKLM-x32\...\82A44D22-9452-49FB-00FB-CEC7DCAF7E23) (Version: - ) ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version: - ) ETDWare PS/2-X64 8.0.5.1_WHQL (HKLM\...\Elantech) (Version: 8.0.5.1 - ELAN Microelectronic Corp.) F1 2014 (HKLM-x32\...\RjEyMDE0_is1) (Version: 1 - ) FIFA 11 (HKLM-x32\...\{3FEA6CD1-EA13-4CE7-A74E-A74A4A0A7B5C}) (Version: 1.0.0.0 - Electronic Arts) GameRanger (HKU\S-1-5-21-2631065296-950240196-2606291329-1000\...\GameRanger) (Version: - GameRanger Technologies) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 38.0.2125.111 - Google Inc.) Google Update Helper (x32 Version: 1.3.25.5 - Google Inc.) Hidden Intel® Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation) Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation) IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.27 - Irfan Skiljan) iTunes (HKLM\...\{5A68A656-979F-4168-8795-E2E368AA4DC2}) (Version: 11.2.2.3 - Apple Inc.) League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games) League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden Malwarebytes Anti-Malware, версия 2.0.3.1025 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.3.1025 - Malwarebytes Corporation) Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation) Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUSR) (Version: 14.0.7015.1000 - Microsoft Corporation) Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.6.305.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Mozilla Firefox 31.0 (x86 bg) (HKLM-x32\...\Mozilla Firefox 31.0 (x86 bg)) (Version: 31.0 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 30.0 - Mozilla) MX vs. ATV.Reflex (HKLM-x32\...\MX vs. ATV.Reflex_is1) (Version: MX vs. ATV.Reflex - Fenixx--Repack--(06.12.2010)) MyDefrag v4.3.1 (HKLM\...\MyDefrag v4.3.1_is1) (Version: 4.0.0.0 - J.C. Kessels) Pando Media Booster (HKLM-x32\...\{980A182F-E0A2-4A40-94C1-AE0C1235902E}) (Version: 2.6.0.7 - Pando Networks Inc.) PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden PhotoScape (HKLM-x32\...\PhotoScape) (Version: - ) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6392 - Realtek Semiconductor Corp.) Re-Volt (HKLM-x32\...\Re-Volt) (Version: - ) SafePCRepair (HKLM-x32\...\SafePCRepair) (Version: 1.0.0.5 - Mindspark) Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft) Shockwave (HKLM-x32\...\Shockwave) (Version: - ) Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.3.16540.9015 - Microsoft Corporation) Skype™ 6.21 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 6.21.104 - Skype Technologies S.A.) Sonic Focus (HKLM-x32\...\{09BCB9CE-964B-4BDA-AE46-B5A0ABEF1D3F}) (Version: 1.0.0.4 - Synopsys ) Sony Mobile Update Engine (HKLM-x32\...\Update Engine) (Version: 2.14.10.201407111005 - Sony Mobile Communications AB) Sony PC Companion 2.10.228 (HKLM-x32\...\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}) (Version: 2.10.228 - Sony) Unity Web Player (HKU\S-1-5-21-2631065296-950240196-2606291329-1000\...\UnityWebPlayer) (Version: 4.5.2f1 - Unity Technologies ApS) WinRAR archiver (HKLM-x32\...\WinRAR archiver) (Version: - ) Wireless Console 3 (HKLM-x32\...\{20FDF948-C8ED-4543-A539-F7F4AEF5AFA2}) (Version: 3.0.19 - ASUS) ==================== Custom CLSID (selected items): ========================== (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.) ==================== Restore Points ========================= 09-11-2014 14:40:58 Планирана контролна точка ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Scheduled Tasks (whitelisted) ============= (If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.) Task: {0DE75F8E-3361-46B0-BD5A-73E92998F80A} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.) Task: {3240C3E5-BAEA-4FA5-8CBA-B88E8EFA65C9} - System32\Tasks\MyDefrag v4.3.1 Daily => C:\Program Files\MyDefrag v4.3.1\Scripts\AutomaticDaily.MyD [2010-05-21] () Task: {38626D1C-A71C-45F3-8B63-21A7CF7B5544} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-09-27] (Google Inc.) Task: {58ACFD05-1666-4009-A94E-2FF129645EDF} - System32\Tasks\Microsoft\Windows\Windows Activation Technologies\WatTask => C:\Windows Activation Technologies\wat.exe [2006-04-21] () Task: {7775D6C7-12D1-4AFC-893F-5E9075180B50} - \Buenosearch No Task File <==== ATTENTION Task: {8BC5E7A1-E0A0-470B-8912-6D26075B1AF5} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-09-11] (Adobe Systems Incorporated) Task: {9836349F-C970-4CE6-8751-FA175687FF55} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-09-27] (Google Inc.) Task: {A31EA542-F948-47DA-AEED-AABEAAAA74D9} - System32\Tasks\MyDefrag v4.3.1 Monthly => C:\Program Files\MyDefrag v4.3.1\Scripts\AutomaticMonthly.MyD [2010-05-21] () Task: {BCCDEA91-1A5E-4067-B456-89922C285E3E} - \Yahoo! Search Updater No Task File <==== ATTENTION Task: {CBBFB90D-68B5-4207-9AF7-0AC4C53BD7A9} - System32\Tasks\AdobeAAMUpdater-1.0-alex-PC-alex => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe Task: {EEE6EF78-F6B7-49FC-B2CC-F328229F06A1} - \SO_Booster-S-126785670 No Task File <==== ATTENTION Task: {FF243473-277F-4213-AE8E-EC8440CE5F3C} - System32\Tasks\SidebarExecute => C:\Program Files (x86)\Windows Sidebar\sidebar.exe [2010-11-21] (Microsoft Corporation) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Loaded Modules (whitelisted) ============= 2013-09-04 23:17 - 2013-09-04 23:17 - 04300456 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF 2014-07-15 21:06 - 2012-12-04 15:50 - 00051576 _____ () C:\Program Files (x86)\T-Mobile\ConnectionManager\BackgroundService\ServiceManager.exe 2014-07-23 23:27 - 2014-06-23 08:07 - 00113376 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe 2014-07-15 21:06 - 2012-12-05 16:50 - 00114552 _____ () C:\Program Files (x86)\T-Mobile\ConnectionManager\Background\ModemListener.exe 2014-04-23 15:05 - 2014-04-23 15:05 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll 2014-04-23 15:04 - 2014-04-23 15:04 - 01044808 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll 2013-09-04 23:14 - 2013-09-04 23:14 - 04300456 _____ () C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF 2014-07-23 23:27 - 2012-04-30 10:57 - 00039936 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\TMonitorAPI.dll 2014-07-23 23:27 - 2013-09-13 10:02 - 00208896 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\MExplorer.dll 2011-07-07 13:54 - 2011-07-07 13:54 - 00233984 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\Report.dll 2014-07-23 23:27 - 2013-05-20 11:58 - 00620718 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\sqlite3.dll 2014-06-12 09:19 - 2014-06-12 09:19 - 00643584 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\PhoneUpdate.dll 2014-10-31 19:13 - 2014-10-22 06:04 - 01042760 _____ () C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.111\libglesv2.dll 2014-10-31 19:13 - 2014-10-22 06:04 - 00211272 _____ () C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.111\libegl.dll 2014-10-31 19:13 - 2014-10-22 06:04 - 08910664 _____ () C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.111\pdf.dll 2014-10-31 19:13 - 2014-10-22 06:04 - 01681224 _____ () C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.111\ffmpegsumo.dll 2014-10-31 19:13 - 2014-10-22 06:05 - 14902600 _____ () C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.111\PepperFlash\pepflashplayer.dll ==================== Alternate Data Streams (whitelisted) ========= (If an entry is included in the fixlist, only the Alternate Data Streams will be removed.) AlternateDataStreams: C:\Windows:nlsPreferences AlternateDataStreams: C:\ProgramData\TEMP:373E1720 ==================== Safe Mode (whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) ==================== EXE Association (whitelisted) ============= (If an entry is included in the fixlist, the default will be restored. None default entries will be removed.) ==================== MSCONFIG/TASK MANAGER disabled items ========= (Currently there is no automatic fix for this section.) ========================= Accounts: ========================== Administrator (S-1-5-21-2631065296-950240196-2606291329-500 - Administrator - Disabled) alex (S-1-5-21-2631065296-950240196-2606291329-1000 - Administrator - Enabled) => C:\Users\alex Guest (S-1-5-21-2631065296-950240196-2606291329-501 - Limited - Disabled) ==================== Faulty Device Manager Devices ============= Name: Teredo Tunneling Pseudo-Interface Description: Microsoft Teredo Tunneling Adapter Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Problem: : This device cannot start. (Code10) Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. ==================== Event log errors: ========================= Application errors: ================== Error: (11/10/2014 06:51:09 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Име на приложение с грешки: gta_sa.exe, версия: 0.0.0.0, времево клеймо: 0x427101ca Име на модул с грешки: cleo.asi, версия: 3.0.9.50, времево клеймо: 0x2a425e19 Код на изключение: 0xc0000005 Отместване на грешка: 0x0001620c ИД на процес на грешка: 0x5c8 Начален час на приложението с грешки: 0xgta_sa.exe0 Път на приложението с грешки: gta_sa.exe1 Път на модула с грешки: gta_sa.exe2 ИД на доклад: gta_sa.exe3 Error: (11/10/2014 06:49:57 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Име на приложение с грешки: gta_sa.exe, версия: 0.0.0.0, времево клеймо: 0x427101ca Име на модул с грешки: gta_sa.exe, версия: 0.0.0.0, времево клеймо: 0x427101ca Код на изключение: 0xc0000005 Отместване на грешка: 0x00346929 ИД на процес на грешка: 0xd58 Начален час на приложението с грешки: 0xgta_sa.exe0 Път на приложението с грешки: gta_sa.exe1 Път на модула с грешки: gta_sa.exe2 ИД на доклад: gta_sa.exe3 Error: (11/10/2014 06:49:55 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Име на приложение с грешки: gta_sa.exe, версия: 0.0.0.0, времево клеймо: 0x427101ca Име на модул с грешки: gta_sa.exe, версия: 0.0.0.0, времево клеймо: 0x427101ca Код на изключение: 0xc0000005 Отместване на грешка: 0x00346929 ИД на процес на грешка: 0x16d8 Начален час на приложението с грешки: 0xgta_sa.exe0 Път на приложението с грешки: gta_sa.exe1 Път на модула с грешки: gta_sa.exe2 ИД на доклад: gta_sa.exe3 Error: (11/10/2014 06:49:46 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Име на приложение с грешки: gta_sa.exe, версия: 0.0.0.0, времево клеймо: 0x427101ca Име на модул с грешки: KERNELBASE.dll, версия: 6.1.7601.18409, времево клеймо: 0x53159a86 Код на изключение: 0x0eedfade Отместване на грешка: 0x0000c42d ИД на процес на грешка: 0x16d8 Начален час на приложението с грешки: 0xgta_sa.exe0 Път на приложението с грешки: gta_sa.exe1 Път на модула с грешки: gta_sa.exe2 ИД на доклад: gta_sa.exe3 Error: (11/10/2014 05:04:08 PM) (Source: SideBySide) (EventID: 80) (User: ) Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3. A component version required by the application conflicts with another component version already active. Conflicting components are:. Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest. Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest. Error: (11/10/2014 05:04:03 PM) (Source: SideBySide) (EventID: 80) (User: ) Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3. A component version required by the application conflicts with another component version already active. Conflicting components are:. Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest. Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest. Error: (11/10/2014 05:04:03 PM) (Source: SideBySide) (EventID: 80) (User: ) Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3. A component version required by the application conflicts with another component version already active. Conflicting components are:. Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest. Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest. Error: (11/10/2014 05:04:01 PM) (Source: SideBySide) (EventID: 80) (User: ) Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3. A component version required by the application conflicts with another component version already active. Conflicting components are:. Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest. Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest. Error: (11/10/2014 05:04:00 PM) (Source: SideBySide) (EventID: 80) (User: ) Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3. A component version required by the application conflicts with another component version already active. Conflicting components are:. Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest. Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest. Error: (11/10/2014 05:04:00 PM) (Source: SideBySide) (EventID: 80) (User: ) Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3. A component version required by the application conflicts with another component version already active. Conflicting components are:. Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest. Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest. System errors: ============= Error: (11/09/2014 10:40:32 PM) (Source: DCOM) (EventID: 10010) (User: ) Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E} Error: (11/09/2014 01:11:07 PM) (Source: volsnap) (EventID: 14) (User: ) Description: The shadow copies of volume C: were aborted because of an IO failure on volume C:. Error: (11/09/2014 00:40:57 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Услуга MaintainerSvc6.89.982339 не може да бъде стартирана поради следната грешка: %%2 Error: (11/09/2014 00:39:37 PM) (Source: DCOM) (EventID: 10010) (User: ) Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E} Error: (11/09/2014 00:30:33 PM) (Source: Service Control Manager) (EventID: 7030) (User: ) Description: Услуга PEVSystemStart е маркирана като интерактивна услуга. Обаче системата е конфигурирана да не допуска интерактивни услуги. Тази услуга може да не функционира правилно. Error: (11/09/2014 00:30:33 PM) (Source: Service Control Manager) (EventID: 7030) (User: ) Description: Услуга PEVSystemStart е маркирана като интерактивна услуга. Обаче системата е конфигурирана да не допуска интерактивни услуги. Тази услуга може да не функционира правилно. Error: (11/09/2014 00:30:32 PM) (Source: Service Control Manager) (EventID: 7030) (User: ) Description: Услуга PEVSystemStart е маркирана като интерактивна услуга. Обаче системата е конфигурирана да не допуска интерактивни услуги. Тази услуга може да не функционира правилно. Error: (11/09/2014 00:30:32 PM) (Source: Service Control Manager) (EventID: 7030) (User: ) Description: Услуга PEVSystemStart е маркирана като интерактивна услуга. Обаче системата е конфигурирана да не допуска интерактивни услуги. Тази услуга може да не функционира правилно. Error: (11/09/2014 00:30:32 PM) (Source: Service Control Manager) (EventID: 7030) (User: ) Description: Услуга PEVSystemStart е маркирана като интерактивна услуга. Обаче системата е конфигурирана да не допуска интерактивни услуги. Тази услуга може да не функционира правилно. Error: (11/09/2014 00:13:48 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Услуга MaintainerSvc6.89.982339 не може да бъде стартирана поради следната грешка: %%2 Microsoft Office Sessions: ========================= Error: (11/10/2014 06:51:09 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: gta_sa.exe0.0.0.0427101cacleo.asi3.0.9.502a425e19c00000050001620c5c801cffd064537ee12D:\games\GTA San Andreas\gta_sa.exeD:\games\GTA San Andreas\cleo.asic49e6d89-68f9-11e4-98a7-14dae9cb71b4 Error: (11/10/2014 06:49:57 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: gta_sa.exe0.0.0.0427101cagta_sa.exe0.0.0.0427101cac000000500346929d5801cffd065bff8aefD:\games\GTA San Andreas\gta_sa.exeD:\games\GTA San Andreas\gta_sa.exe99d642bf-68f9-11e4-98a7-14dae9cb71b4 Error: (11/10/2014 06:49:55 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: gta_sa.exe0.0.0.0427101cagta_sa.exe0.0.0.0427101cac00000050034692916d801cffd064f22b0ebD:\games\GTA San Andreas\gta_sa.exeD:\games\GTA San Andreas\gta_sa.exe9876d9a2-68f9-11e4-98a7-14dae9cb71b4 Error: (11/10/2014 06:49:46 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: gta_sa.exe0.0.0.0427101caKERNELBASE.dll6.1.7601.1840953159a860eedfade0000c42d16d801cffd064f22b0ebD:\games\GTA San Andreas\gta_sa.exeC:\Windows\syswow64\KERNELBASE.dll931ac718-68f9-11e4-98a7-14dae9cb71b4 Error: (11/10/2014 05:04:08 PM) (Source: SideBySide) (EventID: 80) (User: ) Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\alex\Downloads\esetsmartinstaller_enu.exe Error: (11/10/2014 05:04:03 PM) (Source: SideBySide) (EventID: 80) (User: ) Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\alex\Downloads\esetsmartinstaller_enu.exe Error: (11/10/2014 05:04:03 PM) (Source: SideBySide) (EventID: 80) (User: ) Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\alex\Downloads\esetsmartinstaller_enu.exe Error: (11/10/2014 05:04:01 PM) (Source: SideBySide) (EventID: 80) (User: ) Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\alex\Downloads\esetsmartinstaller_enu.exe Error: (11/10/2014 05:04:00 PM) (Source: SideBySide) (EventID: 80) (User: ) Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\alex\Downloads\esetsmartinstaller_enu (1).exe Error: (11/10/2014 05:04:00 PM) (Source: SideBySide) (EventID: 80) (User: ) Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\alex\Downloads\esetsmartinstaller_enu (1).exe CodeIntegrity Errors: =================================== Date: 2014-11-10 19:50:12.173 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2014-11-10 18:50:05.108 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2014-11-10 16:52:46.871 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2014-11-10 05:01:04.256 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2014-11-09 22:41:33.962 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2014-11-09 22:34:45.777 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2014-11-09 21:54:16.471 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2014-11-09 21:10:21.611 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2014-11-09 18:43:45.464 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2014-11-09 14:19:54.439 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. ==================== Memory info =========================== Processor: Intel® Core i3-2310M CPU @ 2.10GHz Percentage of memory in use: 57% Total physical RAM: 4072.13 MB Available physical RAM: 1750.24 MB Total Pagefile: 8142.44 MB Available Pagefile: 5222.88 MB Total Virtual: 8192 MB Available Virtual: 8191.83 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:195.21 GB) (Free:94.51 GB) NTFS Drive d: () (Fixed) (Total:270.45 GB) (Free:210.84 GB) NTFS Drive f: (F1 2014) (CDROM) (Total:2.45 GB) (Free:0 GB) UDF ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 7C12E647) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=195.2 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=270.4 GB) - (Type=07 NTFS) ==================== End Of Log ============================ FARBAR Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 09-11-2014 01 Ran by alex (administrator) on ALEX-PC on 10-11-2014 19:57:11 Running from C:\Users\alex\Downloads Loaded Profile: alex (Available profiles: alex) Platform: Windows 7 Ultimate Service Pack 1 (X64) OS Language: Български (България) Internet Explorer Version 11 Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe (AMD) C:\Windows\System32\atiesrxx.exe (AMD) C:\Windows\System32\atieclxx.exe (Microsoft Corporation) C:\Windows\System32\wlanext.exe (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe (Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe () C:\Program Files (x86)\T-Mobile\ConnectionManager\BackgroundService\ServiceManager.exe (Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe (Nalpeiron Ltd.) C:\Windows\SysWOW64\nlssrv32.exe (Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe (Alcor Micro Corp.) C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe (DT Soft Ltd) C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (www.BitComet.com) C:\Program Files\BitComet\BitComet.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe (www.BitComet.com) C:\Program Files\BitComet\tools\BitCometService.exe (Sony) C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe (Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe (Virage Logic Corporation / Sonic Focus) C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe (Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe () C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe () C:\Program Files (x86)\T-Mobile\ConnectionManager\Background\ModemListener.exe (Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe (Disc Soft Ltd) C:\Program Files (x86)\DAEMON Tools Ultra\DiscSoftBusService.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe (Microsoft Corporation) C:\Windows\System32\audiodg.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Farbar) C:\Users\alex\Downloads\FRST64 (1).exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2587944 2010-12-31] (ELAN Microelectronics Corp.) HKLM\...\Run: [AmIcoSinglun64] => C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [361984 2011-03-21] (Alcor Micro Corp.) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11860072 2011-06-09] (Realtek Semiconductor) HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2226280 2011-06-03] (Realtek Semiconductor) HKLM\...\Run: [MSC] => C:\Program Files\Microsoft Security Client\msseces.exe [1331288 2014-08-22] (Microsoft Corporation) HKLM\...\Run: [AdobeAAMUpdater-1.0] => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" HKLM-x32\...\Run: [sonicMasterTray] => C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe [984400 2010-07-09] (Virage Logic Corporation / Sonic Focus) HKLM-x32\...\Run: [Wireless Console 3] => C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [1601536 2010-09-23] () HKLM-x32\...\Run: [bCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation) HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-05-26] (Apple Inc.) HKLM-x32\...\Run: [T-Mobile ModemListener] => C:\Program Files (x86)\T-Mobile\ConnectionManager\Background\ModemListener.exe [114552 2012-12-05] () HKLM-x32\...\Run: [switchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated) HKU\S-1-5-21-2631065296-950240196-2606291329-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [357696 2010-04-01] (DT Soft Ltd) HKU\S-1-5-21-2631065296-950240196-2606291329-1000\...\Run: [bitComet] => C:\Program Files\BitComet\BitComet.exe [17257648 2013-12-31] (www.BitComet.com) HKU\S-1-5-21-2631065296-950240196-2606291329-1000\...\Run: [DAEMON Tools Ultra Agent] => C:\Program Files (x86)\DAEMON Tools Ultra\DTAgent.exe [3198224 2014-04-28] (Disc Soft Ltd) HKU\S-1-5-21-2631065296-950240196-2606291329-1000\...\Run: [sony PC Companion] => C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [468192 2014-09-01] (Sony) HKU\S-1-5-21-2631065296-950240196-2606291329-1000\...\Run: [skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [22059616 2014-10-01] (Skype Technologies S.A.) HKU\S-1-5-21-2631065296-950240196-2606291329-1000\...\MountPoints2: F - F:\setup.exe HKU\S-1-5-21-2631065296-950240196-2606291329-1000\...\MountPoints2: {34c73c43-ff63-11e3-b913-14dae9cb71b4} - F:\setup.exe Startup: C:\Users\alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GameRanger.lnk ShortcutTarget: GameRanger.lnk -> C:\Users\alex\AppData\Roaming\GameRanger\GameRanger\GameRanger.exe (GameRanger Technologies) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Reader Speed Launch.lnk ShortcutTarget: Adobe Reader Speed Launch.lnk -> C:\Program Files (x86)\Adobe\Reader 8.0\Reader\reader_sl.exe (Adobe Systems Incorporated) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Reader Synchronizer.lnk ShortcutTarget: Adobe Reader Synchronizer.lnk -> C:\Program Files (x86)\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe () ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x1593C0A41A93CF01 HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = bg-BG StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe SearchScopes: HKCU - DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms} SearchScopes: HKCU - {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms} Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation) Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation) Tcpip\Parameters: [DhcpNameServer] 88.80.96.2 88.80.96.7 FireFox: ======== FF ProfilePath: C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\tr76ic8y.default FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_152.dll () FF Plugin: @microsoft.com/GENUINE -> disabled No File FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll () FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll () FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation) FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.) FF Plugin HKU\S-1-5-21-2631065296-950240196-2606291329-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\alex\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS) FF Plugin HKU\S-1-5-21-2631065296-950240196-2606291329-1000: pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\np32dsw.dll (Macromedia, Inc.) FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\911bg.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\diribg.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\pe-bg.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\portalbgdict.xml FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2014-08-08] FF Extension: No Name - C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\tr76ic8y.default\extensions\89ffxtbr@SafePCRepair_89.com [Not Found] FF Extension: No Name - C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\tr76ic8y.default\extensions\faststartff@gmail.com [Not Found] FF Extension: No Name - C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\tr76ic8y.default\extensions\{0c0bb4a8-45a4-4685-9c1d-08d98af4b926}.xpi [Not Found] FF Extension: No Name - C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\tr76ic8y.default\extensions\{B042753D-F57E-4e8e-A01B-7379A6D4CEFB} [Not Found] FF Extension: No Name - C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\tr76ic8y.default\extensions\67b66852-ecfb-49db-a836-51ece018b002@gmail.com [Not Found] FF Extension: No Name - C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\tr76ic8y.default\extensions\e46480cf-7cf6-495e-af69-573053f52c72@b33ab36d-5952-49aa-adb2-a41b3dbe51a5.com [Not Found] Chrome: ======= CHR dev: Chrome dev build detected! <======= ATTENTION CHR Profile: C:\Users\alex\AppData\Local\Google\Chrome\User Data\Default ==================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R3 BITCOMET_HELPER_SERVICE; C:\Program Files\BitComet\tools\BitCometService.exe [1296728 2013-11-29] (www.BitComet.com) R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390176 2014-07-14] (Microsoft Corporation) R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1767520 2014-07-14] (Microsoft Corporation) R3 Disc Soft Bus Service; C:\Program Files (x86)\DAEMON Tools Ultra\DiscSoftBusService.exe [813328 2014-04-28] (Disc Soft Ltd) R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2014-10-01] (Malwarebytes Corporation) R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [968504 2014-10-01] (Malwarebytes Corporation) R2 Modem Device Helper; C:\Program Files (x86)\T-Mobile\ConnectionManager\BackgroundService\ServiceManager.exe [51576 2012-12-04] () R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [23784 2014-08-22] (Microsoft Corporation) R3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [368624 2014-08-22] (Microsoft Corporation) R2 nlsX86cc; C:\Windows\SysWOW64\nlssrv32.exe [66560 2011-09-22] (Nalpeiron Ltd.) [File not signed] S3 ioloService; C:\Program Files (x86)\SafePCRepair\ioloToolService.exe [X] S3 SwitchBoard; "C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [X] ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) S3 ALCATELUSB; C:\Windows\System32\Drivers\AlcatelUsb.sys [25088 2012-12-04] (Windows ® Codename Longhorn DDK provider) R3 dtscsibus; C:\Windows\System32\DRIVERS\dtscsibus.sys [29696 2014-06-29] (Disc Soft Ltd) S3 ggsomc; C:\Windows\System32\DRIVERS\ggsomc.sys [30424 2014-07-23] (Sony Mobile Communications) S3 jrdusbser; C:\Windows\System32\DRIVERS\jrdusbser.sys [120832 2012-12-04] (TCT International Mobile Ltd) R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15416 2009-07-20] ( ) R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-10-01] (Malwarebytes Corporation) R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [129752 2014-11-10] (Malwarebytes Corporation) R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2014-10-01] (Malwarebytes Corporation) R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [269008 2014-07-17] (Microsoft Corporation) R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [125584 2014-07-17] (Microsoft Corporation) R0 sptd; C:\Windows\System32\Drivers\sptd.sys [834544 2014-06-28] () [File not signed] U3 a03oo8el; C:\Windows\System32\Drivers\a03oo8el.sys [0 ] (Microsoft Corporation) S3 VGPU; System32\drivers\rdvgkmd.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) ==================== One Month Created Files and Folders ======== (If an entry is included in the fixlist, the file\folder will be moved.) 2014-11-10 19:55 - 2014-11-10 19:55 - 02116096 _____ (Farbar) C:\Users\alex\Downloads\FRST64 (1).exe 2014-11-10 19:54 - 2014-11-10 19:54 - 00014978 _____ () C:\Users\alex\Desktop\ESETscan.txt 2014-11-09 22:50 - 2014-11-09 22:50 - 02347384 _____ (ESET) C:\Users\alex\Downloads\esetsmartinstaller_enu (1).exe 2014-11-09 22:50 - 2014-11-09 22:50 - 00000000 ____D () C:\Program Files (x86)\ESET 2014-11-09 22:49 - 2014-11-09 22:49 - 00007719 _____ () C:\Users\alex\Desktop\яь.txt 2014-11-09 22:47 - 2014-11-09 22:48 - 02347384 _____ (ESET) C:\Users\alex\Downloads\esetsmartinstaller_enu.exe 2014-11-09 22:47 - 2014-11-09 22:47 - 00009287 _____ () C:\Users\alex\Desktop\ьяа.txt 2014-11-09 22:09 - 2014-11-10 19:52 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2014-11-09 22:09 - 2014-11-09 22:09 - 00001102 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk 2014-11-09 22:09 - 2014-11-09 22:09 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware 2014-11-09 22:09 - 2014-11-09 22:09 - 00000000 ____D () C:\ProgramData\Malwarebytes 2014-11-09 22:09 - 2014-11-09 22:09 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware 2014-11-09 22:09 - 2014-10-01 11:11 - 00093400 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys 2014-11-09 22:09 - 2014-10-01 11:11 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys 2014-11-09 22:09 - 2014-10-01 11:11 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys 2014-11-09 22:07 - 2014-11-09 22:08 - 19828376 _____ (Malwarebytes Corporation ) C:\Users\alex\Downloads\mbam-setup-2.0.3.1025.exe 2014-11-09 12:33 - 2014-11-09 12:18 - 00024064 _____ () C:\Windows\zoek-delete.exe 2014-11-09 12:21 - 2014-11-09 12:21 - 00002652 _____ () C:\Users\alex\Downloads\fixlist.txt 2014-11-09 12:19 - 2014-11-09 12:41 - 00011675 _____ () C:\zoek-results.log 2014-11-09 12:18 - 2014-11-09 12:40 - 00000000 ____D () C:\zoek_backup 2014-11-09 12:17 - 2014-11-09 12:17 - 01294848 _____ () C:\Users\alex\Desktop\zoek.exe 2014-11-09 11:10 - 2014-11-09 11:10 - 00000000 ____D () C:\Users\alex\Downloads\FRST-OlderVersion 2014-11-09 10:34 - 2014-11-09 10:34 - 00000000 ____D () C:\Windows\ERUNT 2014-11-09 10:33 - 2014-11-09 10:33 - 01706808 _____ (Thisisu) C:\Users\alex\Desktop\JRT.exe 2014-11-09 10:27 - 2014-11-10 16:51 - 00000000 ____D () C:\Users\alex\AppData\Roaming\Skype 2014-11-09 10:16 - 2014-11-09 10:24 - 00000000 ____D () C:\AdwCleaner 2014-11-09 10:15 - 2014-11-09 10:15 - 02145792 _____ () C:\Users\alex\Desktop\adwcleaner_4.100.exe 2014-11-09 09:42 - 2014-11-02 12:28 - 06310920 _____ (Geek Uninstaller) C:\Users\alex\Desktop\geek.exe 2014-11-09 09:41 - 2014-11-09 09:41 - 02571115 _____ () C:\Users\alex\Desktop\geek.zip 2014-11-07 20:56 - 2014-11-09 11:27 - 00020206 _____ () C:\Users\alex\Downloads\Addition.txt 2014-11-07 20:52 - 2014-11-10 19:57 - 00015351 _____ () C:\Users\alex\Downloads\FRST.txt 2014-11-07 20:52 - 2014-11-10 19:57 - 00000000 ____D () C:\FRST 2014-11-07 20:44 - 2014-11-09 11:10 - 02115584 _____ (Farbar) C:\Users\alex\Downloads\FRST64.exe 2014-11-07 19:27 - 2014-11-07 19:28 - 00000000 ____D () C:\Program Files\MyDefrag v4.3.1 2014-11-07 19:27 - 2014-11-07 19:27 - 00004108 _____ () C:\Windows\System32\Tasks\MyDefrag v4.3.1 Monthly 2014-11-07 19:27 - 2014-11-07 19:27 - 00003428 _____ () C:\Windows\System32\Tasks\MyDefrag v4.3.1 Daily 2014-11-07 19:27 - 2014-11-07 19:27 - 00000863 _____ () C:\Users\Public\Desktop\MyDefrag.lnk 2014-11-07 19:27 - 2014-11-07 19:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyDefrag v4.3.1 2014-11-07 19:27 - 2010-05-21 12:11 - 01147392 _____ (J.C. Kessels) C:\Windows\system32\MyDefragScreenSaver_v4.3.1.exe 2014-11-07 19:27 - 2010-05-21 12:11 - 00485376 _____ (J.C. Kessels) C:\Windows\system32\MyDefragScreenSaver_v4.3.1.scr 2014-11-07 19:25 - 2014-11-07 19:26 - 02082630 _____ (J.C. Kessels ) C:\Users\alex\Downloads\MyDefrag-v4.3.1.exe 2014-11-05 16:48 - 2014-11-05 16:48 - 00050396 _____ () C:\Users\alex\Desktop\ALTERNAN.TTF 2014-11-05 16:47 - 2014-11-05 16:47 - 00048592 _____ () C:\Users\alex\Desktop\CITYNB.TTF 2014-11-04 16:21 - 2014-11-04 16:21 - 08027504 _____ (Driver-Soft Inc. ) C:\Users\alex\Downloads\Driver_Genius.exe 2014-11-04 16:07 - 2014-11-04 16:07 - 26314800 _____ (Intel® Corporation) C:\Users\alex\Downloads\Wireless_15.3.1_Ds64.exe 2014-11-03 17:30 - 2014-11-03 20:10 - 00000000 ____D () C:\Users\alex\Documents\GTA San Andreas User Files 2014-11-03 16:16 - 2014-11-03 16:16 - 00142732 _____ () C:\Users\alex\Downloads\GTA.San.Andreas.ULTRA.MoD.v2 (2).torrent 2014-11-03 16:03 - 2014-11-03 16:03 - 00142732 _____ () C:\Users\alex\Downloads\GTA.San.Andreas.ULTRA.MoD.v2 (1).torrent 2014-11-03 16:01 - 2014-11-03 16:01 - 00142732 _____ () C:\Users\alex\Downloads\GTA.San.Andreas.ULTRA.MoD.v2.torrent 2014-10-31 19:13 - 2014-10-31 19:13 - 00002253 _____ () C:\Users\Public\Desktop\Google Chrome.lnk 2014-10-31 19:13 - 2014-10-31 19:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome 2014-10-31 19:08 - 2014-10-31 19:08 - 00000000 ____D () C:\Users\alex\Documents\Updater5 2014-10-28 15:10 - 2014-10-31 19:11 - 00000000 ____D () C:\Users\alex\Downloads\Музика 2014-10-26 10:01 - 2014-10-26 10:01 - 00000776 _____ () C:\Users\alex\Desktop\F1 2014.lnk 2014-10-24 22:23 - 2014-10-26 10:02 - 00000788 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\F1 2014.lnk 2014-10-24 22:23 - 2014-10-26 10:02 - 00000776 _____ () C:\Users\Public\Desktop\F1 2014.lnk 2014-10-24 22:23 - 2014-10-26 10:02 - 00000000 ____D () C:\Program Files (x86)\F1 2014 2014-10-24 21:53 - 2014-10-24 21:53 - 00012799 _____ () C:\Users\alex\Downloads\rld-f12014.iso.torrent 2014-10-15 20:06 - 2014-10-15 20:06 - 00001996 _____ () C:\Users\Public\Desktop\Counter-Strike.lnk 2014-10-15 20:04 - 2014-10-15 20:04 - 00010520 _____ () C:\Users\alex\Downloads\Counter-Strike.exe (2).torrent 2014-10-15 19:24 - 2014-09-29 02:58 - 03198976 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2014-10-15 19:24 - 2014-07-07 04:07 - 14632960 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll 2014-10-15 19:24 - 2014-07-07 04:07 - 00782848 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll 2014-10-15 19:24 - 2014-07-07 04:06 - 04120576 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll 2014-10-15 19:24 - 2014-07-07 04:06 - 01202176 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll 2014-10-15 19:24 - 2014-07-07 04:06 - 00842240 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll 2014-10-15 19:24 - 2014-07-07 04:06 - 00500224 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll 2014-10-15 19:24 - 2014-07-07 03:40 - 11411456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll 2014-10-15 19:24 - 2014-07-07 03:40 - 00988160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmv2clt.dll 2014-10-15 19:24 - 2014-07-07 03:40 - 00744960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\blackbox.dll 2014-10-15 19:24 - 2014-07-07 03:40 - 00617984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmsdk.dll 2014-10-15 19:24 - 2014-06-19 00:23 - 01943696 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll 2014-10-15 19:24 - 2014-06-19 00:23 - 01131664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfshim.dll 2014-10-15 19:24 - 2014-06-19 00:23 - 00156824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscorier.dll 2014-10-15 19:24 - 2014-06-19 00:23 - 00156312 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll 2014-10-15 19:24 - 2014-06-19 00:23 - 00081560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscories.dll 2014-10-15 19:24 - 2014-06-19 00:23 - 00073880 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll 2014-10-15 19:23 - 2014-10-10 04:05 - 00507392 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll 2014-10-15 19:23 - 2014-10-10 04:05 - 00276480 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll 2014-10-15 19:23 - 2014-10-10 04:00 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2014-10-15 19:23 - 2014-10-07 04:54 - 00378552 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2014-10-15 19:23 - 2014-10-07 04:04 - 00331448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2014-10-15 19:23 - 2014-09-26 00:50 - 13619200 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2014-10-15 19:23 - 2014-09-26 00:46 - 00365056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2014-10-15 19:23 - 2014-09-26 00:46 - 00243200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2014-10-15 19:23 - 2014-09-26 00:46 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2014-10-15 19:23 - 2014-09-26 00:43 - 11807232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2014-10-15 19:23 - 2014-09-26 00:32 - 02017280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2014-10-15 19:23 - 2014-09-26 00:31 - 02108416 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2014-10-15 19:23 - 2014-09-19 04:25 - 23631360 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2014-10-15 19:23 - 2014-09-19 03:56 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2014-10-15 19:23 - 2014-09-19 03:55 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2014-10-15 19:23 - 2014-09-19 03:44 - 17484800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2014-10-15 19:23 - 2014-09-19 03:41 - 02796032 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2014-10-15 19:23 - 2014-09-19 03:40 - 00547328 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2014-10-15 19:23 - 2014-09-19 03:40 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2014-10-15 19:23 - 2014-09-19 03:39 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2014-10-15 19:23 - 2014-09-19 03:38 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2014-10-15 19:23 - 2014-09-19 03:36 - 05829632 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2014-10-15 19:23 - 2014-09-19 03:31 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2014-10-15 19:23 - 2014-09-19 03:30 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2014-10-15 19:23 - 2014-09-19 03:27 - 00595968 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2014-10-15 19:23 - 2014-09-19 03:26 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2014-10-15 19:23 - 2014-09-19 03:25 - 04201472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2014-10-15 19:23 - 2014-09-19 03:25 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2014-10-15 19:23 - 2014-09-19 03:25 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2014-10-15 19:23 - 2014-09-19 03:18 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2014-10-15 19:23 - 2014-09-19 03:14 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2014-10-15 19:23 - 2014-09-19 03:14 - 00446464 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2014-10-15 19:23 - 2014-09-19 03:06 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2014-10-15 19:23 - 2014-09-19 03:02 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2014-10-15 19:23 - 2014-09-19 03:01 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2014-10-15 19:23 - 2014-09-19 03:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2014-10-15 19:23 - 2014-09-19 03:01 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll 2014-10-15 19:23 - 2014-09-19 03:00 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2014-10-15 19:23 - 2014-09-19 02:59 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll 2014-10-15 19:23 - 2014-09-19 02:58 - 00289280 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2014-10-15 19:23 - 2014-09-19 02:55 - 02187264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2014-10-15 19:23 - 2014-09-19 02:54 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2014-10-15 19:23 - 2014-09-19 02:53 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2014-10-15 19:23 - 2014-09-19 02:51 - 00440320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2014-10-15 19:23 - 2014-09-19 02:50 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2014-10-15 19:23 - 2014-09-19 02:49 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2014-10-15 19:23 - 2014-09-19 02:42 - 00731136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2014-10-15 19:23 - 2014-09-19 02:42 - 00710656 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2014-10-15 19:23 - 2014-09-19 02:40 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2014-10-15 19:23 - 2014-09-19 02:36 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2014-10-15 19:23 - 2014-09-19 02:33 - 02309632 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2014-10-15 19:23 - 2014-09-19 02:32 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2014-10-15 19:23 - 2014-09-19 02:20 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2014-10-15 19:23 - 2014-09-19 02:18 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll 2014-10-15 19:23 - 2014-09-19 02:14 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2014-10-15 19:23 - 2014-09-19 01:59 - 01810944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2014-10-15 19:23 - 2014-09-19 01:59 - 00775168 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2014-10-15 19:23 - 2014-09-19 01:53 - 01190400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2014-10-15 19:23 - 2014-09-19 01:52 - 00678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2014-10-15 19:23 - 2014-08-19 05:11 - 00693176 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi 2014-10-15 19:23 - 2014-08-19 05:10 - 00616352 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi 2014-10-15 19:23 - 2014-08-19 05:08 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll 2014-10-15 19:23 - 2014-08-19 05:08 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll 2014-10-15 19:23 - 2014-08-19 05:08 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll 2014-10-15 19:23 - 2014-08-19 05:07 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe 2014-10-15 19:23 - 2014-08-19 05:07 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe 2014-10-15 19:23 - 2014-08-19 05:07 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll 2014-10-15 19:23 - 2014-08-19 05:07 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll 2014-10-15 19:23 - 2014-08-19 05:07 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe 2014-10-15 19:23 - 2014-08-19 04:41 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll 2014-10-15 19:23 - 2014-08-19 04:41 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll 2014-10-15 19:23 - 2014-08-19 04:06 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys 2014-10-15 19:23 - 2014-07-07 04:07 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 05551032 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2014-10-15 19:23 - 2014-07-07 04:06 - 01574400 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 01480192 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 01069056 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 00679424 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 00641024 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 00432128 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 00325632 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 00188416 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe 2014-10-15 19:23 - 2014-07-07 04:06 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe 2014-10-15 19:23 - 2014-07-07 04:06 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx 2014-10-15 19:23 - 2014-07-07 04:06 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll 2014-10-15 19:23 - 2014-07-07 04:05 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL 2014-10-15 19:23 - 2014-07-07 04:05 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe 2014-10-15 19:23 - 2014-07-07 04:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll 2014-10-15 19:23 - 2014-07-07 03:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys 2014-10-15 19:23 - 2014-07-07 03:40 - 03208704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll 2014-10-15 19:23 - 2014-07-07 03:40 - 01329664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll 2014-10-15 19:23 - 2014-07-07 03:40 - 01174528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll 2014-10-15 19:23 - 2014-07-07 03:40 - 01005056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll 2014-10-15 19:23 - 2014-07-07 03:40 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscp.dll 2014-10-15 19:23 - 2014-07-07 03:40 - 00489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll 2014-10-15 19:23 - 2014-07-07 03:40 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll 2014-10-15 19:23 - 2014-07-07 03:40 - 00406016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmmgrtn.dll 2014-10-15 19:23 - 2014-07-07 03:40 - 00374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll 2014-10-15 19:23 - 2014-07-07 03:40 - 00354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll 2014-10-15 19:23 - 2014-07-07 03:40 - 00265216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msnetobj.dll 2014-10-15 19:23 - 2014-07-07 03:40 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll 2014-10-15 19:23 - 2014-07-07 03:40 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll 2014-10-15 19:23 - 2014-07-07 03:40 - 00143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll 2014-10-15 19:23 - 2014-07-07 03:40 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll 2014-10-15 19:23 - 2014-07-07 03:40 - 00081408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsp.dll 2014-10-15 19:23 - 2014-07-07 03:40 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll 2014-10-15 19:23 - 2014-07-07 03:40 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx 2014-10-15 19:23 - 2014-07-07 03:40 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll 2014-10-15 19:23 - 2014-07-07 03:39 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL 2014-10-15 19:23 - 2014-07-07 03:39 - 03970488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe 2014-10-15 19:23 - 2014-07-07 03:39 - 03914680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe 2014-10-15 19:23 - 2014-07-07 03:39 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe 2014-10-15 19:23 - 2014-07-07 03:39 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe 2014-10-15 19:23 - 2014-07-07 03:37 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll 2014-10-15 19:23 - 2014-06-28 02:21 - 00619056 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe 2014-10-15 19:23 - 2014-06-28 02:21 - 00532176 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe 2014-10-15 19:23 - 2014-06-28 02:21 - 00457400 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll 2014-10-15 19:22 - 2014-09-18 04:00 - 03241472 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll 2014-10-15 19:22 - 2014-09-18 03:32 - 02363904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll 2014-10-15 19:22 - 2014-09-13 03:58 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll 2014-10-15 19:22 - 2014-09-13 03:40 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll 2014-10-15 19:22 - 2014-09-04 07:23 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll 2014-10-15 19:22 - 2014-09-04 07:04 - 00372736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll 2014-10-15 19:22 - 2014-07-17 04:07 - 03722240 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll 2014-10-15 19:22 - 2014-07-17 04:07 - 01118720 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe 2014-10-15 19:22 - 2014-07-17 04:07 - 01113088 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll 2014-10-15 19:22 - 2014-07-17 04:07 - 00681984 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll 2014-10-15 19:22 - 2014-07-17 04:07 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll 2014-10-15 19:22 - 2014-07-17 04:07 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll 2014-10-15 19:22 - 2014-07-17 04:07 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll 2014-10-15 19:22 - 2014-07-17 04:07 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll 2014-10-15 19:22 - 2014-07-17 03:40 - 00157696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsta.dll 2014-10-15 19:22 - 2014-07-17 03:39 - 03221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll 2014-10-15 19:22 - 2014-07-17 03:39 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe 2014-10-15 19:22 - 2014-07-17 03:39 - 00131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll 2014-10-15 19:22 - 2014-07-17 03:39 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll 2014-10-15 19:22 - 2014-07-17 03:39 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll 2014-10-15 19:22 - 2014-07-17 03:21 - 00212480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys 2014-10-15 19:22 - 2014-07-17 03:21 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys 2014-10-15 19:22 - 2011-01-16 02:01 - 00389632 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe 2014-10-11 09:26 - 2014-10-11 09:26 - 00002220 _____ () C:\Users\alex\Desktop\Counter-Strike 1.6 LH.lnk 2014-10-11 09:26 - 2014-10-11 09:26 - 00002197 _____ () C:\Users\alex\Desktop\(UCP) Counter-Strike 1.6 LH.lnk ==================== One Month Modified Files and Folders ======= (If an entry is included in the fixlist, the file\folder will be moved.) 2014-11-10 19:56 - 2014-06-29 10:27 - 00000000 ____D () C:\Users\alex\AppData\Roaming\BitComet 2014-11-10 19:50 - 2009-07-14 06:45 - 00026144 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2014-11-10 19:50 - 2009-07-14 06:45 - 00026144 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2014-11-10 19:34 - 2014-06-29 10:05 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job 2014-11-10 19:17 - 2014-06-29 10:02 - 00000994 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2014-11-10 19:17 - 2014-06-29 10:02 - 00000990 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2014-11-10 17:03 - 2014-06-28 22:16 - 01251884 _____ () C:\Windows\WindowsUpdate.log 2014-11-09 22:46 - 2009-07-14 07:13 - 00782470 _____ () C:\Windows\system32\PerfStringBackup.INI 2014-11-09 22:41 - 2010-11-21 05:47 - 00106262 _____ () C:\Windows\PFRO.log 2014-11-09 22:41 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2014-11-09 22:41 - 2009-07-14 06:51 - 00043328 _____ () C:\Windows\setupact.log 2014-11-09 22:41 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\Cursors 2014-11-09 12:31 - 2014-07-01 08:50 - 00000000 ____D () C:\Users\Guest\AppData\Local\Google 2014-11-09 12:31 - 2014-07-01 08:50 - 00000000 ____D () C:\Users\Guest\AppData\Local\Comodo 2014-11-09 12:31 - 2014-07-01 08:50 - 00000000 ____D () C:\Users\alex\AppData\Local\Comodo 2014-11-09 12:31 - 2014-07-01 08:50 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Google 2014-11-09 12:31 - 2014-07-01 08:50 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Comodo 2014-11-09 12:31 - 2014-06-29 10:02 - 00000000 ____D () C:\Users\alex\AppData\Local\Google 2014-11-09 12:30 - 2009-07-14 05:20 - 00000000 ___HD () C:\Windows\system32\GroupPolicy 2014-11-09 12:30 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\GroupPolicy 2014-11-09 12:07 - 2014-07-01 08:50 - 00000008 __RSH () C:\ProgramData\ntuser.pol 2014-11-09 10:24 - 2014-06-28 23:50 - 00001061 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk 2014-11-09 10:24 - 2014-06-28 23:50 - 00001049 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk 2014-11-09 10:24 - 2014-06-28 22:22 - 00000969 _____ () C:\Users\alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2014-11-09 10:24 - 2009-07-14 04:34 - 00000580 _____ () C:\Windows\win.ini 2014-11-04 16:09 - 2014-06-28 23:02 - 00442286 _____ () C:\Windows\DPINST.LOG 2014-11-04 15:53 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\NDF 2014-11-03 17:29 - 2014-07-11 11:35 - 00000000 ____D () C:\Users\alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games 2014-10-31 19:12 - 2014-06-29 10:02 - 00003990 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2014-10-31 19:12 - 2014-06-29 10:02 - 00003738 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2014-10-31 19:08 - 2014-09-19 12:43 - 00000000 ____D () C:\Users\alex\AppData\Roaming\Adobe 2014-10-31 19:08 - 2014-09-19 12:43 - 00000000 ____D () C:\Users\alex\AppData\Local\Adobe 2014-10-30 17:58 - 2014-07-01 09:08 - 00000000 ____D () C:\ProgramData\TEMP 2014-10-30 13:25 - 2010-11-21 05:27 - 00275080 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe 2014-10-28 15:32 - 2009-07-14 07:09 - 00000000 ____D () C:\Windows\System32\Tasks\WPD 2014-10-18 15:40 - 2014-06-28 22:28 - 00000000 _RSHD () C:\Windows Activation Technologies 2014-10-18 15:40 - 2014-06-28 22:22 - 00000000 ____D () C:\Users\alex 2014-10-18 15:40 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\AppCompat 2014-10-18 15:40 - 2009-07-14 05:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared 2014-10-18 15:39 - 2014-07-01 14:04 - 00000000 ___SD () C:\Windows\system32\CompatTel 2014-10-18 15:39 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\Dism 2014-10-18 15:39 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\bg-BG 2014-10-18 15:39 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\Dism 2014-10-18 15:39 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\bg-BG 2014-10-18 15:39 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache 2014-10-18 15:39 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\registration 2014-10-17 20:02 - 2014-07-09 11:51 - 00000000 ____D () C:\Users\alex\Desktop\Photoscape 2014-10-16 13:46 - 2009-07-14 06:45 - 05036256 _____ () C:\Windows\system32\FNTCACHE.DAT 2014-10-16 00:16 - 2014-06-28 23:39 - 00000000 ____D () C:\ProgramData\Microsoft Help 2014-10-16 00:10 - 2014-08-09 13:00 - 00000000 ____D () C:\Windows\system32\MRT 2014-10-16 00:02 - 2014-06-28 23:53 - 103265616 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2014-10-15 20:06 - 2014-09-01 13:31 - 00002026 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Counter-Strike.lnk 2014-10-15 20:06 - 2014-09-01 13:31 - 00002018 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Half-Life.lnk 2014-10-15 20:06 - 2014-09-01 13:31 - 00001988 _____ () C:\Users\Public\Desktop\Half-Life.lnk 2014-10-15 20:06 - 2014-09-01 13:31 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Counter-Strike 1.6 2014-10-14 13:58 - 2014-06-29 00:33 - 00000000 ____D () C:\ProgramData\Skype 2014-10-11 23:31 - 2014-09-09 14:38 - 00000000 ____D () C:\Users\alex\AppData\Local\PMB Files 2014-10-11 23:31 - 2014-09-09 14:37 - 00000000 ____D () C:\ProgramData\PMB Files ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\System32\winlogon.exe [2014-10-15 19:22] - [2011-01-16 02:01] - 0389632 ____A (Microsoft Corporation) 81257415084B84F3C0D95C381A8D4C8F C:\Windows\System32\wininit.exe => File is digitally signed C:\Windows\SysWOW64\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\System32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\System32\services.exe => File is digitally signed C:\Windows\System32\User32.dll [2010-11-21 05:24] - [2011-01-16 02:01] - 1008640 ____A (Microsoft Corporation) 0B864E15A0BADFF0E7BB8B59009FDDCF C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\System32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\System32\rpcss.dll => File is digitally signed C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2014-11-05 14:22 ==================== End Of Log ============================
  3. wasew1914

    Много вируси + изкачащи

    Системата вече работи по добре след процедурите сега пуснах ESET да сканира и като свърши сканирането що поставя резултатите а да ви попитам след ESET като пусна Farbar със fixlog файла или не
  4. wasew1914

    Много вируси + изкачащи

    Malwarebytes Anti -Malware Malwarebytes Anti-Malware www.malwarebytes.org Scan Date: 9.11.2014 г. Scan Time: 22:13:49 ч. Logfile: яь.txt Administrator: Yes Version: 2.00.3.1025 Malware Database: v2014.11.09.07 Rootkit Database: v2014.11.08.01 License: Trial Malware Protection: Enabled Malicious Website Protection: Enabled Self-protection: Disabled OS: Windows 7 Service Pack 1 CPU: x64 File System: NTFS User: alex Scan Type: Threat Scan Result: Completed Objects Scanned: 343209 Time Elapsed: 25 min, 55 sec Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Enabled Deep Rootkit Scan: Enabled Heuristics: Enabled PUP: Enabled PUM: Enabled Processes: 0 (No malicious items detected) Modules: 0 (No malicious items detected) Registry Keys: 16 PUP.Optional.Multiplug, HKLM\SOFTWARE\CLASSES\TYPELIB\{157B1AA6-3E5C-404A-9118-C1D91F537040}, Quarantined, [f85c0633d7a5c67005f64c645da51de3], PUP.Optional.Multiplug, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{157B1AA6-3E5C-404A-9118-C1D91F537040}, Quarantined, [f85c0633d7a5c67005f64c645da51de3], PUP.Optional.Trolatunt.A, HKU\S-1-5-21-2631065296-950240196-2606291329-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{59BC35CC-F3CB-4E2B-A21D-481D781207AF}, Quarantined, [79db1f1a5e1efe3822f03e77857df907], PUP.Optional.MultiPlug, HKLM\SOFTWARE\CLASSES\MySearch.MySearch, Quarantined, [f65e1c1dafcdd56125e378cba0638a76], PUP.Optional.MultiPlug, HKLM\SOFTWARE\CLASSES\MySearch.MySearch.2.1, Quarantined, [c4905edb74083ff72fd96dd6699ae11f], PUP.Optional.RichMediaView.A, HKLM\SOFTWARE\WOW6432NODE\RichMediaViewV1release7753, Quarantined, [8ec659e0700c280e9cd72828966dcc34], PUP.Optional.SystemK.A, HKLM\SOFTWARE\WOW6432NODE\SystemK, Quarantined, [de76e75295e7dc5a6eeabc8304ffd62a], PUP.Optional.Trolatunt.A, HKLM\SOFTWARE\WOW6432NODE\trolatunt, Quarantined, [86ce7dbc720a86b0c8dcafac20e327d9], PUP.Optional.MultiPlug, HKLM\SOFTWARE\WOW6432NODE\CLASSES\MySearch.MySearch, Quarantined, [86ce38013745999d8385f2514fb408f8], PUP.Optional.MultiPlug, HKLM\SOFTWARE\WOW6432NODE\CLASSES\MySearch.MySearch.2.1, Quarantined, [54004aefbcc03402e127c1829172d828], PUP.Optional.SettingsManager.A, HKLM\SOFTWARE\WOW6432NODE\SYSTEMK\General, Quarantined, [5ff546f39eded363b5342834b053e31d], PUP.Optional.MaintainerSvc.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\MaintainerSvc6.89.982339, Quarantined, [a9abaf8ad7a516206cccadfb33d13cc4], PUP.Optional.SystemK.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\SystemK, Quarantined, [a0b447f2ff7ddf57e84c4704ab58fd03], PUP.Optional.PlusHD.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\Plus-HD-9.5, Quarantined, [9cb8f148750778beadbba2bb51b2f808], PUP.Optional.MindSpark.A, HKU\S-1-5-21-2631065296-950240196-2606291329-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\Mindspark, Quarantined, [c78d48f1eb91c3735ca6d7d1b84c659b], PUP.Optional.FastStart.A, HKU\S-1-5-21-2631065296-950240196-2606291329-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MOZILLA\EXTENDS, Quarantined, [094bd6633a422d09bcc8e255c53eda26], Registry Values: 2 PUP.Optional.SettingsManager.A, HKLM\SOFTWARE\WOW6432NODE\SYSTEMK|browser, ie ff cr, Quarantined, [4c082316304c16201dcd7edee81b5ba5] PUP.Optional.FastStart.A, HKU\S-1-5-21-2631065296-950240196-2606291329-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MOZILLA\EXTENDS|appid, faststartff@gmail.com, Quarantined, [094bd6633a422d09bcc8e255c53eda26] Registry Data: 2 PUP.Optional.Qone8, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|DefaultScope, {33BB0A4E-99AF-4226-BDF6-49120163DE86}, Good: ({0633EE93-D776-472f-A0FF-E1416B8B2E3A}), Bad: ({33BB0A4E-99AF-4226-BDF6-49120163DE86}),Replaced,[b2a248f196e6171f946551eff015c040] PUP.Optional.Qone8, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|DefaultScope, {33BB0A4E-99AF-4226-BDF6-49120163DE86}, Good: ({0633EE93-D776-472f-A0FF-E1416B8B2E3A}), Bad: ({33BB0A4E-99AF-4226-BDF6-49120163DE86}),Replaced,[9fb53801e29a0c2a49b03b0510f58c74] Folders: 3 PUP.Optional.CrossRider.A, C:\Users\alex\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_olnkgiapbjhdboldbhkagdodklkphaip_0, Quarantined, [470db0893844ad89db422adc847f2cd4], PUP.Optional.CrossRider.A, C:\Users\alex\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\olnkgiapbjhdboldbhkagdodklkphaip, Quarantined, [e27256e354287bbbe841ad59679ca15f], PUP.Optional.MindSpark.A, C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\tr76ic8y.default\SafePCRepair_89, Quarantined, [7adaf24744381d19c4467f8b4ab934cc], Files: 15 PUP.Optional.OpenCandy, C:\Users\alex\Downloads\DAEMONToolsUltra230-0254.exe, Quarantined, [1044a7920e6e0c2a2fa99cca6f96ad53], PUP.Optional.InstalleRex, C:\Users\Public\Music\Sample Music\akcent_ft_lidia_buble_ft_ddy_-_kamelia_2014.mp3 (1).exe, Quarantined, [afa50237601c2f07637c535327da45bb], PUP.Optional.IStartSurf.A, C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\istartsurf.xml, Quarantined, [1d37e950abd175c1a6ba013c45be5ba5], PUP.Optional.CrossRider.A, C:\Users\alex\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_olnkgiapbjhdboldbhkagdodklkphaip_0.localstorage, Quarantined, [b69e6fca6d0fd561149bf369fc07649c], PUP.Optional.CrossRider.A, C:\Users\alex\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_olnkgiapbjhdboldbhkagdodklkphaip_0\1, Quarantined, [470db0893844ad89db422adc847f2cd4], PUP.Optional.CrossRider.A, C:\Users\alex\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\olnkgiapbjhdboldbhkagdodklkphaip\000043.ldb, Quarantined, [e27256e354287bbbe841ad59679ca15f], PUP.Optional.CrossRider.A, C:\Users\alex\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\olnkgiapbjhdboldbhkagdodklkphaip\000054.ldb, Quarantined, [e27256e354287bbbe841ad59679ca15f], PUP.Optional.CrossRider.A, C:\Users\alex\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\olnkgiapbjhdboldbhkagdodklkphaip\000055.log, Quarantined, [e27256e354287bbbe841ad59679ca15f], PUP.Optional.CrossRider.A, C:\Users\alex\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\olnkgiapbjhdboldbhkagdodklkphaip\CURRENT, Quarantined, [e27256e354287bbbe841ad59679ca15f], PUP.Optional.CrossRider.A, C:\Users\alex\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\olnkgiapbjhdboldbhkagdodklkphaip\LOCK, Quarantined, [e27256e354287bbbe841ad59679ca15f], PUP.Optional.CrossRider.A, C:\Users\alex\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\olnkgiapbjhdboldbhkagdodklkphaip\LOG, Quarantined, [e27256e354287bbbe841ad59679ca15f], PUP.Optional.CrossRider.A, C:\Users\alex\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\olnkgiapbjhdboldbhkagdodklkphaip\LOG.old, Quarantined, [e27256e354287bbbe841ad59679ca15f], PUP.Optional.CrossRider.A, C:\Users\alex\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\olnkgiapbjhdboldbhkagdodklkphaip\MANIFEST-000053, Quarantined, [e27256e354287bbbe841ad59679ca15f], PUP.Optional.MindSpark.A, C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\tr76ic8y.default\SafePCRepair_89\5AB23686-6CDF-4A4B-8A69-92B424FD8F5F.sqlite, Quarantined, [7adaf24744381d19c4467f8b4ab934cc], PUP.Optional.MindSpark.A, C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\tr76ic8y.default\SafePCRepair_89\STUB.sqlite, Quarantined, [7adaf24744381d19c4467f8b4ab934cc], Physical Sectors: 0 (No malicious items detected) (end)
  5. wasew1914

    Много вируси + изкачащи

    Ето Фикл лога който искахте Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 08-11-2014 01 Ran by alex at 2014-11-09 12:10:38 Run:2 Running from C:\Users\alex\Downloads Loaded Profile: alex (Available profiles: alex) Boot Mode: Normal ============================================== Content of fixlist: ***************** start closeprocesses: C:\ProgramData\29a882f6-268a-4df9-b011-02fdee89f086\maintainer.exe HKU\S-1-5-21-2631065296-950240196-2606291329-1000\...\Run: [AdobeBridge] => [X] HKU\S-1-5-21-2631065296-950240196-2606291329-1000\...\Run: [buenosearch] => C:\Users\alex\AppData\Local\buenosearch\buenosearch\1.3.8.2\buenosearch.exe C:\Users\alex\AppData\Local\buenosearch\buenosearch\1.3.8.2\buenosearch.exe HKU\S-1-5-21-2631065296-950240196-2606291329-1000\...\MountPoints2: F - F:\setup.exe HKU\S-1-5-21-2631065296-950240196-2606291329-1000\...\MountPoints2: {34c73c43-ff63-11e3-b913-14dae9cb71b4} - F:\setup.exe HKU\S-1-5-21-2631065296-950240196-2606291329-1000\...\MountPoints2: {375aadcd-0c50-11e4-a877-14dae9cb71b4} - I:\Autorun.exe HKU\S-1-5-21-2631065296-950240196-2606291329-1000\...\MountPoints2: {cc807fe4-084b-11e4-aa1a-14dae9cb71b4} - H:\Go.exe HKU\S-1-5-21-2631065296-950240196-2606291329-1000\...\MountPoints2: {e0ea64fd-123d-11e4-919b-14dae9cb71b4} - H:\Startme.exe GroupPolicy: Group Policy on Chrome detected <======= ATTENTION CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION FF Extension: Plus-HD-9.5 - C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\tr76ic8y.default\Extensions\e46480cf-7cf6-495e-af69-573053f52c72@b33ab36d-5952-49aa-adb2-a41b3dbe51a5.com [2014-11-07] CHR dev: Chrome dev build detected! <======= ATTENTION ioloService C:\Program Files (x86)\SafePCRepair\ioloToolService.exe [X] C:\awh8C66.tmp C:\awh91A4.tmp C:\awh8DDD.tmp C:\awh6DEE.tmp C:\awh30EE.tmp C:\awh33BC.tmp C:\awh4143.tmp C:\awh45E5.tmp C:\awh8610.tmp C:\awh474C.tmp C:\awh8C09.tmp C:\awhB6A1.tmp C:\awhA247.tmp C:\awh93D6.tmp C:\awhBEEB.tmp C:\awhA469.tmp C:\awh7C02.tmp C:\awh8C57.tmp C:\awh7158.tmp C:\awh8D31.tmp C:\awh7879.tmp C:\awh8FA1.tmp C:\awh9848.tmp C:\awh8796.tmp C:\awhB6EF.tmp C:\awhB78B.tmp C:\awhAF13.tmp C:\awhD6BE.tmp C:\awhB192.tmp C:\awhD326.tmp C:\awh624B.tmp C:\awh8FB1.tmp C:\awh7177.tmp C:\awh4BFE.tmp C:\awh6F07.tmp C:\awh3BA8.tmp C:\awh452A.tmp C:\awh49AC.tmp C:\awh5C04.tmp C:\awh5CCF.tmp C:\awh2A2B.tmp C:\awh3A8F.tmp C:\awh9F5A.tmp C:\awhA581.tmp C:\awh93D5.tmp C:\awh974F.tmp C:\ProgramData\29a882f6-268a-4df9-b011-02fdee89f086 C:\awh8CE3.tmp C:\awhDE94.tmp C:\awh90D9.tmp C:\awhF0F3.tmp C:\awh4D93.tmp C:\awh55AD.tmp C:\awh60E4.tmp C:\awhE57E.tmp C:\awh4865.tmp C:\awhD4B7.tmp C:\awhFFDF.tmp C:\awh49DB.tmp C:\awhC1A0.tmp C:\Windows\Tasks\SO_Booster-S-126785670.job EmptyTemp: reboot: end ***************** Processes closed successfully. "C:\ProgramData\29a882f6-268a-4df9-b011-02fdee89f086\maintainer.exe" => File/Directory not found. HKU\S-1-5-21-2631065296-950240196-2606291329-1000\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeBridge => Value not found. HKU\S-1-5-21-2631065296-950240196-2606291329-1000\Software\Microsoft\Windows\CurrentVersion\Run\\buenosearch => Value not found. "C:\Users\alex\AppData\Local\buenosearch\buenosearch\1.3.8.2\buenosearch.exe" => File/Directory not found. "HKU\S-1-5-21-2631065296-950240196-2606291329-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\S-1-5-21-2631065296-950240196-2606291329-1000" => Key not found. "HKU\S-1-5-21-2631065296-950240196-2606291329-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{34c73c43-ff63-11e3-b913-14dae9cb71b4}" => Key not found. "HKCR\CLSID\{34c73c43-ff63-11e3-b913-14dae9cb71b4}" => Key not found. "HKU\S-1-5-21-2631065296-950240196-2606291329-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{375aadcd-0c50-11e4-a877-14dae9cb71b4}" => Key not found. "HKCR\CLSID\{375aadcd-0c50-11e4-a877-14dae9cb71b4}" => Key not found. "HKU\S-1-5-21-2631065296-950240196-2606291329-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{cc807fe4-084b-11e4-aa1a-14dae9cb71b4}" => Key not found. "HKCR\CLSID\{cc807fe4-084b-11e4-aa1a-14dae9cb71b4}" => Key not found. "HKU\S-1-5-21-2631065296-950240196-2606291329-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e0ea64fd-123d-11e4-919b-14dae9cb71b4}" => Key not found. "HKCR\CLSID\{e0ea64fd-123d-11e4-919b-14dae9cb71b4}" => Key not found. "C:\Windows\system32\GroupPolicy\Machine" => File/Directory not found. "HKLM\SOFTWARE\Policies\Google" => Key not found. C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\tr76ic8y.default\Extensions\e46480cf-7cf6-495e-af69-573053f52c72@b33ab36d-5952-49aa-adb2-a41b3dbe51a5.com not found. CHR dev: Chrome dev build detected! <======= ATTENTION => Error: No automatic fix found for this entry. ioloService => Error: No automatic fix found for this entry. "C:\Program Files (x86)\SafePCRepair\ioloToolService.exe [X]" => File/Directory not found. "C:\awh8C66.tmp" => File/Directory not found. "C:\awh91A4.tmp" => File/Directory not found. "C:\awh8DDD.tmp" => File/Directory not found. "C:\awh6DEE.tmp" => File/Directory not found. "C:\awh30EE.tmp" => File/Directory not found. "C:\awh33BC.tmp" => File/Directory not found. "C:\awh4143.tmp" => File/Directory not found. "C:\awh45E5.tmp" => File/Directory not found. "C:\awh8610.tmp" => File/Directory not found. "C:\awh474C.tmp" => File/Directory not found. "C:\awh8C09.tmp" => File/Directory not found. "C:\awhB6A1.tmp" => File/Directory not found. "C:\awhA247.tmp" => File/Directory not found. "C:\awh93D6.tmp" => File/Directory not found. "C:\awhBEEB.tmp" => File/Directory not found. "C:\awhA469.tmp" => File/Directory not found. "C:\awh7C02.tmp" => File/Directory not found. "C:\awh8C57.tmp" => File/Directory not found. "C:\awh7158.tmp" => File/Directory not found. "C:\awh8D31.tmp" => File/Directory not found. "C:\awh7879.tmp" => File/Directory not found. "C:\awh8FA1.tmp" => File/Directory not found. "C:\awh9848.tmp" => File/Directory not found. "C:\awh8796.tmp" => File/Directory not found. "C:\awhB6EF.tmp" => File/Directory not found. "C:\awhB78B.tmp" => File/Directory not found. "C:\awhAF13.tmp" => File/Directory not found. "C:\awhD6BE.tmp" => File/Directory not found. "C:\awhB192.tmp" => File/Directory not found. "C:\awhD326.tmp" => File/Directory not found. "C:\awh624B.tmp" => File/Directory not found. "C:\awh8FB1.tmp" => File/Directory not found. "C:\awh7177.tmp" => File/Directory not found. "C:\awh4BFE.tmp" => File/Directory not found. "C:\awh6F07.tmp" => File/Directory not found. "C:\awh3BA8.tmp" => File/Directory not found. "C:\awh452A.tmp" => File/Directory not found. "C:\awh49AC.tmp" => File/Directory not found. "C:\awh5C04.tmp" => File/Directory not found. "C:\awh5CCF.tmp" => File/Directory not found. "C:\awh2A2B.tmp" => File/Directory not found. "C:\awh3A8F.tmp" => File/Directory not found. "C:\awh9F5A.tmp" => File/Directory not found. "C:\awhA581.tmp" => File/Directory not found. "C:\awh93D5.tmp" => File/Directory not found. "C:\awh974F.tmp" => File/Directory not found. "C:\ProgramData\29a882f6-268a-4df9-b011-02fdee89f086" => File/Directory not found. "C:\awh8CE3.tmp" => File/Directory not found. "C:\awhDE94.tmp" => File/Directory not found. "C:\awh90D9.tmp" => File/Directory not found. "C:\awhF0F3.tmp" => File/Directory not found. "C:\awh4D93.tmp" => File/Directory not found. "C:\awh55AD.tmp" => File/Directory not found. "C:\awh60E4.tmp" => File/Directory not found. "C:\awhE57E.tmp" => File/Directory not found. "C:\awh4865.tmp" => File/Directory not found. "C:\awhD4B7.tmp" => File/Directory not found. "C:\awhFFDF.tmp" => File/Directory not found. "C:\awh49DB.tmp" => File/Directory not found. "C:\awhC1A0.tmp" => File/Directory not found. "C:\Windows\Tasks\SO_Booster-S-126785670.job" => File/Directory not found. EmptyTemp: => Removed 619.1 MB temporary data. The system needed a reboot. ==== End of Fixlog ==== Zoek Zoek.exe v5.0.0.0 Updated 08-November-2014 Tool run by alex on ­Ґ¤ 09.11.2014 Ј. at 12:18:41,36. Microsoft Windows 7 Ultimate 6.1.7601 Service Pack 1 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\alex\Desktop\zoek.exe [scan all users] [script inserted] ==== System Restore Info ====================== 9.11.2014 г. 12:20:19 Zoek.exe System Restore Point Created Succesfully. ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Deleting Services ====================== ==== FireFox Fix ====================== ProfilePath: C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\tr76ic8y.default user.js not found ---- Lines trolatunt removed from prefs.js ---- user_pref("extensions.trolatunt.asul", "1408656770303"); user_pref("extensions.trolatunt.aul", "1408656765780"); user_pref("extensions.trolatunt.irl", true); user_pref("extensions.trolatunt.is", "smdvbg"); user_pref("extensions.trolatunt.ug", "119AC213-5C23-4248-8287-E27BD4A2806D"); ---- FireFox user.js and prefs.js backups ---- prefs_09.11.2014Ј._1230_.backup ==== Deleting Files \ Folders ====================== C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\tr76ic8y.default\extensions\89ffxtbr@SafePCRepair_89.com not found C:\Users\alex\AppData\LocalLow\{0BF63276-82D2-4BCD-D78E-E7098BB20131} deleted C:\Users\alex\AppData\LocalLow\{2226A351-2FC6-7F1C-BAF0-323F3A1489C0} deleted C:\Users\alex\AppData\LocalLow\{8C442B4B-024E-5819-9436-F6BD9F7E96CA} deleted C:\Users\alex\AppData\LocalLow\{9D8280A1-DA63-3F28-C625-D27DE39BA395} deleted C:\Users\alex\AppData\LocalLow\{9E6F3DFE-68FB-5F40-B488-AE6B52321D71} deleted C:\Users\alex\AppData\LocalLow\{DF2D8641-865A-542C-C89A-6F395CC596D2} deleted C:\Users\alex\AppData\LocalLow\{EDF5181F-7059-1F78-FA91-70B934D4968B} deleted C:\Users\alex\AppData\LocalLow\{FFE6C686-A2BE-0180-1B33-9D9D3C50EEE1} deleted C:\Users\alex\AppData\Local\Packages\windows_ie_ac_001\AC\{0BF63276-82D2-4BCD-D78E-E7098BB20131} deleted C:\Users\alex\AppData\Local\Packages\windows_ie_ac_001\AC\{2226A351-2FC6-7F1C-BAF0-323F3A1489C0} deleted C:\Users\alex\AppData\Local\Packages\windows_ie_ac_001\AC\{8C442B4B-024E-5819-9436-F6BD9F7E96CA} deleted C:\Users\alex\AppData\Local\Packages\windows_ie_ac_001\AC\{9D8280A1-DA63-3F28-C625-D27DE39BA395} deleted C:\Users\alex\AppData\Local\Packages\windows_ie_ac_001\AC\{9E6F3DFE-68FB-5F40-B488-AE6B52321D71} deleted C:\Users\alex\AppData\Local\Packages\windows_ie_ac_001\AC\{DF2D8641-865A-542C-C89A-6F395CC596D2} deleted C:\Users\alex\AppData\Local\Packages\windows_ie_ac_001\AC\{EDF5181F-7059-1F78-FA91-70B934D4968B} deleted C:\Users\alex\AppData\Local\Packages\windows_ie_ac_001\AC\{FFE6C686-A2BE-0180-1B33-9D9D3C50EEE1} deleted C:\Users\alex\AppData\Local\19402 deleted C:\PROGRA~3\Wideblue installer deleted C:\PROGRA~2\save on deleted C:\PROGRA~2\purIcechop deleted C:\PROGRA~2\Mozilla Firefox\browser\searchplugins\default-search.xml deleted C:\PROGRA~2\COMMON~1\Config\uninstinethnfd.exe deleted C:\PROGRA~2\COMMON~1\Config deleted C:\awh2D94.tmp deleted C:\awh31B9.tmp deleted C:\awh34E7.tmp deleted C:\awh37B2.tmp deleted C:\awh37C2.tmp deleted C:\awh383E.tmp deleted C:\awh39D4.tmp deleted C:\awh3B6A.tmp deleted C:\awh3C63.tmp deleted C:\awh3DF6.tmp deleted C:\awh3E76.tmp deleted C:\awh3EE3.tmp deleted C:\awh3F12.tmp deleted C:\awh3F8F.tmp deleted C:\awh3FCD.tmp deleted C:\awh4134.tmp deleted C:\awh41A1.tmp deleted C:\awh41EF.tmp deleted C:\awh4346.tmp deleted C:\awh4356.tmp deleted C:\awh43F2.tmp deleted C:\awh4893.tmp deleted C:\awh48C2.tmp deleted C:\awh4910.tmp deleted C:\awh49FA.tmp deleted C:\awh4A19.tmp deleted C:\awh4B32.tmp deleted C:\awh4BCE.tmp deleted C:\awh4BFD.tmp deleted C:\awh4C0D.tmp deleted C:\awh4C3B.tmp deleted C:\awh4D35.tmp deleted C:\awh4DE1.tmp deleted C:\awh4ECB.tmp deleted C:\awh4F19.tmp deleted C:\awh511B.tmp deleted C:\awh51F6.tmp deleted C:\awh5540.tmp deleted C:\awh5984.tmp deleted C:\awh5A8D.tmp deleted C:\awh5B97.tmp deleted C:\awh5C71.tmp deleted C:\awh60C5.tmp deleted C:\awh6557.tmp deleted C:\awh68A1.tmp deleted C:\awh6A94.tmp deleted C:\awh7638.tmp deleted C:\awh7667.tmp deleted C:\awh81AD.tmp deleted C:\awh896A.tmp deleted C:\awh952D.tmp deleted C:\awh99BF.tmp deleted C:\awhA1F9.tmp deleted C:\awhB85D.tmp deleted C:\awhEF44.tmp deleted C:\Windows\sysWoW64\config\systemprofile\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Browse and Search the Internet.lnk deleted C:\PROGRA~3\InstallMate deleted C:\PROGRA~3\systemk deleted C:\Users\alex\AppData\LocalLow\{B985BEB8-B811-06F0-8E23-186151910F9B} deleted C:\windows\SysNative\Tasks\Yahoo! Search Updater deleted C:\windows\SysNative\tasks\SO_Booster-S-126785670 deleted C:\windows\SysNative\tasks\Buenosearch deleted C:\Windows\SysNative\config\systemprofile\Searches deleted C:\windows\SysNative\GroupPolicy\User deleted C:\Windows\Syswow64\GroupPolicy\Machine deleted C:\Windows\Syswow64\GroupPolicy\gpt.ini deleted C:\Windows\Syswow64\hfnapi.dll deleted C:\Users\alex\Desktop\Driver Genius.lnk deleted ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions] "ext@RichMediaViewV1release7753.net"="C:\Program Files (x86)\RichMediaViewV1\RichMediaViewV1release7753\ff" [] ==== Firefox Extensions ====================== AppDir: C:\Program Files (x86)\Mozilla Firefox - Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} - Skype Click to Call - %AppDir%\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi ==== Firefox Plugins ====================== Profilepath: C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\tr76ic8y.default 77B8694352764F6079A2332FAD7FD426 - C:\Users\alex\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll - Unity Player ==== Fake Chromium Profiles Check ====================== Fake profile C:\Users\Administrator\AppData\Local\Google\Chrome deleted Fake profile C:\Users\Administrator\AppData\Local\Google\Chrome SxS deleted Fake profile C:\Users\Administrator\AppData\Local\Comodo\Dragon deleted Fake profile C:\Users\alex\AppData\Local\Google\Chrome SxS deleted Fake profile C:\Users\alex\AppData\Local\Comodo\Dragon deleted Fake profile C:\Users\Guest\AppData\Local\Google\Chrome deleted Fake profile C:\Users\Guest\AppData\Local\Google\Chrome SxS deleted Fake profile C:\Users\Guest\AppData\Local\Comodo\Dragon deleted ==== Chromium Fix ====================== C:\Users\alex\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.istartsurf.com_0.localstorage deleted successfully C:\Users\alex\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_en.softonic.com_0.localstorage deleted successfully ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.google.com" "Default_Page_URL"="http://www.google.com" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Default_Search_URL"="http://www.google.com" "Default_Page_URL"="http://www.google.com" "Start Page"="http://www.google.com" "Search Page"="http://www.google.com" [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main] "Default_Search_URL"="http://www.google.com" "Default_Page_URL"="http://www.google.com" "Start Page"="http://www.google.com" "Search Page"="http://www.google.com" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{33BB0A4E-99AF-4226-BDF6-49120163DE86}" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}] not found New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" "Start Page"="http://www.google.com" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" "Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" "Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main] "Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" "Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" "Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes {012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02" ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\ext@RichMediaViewV1release7753.net deleted successfully ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\48b98e91-7634-45bd-9f10-392785f56039 deleted successfully ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\alex\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FYY6H61G will be deleted at reboot C:\Users\alex\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TG8131O3 will be deleted at reboot ==== Empty FireFox Cache ====================== No FireFox Cache found ==== Empty Chrome Cache ====================== C:\Users\alex\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== No Java Cache Found ==== C:\zoek_backup content ====================== C:\zoek_backup (files=109 folders=30 9382706 bytes) ==== Empty Temp Folders ====================== C:\Users\alex\AppData\Local\Temp will be emptied at reboot C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp will be emptied at reboot C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\alex\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\Users\alex\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FYY6H61G" not found "C:\Users\alex\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TG8131O3" not found "C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp\Low" not deleted ==== EOF on ­Ґ¤ 09.11.2014 Ј. at 12:41:03,14 ======================
  6. wasew1914

    Много вируси + изкачащи

    Всичко направих както пише и ми отваря само по един дневник
  7. wasew1914

    Много вируси + изкачащи

    Сега ми се показаха само по 1 дневник не повече FRST Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 08-11-2014 01 Ran by alex (administrator) on ALEX-PC on 09-11-2014 11:26:39 Running from C:\Users\alex\Downloads Loaded Profile: alex (Available profiles: alex) Platform: Windows 7 Ultimate Service Pack 1 (X64) OS Language: Български (България) Internet Explorer Version 11 Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe (AMD) C:\Windows\System32\atiesrxx.exe (AMD) C:\Windows\System32\atieclxx.exe (Microsoft Corporation) C:\Windows\System32\wlanext.exe (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe () C:\ProgramData\29a882f6-268a-4df9-b011-02fdee89f086\maintainer.exe () C:\Program Files (x86)\T-Mobile\ConnectionManager\BackgroundService\ServiceManager.exe (Nalpeiron Ltd.) C:\Windows\SysWOW64\nlssrv32.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe (Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe (Alcor Micro Corp.) C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe (DT Soft Ltd) C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe (www.BitComet.com) C:\Program Files\BitComet\BitComet.exe (Sony) C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe (Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe () C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe (www.BitComet.com) C:\Program Files\BitComet\tools\BitCometService.exe (Virage Logic Corporation / Sonic Focus) C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe (Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe () C:\Program Files (x86)\T-Mobile\ConnectionManager\Background\ModemListener.exe (Disc Soft Ltd) C:\Program Files (x86)\DAEMON Tools Ultra\DiscSoftBusService.exe (Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\System32\audiodg.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2587944 2010-12-31] (ELAN Microelectronics Corp.) HKLM\...\Run: [AmIcoSinglun64] => C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [361984 2011-03-21] (Alcor Micro Corp.) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11860072 2011-06-09] (Realtek Semiconductor) HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2226280 2011-06-03] (Realtek Semiconductor) HKLM\...\Run: [MSC] => C:\Program Files\Microsoft Security Client\msseces.exe [1331288 2014-08-22] (Microsoft Corporation) HKLM\...\Run: [AdobeAAMUpdater-1.0] => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" HKLM-x32\...\Run: [sonicMasterTray] => C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe [984400 2010-07-09] (Virage Logic Corporation / Sonic Focus) HKLM-x32\...\Run: [Wireless Console 3] => C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [1601536 2010-09-23] () HKLM-x32\...\Run: [bCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation) HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-05-26] (Apple Inc.) HKLM-x32\...\Run: [T-Mobile ModemListener] => C:\Program Files (x86)\T-Mobile\ConnectionManager\Background\ModemListener.exe [114552 2012-12-05] () HKLM-x32\...\Run: [switchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated) HKU\S-1-5-21-2631065296-950240196-2606291329-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [357696 2010-04-01] (DT Soft Ltd) HKU\S-1-5-21-2631065296-950240196-2606291329-1000\...\Run: [bitComet] => C:\Program Files\BitComet\BitComet.exe [17257648 2013-12-31] (www.BitComet.com) HKU\S-1-5-21-2631065296-950240196-2606291329-1000\...\Run: [DAEMON Tools Ultra Agent] => C:\Program Files (x86)\DAEMON Tools Ultra\DTAgent.exe [3198224 2014-04-28] (Disc Soft Ltd) HKU\S-1-5-21-2631065296-950240196-2606291329-1000\...\Run: [sony PC Companion] => C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [468192 2014-09-01] (Sony) HKU\S-1-5-21-2631065296-950240196-2606291329-1000\...\Run: [AdobeBridge] => [X] HKU\S-1-5-21-2631065296-950240196-2606291329-1000\...\Run: [buenosearch] => C:\Users\alex\AppData\Local\buenosearch\buenosearch\1.3.8.2\buenosearch.exe HKU\S-1-5-21-2631065296-950240196-2606291329-1000\...\Run: [skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [22059616 2014-10-01] (Skype Technologies S.A.) HKU\S-1-5-21-2631065296-950240196-2606291329-1000\...\MountPoints2: F - F:\setup.exe HKU\S-1-5-21-2631065296-950240196-2606291329-1000\...\MountPoints2: {34c73c43-ff63-11e3-b913-14dae9cb71b4} - F:\setup.exe HKU\S-1-5-21-2631065296-950240196-2606291329-1000\...\MountPoints2: {375aadcd-0c50-11e4-a877-14dae9cb71b4} - I:\Autorun.exe HKU\S-1-5-21-2631065296-950240196-2606291329-1000\...\MountPoints2: {cc807fe4-084b-11e4-aa1a-14dae9cb71b4} - H:\Go.exe HKU\S-1-5-21-2631065296-950240196-2606291329-1000\...\MountPoints2: {e0ea64fd-123d-11e4-919b-14dae9cb71b4} - H:\Startme.exe Startup: C:\Users\alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GameRanger.lnk ShortcutTarget: GameRanger.lnk -> C:\Users\alex\AppData\Roaming\GameRanger\GameRanger\GameRanger.exe (GameRanger Technologies) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Reader Speed Launch.lnk ShortcutTarget: Adobe Reader Speed Launch.lnk -> C:\Program Files (x86)\Adobe\Reader 8.0\Reader\reader_sl.exe (Adobe Systems Incorporated) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Reader Synchronizer.lnk ShortcutTarget: Adobe Reader Synchronizer.lnk -> C:\Program Files (x86)\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe () GroupPolicy: Group Policy on Chrome detected <======= ATTENTION CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x1593C0A41A93CF01 HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = bg-BG StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = SearchScopes: HKLM-x32 - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = SearchScopes: HKCU - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation) Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation) Tcpip\Parameters: [DhcpNameServer] 88.80.96.2 88.80.96.7 FireFox: ======== FF ProfilePath: C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\tr76ic8y.default FF DefaultSearchEngine: Yahoo! Search FF SearchEngineOrder.3: Bing FF SelectedSearchEngine: Yahoo! Search FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_152.dll () FF Plugin: @microsoft.com/GENUINE -> disabled No File FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll () FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll () FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation) FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.) FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\alex\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS) FF Plugin HKCU: pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\np32dsw.dll (Macromedia, Inc.) FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\911bg.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\default-search.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\diribg.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\istartsurf.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\pe-bg.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\portalbgdict.xml FF Extension: Plus-HD-9.5 - C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\tr76ic8y.default\Extensions\e46480cf-7cf6-495e-af69-573053f52c72@b33ab36d-5952-49aa-adb2-a41b3dbe51a5.com [2014-11-07] FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2014-08-08] FF HKLM-x32\...\Firefox\Extensions: [ext@RichMediaViewV1release7753.net] - C:\Program Files (x86)\RichMediaViewV1\RichMediaViewV1release7753\ff FF Extension: No Name - C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\tr76ic8y.default\extensions\89ffxtbr@SafePCRepair_89.com [Not Found] FF Extension: No Name - C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\tr76ic8y.default\extensions\faststartff@gmail.com [Not Found] FF Extension: No Name - C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\tr76ic8y.default\extensions\{0c0bb4a8-45a4-4685-9c1d-08d98af4b926}.xpi [Not Found] FF Extension: No Name - C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\tr76ic8y.default\extensions\{B042753D-F57E-4e8e-A01B-7379A6D4CEFB} [Not Found] FF Extension: No Name - C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\tr76ic8y.default\extensions\67b66852-ecfb-49db-a836-51ece018b002@gmail.com [Not Found] Chrome: ======= CHR dev: Chrome dev build detected! <======= ATTENTION CHR Profile: C:\Users\alex\AppData\Local\Google\Chrome\User Data\Default ==================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R3 BITCOMET_HELPER_SERVICE; C:\Program Files\BitComet\tools\BitCometService.exe [1296728 2013-11-29] (www.BitComet.com) R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390176 2014-07-14] (Microsoft Corporation) R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1767520 2014-07-14] (Microsoft Corporation) R3 Disc Soft Bus Service; C:\Program Files (x86)\DAEMON Tools Ultra\DiscSoftBusService.exe [813328 2014-04-28] (Disc Soft Ltd) R2 MaintainerSvc6.89.982339; C:\ProgramData\29a882f6-268a-4df9-b011-02fdee89f086\maintainer.exe [123680 2014-11-09] () R2 Modem Device Helper; C:\Program Files (x86)\T-Mobile\ConnectionManager\BackgroundService\ServiceManager.exe [51576 2012-12-04] () R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [23784 2014-08-22] (Microsoft Corporation) R3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [368624 2014-08-22] (Microsoft Corporation) R2 nlsX86cc; C:\Windows\SysWOW64\nlssrv32.exe [66560 2011-09-22] (Nalpeiron Ltd.) [File not signed] S3 ioloService; C:\Program Files (x86)\SafePCRepair\ioloToolService.exe [X] S3 SwitchBoard; "C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [X] ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) S3 ALCATELUSB; C:\Windows\System32\Drivers\AlcatelUsb.sys [25088 2012-12-04] (Windows ® Codename Longhorn DDK provider) R3 dtscsibus; C:\Windows\System32\DRIVERS\dtscsibus.sys [29696 2014-06-29] (Disc Soft Ltd) S3 ggsomc; C:\Windows\System32\DRIVERS\ggsomc.sys [30424 2014-07-23] (Sony Mobile Communications) S3 jrdusbser; C:\Windows\System32\DRIVERS\jrdusbser.sys [120832 2012-12-04] (TCT International Mobile Ltd) R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15416 2009-07-20] ( ) R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [269008 2014-07-17] (Microsoft Corporation) R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [125584 2014-07-17] (Microsoft Corporation) R0 sptd; C:\Windows\System32\Drivers\sptd.sys [834544 2014-06-28] () [File not signed] U3 al5i325d; C:\Windows\System32\Drivers\al5i325d.sys [0 ] (Microsoft Corporation) S3 VGPU; System32\drivers\rdvgkmd.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) ==================== One Month Created Files and Folders ======== (If an entry is included in the fixlist, the file\folder will be moved.) 2014-11-09 11:16 - 2014-11-09 11:16 - 00050519 _____ () C:\Users\alex\Desktop\FRST.txt 2014-11-09 11:10 - 2014-11-09 11:10 - 00000000 ____D () C:\Users\alex\Downloads\FRST-OlderVersion 2014-11-09 10:37 - 2014-11-09 10:37 - 00001757 _____ () C:\Users\alex\Desktop\JRT.txt 2014-11-09 10:34 - 2014-11-09 10:34 - 00000000 ____D () C:\Windows\ERUNT 2014-11-09 10:33 - 2014-11-09 10:33 - 01706808 _____ (Thisisu) C:\Users\alex\Desktop\JRT.exe 2014-11-09 10:27 - 2014-11-09 11:27 - 00000000 ____D () C:\Users\alex\AppData\Roaming\Skype 2014-11-09 10:16 - 2014-11-09 10:24 - 00000000 ____D () C:\AdwCleaner 2014-11-09 10:15 - 2014-11-09 10:15 - 02145792 _____ () C:\Users\alex\Desktop\adwcleaner_4.100.exe 2014-11-09 09:42 - 2014-11-02 12:28 - 06310920 _____ (Geek Uninstaller) C:\Users\alex\Desktop\geek.exe 2014-11-09 09:41 - 2014-11-09 09:41 - 02571115 _____ () C:\Users\alex\Desktop\geek.zip 2014-11-09 09:34 - 2014-11-09 09:34 - 00000687 _____ () C:\awh8C66.tmp 2014-11-08 22:16 - 2014-11-08 22:16 - 00000687 _____ () C:\awh91A4.tmp 2014-11-08 21:39 - 2014-11-08 21:39 - 00000687 _____ () C:\awh8DDD.tmp 2014-11-08 21:06 - 2014-11-08 21:06 - 00000687 _____ () C:\awh6DEE.tmp 2014-11-08 15:24 - 2014-11-08 15:24 - 00000687 _____ () C:\awh30EE.tmp 2014-11-08 14:30 - 2014-11-08 14:30 - 00000687 _____ () C:\awh33BC.tmp 2014-11-08 14:01 - 2014-11-08 14:01 - 00000687 _____ () C:\awh4143.tmp 2014-11-08 11:29 - 2014-11-08 11:29 - 00000687 _____ () C:\awh45E5.tmp 2014-11-08 09:49 - 2014-11-08 09:49 - 00000687 _____ () C:\awh8610.tmp 2014-11-08 09:12 - 2014-11-08 09:12 - 00000687 _____ () C:\awh474C.tmp 2014-11-07 23:58 - 2014-11-07 23:58 - 00000687 _____ () C:\awh8C09.tmp 2014-11-07 23:46 - 2014-11-09 11:16 - 00020205 _____ () C:\Users\alex\Desktop\Addition.txt 2014-11-07 23:24 - 2014-11-07 23:24 - 00000687 _____ () C:\awhB6A1.tmp 2014-11-07 20:56 - 2014-11-09 11:11 - 00020205 _____ () C:\Users\alex\Downloads\Addition.txt 2014-11-07 20:52 - 2014-11-09 11:26 - 00015823 _____ () C:\Users\alex\Downloads\FRST.txt 2014-11-07 20:52 - 2014-11-09 11:26 - 00000000 ____D () C:\FRST 2014-11-07 20:44 - 2014-11-09 11:10 - 02115584 _____ (Farbar) C:\Users\alex\Downloads\FRST64.exe 2014-11-07 19:38 - 2014-11-07 19:38 - 00000687 _____ () C:\awhA247.tmp 2014-11-07 19:27 - 2014-11-07 19:28 - 00000000 ____D () C:\Program Files\MyDefrag v4.3.1 2014-11-07 19:27 - 2014-11-07 19:27 - 00004108 _____ () C:\Windows\System32\Tasks\MyDefrag v4.3.1 Monthly 2014-11-07 19:27 - 2014-11-07 19:27 - 00003428 _____ () C:\Windows\System32\Tasks\MyDefrag v4.3.1 Daily 2014-11-07 19:27 - 2014-11-07 19:27 - 00000863 _____ () C:\Users\Public\Desktop\MyDefrag.lnk 2014-11-07 19:27 - 2014-11-07 19:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyDefrag v4.3.1 2014-11-07 19:27 - 2010-05-21 12:11 - 01147392 _____ (J.C. Kessels) C:\Windows\system32\MyDefragScreenSaver_v4.3.1.exe 2014-11-07 19:27 - 2010-05-21 12:11 - 00485376 _____ (J.C. Kessels) C:\Windows\system32\MyDefragScreenSaver_v4.3.1.scr 2014-11-07 19:25 - 2014-11-07 19:26 - 02082630 _____ (J.C. Kessels ) C:\Users\alex\Downloads\MyDefrag-v4.3.1.exe 2014-11-07 19:04 - 2014-11-07 19:04 - 00000687 _____ () C:\awh93D6.tmp 2014-11-07 18:55 - 2014-11-07 18:55 - 00000687 _____ () C:\awhBEEB.tmp 2014-11-05 16:48 - 2014-11-05 16:48 - 00050396 _____ () C:\Users\alex\Desktop\ALTERNAN.TTF 2014-11-05 16:47 - 2014-11-05 16:47 - 00048592 _____ () C:\Users\alex\Desktop\CITYNB.TTF 2014-11-05 13:58 - 2014-11-05 13:58 - 00000687 _____ () C:\awhA469.tmp 2014-11-04 21:59 - 2014-11-04 21:59 - 00000687 _____ () C:\awh7C02.tmp 2014-11-04 21:28 - 2014-11-04 21:28 - 00000687 _____ () C:\awh8C57.tmp 2014-11-04 20:56 - 2014-11-04 20:56 - 00000687 _____ () C:\awh7158.tmp 2014-11-04 20:25 - 2014-11-04 20:25 - 00000687 _____ () C:\awh8D31.tmp 2014-11-04 19:51 - 2014-11-04 19:51 - 00000687 _____ () C:\awh7879.tmp 2014-11-04 19:19 - 2014-11-04 19:19 - 00000687 _____ () C:\awh8FA1.tmp 2014-11-04 18:47 - 2014-11-04 18:47 - 00000687 _____ () C:\awh9848.tmp 2014-11-04 18:11 - 2014-11-04 18:11 - 00000687 _____ () C:\awh8796.tmp 2014-11-04 17:35 - 2014-11-04 17:35 - 00000687 _____ () C:\awhB6EF.tmp 2014-11-04 17:03 - 2014-11-04 17:03 - 00000687 _____ () C:\awhB78B.tmp 2014-11-04 16:31 - 2014-11-04 16:31 - 00000687 _____ () C:\awhAF13.tmp 2014-11-04 16:22 - 2014-11-04 16:22 - 00001207 _____ () C:\Users\alex\Desktop\Driver Genius.lnk 2014-11-04 16:21 - 2014-11-04 16:21 - 08027504 _____ (Driver-Soft Inc. ) C:\Users\alex\Downloads\Driver_Genius.exe 2014-11-04 16:07 - 2014-11-04 16:07 - 26314800 _____ (Intel® Corporation) C:\Users\alex\Downloads\Wireless_15.3.1_Ds64.exe 2014-11-03 20:52 - 2014-11-03 20:52 - 00000687 _____ () C:\awhD6BE.tmp 2014-11-03 20:19 - 2014-11-03 20:19 - 00000687 _____ () C:\awhB192.tmp 2014-11-03 19:46 - 2014-11-03 19:46 - 00000687 _____ () C:\awhD326.tmp 2014-11-03 17:30 - 2014-11-03 20:10 - 00000000 ____D () C:\Users\alex\Documents\GTA San Andreas User Files 2014-11-03 17:16 - 2014-11-03 17:16 - 00000687 _____ () C:\awh624B.tmp 2014-11-03 16:18 - 2014-11-03 16:18 - 00000687 _____ () C:\awh8FB1.tmp 2014-11-03 16:16 - 2014-11-03 16:16 - 00142732 _____ () C:\Users\alex\Downloads\GTA.San.Andreas.ULTRA.MoD.v2 (2).torrent 2014-11-03 16:03 - 2014-11-03 16:03 - 00142732 _____ () C:\Users\alex\Downloads\GTA.San.Andreas.ULTRA.MoD.v2 (1).torrent 2014-11-03 16:01 - 2014-11-03 16:01 - 00142732 _____ () C:\Users\alex\Downloads\GTA.San.Andreas.ULTRA.MoD.v2.torrent 2014-11-02 10:45 - 2014-11-02 10:45 - 00000687 _____ () C:\awh7177.tmp 2014-11-02 10:11 - 2014-11-02 10:11 - 00000687 _____ () C:\awh4BFE.tmp 2014-11-01 21:33 - 2014-11-01 21:33 - 00000687 _____ () C:\awh6F07.tmp 2014-11-01 20:37 - 2014-11-01 20:37 - 00000687 _____ () C:\awh3BA8.tmp 2014-10-31 22:51 - 2014-10-31 22:51 - 00000687 _____ () C:\awh452A.tmp 2014-10-31 20:34 - 2014-10-31 20:34 - 00000687 _____ () C:\awh49AC.tmp 2014-10-31 19:30 - 2014-10-31 19:30 - 00000687 _____ () C:\awh5C04.tmp 2014-10-31 19:13 - 2014-10-31 19:13 - 00002253 _____ () C:\Users\Public\Desktop\Google Chrome.lnk 2014-10-31 19:13 - 2014-10-31 19:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome 2014-10-31 19:08 - 2014-10-31 19:08 - 00000000 ____D () C:\Users\alex\Documents\Updater5 2014-10-31 19:07 - 2014-10-31 19:07 - 00000687 _____ () C:\awh5CCF.tmp 2014-10-31 12:50 - 2014-10-31 12:50 - 00000687 _____ () C:\awh2A2B.tmp 2014-10-31 00:06 - 2014-10-31 00:06 - 00000687 _____ () C:\awh3A8F.tmp 2014-10-30 20:48 - 2014-10-30 20:48 - 00000687 _____ () C:\awh9F5A.tmp 2014-10-30 19:58 - 2014-10-30 19:58 - 00000687 _____ () C:\awhA581.tmp 2014-10-30 19:06 - 2014-10-30 19:06 - 00000687 _____ () C:\awh93D5.tmp 2014-10-30 14:01 - 2014-10-30 14:01 - 00000687 _____ () C:\awh974F.tmp 2014-10-30 12:31 - 2014-10-30 12:31 - 00000687 _____ () C:\awhA1F9.tmp 2014-10-30 00:17 - 2014-11-09 10:03 - 00000000 ____D () C:\ProgramData\29a882f6-268a-4df9-b011-02fdee89f086 2014-10-28 15:36 - 2014-10-28 15:36 - 00000687 _____ () C:\awh8CE3.tmp 2014-10-28 15:10 - 2014-10-31 19:11 - 00000000 ____D () C:\Users\alex\Downloads\Музика 2014-10-28 14:55 - 2014-10-28 14:55 - 00003488 _____ () C:\Windows\System32\Tasks\Yahoo! Search Updater 2014-10-28 14:32 - 2014-10-28 14:32 - 00000687 _____ () C:\awhDE94.tmp 2014-10-27 17:24 - 2014-10-27 17:24 - 00000687 _____ () C:\awh90D9.tmp 2014-10-26 10:01 - 2014-10-26 10:01 - 00000776 _____ () C:\Users\alex\Desktop\F1 2014.lnk 2014-10-26 09:23 - 2014-10-26 09:23 - 00000687 _____ () C:\awhF0F3.tmp 2014-10-24 22:23 - 2014-10-26 10:02 - 00000788 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\F1 2014.lnk 2014-10-24 22:23 - 2014-10-26 10:02 - 00000776 _____ () C:\Users\Public\Desktop\F1 2014.lnk 2014-10-24 22:23 - 2014-10-26 10:02 - 00000000 ____D () C:\Program Files (x86)\F1 2014 2014-10-24 21:53 - 2014-10-24 21:53 - 00012799 _____ () C:\Users\alex\Downloads\rld-f12014.iso.torrent 2014-10-21 15:09 - 2014-10-21 15:09 - 00108544 _____ () C:\Windows\SysWOW64\hfnapi.dll 2014-10-18 16:04 - 2014-10-18 16:04 - 00000687 _____ () C:\awh4D93.tmp 2014-10-18 15:47 - 2014-10-18 15:47 - 00000687 _____ () C:\awh55AD.tmp 2014-10-16 14:08 - 2014-10-16 14:08 - 00000687 _____ () C:\awh60E4.tmp 2014-10-16 13:52 - 2014-10-16 13:52 - 00000687 _____ () C:\awhE57E.tmp 2014-10-15 20:06 - 2014-10-15 20:06 - 00001996 _____ () C:\Users\Public\Desktop\Counter-Strike.lnk 2014-10-15 20:04 - 2014-10-15 20:04 - 00010520 _____ () C:\Users\alex\Downloads\Counter-Strike.exe (2).torrent 2014-10-15 19:24 - 2014-09-29 02:58 - 03198976 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2014-10-15 19:24 - 2014-07-07 04:07 - 14632960 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll 2014-10-15 19:24 - 2014-07-07 04:07 - 00782848 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll 2014-10-15 19:24 - 2014-07-07 04:06 - 04120576 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll 2014-10-15 19:24 - 2014-07-07 04:06 - 01202176 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll 2014-10-15 19:24 - 2014-07-07 04:06 - 00842240 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll 2014-10-15 19:24 - 2014-07-07 04:06 - 00500224 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll 2014-10-15 19:24 - 2014-07-07 03:40 - 11411456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll 2014-10-15 19:24 - 2014-07-07 03:40 - 00988160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmv2clt.dll 2014-10-15 19:24 - 2014-07-07 03:40 - 00744960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\blackbox.dll 2014-10-15 19:24 - 2014-07-07 03:40 - 00617984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmsdk.dll 2014-10-15 19:24 - 2014-06-19 00:23 - 01943696 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll 2014-10-15 19:24 - 2014-06-19 00:23 - 01131664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfshim.dll 2014-10-15 19:24 - 2014-06-19 00:23 - 00156824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscorier.dll 2014-10-15 19:24 - 2014-06-19 00:23 - 00156312 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll 2014-10-15 19:24 - 2014-06-19 00:23 - 00081560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscories.dll 2014-10-15 19:24 - 2014-06-19 00:23 - 00073880 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll 2014-10-15 19:23 - 2014-10-10 04:05 - 00507392 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll 2014-10-15 19:23 - 2014-10-10 04:05 - 00276480 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll 2014-10-15 19:23 - 2014-10-10 04:00 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2014-10-15 19:23 - 2014-10-07 04:54 - 00378552 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2014-10-15 19:23 - 2014-10-07 04:04 - 00331448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2014-10-15 19:23 - 2014-09-26 00:50 - 13619200 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2014-10-15 19:23 - 2014-09-26 00:46 - 00365056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2014-10-15 19:23 - 2014-09-26 00:46 - 00243200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2014-10-15 19:23 - 2014-09-26 00:46 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2014-10-15 19:23 - 2014-09-26 00:43 - 11807232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2014-10-15 19:23 - 2014-09-26 00:32 - 02017280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2014-10-15 19:23 - 2014-09-26 00:31 - 02108416 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2014-10-15 19:23 - 2014-09-19 04:25 - 23631360 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2014-10-15 19:23 - 2014-09-19 03:56 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2014-10-15 19:23 - 2014-09-19 03:55 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2014-10-15 19:23 - 2014-09-19 03:44 - 17484800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2014-10-15 19:23 - 2014-09-19 03:41 - 02796032 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2014-10-15 19:23 - 2014-09-19 03:40 - 00547328 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2014-10-15 19:23 - 2014-09-19 03:40 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2014-10-15 19:23 - 2014-09-19 03:39 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2014-10-15 19:23 - 2014-09-19 03:38 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2014-10-15 19:23 - 2014-09-19 03:36 - 05829632 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2014-10-15 19:23 - 2014-09-19 03:31 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2014-10-15 19:23 - 2014-09-19 03:30 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2014-10-15 19:23 - 2014-09-19 03:27 - 00595968 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2014-10-15 19:23 - 2014-09-19 03:26 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2014-10-15 19:23 - 2014-09-19 03:25 - 04201472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2014-10-15 19:23 - 2014-09-19 03:25 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2014-10-15 19:23 - 2014-09-19 03:25 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2014-10-15 19:23 - 2014-09-19 03:18 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2014-10-15 19:23 - 2014-09-19 03:14 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2014-10-15 19:23 - 2014-09-19 03:14 - 00446464 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2014-10-15 19:23 - 2014-09-19 03:06 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2014-10-15 19:23 - 2014-09-19 03:02 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2014-10-15 19:23 - 2014-09-19 03:01 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2014-10-15 19:23 - 2014-09-19 03:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2014-10-15 19:23 - 2014-09-19 03:01 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll 2014-10-15 19:23 - 2014-09-19 03:00 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2014-10-15 19:23 - 2014-09-19 02:59 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll 2014-10-15 19:23 - 2014-09-19 02:58 - 00289280 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2014-10-15 19:23 - 2014-09-19 02:55 - 02187264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2014-10-15 19:23 - 2014-09-19 02:54 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2014-10-15 19:23 - 2014-09-19 02:53 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2014-10-15 19:23 - 2014-09-19 02:51 - 00440320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2014-10-15 19:23 - 2014-09-19 02:50 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2014-10-15 19:23 - 2014-09-19 02:49 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2014-10-15 19:23 - 2014-09-19 02:42 - 00731136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2014-10-15 19:23 - 2014-09-19 02:42 - 00710656 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2014-10-15 19:23 - 2014-09-19 02:40 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2014-10-15 19:23 - 2014-09-19 02:36 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2014-10-15 19:23 - 2014-09-19 02:33 - 02309632 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2014-10-15 19:23 - 2014-09-19 02:32 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2014-10-15 19:23 - 2014-09-19 02:20 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2014-10-15 19:23 - 2014-09-19 02:18 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll 2014-10-15 19:23 - 2014-09-19 02:14 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2014-10-15 19:23 - 2014-09-19 01:59 - 01810944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2014-10-15 19:23 - 2014-09-19 01:59 - 00775168 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2014-10-15 19:23 - 2014-09-19 01:53 - 01190400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2014-10-15 19:23 - 2014-09-19 01:52 - 00678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2014-10-15 19:23 - 2014-08-19 05:11 - 00693176 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi 2014-10-15 19:23 - 2014-08-19 05:10 - 00616352 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi 2014-10-15 19:23 - 2014-08-19 05:08 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll 2014-10-15 19:23 - 2014-08-19 05:08 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll 2014-10-15 19:23 - 2014-08-19 05:08 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll 2014-10-15 19:23 - 2014-08-19 05:07 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe 2014-10-15 19:23 - 2014-08-19 05:07 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe 2014-10-15 19:23 - 2014-08-19 05:07 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll 2014-10-15 19:23 - 2014-08-19 05:07 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll 2014-10-15 19:23 - 2014-08-19 05:07 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe 2014-10-15 19:23 - 2014-08-19 04:41 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll 2014-10-15 19:23 - 2014-08-19 04:41 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll 2014-10-15 19:23 - 2014-08-19 04:06 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys 2014-10-15 19:23 - 2014-07-07 04:07 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 05551032 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2014-10-15 19:23 - 2014-07-07 04:06 - 01574400 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 01480192 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 01069056 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 00679424 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 00641024 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 00432128 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 00325632 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 00188416 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe 2014-10-15 19:23 - 2014-07-07 04:06 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe 2014-10-15 19:23 - 2014-07-07 04:06 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx 2014-10-15 19:23 - 2014-07-07 04:06 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll 2014-10-15 19:23 - 2014-07-07 04:05 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL 2014-10-15 19:23 - 2014-07-07 04:05 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe 2014-10-15 19:23 - 2014-07-07 04:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll 2014-10-15 19:23 - 2014-07-07 03:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys 2014-10-15 19:23 - 2014-07-07 03:40 - 03208704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll 2014-10-15 19:23 - 2014-07-07 03:40 - 01329664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll 2014-10-15 19:23 - 2014-07-07 03:40 - 01174528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll 2014-10-15 19:23 - 2014-07-07 03:40 - 01005056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll 2014-10-15 19:23 - 2014-07-07 03:40 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscp.dll 2014-10-15 19:23 - 2014-07-07 03:40 - 00489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll 2014-10-15 19:23 - 2014-07-07 03:40 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll 2014-10-15 19:23 - 2014-07-07 03:40 - 00406016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmmgrtn.dll 2014-10-15 19:23 - 2014-07-07 03:40 - 00374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll 2014-10-15 19:23 - 2014-07-07 03:40 - 00354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll 2014-10-15 19:23 - 2014-07-07 03:40 - 00265216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msnetobj.dll 2014-10-15 19:23 - 2014-07-07 03:40 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll 2014-10-15 19:23 - 2014-07-07 03:40 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll 2014-10-15 19:23 - 2014-07-07 03:40 - 00143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll 2014-10-15 19:23 - 2014-07-07 03:40 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll 2014-10-15 19:23 - 2014-07-07 03:40 - 00081408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsp.dll 2014-10-15 19:23 - 2014-07-07 03:40 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll 2014-10-15 19:23 - 2014-07-07 03:40 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx 2014-10-15 19:23 - 2014-07-07 03:40 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll 2014-10-15 19:23 - 2014-07-07 03:39 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL 2014-10-15 19:23 - 2014-07-07 03:39 - 03970488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe 2014-10-15 19:23 - 2014-07-07 03:39 - 03914680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe 2014-10-15 19:23 - 2014-07-07 03:39 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe 2014-10-15 19:23 - 2014-07-07 03:39 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe 2014-10-15 19:23 - 2014-07-07 03:37 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll 2014-10-15 19:23 - 2014-06-28 02:21 - 00619056 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe 2014-10-15 19:23 - 2014-06-28 02:21 - 00532176 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe 2014-10-15 19:23 - 2014-06-28 02:21 - 00457400 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll 2014-10-15 19:22 - 2014-09-18 04:00 - 03241472 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll 2014-10-15 19:22 - 2014-09-18 03:32 - 02363904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll 2014-10-15 19:22 - 2014-09-13 03:58 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll 2014-10-15 19:22 - 2014-09-13 03:40 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll 2014-10-15 19:22 - 2014-09-04 07:23 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll 2014-10-15 19:22 - 2014-09-04 07:04 - 00372736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll 2014-10-15 19:22 - 2014-07-17 04:07 - 03722240 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll 2014-10-15 19:22 - 2014-07-17 04:07 - 01118720 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe 2014-10-15 19:22 - 2014-07-17 04:07 - 01113088 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll 2014-10-15 19:22 - 2014-07-17 04:07 - 00681984 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll 2014-10-15 19:22 - 2014-07-17 04:07 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll 2014-10-15 19:22 - 2014-07-17 04:07 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll 2014-10-15 19:22 - 2014-07-17 04:07 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll 2014-10-15 19:22 - 2014-07-17 04:07 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll 2014-10-15 19:22 - 2014-07-17 03:40 - 00157696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsta.dll 2014-10-15 19:22 - 2014-07-17 03:39 - 03221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll 2014-10-15 19:22 - 2014-07-17 03:39 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe 2014-10-15 19:22 - 2014-07-17 03:39 - 00131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll 2014-10-15 19:22 - 2014-07-17 03:39 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll 2014-10-15 19:22 - 2014-07-17 03:39 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll 2014-10-15 19:22 - 2014-07-17 03:21 - 00212480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys 2014-10-15 19:22 - 2014-07-17 03:21 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys 2014-10-15 19:22 - 2011-01-16 02:01 - 00389632 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe 2014-10-15 14:13 - 2014-10-15 14:13 - 00000687 _____ () C:\awh4865.tmp 2014-10-14 20:12 - 2014-10-14 20:12 - 00000687 _____ () C:\awhD4B7.tmp 2014-10-13 13:38 - 2014-10-13 13:38 - 00000687 _____ () C:\awhFFDF.tmp 2014-10-11 09:26 - 2014-10-11 09:26 - 00002220 _____ () C:\Users\alex\Desktop\Counter-Strike 1.6 LH.lnk 2014-10-11 09:26 - 2014-10-11 09:26 - 00002197 _____ () C:\Users\alex\Desktop\(UCP) Counter-Strike 1.6 LH.lnk 2014-10-11 09:22 - 2014-10-11 09:22 - 00000687 _____ () C:\awh49DB.tmp 2014-10-10 19:01 - 2014-10-10 19:01 - 00002026 _____ () C:\Users\Public\Desktop\Sony PC Companion 2.1.lnk 2014-10-10 14:09 - 2014-10-10 14:09 - 00000687 _____ () C:\awhC1A0.tmp ==================== One Month Modified Files and Folders ======= (If an entry is included in the fixlist, the file\folder will be moved.) 2014-11-09 11:22 - 2014-06-29 10:27 - 00000000 ____D () C:\Users\alex\AppData\Roaming\BitComet 2014-11-09 11:17 - 2014-06-29 10:02 - 00000994 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2014-11-09 11:13 - 2014-06-28 22:16 - 01152092 _____ () C:\Windows\WindowsUpdate.log 2014-11-09 10:34 - 2014-06-29 10:05 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job 2014-11-09 10:31 - 2009-07-14 07:13 - 00782470 _____ () C:\Windows\system32\PerfStringBackup.INI 2014-11-09 10:26 - 2014-07-01 08:51 - 00000478 ____H () C:\Windows\Tasks\SO_Booster-S-126785670.job 2014-11-09 10:26 - 2014-06-29 10:02 - 00000990 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2014-11-09 10:26 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2014-11-09 10:25 - 2014-07-10 18:06 - 00000000 ____D () C:\ProgramData\systemk 2014-11-09 10:25 - 2010-11-21 05:47 - 00098558 _____ () C:\Windows\PFRO.log 2014-11-09 10:25 - 2009-07-14 06:51 - 00043160 _____ () C:\Windows\setupact.log 2014-11-09 10:24 - 2014-06-28 23:50 - 00001061 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk 2014-11-09 10:24 - 2014-06-28 23:50 - 00001049 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk 2014-11-09 10:24 - 2014-06-28 22:22 - 00000969 _____ () C:\Users\alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2014-11-09 10:24 - 2009-07-14 06:45 - 00026144 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2014-11-09 10:24 - 2009-07-14 06:45 - 00026144 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2014-11-09 10:24 - 2009-07-14 04:34 - 00000580 _____ () C:\Windows\win.ini 2014-11-04 16:09 - 2014-06-28 23:02 - 00442286 _____ () C:\Windows\DPINST.LOG 2014-11-04 15:53 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\NDF 2014-11-03 17:29 - 2014-07-11 11:35 - 00000000 ____D () C:\Users\alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games 2014-10-31 19:12 - 2014-06-29 10:02 - 00003990 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2014-10-31 19:12 - 2014-06-29 10:02 - 00003738 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2014-10-31 19:08 - 2014-09-19 12:43 - 00000000 ____D () C:\Users\alex\AppData\Roaming\Adobe 2014-10-31 19:08 - 2014-09-19 12:43 - 00000000 ____D () C:\Users\alex\AppData\Local\Adobe 2014-10-30 17:58 - 2014-07-01 09:08 - 00000000 ____D () C:\ProgramData\TEMP 2014-10-30 13:25 - 2010-11-21 05:27 - 00275080 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe 2014-10-28 15:32 - 2009-07-14 07:09 - 00000000 ____D () C:\Windows\System32\Tasks\WPD 2014-10-27 17:22 - 2014-07-01 08:50 - 00001044 __RSH () C:\ProgramData\ntuser.pol 2014-10-18 15:40 - 2014-06-28 22:28 - 00000000 _RSHD () C:\Windows Activation Technologies 2014-10-18 15:40 - 2014-06-28 22:22 - 00000000 ____D () C:\Users\alex 2014-10-18 15:40 - 2009-07-14 05:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared 2014-10-18 15:39 - 2014-07-01 14:04 - 00000000 ___SD () C:\Windows\system32\CompatTel 2014-10-18 15:39 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\Dism 2014-10-18 15:39 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\bg-BG 2014-10-18 15:39 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\Dism 2014-10-18 15:39 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\bg-BG 2014-10-18 15:39 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache 2014-10-18 15:39 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\registration 2014-10-17 20:02 - 2014-07-09 11:51 - 00000000 ____D () C:\Users\alex\Desktop\Photoscape 2014-10-16 13:46 - 2009-07-14 06:45 - 05036256 _____ () C:\Windows\system32\FNTCACHE.DAT 2014-10-16 00:16 - 2014-06-28 23:39 - 00000000 ____D () C:\ProgramData\Microsoft Help 2014-10-16 00:10 - 2014-08-09 13:00 - 00000000 ____D () C:\Windows\system32\MRT 2014-10-16 00:02 - 2014-06-28 23:53 - 103265616 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2014-10-15 20:06 - 2014-09-01 13:31 - 00002026 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Counter-Strike.lnk 2014-10-15 20:06 - 2014-09-01 13:31 - 00002018 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Half-Life.lnk 2014-10-15 20:06 - 2014-09-01 13:31 - 00001988 _____ () C:\Users\Public\Desktop\Half-Life.lnk 2014-10-15 20:06 - 2014-09-01 13:31 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Counter-Strike 1.6 2014-10-14 13:58 - 2014-06-29 00:33 - 00000000 ____D () C:\ProgramData\Skype 2014-10-11 23:31 - 2014-09-09 14:38 - 00000000 ____D () C:\Users\alex\AppData\Local\PMB Files 2014-10-11 23:31 - 2014-09-09 14:37 - 00000000 ____D () C:\ProgramData\PMB Files 2014-10-10 19:01 - 2014-07-23 23:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony 2014-10-10 19:01 - 2014-06-28 22:52 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information Some content of TEMP: ==================== C:\Users\alex\AppData\Local\Temp\aplinstal.exe C:\Users\alex\AppData\Local\Temp\drv46019.exe C:\Users\alex\AppData\Local\Temp\Quarantine.exe C:\Users\alex\AppData\Local\Temp\sqlite3.dll ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\System32\winlogon.exe [2014-10-15 19:22] - [2011-01-16 02:01] - 0389632 ____A (Microsoft Corporation) 81257415084B84F3C0D95C381A8D4C8F C:\Windows\System32\wininit.exe => File is digitally signed C:\Windows\SysWOW64\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\System32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\System32\services.exe => File is digitally signed C:\Windows\System32\User32.dll [2010-11-21 05:24] - [2011-01-16 02:01] - 1008640 ____A (Microsoft Corporation) 0B864E15A0BADFF0E7BB8B59009FDDCF C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\System32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\System32\rpcss.dll => File is digitally signed C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2014-11-05 14:22 ==================== End Of Log ============================
  8. wasew1914

    Много вируси + изкачащи

    Имам я имам я пак да поставя Аddition лог файла и FRST ?
  9. wasew1914

    Много вируси + изкачащи

    Ами нямам я тази програма и не знам от къде да я изтегля ако може да ми дадете линк да я изтегля
  10. wasew1914

    Много вируси + изкачащи

    Направих всичко което ми казахте с geek ето и лог файла на AdwCleaner # AdwCleaner v4.100 - Създаден отчет 09/11/2014 на 10:23:37 # DB v2014-11-07.1 # Актуализиран 08/11/2014 от Xplode # Операционна система : Windows 7 Ultimate Service Pack 1 (64 bits) # Потребителско име : alex - ALEX-PC # Стартиран от : C:\Users\alex\Desktop\adwcleaner_4.100.exe # Настройка : Почистване ***** [ Услуги ] ***** Услуа Изтритa : 248642b4 Услуа Изтритa : 29850aa3 [#] Услуа Изтритa : F06DEFF2-5B9C-490D-910F-35D3A91196222 [#] Услуа Изтритa : globalUpdate [#] Услуа Изтритa : globalUpdatem Услуа Изтритa : IePluginServices Услуа Изтритa : nethfdrv Услуа Изтритa : NethxxpService Услуа Изтритa : ServiceUpdater [#] Услуа Изтритa : SrvUpdater [#] Услуа Изтритa : SystemkService [#] Услуа Изтритa : Update trolatunt [#] Услуа Изтритa : Util trolatunt Услуа Изтритa : {0c0bb4a8-45a4-4685-9c1d-08d98af4b926}Gw64 ***** [ Файлове / Папки ] ***** Папка Изтритa : C:\ProgramData\DSearchLink Папка Изтритa : C:\ProgramData\IePluginServices [!] Папка Изтритa : C:\ProgramData\systemk Папка Изтритa : C:\ProgramData\Trusted Publisher Папка Изтритa : C:\ProgramData\Uniblue Папка Изтритa : C:\ProgramData\Adblocker Папка Изтритa : C:\ProgramData\GoSave Папка Изтритa : C:\ProgramData\MiinimumPrice Папка Изтритa : C:\ProgramData\MinimumPrice Папка Изтритa : C:\ProgramData\NetoCooupon Папка Изтритa : C:\ProgramData\pricecHop Папка Изтритa : C:\ProgramData\21c40c2fc7716a18 Папка Изтритa : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Uniblue Папка Изтритa : C:\Program Files (x86)\driver-soft Папка Изтритa : C:\Program Files (x86)\globalUpdate Папка Изтритa : C:\Program Files (x86)\MySearch Папка Изтритa : C:\Program Files (x86)\PC_booster Папка Изтритa : C:\Program Files (x86)\SafePCRepair [!] Папка Изтритa : C:\Program Files (x86)\Settings Manager Папка Изтритa : C:\Program Files (x86)\SO_Booster [!] Папка Изтритa : C:\Program Files (x86)\SupTab [!] Папка Изтритa : C:\Program Files (x86)\trolatunt Папка Изтритa : C:\Program Files (x86)\Uniblue Папка Изтритa : C:\Program Files (x86)\Adblocker Папка Изтритa : C:\Program Files (x86)\pricecHop [!] Папка Изтритa : C:\Program Files (x86)\trolatunt Папка Изтритa : C:\Users\Administrator\AppData\Local\Chromatic Browser Папка Изтритa : C:\Users\Administrator\AppData\Local\torch Папка Изтритa : C:\Users\alex\AppData\Local\Chromatic Browser Папка Изтритa : C:\Users\alex\AppData\Local\globalUpdate Папка Изтритa : C:\Users\alex\AppData\Local\pay-by-ads Папка Изтритa : C:\Users\alex\AppData\Local\torch Папка Изтритa : C:\Users\alex\AppData\Local\buenosearch Папка Изтритa : C:\Users\alex\AppData\LocalLow\DataMngr Папка Изтритa : C:\Users\alex\AppData\Roaming\BabSolution Папка Изтритa : C:\Users\alex\AppData\Roaming\OpenCandy Папка Изтритa : C:\Users\alex\AppData\Roaming\Optimizer Pro Папка Изтритa : C:\Users\alex\AppData\Roaming\Settings Manager Папка Изтритa : C:\Users\alex\AppData\Roaming\SkypEmoticons Папка Изтритa : C:\Users\alex\AppData\Roaming\Uniblue Папка Изтритa : C:\Users\Guest\AppData\Local\Chromatic Browser Папка Изтритa : C:\Users\Guest\AppData\Local\torch Папка Изтритa : C:\Users\alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\olnkgiapbjhdboldbhkagdodklkphaip Папка Изтритa : C:\Users\alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl Папка Изтритa : C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgmbandabhbocegidopdpnkighahegac Папка Изтритa : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgmbandabhbocegidopdpnkighahegac Папка Изтритa : C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\epbajpcdflicilomddebfjodaokflhfm Папка Изтритa : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\epbajpcdflicilomddebfjodaokflhfm Папка Изтритa : C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\epkpcimjkfpgokgapmoliadfeafalplh Папка Изтритa : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\epkpcimjkfpgokgapmoliadfeafalplh Папка Изтритa : C:\Users\alex\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\olnkgiapbjhdboldbhkagdodklkphaip Папка Изтритa : C:\Users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\dgmbandabhbocegidopdpnkighahegac Папка Изтритa : C:\Users\alex\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\dgmbandabhbocegidopdpnkighahegac Папка Изтритa : C:\Users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\dgmbandabhbocegidopdpnkighahegac Папка Изтритa : C:\Users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\epbajpcdflicilomddebfjodaokflhfm Папка Изтритa : C:\Users\alex\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\epbajpcdflicilomddebfjodaokflhfm Папка Изтритa : C:\Users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\epbajpcdflicilomddebfjodaokflhfm Папка Изтритa : C:\Users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\epkpcimjkfpgokgapmoliadfeafalplh Папка Изтритa : C:\Users\alex\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\epkpcimjkfpgokgapmoliadfeafalplh Папка Изтритa : C:\Users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\epkpcimjkfpgokgapmoliadfeafalplh Файл Изтритa : C:\Users\Public\Desktop\driverscanner.lnk Файл Изтритa : C:\Windows\SysWOW64\hfpapi.dll Файл Изтритa : C:\Windows\SysWOW64\installd.exe Файл Изтритa : C:\Windows\SysWOW64\nethtsrv.exe Файл Изтритa : C:\Windows\SysWOW64\netupdsrv.exe Файл Изтритa : C:\Windows\System32\drivers\nethfdrv.sys Файл Изтритa : C:\Windows\System32\\drivers\{0c0bb4a8-45a4-4685-9c1d-08d98af4b926}Gw64.sys Файл Изтритa : C:\Users\alex\AppData\Roaming\LiveSupport.exe_log.txt Файл Изтритa : C:\Users\alex\AppData\Roaming\regsvr32.exe_log.txt Файл Изтритa : C:\Users\alex\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\driverscanner.lnk Файл Изтритa : C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\tr76ic8y.default\searchplugins\ask-web-search.xml Файл Изтритa : C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\tr76ic8y.default\searchplugins\bingp.xml Файл Изтритa : C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\tr76ic8y.default\searchplugins\default-search.xml Файл Изтритa : C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\tr76ic8y.default\searchplugins\dsrlte.xml Файл Изтритa : C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\tr76ic8y.default\searchplugins\WebSearch.xml ***** [ задачи ] ***** задачa Изтрит : AmiUpdXp задачa Изтрит : driverscanner задачa Изтрит : dsmonitor задачa Изтрит : EPUpdater задачa Изтрит : globalUpdateUpdateTaskMachineCore задачa Изтрит : globalUpdateUpdateTaskMachineUA задачa Изтрит : Update Service YourFileDownloader задачa Изтрит : Yahoo! Search задачa Изтрит : 76760ead-f35c-4d00-b19e-7cacf1541f90-1 задачa Изтрит : 76760ead-f35c-4d00-b19e-7cacf1541f90-11 задачa Изтрит : 76760ead-f35c-4d00-b19e-7cacf1541f90-2 задачa Изтрит : 76760ead-f35c-4d00-b19e-7cacf1541f90-3 задачa Изтрит : 76760ead-f35c-4d00-b19e-7cacf1541f90-4 задачa Изтрит : 76760ead-f35c-4d00-b19e-7cacf1541f90-5 задачa Изтрит : 76760ead-f35c-4d00-b19e-7cacf1541f90-5_user задачa Изтрит : PC_Booster-S-493389286 ***** [ Преки пътища ] ***** Пряк път Почистени : C:\Users\Public\Desktop\Mozilla Firefox.lnk Пряк път Почистени : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk Пряк път Почистени : C:\Users\alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk Пряк път Почистени : C:\Users\alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk Пряк път Почистени : C:\Users\alex\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk Пряк път Почистени : C:\Users\alex\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk ***** [ Системен регистър ] ***** Стойност Изтрит : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [faststartff@gmail.com] Ключ Изтрит : HKLM\SOFTWARE\Google\Chrome\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl Ключ Изтрит : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\superfish.com Ключ Изтрит : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.superfish.com Ключ Изтрит : HKLM\SOFTWARE\Classes\AmiBs.Installer Ключ Изтрит : HKLM\SOFTWARE\Classes\AmiBs.Installer.1 Ключ Изтрит : HKLM\SOFTWARE\Classes\driverscanner Ключ Изтрит : HKLM\SOFTWARE\Classes\globalUpdate.OneClickCtrl.10 Ключ Изтрит : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine Ключ Изтрит : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine.1.0 Ключ Изтрит : HKLM\SOFTWARE\Classes\globalUpdate.Update3WebControl.4 Ключ Изтрит : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync Ключ Изтрит : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync.1.0 Ключ Изтрит : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass Ключ Изтрит : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass.1 Ключ Изтрит : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass Ключ Изтрит : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass.1 Ключ Изтрит : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine Ключ Изтрит : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine.1.0 Ключ Изтрит : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine Ключ Изтрит : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine.1.0 Ключ Изтрит : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback Ключ Изтрит : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback.1.0 Ключ Изтрит : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc Ключ Изтрит : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc.1.0 Ключ Изтрит : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher Ключ Изтрит : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher.1.0 Ключ Изтрит : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService Ключ Изтрит : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService.1.0 Ключ Изтрит : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine Ключ Изтрит : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine.1.0 Ключ Изтрит : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback Ключ Изтрит : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback.1.0 Ключ Изтрит : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc Ключ Изтрит : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc.1.0 Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe Ключ Изтрит : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10 Ключ Изтрит : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4 Стойност Изтрит : HKLM\SYSTEM\ControlSet001\Control\Session Manager\AppCertDlls [x64] Стойност Изтрит : HKLM\SYSTEM\ControlSet001\Control\Session Manager\AppCertDlls [x86] Стойност Изтрит : HKLM\SYSTEM\ControlSet002\Control\Session Manager\AppCertDlls [x64] Стойност Изтрит : HKLM\SYSTEM\ControlSet002\Control\Session Manager\AppCertDlls [x86] Ключ Изтрит : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\IePluginServices Ключ Изтрит : HKCU\Software\Classes\keepmysearch Ключ Изтрит : HKLM\SOFTWARE\Classes\SettingsManagerIEHelper.DNSGuard.1 Ключ Изтрит : HKLM\SOFTWARE\Classes\SettingsManagerIEHelper.DNSGuard Ключ Изтрит : HKLM\SOFTWARE\Classes\. Ключ Изтрит : HKLM\SOFTWARE\Classes\..9 Ключ Изтрит : HKLM\SOFTWARE\Classes\Pricecheoop.Pricecheoop Ключ Изтрит : HKLM\SOFTWARE\Classes\Pricecheoop.Pricecheoop.3.9 Ключ Изтрит : HKLM\SOFTWARE\Classes\..10 Ключ Изтрит : HKLM\SOFTWARE\Classes\MainimUmPriice.MainimUmPriice Ключ Изтрит : HKLM\SOFTWARE\Classes\MainimUmPriice.MainimUmPriice.6.3 Ключ Изтрит : HKLM\SOFTWARE\Classes\pRiCeChopa.pRiCeChopa Ключ Изтрит : HKLM\SOFTWARE\Classes\pRiCeChopa.pRiCeChopa.3.9 Ключ Изтрит : HKLM\SOFTWARE\Classes\TakkeTheCouepon.TakkeTheCouepon Ключ Изтрит : HKLM\SOFTWARE\Classes\TakkeTheCouepon.TakkeTheCouepon.1.5 Ключ Изтрит : HKLM\SOFTWARE\Classes\EexestraSavingss.EexestraSavingss Ключ Изтрит : HKLM\SOFTWARE\Classes\EexestraSavingss.EexestraSavingss.4.2 Ключ Изтрит : HKLM\SOFTWARE\Classes\ChheApMee.ChheApMee Ключ Изтрит : HKLM\SOFTWARE\Classes\ChheApMee.ChheApMee.5.1 Ключ Изтрит : HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\Update trolatunt Ключ Изтрит : HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\Util trolatunt Ключ Изтрит : HKCU\Software\AppDataLow\{5F189DF5-2D05-472B-9091-84D9848AE48B} Ключ Изтрит : HKLM\SOFTWARE\Classes\AppID\{3278F5CF-48F3-4253-A6BB-004CE84AF492} Ключ Изтрит : HKLM\SOFTWARE\Classes\AppID\{577975B8-C40E-43E6-B0DE-4C6B44088B52} Ключ Изтрит : HKLM\SOFTWARE\Classes\CLSID\{02A96331-0CA6-40E2-A87D-C224601985EB} Ключ Изтрит : HKLM\SOFTWARE\Classes\CLSID\{059EACC2-1ABE-49E8-928D-DC8BD355B7A9} Ключ Изтрит : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3} Ключ Изтрит : HKLM\SOFTWARE\Classes\CLSID\{3278F5CF-48F3-4253-A6BB-004CE84AF492} Ключ Изтрит : HKLM\SOFTWARE\Classes\CLSID\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} Ключ Изтрит : HKLM\SOFTWARE\Classes\CLSID\{3B5702BA-7F4C-4D1A-B026-1E9A01D43978} Ключ Изтрит : HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23} Ключ Изтрит : HKLM\SOFTWARE\Classes\CLSID\{54739D49-AC03-4C57-9264-C5195596B3A1} Ключ Изтрит : HKLM\SOFTWARE\Classes\CLSID\{5645E0E7-FC12-43BF-A6E4-F9751942B298} Ключ Изтрит : HKLM\SOFTWARE\Classes\CLSID\{577975B8-C40E-43E6-B0DE-4C6B44088B52} Ключ Изтрит : HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52} Ключ Изтрит : HKLM\SOFTWARE\Classes\CLSID\{5E89ACE9-E16B-499A-87B4-0DBF742404C1} Ключ Изтрит : HKLM\SOFTWARE\Classes\CLSID\{69F256DF-BA98-45E9-86EA-FC3CFECF9D30} Ключ Изтрит : HKLM\SOFTWARE\Classes\CLSID\{6E87FC94-9866-49B9-8E93-5736D6DE3DD7} Ключ Изтрит : HKLM\SOFTWARE\Classes\CLSID\{7E49F793-B3CD-4BF7-8419-B34B8BD30E61} Ключ Изтрит : HKLM\SOFTWARE\Classes\CLSID\{834469E3-CA2B-4F21-A5CA-4F6F4DBCDE87} Ключ Изтрит : HKLM\SOFTWARE\Classes\CLSID\{8529FAA3-5BFD-43C1-AB35-B53C4B96C6E5} Ключ Изтрит : HKLM\SOFTWARE\Classes\CLSID\{A6FEED89-3BCD-4D19-9DC2-3E613A80A2A4} Ключ Изтрит : HKLM\SOFTWARE\Classes\CLSID\{ADBC39BE-3D20-4333-8D99-E91EB1B62474} Ключ Изтрит : HKLM\SOFTWARE\Classes\CLSID\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A} Ключ Изтрит : HKLM\SOFTWARE\Classes\CLSID\{CFC47BB5-5FB5-4AD0-8427-6AA04334A3FC} Ключ Изтрит : HKLM\SOFTWARE\Classes\CLSID\{E06CA7F5-BA34-4FF6-8D24-B1BDC594D91F} Ключ Изтрит : HKLM\SOFTWARE\Classes\CLSID\{E0ADB535-D7B5-4D8B-B15D-578BDD20D76A} Ключ Изтрит : HKLM\SOFTWARE\Classes\CLSID\{F6421EE5-A5BE-4D31-81D5-C16B7BF48E4C} Ключ Изтрит : HKLM\SOFTWARE\Classes\CLSID\{FD8E81D0-F5FE-4CB1-9AEA-1E163D2BAB78} Ключ Изтрит : HKLM\SOFTWARE\Classes\CLSID\{E1842850-FB16-4471-B327-7343FBAED55C} Ключ Изтрит : HKLM\SOFTWARE\Classes\CLSID\{03c272a5-0d40-439d-bb0b-447c860fb19b} Ключ Изтрит : HKLM\SOFTWARE\Classes\CLSID\{0BF63276-82D2-4BCD-D78E-E7098BB20131} Ключ Изтрит : HKLM\SOFTWARE\Classes\CLSID\{5422c06d-7bdb-4032-9d72-3389d65e28dc} Ключ Изтрит : HKLM\SOFTWARE\Classes\CLSID\{6e664f08-f8b2-4a91-ad2a-0f9fd0f3731d} Ключ Изтрит : HKLM\SOFTWARE\Classes\CLSID\{8C442B4B-024E-5819-9436-F6BD9F7E96CA} Ключ Изтрит : HKLM\SOFTWARE\Classes\CLSID\{955c0936-0abb-4c0b-b9b9-25d140bdd92e} Ключ Изтрит : HKLM\SOFTWARE\Classes\CLSID\{97f08afe-646d-4a8c-ab6d-d43a7c4312f6} Ключ Изтрит : HKLM\SOFTWARE\Classes\CLSID\{9D8280A1-DA63-3F28-C625-D27DE39BA395} Ключ Изтрит : HKLM\SOFTWARE\Classes\CLSID\{9E6F3DFE-68FB-5F40-B488-AE6B52321D71} Ключ Изтрит : HKLM\SOFTWARE\Classes\CLSID\{DF2D8641-865A-542C-C89A-6F395CC596D2} Ключ Изтрит : HKLM\SOFTWARE\Classes\CLSID\{EDF5181F-7059-1F78-FA91-70B934D4968B} Ключ Изтрит : HKLM\SOFTWARE\Classes\CLSID\{fd53e7a7-70bd-4f62-89aa-44b24e2f67f3} Ключ Изтрит : HKLM\SOFTWARE\Classes\CLSID\{FFE6C686-A2BE-0180-1B33-9D9D3C50EEE1} Ключ Изтрит : HKLM\SOFTWARE\Classes\Interface\{3B3F3AAD-FB97-49FF-BFEE-D22869AC4326} Ключ Изтрит : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB} Ключ Изтрит : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5} Ключ Изтрит : HKLM\SOFTWARE\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8} Ключ Изтрит : HKLM\SOFTWARE\Classes\Interface\{D54C859C-6066-4F31-8FE0-2AAEDCAE67D7} Ключ Изтрит : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5} Ключ Изтрит : HKLM\SOFTWARE\Classes\Interface\{AA760BA8-5862-4BC5-9263-4452CBC0B264} Ключ Изтрит : HKLM\SOFTWARE\Classes\TypeLib\{1C1356DA-1E98-4810-A9F6-18D89BD1C0C0} Ключ Изтрит : HKLM\SOFTWARE\Classes\TypeLib\{968EDCE0-C10A-47BB-B3B6-FDF09F2A417D} Ключ Изтрит : HKLM\SOFTWARE\Classes\TypeLib\{A2D733A7-73B0-4C6B-B0C7-06A432950B66} Ключ Изтрит : HKLM\SOFTWARE\Classes\TypeLib\{93D511B5-143B-4A99-ABFC-B5B78AD0AE1B} Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{97f08afe-646d-4a8c-ab6d-d43a7c4312f6} Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{fd53e7a7-70bd-4f62-89aa-44b24e2f67f3} Ключ Изтрит : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{32099AAC-C132-4136-9E9A-4E364A424E17} Ключ Изтрит : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} Ключ Изтрит : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47} Ключ Изтрит : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{03c272a5-0d40-439d-bb0b-447c860fb19b} Ключ Изтрит : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0BF63276-82D2-4BCD-D78E-E7098BB20131} Ключ Изтрит : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5422c06d-7bdb-4032-9d72-3389d65e28dc} Ключ Изтрит : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6e664f08-f8b2-4a91-ad2a-0f9fd0f3731d} Ключ Изтрит : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8C442B4B-024E-5819-9436-F6BD9F7E96CA} Ключ Изтрит : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{955c0936-0abb-4c0b-b9b9-25d140bdd92e} Ключ Изтрит : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9D8280A1-DA63-3F28-C625-D27DE39BA395} Ключ Изтрит : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9E6F3DFE-68FB-5F40-B488-AE6B52321D71} Ключ Изтрит : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF2D8641-865A-542C-C89A-6F395CC596D2} Ключ Изтрит : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EDF5181F-7059-1F78-FA91-70B934D4968B} Ключ Изтрит : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FFE6C686-A2BE-0180-1B33-9D9D3C50EEE1} Ключ Изтрит : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{32099AAC-C132-4136-9E9A-4E364A424E17} Ключ Изтрит : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} Ключ Изтрит : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47} Ключ Изтрит : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{54739D49-AC03-4C57-9264-C5195596B3A1} Ключ Изтрит : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{03c272a5-0d40-439d-bb0b-447c860fb19b} Ключ Изтрит : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0BF63276-82D2-4BCD-D78E-E7098BB20131} Ключ Изтрит : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{5422c06d-7bdb-4032-9d72-3389d65e28dc} Ключ Изтрит : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{6e664f08-f8b2-4a91-ad2a-0f9fd0f3731d} Ключ Изтрит : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{8C442B4B-024E-5819-9436-F6BD9F7E96CA} Ключ Изтрит : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{955c0936-0abb-4c0b-b9b9-25d140bdd92e} Ключ Изтрит : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{97f08afe-646d-4a8c-ab6d-d43a7c4312f6} Ключ Изтрит : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{9D8280A1-DA63-3F28-C625-D27DE39BA395} Ключ Изтрит : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{9E6F3DFE-68FB-5F40-B488-AE6B52321D71} Ключ Изтрит : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{DF2D8641-865A-542C-C89A-6F395CC596D2} Ключ Изтрит : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EDF5181F-7059-1F78-FA91-70B934D4968B} Ключ Изтрит : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{fd53e7a7-70bd-4f62-89aa-44b24e2f67f3} Ключ Изтрит : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FFE6C686-A2BE-0180-1B33-9D9D3C50EEE1} Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5645E0E7-FC12-43BF-A6E4-F9751942B298} Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A} Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{03c272a5-0d40-439d-bb0b-447c860fb19b} Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{0BF63276-82D2-4BCD-D78E-E7098BB20131} Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5422c06d-7bdb-4032-9d72-3389d65e28dc} Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{6e664f08-f8b2-4a91-ad2a-0f9fd0f3731d} Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{8C442B4B-024E-5819-9436-F6BD9F7E96CA} Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{955c0936-0abb-4c0b-b9b9-25d140bdd92e} Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{97f08afe-646d-4a8c-ab6d-d43a7c4312f6} Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{9D8280A1-DA63-3F28-C625-D27DE39BA395} Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{9E6F3DFE-68FB-5F40-B488-AE6B52321D71} Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{DF2D8641-865A-542C-C89A-6F395CC596D2} Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EDF5181F-7059-1F78-FA91-70B934D4968B} Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{fd53e7a7-70bd-4f62-89aa-44b24e2f67f3} Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{FFE6C686-A2BE-0180-1B33-9D9D3C50EEE1} Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5645E0E7-FC12-43BF-A6E4-F9751942B298} Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E89ACE9-E16B-499A-87B4-0DBF742404C1} Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A} Ключ Изтрит : [x64] HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23} Ключ Изтрит : [x64] HKLM\SOFTWARE\Classes\CLSID\{54739D49-AC03-4C57-9264-C5195596B3A1} Ключ Изтрит : [x64] HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52} Ключ Изтрит : [x64] HKLM\SOFTWARE\Classes\CLSID\{E1842850-FB16-4471-B327-7343FBAED55C} Ключ Изтрит : [x64] HKLM\SOFTWARE\Classes\CLSID\{03c272a5-0d40-439d-bb0b-447c860fb19b} Ключ Изтрит : [x64] HKLM\SOFTWARE\Classes\CLSID\{0BF63276-82D2-4BCD-D78E-E7098BB20131} Ключ Изтрит : [x64] HKLM\SOFTWARE\Classes\CLSID\{5422c06d-7bdb-4032-9d72-3389d65e28dc} Ключ Изтрит : [x64] HKLM\SOFTWARE\Classes\CLSID\{6e664f08-f8b2-4a91-ad2a-0f9fd0f3731d} Ключ Изтрит : [x64] HKLM\SOFTWARE\Classes\CLSID\{8C442B4B-024E-5819-9436-F6BD9F7E96CA} Ключ Изтрит : [x64] HKLM\SOFTWARE\Classes\CLSID\{955c0936-0abb-4c0b-b9b9-25d140bdd92e} Ключ Изтрит : [x64] HKLM\SOFTWARE\Classes\CLSID\{97f08afe-646d-4a8c-ab6d-d43a7c4312f6} Ключ Изтрит : [x64] HKLM\SOFTWARE\Classes\CLSID\{9D8280A1-DA63-3F28-C625-D27DE39BA395} Ключ Изтрит : [x64] HKLM\SOFTWARE\Classes\CLSID\{9E6F3DFE-68FB-5F40-B488-AE6B52321D71} Ключ Изтрит : [x64] HKLM\SOFTWARE\Classes\CLSID\{DF2D8641-865A-542C-C89A-6F395CC596D2} Ключ Изтрит : [x64] HKLM\SOFTWARE\Classes\CLSID\{EDF5181F-7059-1F78-FA91-70B934D4968B} Ключ Изтрит : [x64] HKLM\SOFTWARE\Classes\CLSID\{fd53e7a7-70bd-4f62-89aa-44b24e2f67f3} Ключ Изтрит : [x64] HKLM\SOFTWARE\Classes\CLSID\{FFE6C686-A2BE-0180-1B33-9D9D3C50EEE1} Ключ Изтрит : [x64] HKLM\SOFTWARE\Classes\Interface\{3B3F3AAD-FB97-49FF-BFEE-D22869AC4326} Ключ Изтрит : [x64] HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB} Ключ Изтрит : [x64] HKLM\SOFTWARE\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8} Ключ Изтрит : [x64] HKLM\SOFTWARE\Classes\Interface\{D54C859C-6066-4F31-8FE0-2AAEDCAE67D7} Ключ Изтрит : [x64] HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5} Ключ Изтрит : [x64] HKLM\SOFTWARE\Classes\Interface\{AA760BA8-5862-4BC5-9263-4452CBC0B264} Ключ Изтрит : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{97f08afe-646d-4a8c-ab6d-d43a7c4312f6} Ключ Изтрит : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{fd53e7a7-70bd-4f62-89aa-44b24e2f67f3} Ключ Изтрит : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9} Ключ Изтрит : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} Ключ Изтрит : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2503} Ключ Изтрит : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4FC7-90CC-5EA0ABBE9EB8} Ключ Изтрит : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE} Ключ Изтрит : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} Ключ Изтрит : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2503} Данни Възстановени : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command Данни Възстановени : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\FIREFOX.EXE\shell\open\command Ключ Изтрит : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{F5568160-11E6-424A-ABF7-0012A75D33EB} Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2503} Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE} Ключ Изтрит : HKCU\Software\BABSOLUTION Ключ Изтрит : HKCU\Software\GlobalUpdate Ключ Изтрит : HKCU\Software\InstalledBrowserExtensions Ключ Изтрит : HKCU\Software\RegisteredApplicationsEx Ключ Изтрит : HKCU\Software\SupHpUISoft Ключ Изтрит : HKCU\Software\SystemK Ключ Изтрит : HKCU\Software\AppDataLow\{4A0F38A9-FE55-4B89-B73F-E60FDC0F72E9} Ключ Изтрит : HKCU\Software\AppDataLow\Software\Crossrider Ключ Изтрит : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0} Ключ Изтрит : HKLM\SOFTWARE\{4A0F38A9-FE55-4B89-B73F-E60FDC0F72E9} Ключ Изтрит : HKLM\SOFTWARE\{5F189DF5-2D05-472B-9091-84D9848AE48B} Ключ Изтрит : HKLM\SOFTWARE\{77D46E27-0E41-4478-87A6-AABE6FBCF252} Ключ Изтрит : HKLM\SOFTWARE\Driver-Soft Ключ Изтрит : HKLM\SOFTWARE\GlobalUpdate Ключ Изтрит : HKLM\SOFTWARE\InstalledBrowserExtensions Ключ Изтрит : HKLM\SOFTWARE\istartsurfSoftware Ключ Изтрит : HKLM\SOFTWARE\Linkey Ключ Изтрит : HKLM\SOFTWARE\SupDp Ключ Изтрит : HKLM\SOFTWARE\SupTab Ключ Изтрит : HKLM\SOFTWARE\supWPM Ключ Изтрит : HKLM\SOFTWARE\SystemK Ключ Изтрит : HKLM\SOFTWARE\Uniblue Ключ Изтрит : HKLM\SOFTWARE\Vittalia Ключ Изтрит : HKLM\SOFTWARE\YourFileDownloader Ключ Изтрит : HKLM\SOFTWARE\trolatunt Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{C2F8CA82-2BD9-4513-B2D1-08A47914C1DA}_is1 Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Driver Genius_is1 Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{64A4ABCA-CF3D-C548-2DC4-72A55DC5882A} Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{CA1838EF-A497-194E-3850-37A62CEE398B} Ключ Изтрит : [x64] HKLM\SOFTWARE\InstalledBrowserExtensions Ключ Изтрит : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Optimizer Pro_is1 Данни Изтрит : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - c:\progra~2\pc_boo~1\assist~1.dll Данни Изтрит : [x64] HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - C:\PROGRA~2\PC_BOO~1\ASSIST~2.DLL Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bpsvc.exe Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsersafeguard.exe Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dprotectsvc.exe Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\GoogleUpdate.exe Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\jumpflip Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\protectedsearch.exe Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchinstaller.exe Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotection.exe Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotector.exe Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings.exe Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings64.exe Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\snapdo.exe Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst32.exe Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst64.exe Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\umbrella.exe Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\utiljumpflip.exe Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\volaro Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\vonteera Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroids.exe Ключ Изтрит : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroidsservice.exe Ключ Изтрит : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\default-search.net Ключ Изтрит : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.default-search.net ***** [ Браузъри ] ***** -\\ Internet Explorer v11.0.9600.17344 Настройки Възстановен : HKCU\Software\Microsoft\Internet Explorer\Main [start Page] Настройки Възстановен : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL] Настройки Възстановен : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL] Настройки Възстановен : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL] Настройки Възстановен : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [start Page] Настройки Възстановен : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [search Page] Настройки Възстановен : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL] Настройки Възстановен : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL] Настройки Възстановен : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [start Page] Настройки Възстановен : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [search Page] -\\ Mozilla Firefox v31.0 (x86 bg) [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("browser.newtab.url", "hxxp://rts.dsrlte.com/?m=tab&affID=na"); [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("browser.search.defaultenginename,S", "WebSearch"); [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("browser.search.defaulturl", "hxxp://websearch.fastsearchings.info/?pid=2354&r=2014/07/01&hid=14548232797880421759&lg=EN&cc=BG&unqvl=56&l=1&q="); [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("browser.search.order.1", "default-search.net"); [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("browser.search.order.1,S", "WebSearch"); [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("browser.search.selectedEngine,S", "WebSearch"); [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("browser.startup.homepage", "hxxp://rts.dsrlte.com?affID=na"); [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("extensions.4zVm.scode", "(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1url.indexOf(\"warnalert11.com\")>-1url.indexOf(\"sumorobo.ne[...] [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("extensions.8TclpEm7Z.scode", "(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1url.indexOf(\"warnalert11.com\")>-1url.indexOf(\"sumoro[...] [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("extensions.JGI2dp.scode", "(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1url.indexOf(\"warnalert11.com\")>-1url.indexOf(\"sumorobo.[...] [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("extensions.LWcd3rbuU2A.scode", "(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1url.indexOf(\"warnalert11.com\")>-1url.indexOf(\"sumo[...] [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("extensions.a67b66852ecfb49dba83651ece018b002gmailcom61778.61778.internaldb.__ICM_LITE__blacklist_domain.value", "%7B%22SLIDERS%22%3A%5B%226pm.com%22%2C%22amazon.co.uk%22%2C%22amazon.com%22%[...] [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("extensions.a67b66852ecfb49dba83651ece018b002gmailcom61778.61778.internaldb.monetization_plugin_bundledUrls.value", "%7B%22dealply_s%22%3A%7B%22urls%22%3A%5B%22ssfiles.com%22%5D%7D%2C%22deal[...] [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("extensions.ae46480cf7cf6495eaf69573053f52c72b33ab36d595249aaadb2a41b3dbe51a5com53166.53166.internaldb.__ICM_LITE__blacklist_domain.value", "%7B%22SLIDERS%22%3A%5B%226pm.com%22%2C%22amazon.c[...] [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("extensions.ae46480cf7cf6495eaf69573053f52c72b33ab36d595249aaadb2a41b3dbe51a5com53166.53166.internaldb.monetization_plugin_bundledUrls.value", "%7B%22dealply_s%22%3A%7B%22urls%22%3A%5B%22ssf[...] [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("extensions.crossrider.bic", "146ec280e2b6e508dc2651bf8499cb31"); [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("extensions.dnl.scode", "(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1url.indexOf(\"warnalert11.com\")>-1url.indexOf(\"sumorobo.net[...] [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("extensions.dnl.url", "hxxp://siteuusa.com/sync2/?q=hfZ9ofhThShEAen0rchTB6lKDzt4oktztNtVh7n0rjnEqHw8rdUGrTaGtMFHhd9Fqda5rTwGrjrGrTnMDMlGojUMAe4UojYHrjn5rdw9pjk6qdg7pdw8qHwMC6qUojw8rdk9qHw5rj[...] [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("extensions.k0S.scode", "(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1url.indexOf(\"warnalert11.com\")>-1url.indexOf(\"sumorobo.net[...] [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("extensions.mywebsearch.prevKwdEnabled", true); [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("extensions.mywebsearch.prevKwdURL", "hxxp://www.bing.com/search?FORM=UP97DF&PC=UP97&q="); [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("extensions.nhO.scode", "(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1url.indexOf(\"warnalert11.com\")>-1url.indexOf(\"sumorobo.net[...] [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("extensions.quick_start.enable_search1", false); [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("extensions.quick_start.sd.closeWindowWithLastTab_prev_state", false); [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("extensions.toolbar.mindspark._89Members_.BUTTON_STRUCTURE", "[{\"b\":221337215,\"c\":\"mindspark.magnify\",\"p\":\"L.0\"},{\"b\":221337216,\"c\":\"mindspark.entersearchterms\",\"p\":\"L.0.0[...] [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("extensions.toolbar.mindspark._89Members_.browser.search.defaultenginename.prev", "Bing "); [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("extensions.toolbar.mindspark._89Members_.browser.search.defaultenginename.savedPrev", "true"); [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("extensions.toolbar.mindspark._89Members_.browser.search.defaultenginename.tb", "Ask Web Search"); [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("extensions.toolbar.mindspark._89Members_.browser.search.selectedEngine.prev", "Bing "); [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("extensions.toolbar.mindspark._89Members_.browser.search.selectedEngine.savedPrev", "true"); [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("extensions.toolbar.mindspark._89Members_.browser.search.selectedEngine.tb", "Ask Web Search"); [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("extensions.toolbar.mindspark._89Members_.browser.startup.homepage.prev", "hxxp://www.default-search.net?sid=503&aid=100&itype=n&ver=13001&tm=392&src=hmp"); [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("extensions.toolbar.mindspark._89Members_.browser.startup.homepage.savedPrev", "true"); [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("extensions.toolbar.mindspark._89Members_.browser.startup.homepage.tb", "hxxp://home.tb.ask.com/index.jhtml?ptb=5AB23686-6CDF-4A4B-8A69-92B424FD8F5F&n=780c2935&p2=^AW7^xdm055^YYA^bg&si=YO_SA[...] [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("extensions.toolbar.mindspark._89Members_.browser.startup.page.prev", 1); [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("extensions.toolbar.mindspark._89Members_.browser.startup.page.savedPrev", 1); [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("extensions.toolbar.mindspark._89Members_.browser.startup.page.tb", 1); [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("extensions.toolbar.mindspark._89Members_.firstKnownVersion", "6.52.4.5027"); [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("extensions.toolbar.mindspark._89Members_.homepage", "hxxp://home.tb.ask.com/index.jhtml?ptb=5AB23686-6CDF-4A4B-8A69-92B424FD8F5F&n=780c2935&p2=^AW7^xdm055^YYA^bg&si=YO_SAF_INTL_BUL_35"); [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("extensions.toolbar.mindspark._89Members_.hp.enabled", true); [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("extensions.toolbar.mindspark._89Members_.hp.guardType", "HPG"); [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("extensions.toolbar.mindspark._89Members_.hp.lastGuardTime", 485531186); [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("extensions.toolbar.mindspark._89Members_.hp.numGuards", 1); [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("extensions.toolbar.mindspark._89Members_.hp.user.defined", false); [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("extensions.toolbar.mindspark._89Members_.initialized", true); [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("extensions.toolbar.mindspark._89Members_.installKeysSource", "LocalStorage"); [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("extensions.toolbar.mindspark._89Members_.installType", "XPI"); [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("extensions.toolbar.mindspark._89Members_.installation.contextKey", ""); [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("extensions.toolbar.mindspark._89Members_.installation.installDate", "2014062901"); [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("extensions.toolbar.mindspark._89Members_.installation.partnerId", "^AW7^xdm055^YYA^bg"); [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("extensions.toolbar.mindspark._89Members_.installation.partnerSubId", "YO_SAF_INTL_BUL_35"); [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("extensions.toolbar.mindspark._89Members_.installation.pixelUrl", "hxxp://safepcrepair.dl.tb.ask.com/install_pixels.jhtml?partner=^AW7^xdm055^YYA^bg&coId=acee6935e26842db99e9de377c1f1c50&cak[...] [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("extensions.toolbar.mindspark._89Members_.installation.success", true); [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("extensions.toolbar.mindspark._89Members_.installation.toolbarId", "5AB23686-6CDF-4A4B-8A69-92B424FD8F5F"); [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("extensions.toolbar.mindspark._89Members_.isCompliantUninstallImplementation", true); [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("extensions.toolbar.mindspark._89Members_.lastActivePing", "1409234804683"); [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("extensions.toolbar.mindspark._89Members_.lastKnownVersion", "6.66.4.33741"); [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("extensions.toolbar.mindspark._89Members_.options.defaultSearch", true); [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("extensions.toolbar.mindspark._89Members_.options.homePageEnabled", true); [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("extensions.toolbar.mindspark._89Members_.options.keywordEnabled", true); [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("extensions.toolbar.mindspark._89Members_.options.tabEnabled", true); [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("extensions.toolbar.mindspark._89Members_.partnerPixelFired", true); [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("extensions.toolbar.mindspark._89Members_.searchHistory", "kameliq akcent"); [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("extensions.toolbar.mindspark._89Members_.successUrl", "hxxp://download.safepcrepair.com/installComplete.jhtml"); [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("extensions.toolbar.mindspark._89Members_.toolbarCollapsed", true); [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("extensions.toolbar.mindspark._89Members_.weather.location", "10001"); [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("extensions.toolbar.mindspark.hp.enabled", true); [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("extensions.toolbar.mindspark.hp.enabled.guid", "safepcrepair@mindspark.com"); [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("extensions.toolbar.mindspark.lastInstalled", "safepcrepair@mindspark.com"); [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("extensions.vByc.scode", "(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1url.indexOf(\"warnalert11.com\")>-1url.indexOf(\"sumorobo.ne[...] [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("extensions.vyeTJI.scode", "(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1url.indexOf(\"warnalert11.com\")>-1url.indexOf(\"sumorobo.[...] [tr76ic8y.default\prefs.js] - Елемент изтрит : user_pref("keyword.URL", "hxxp://rts.dsrlte.com/?q="); -\\ Google Chrome v38.0.2125.111 [C:\Users\alex\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Изтрит [search Provider] : hxxp://www.ask.com/web?q={searchTerms} [C:\Users\alex\AppData\Local\Google\Chrome\User Data\Default\preferences] - Изтрит [Extension] : olnkgiapbjhdboldbhkagdodklkphaip [C:\Users\alex\AppData\Local\Google\Chrome\User Data\Default\preferences] - Изтрит [Extension] : lifbcibllhkdhoafpjfnlhfpfgnpldfl -\\ Comodo Dragon v [C:\Users\alex\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Изтрит [search Provider] : hxxp://www.ask.com/web?q={searchTerms} ************************* AdwCleaner[R0].txt - [48183 octets] - [09/11/2014 10:16:36] AdwCleaner[R1].txt - [48384 octets] - [09/11/2014 10:21:00] AdwCleaner[s0].txt - [45066 octets] - [09/11/2014 10:23:37] ########## EOF - C:\AdwCleaner\AdwCleaner[s0].txt - [45127 octets] ########## ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Junkware Removal Tool (JRT) by Thisisu Version: 6.3.7 (11.08.2014:1) OS: Windows 7 Ultimate x64 Ran by alex on ­Ґ¤ 09.11.2014 Ј. at 10:34:13,40 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ~~~ Services ~~~ Registry Values Successfully deleted: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\yahoo! search ~~~ Registry Keys Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{11111111-1111-1111-1111-110511311166} ~~~ Files ~~~ Folders Successfully deleted: [Folder] "C:\ProgramData\drivergenius" Successfully deleted: [Folder] "C:\Program Files (x86)\trolatunt" Successfully deleted: [Folder] "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\driver genius" Successfully deleted: [Folder] "C:\Windows\syswow64\ai_recyclebin" ~~~ FireFox Successfully deleted: [Folder] C:\Users\alex\AppData\Roaming\mozilla\firefox\profiles\tr76ic8y.default\extensions\staged Successfully deleted the following from C:\Users\alex\AppData\Roaming\mozilla\firefox\profiles\tr76ic8y.default\prefs.js user_pref("extensions.8TclpEm7Z.url", "hxxp://toolkitcard.info/sync2/?q=hfZ9ofV9CShEAen0rTr8qchTB6lKDzt4oktztNtVh7n0rjnEqHaFrdg8rja4tMFHhd9Fqda5rTYFqds9rdYMDMlGojUMAe4UojYHrjn Emptied folder: C:\Users\alex\AppData\Roaming\mozilla\firefox\profiles\tr76ic8y.default\minidumps [3 files] ~~~ Event Viewer Logs were cleared ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Scan was completed on ­Ґ¤ 09.11.2014 Ј. at 10:37:24,19 End of JRT log ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
  11. wasew1914

    Много вируси + изкачащи

    Additional scan result of Farbar Recovery Scan Tool (x64) Version: 04-11-2014 Ran by alex at 2014-11-07 23:24:06 Running from C:\Users\alex\Downloads Boot Mode: Normal ========================================================== ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Microsoft Security Essentials (Enabled - Up to date) {4F35CFC4-45A3-FC37-EF17-759A02E39AB1} AS: Microsoft Security Essentials (Enabled - Up to date) {F4542E20-6399-F3B9-D5A7-4EE87964D00C} AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) 2013-14 patch (v1.1.0) for FIFA 11 (HKCU\...\2013-14 patch (v1.1.0) for FIFA 11) (Version: - ) Adblocker (HKLM-x32\...\{4820778D-AB0D-6D18-C316-52A6A0E1D507}) (Version: 3.1.0.1741 - Adblocker) <==== ATTENTION Adobe Flash Player 15 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 15.0.0.152 - Adobe Systems Incorporated) Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated) Adobe Reader 8 (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-A80000000002}) (Version: 8.0.0 - Adobe Systems Incorporated) Alcor Micro USB Card Reader (HKLM-x32\...\AmUStor) (Version: 1.2.0117.08443 - Alcor Micro Corp.) Alcor Micro USB Card Reader (x32 Version: 1.2.0117.08443 - Alcor Micro Corp.) Hidden Apple Application Support (HKLM-x32\...\{D9DAD0FF-495A-472B-9F10-BAE430A26682}) (Version: 3.0.3 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{787136D2-F0F8-4625-AA3F-72D7795AC842}) (Version: 7.1.1.3 - Apple Inc.) Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.) Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.12.5.0 - Asmedia Technology) Atheros Driver Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 9.0 - Atheros) ATI AVIVO64 Codecs (Version: 11.6.0.10419 - ATI Technologies Inc.) Hidden ATI Catalyst Install Manager (HKLM\...\{D9D7384A-8014-EE99-279E-E9BA3F6C4836}) (Version: 3.0.825.0 - ATI Technologies, Inc.) BitComet 1.37 64-bit (HKLM-x32\...\BitComet_x64) (Version: 1.37 - CometNetwork) Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.) Buenosearch (HKCU\...\buenosearch) (Version: - Buenosearch) ChEApMe (HKLM-x32\...\{F6C44C71-2CFE-8176-3A4D-CBD0DCE5AEFA}) (Version: - ChheApMee) <==== ATTENTION Color Efex Pro 4 (HKLM-x32\...\Color Efex Pro 4) (Version: 4.0.0.0 - Nik Software, Inc.) Connection Manager (HKLM-x32\...\Connection Manager_is1) (Version: - TCT Mobile Limited) Counter-Strike LH 2011 2.00 (HKLM-x32\...\Counter-Strike LH 2011 2.00) (Version: - ) Counter-Strike version 1.6 (HKLM-x32\...\Counter-Strike_is1) (Version: 1.6 - ) DAEMON Tools Toolbar (HKLM-x32\...\DAEMON Tools Toolbar) (Version: 1.1.2.0185 - DT Soft Ltd) <==== ATTENTION DAEMON Tools Ultra (HKLM-x32\...\DAEMON Tools Ultra) (Version: 2.3.0.0254 - Disc Soft Ltd) DouWnSave (HKLM-x32\...\{AF992111-52BE-832B-5882-8477E4A3C99A}) (Version: - "") <==== ATTENTION Driver Genius (HKLM-x32\...\Driver Genius_is1) (Version: 14.0 - Driver-Soft Inc.) DriverScanner (HKLM-x32\...\{C2F8CA82-2BD9-4513-B2D1-08A47914C1DA}_is1) (Version: 4.0.12.4 - Uniblue Systems Ltd) EA SPORTS online 2007 (HKLM-x32\...\82A44D22-9452-49FB-00FB-CEC7DCAF7E23) (Version: - ) ETDWare PS/2-X64 8.0.5.1_WHQL (HKLM\...\Elantech) (Version: 8.0.5.1 - ELAN Microelectronic Corp.) EXstraSaavoinggs (HKLM-x32\...\{C637A71C-A4B2-4B47-1B2A-1042A8D525A3}) (Version: - EexestraSavingss) <==== ATTENTION Extreme Blocker (HKLM-x32\...\{37476589-E48E-439E-A706-56189E2ED4C4}_is1) (Version: - Extreme Blocker) <==== ATTENTION F1 2014 (HKLM-x32\...\RjEyMDE0_is1) (Version: 1 - ) FIFA 11 (HKLM-x32\...\{3FEA6CD1-EA13-4CE7-A74E-A74A4A0A7B5C}) (Version: 1.0.0.0 - Electronic Arts) GameRanger (HKCU\...\GameRanger) (Version: - GameRanger Technologies) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 38.0.2125.111 - Google Inc.) Google Update Helper (x32 Version: 1.3.25.5 - Google Inc.) Hidden GoSave (HKLM-x32\...\{64A4ABCA-CF3D-C548-2DC4-72A55DC5882A}) (Version: - "") Intel® Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation) Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation) IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.27 - Irfan Skiljan) istartsurf uninstall (HKLM-x32\...\istartsurf uninstall) (Version: - istartsurf) <==== ATTENTION iTunes (HKLM\...\{5A68A656-979F-4168-8795-E2E368AA4DC2}) (Version: 11.2.2.3 - Apple Inc.) League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games) League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden Linkey (HKCU\...\Linkey) (Version: 0.0.0.469 - Aztec Media Inc) <==== ATTENTION LiveSupport (HKLM-x32\...\LiveSupport_is1) (Version: 1.2.8.0 - PC Utilities Software Limited) <==== ATTENTION Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation) Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUSR) (Version: 14.0.7015.1000 - Microsoft Corporation) Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.6.305.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) MinimumPrice (HKLM-x32\...\{CA1838EF-A497-194E-3850-37A62CEE398B}) (Version: - "") Mozilla Firefox 31.0 (x86 bg) (HKLM-x32\...\Mozilla Firefox 31.0 (x86 bg)) (Version: 31.0 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 30.0 - Mozilla) MX vs. ATV.Reflex (HKLM-x32\...\MX vs. ATV.Reflex_is1) (Version: MX vs. ATV.Reflex - Fenixx--Repack--(06.12.2010)) MyDefrag v4.3.1 (HKLM\...\MyDefrag v4.3.1_is1) (Version: 4.0.0.0 - J.C. Kessels) MySearch (HKLM-x32\...\{C670DCAE-E392-AA32-6F42-143C7FC4BDFD}) (Version: 1.3.0.1314 - MySearch) <==== ATTENTION NetoCoupon (HKLM-x32\...\{317D8BB4-16C3-CFBD-3777-AED69667DA46}) (Version: - "") <==== ATTENTION OffersWizard Network System Driver (HKLM-x32\...\inethnfd) (Version: 1.0.0.3001 - ) <==== ATTENTION Optimizer Pro v3.2 (HKLM-x32\...\Optimizer Pro_is1) (Version: - ) <==== ATTENTION Pando Media Booster (HKLM-x32\...\{980A182F-E0A2-4A40-94C1-AE0C1235902E}) (Version: 2.6.0.7 - Pando Networks Inc.) PC_Booster (HKLM-x32\...\S-493389286) (Version: 1.1.0.1842 - PremiumSoft) <==== ATTENTION PC_Sustainer 1.80 (HKLM-x32\...\{5F189DF5-2D05-472B-9091-84D9848AE48B}{248642b4}) (Version: - Certified Publisher) <==== ATTENTION PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden PhotoScape (HKLM-x32\...\PhotoScape) (Version: - ) Plus-HD-9.5 (HKLM-x32\...\Plus-HD-9.5) (Version: 1.34.6.10 - Plus HD) <==== ATTENTION purIcechop (HKLM-x32\...\{FDB962F0-B5B8-9460-D12F-7966E97BAA43}) (Version: 4.3.0.1648 - pRiCeChopa) <==== ATTENTION Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6392 - Realtek Semiconductor Corp.) Re-Volt (HKLM-x32\...\Re-Volt) (Version: - ) SafePCRepair (HKLM-x32\...\SafePCRepair) (Version: 1.0.0.5 - Mindspark) save on (HKLM-x32\...\{993EA8F6-6E55-7E4E-39DE-5796E3226DB9}) (Version: 4.3.0.1667 - Save on) <==== ATTENTION SaveNewaAppz (HKLM-x32\...\{7304C9D1-98AD-55F0-636E-22D8DD57F176}) (Version: - "") <==== ATTENTION Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft) Settings Manager (HKLM-x32\...\Settings Manager) (Version: 5.0.0.13001 - Aztec Media Inc) <==== ATTENTION Shockwave (HKLM-x32\...\Shockwave) (Version: - ) Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.3.16540.9015 - Microsoft Corporation) SkypEmoticons (HKLM-x32\...\SkypEmoticons_is1) (Version: - ) <==== ATTENTION Skype™ 6.21 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 6.21.104 - Skype Technologies S.A.) SO_Booster (HKLM-x32\...\S-126785670) (Version: 3.0.0.1874 - PremiumSoft) <==== ATTENTION SO_Sustainer 1.80 (HKLM-x32\...\{5F189DF5-2D05-472B-9091-84D9848AE48B}{29850aa3}) (Version: - Certified Publisher) <==== ATTENTION Software Version Updater (HKLM-x32\...\{99C91FC5-DB5B-4AA0-BB70-5D89C5A4DF96}) (Version: 1.1.4.2 - ) <==== ATTENTION SoftwareUpdater (HKLM-x32\...\SoftwareUpdater) (Version: - ) <==== ATTENTION Sonic Focus (HKLM-x32\...\{09BCB9CE-964B-4BDA-AE46-B5A0ABEF1D3F}) (Version: 1.0.0.4 - Synopsys ) Sony Mobile Update Engine (HKLM-x32\...\Update Engine) (Version: 2.14.10.201407111005 - Sony Mobile Communications AB) Sony PC Companion 2.10.228 (HKLM-x32\...\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}) (Version: 2.10.228 - Sony) TakeTheCaouupon (HKLM-x32\...\{53B21E29-3967-C332-57EB-C02631658584}) (Version: - TakkeTheCouepon) <==== ATTENTION trolatunt (HKLM\...\trolatunt) (Version: 2014.06.29.101235 - trolatunt) <==== ATTENTION Unity Web Player (HKCU\...\UnityWebPlayer) (Version: 4.5.2f1 - Unity Technologies ApS) Update Service YourFileDownloader (HKCU\...\Update Service YourFileDownloader) (Version: 2.14.34 - http://yourfiledownloader.org)<==== ATTENTION WinRAR archiver (HKLM-x32\...\WinRAR archiver) (Version: - ) Wireless Console 3 (HKLM-x32\...\{20FDF948-C8ED-4543-A539-F7F4AEF5AFA2}) (Version: 3.0.19 - ASUS) Yahoo! Search (HKCU\...\Yahoo! Search) (Version: - Pay-By-Ads) <==== ATTENTION YourFileDownloader (HKCU\...\YourFileDownloader) (Version: 2.14.34 - http://yourfiledownloader.org)<==== ATTENTION ==================== Custom CLSID (selected items): ========================== (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.) ==================== Restore Points ========================= 19-10-2014 06:43:57 Windows Update 22-10-2014 14:09:17 Windows Update 25-10-2014 19:04:21 Windows Update 29-10-2014 16:57:58 Windows Update 01-11-2014 18:43:51 Windows Update 04-11-2014 19:04:02 Windows Update ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Scheduled Tasks (whitelisted) ============= (If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.) Task: {0DE75F8E-3361-46B0-BD5A-73E92998F80A} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.) Task: {10AEDDEE-3025-4993-9CFE-09FC3FF6D19D} - System32\Tasks\DriverScanner => C:\Program Files (x86)\Uniblue\DriverScanner\driverscanner.exe [2014-03-21] (Uniblue Systems Ltd) Task: {1F538DA8-2FD0-40DD-AEE0-0AFE11D804EE} - System32\Tasks\76760ead-f35c-4d00-b19e-7cacf1541f90-1 => C:\Program Files (x86)\Plus-HD-9.5\Plus-HD-9.5-codedownloader.exe [2014-06-29] (Plus HD) <==== ATTENTION Task: {22EB1BEF-C8A5-4A9C-B6BF-96AC34628770} - System32\Tasks\PC_Booster-S-493389286 => c:\programdata\trusted publisher\pc_booster\PC_Booster.exe [2013-07-28] () <==== ATTENTION Task: {3240C3E5-BAEA-4FA5-8CBA-B88E8EFA65C9} - System32\Tasks\MyDefrag v4.3.1 Daily => C:\Program Files\MyDefrag v4.3.1\Scripts\AutomaticDaily.MyD [2010-05-21] () Task: {38626D1C-A71C-45F3-8B63-21A7CF7B5544} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-09-27] (Google Inc.) Task: {3AA67B97-DC9F-4978-9CF9-37A6654A1AC4} - System32\Tasks\globalUpdateUpdateTaskMachineUA => C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [2014-06-29] (globalUpdate) <==== ATTENTION Task: {545E3845-77D2-4418-96C3-960228A2FEC5} - System32\Tasks\AmiUpdXp => C:\Users\alex\AppData\Local\7775\Updater.exe [2014-10-07] () <==== ATTENTION Task: {588C3E63-1E5B-4940-867E-EAB375F47A38} - System32\Tasks\dsmonitor => C:\Program Files (x86)\Uniblue\DriverScanner\dsmonitor.exe [2014-03-21] (Uniblue Systems Ltd) Task: {58ACFD05-1666-4009-A94E-2FF129645EDF} - System32\Tasks\Microsoft\Windows\Windows Activation Technologies\WatTask => C:\Windows Activation Technologies\wat.exe [2006-04-21] () Task: {7775D6C7-12D1-4AFC-893F-5E9075180B50} - System32\Tasks\Buenosearch => C:\Users\alex\AppData\Local\buenosearch\buenosearch\1.3.8.2\buenosearch.exe [2014-08-25] (Pay By Ads LTD) Task: {8BC5E7A1-E0A0-470B-8912-6D26075B1AF5} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-09-11] (Adobe Systems Incorporated) Task: {8C813860-17AE-491F-B89E-4C6FC14D6ABE} - System32\Tasks\76760ead-f35c-4d00-b19e-7cacf1541f90-4 => C:\Program Files (x86)\Plus-HD-9.5\76760ead-f35c-4d00-b19e-7cacf1541f90-4.exe [2014-06-29] (Plus HD) <==== ATTENTION Task: {959D012E-2054-4E26-A3AC-EBEEB9DE92FC} - System32\Tasks\Update Service YourFileDownloader => C:\Program Files (x86)\YourFileDownloaderUpdater\YourFileDownloaderUpdater.exe <==== ATTENTION Task: {974464EE-A02A-4A64-866C-64D3F466C802} - System32\Tasks\76760ead-f35c-4d00-b19e-7cacf1541f90-5_user => C:\Program Files (x86)\Plus-HD-9.5\76760ead-f35c-4d00-b19e-7cacf1541f90-5.exe [2014-06-29] (Plus HD) <==== ATTENTION Task: {9836349F-C970-4CE6-8751-FA175687FF55} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-09-27] (Google Inc.) Task: {9ECE7D54-8F58-437C-8978-E6FF1C080A18} - System32\Tasks\76760ead-f35c-4d00-b19e-7cacf1541f90-2 => C:\Program Files (x86)\Plus-HD-9.5\76760ead-f35c-4d00-b19e-7cacf1541f90-2.exe [2014-06-29] (Plus HD) <==== ATTENTION Task: {A31EA542-F948-47DA-AEED-AABEAAAA74D9} - System32\Tasks\MyDefrag v4.3.1 Monthly => C:\Program Files\MyDefrag v4.3.1\Scripts\AutomaticMonthly.MyD [2010-05-21] () Task: {B911A152-586E-448C-8556-8E41A468B87A} - System32\Tasks\Yahoo! Search => C:\Users\alex\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.15.4\dsrlte.exe [2014-10-28] (Pay By Ads LTD) <==== ATTENTION Task: {BCCDEA91-1A5E-4067-B456-89922C285E3E} - System32\Tasks\Yahoo! Search Updater => C:\Users\alex\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.15.4\dsrsetup.exe [2014-10-28] (Pay By Ads LTD) <==== ATTENTION Task: {BDFE4812-C159-4D8A-8FA9-C2CBF84C7D1A} - System32\Tasks\globalUpdateUpdateTaskMachineCore => C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [2014-06-29] (globalUpdate) <==== ATTENTION Task: {C186AA85-5F82-4E3E-AC26-1715429A3ACF} - System32\Tasks\76760ead-f35c-4d00-b19e-7cacf1541f90-3 => C:\Program Files (x86)\Plus-HD-9.5\76760ead-f35c-4d00-b19e-7cacf1541f90-3.exe [2014-06-29] (Plus HD) <==== ATTENTION Task: {CBBFB90D-68B5-4207-9AF7-0AC4C53BD7A9} - System32\Tasks\AdobeAAMUpdater-1.0-alex-PC-alex => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe Task: {EEE6EF78-F6B7-49FC-B2CC-F328229F06A1} - System32\Tasks\SO_Booster-S-126785670 => c:\programdata\wideblue installer\so_booster\SO_Booster.exe [2014-07-01] () <==== ATTENTION Task: {F2F7D6D4-E2FF-46E5-8B83-1806D6FB3760} - System32\Tasks\76760ead-f35c-4d00-b19e-7cacf1541f90-5 => C:\Program Files (x86)\Plus-HD-9.5\76760ead-f35c-4d00-b19e-7cacf1541f90-5.exe [2014-06-29] (Plus HD) <==== ATTENTION Task: {FC536F13-9192-49A2-A9A8-730FDCC48CF5} - System32\Tasks\76760ead-f35c-4d00-b19e-7cacf1541f90-11 => C:\Program Files (x86)\Plus-HD-9.5\76760ead-f35c-4d00-b19e-7cacf1541f90-11.exe [2014-06-29] (Plus HD) <==== ATTENTION Task: {FCF85A09-F372-433A-ABD5-35646AF9966A} - System32\Tasks\EPUpdater => C:\Users\alex\AppData\Roaming\BabSolution\Shared\BabMaint.exe [2013-12-12] () <==== ATTENTION Task: {FF243473-277F-4213-AE8E-EC8440CE5F3C} - System32\Tasks\SidebarExecute => C:\Program Files (x86)\Windows Sidebar\sidebar.exe [2010-11-21] (Microsoft Corporation) Task: C:\Windows\Tasks\76760ead-f35c-4d00-b19e-7cacf1541f90-1.job => C:\Program Files (x86)\Plus-HD-9.5\Plus-HD-9.5-codedownloader.exe <==== ATTENTION Task: C:\Windows\Tasks\76760ead-f35c-4d00-b19e-7cacf1541f90-11.job => C:\Program Files (x86)\Plus-HD-9.5\76760ead-f35c-4d00-b19e-7cacf1541f90-11.exe <==== ATTENTION Task: C:\Windows\Tasks\76760ead-f35c-4d00-b19e-7cacf1541f90-2.job => C:\Program Files (x86)\Plus-HD-9.5\76760ead-f35c-4d00-b19e-7cacf1541f90-2.exe <==== ATTENTION Task: C:\Windows\Tasks\76760ead-f35c-4d00-b19e-7cacf1541f90-3.job => C:\Program Files (x86)\Plus-HD-9.5\76760ead-f35c-4d00-b19e-7cacf1541f90-3.exe <==== ATTENTION Task: C:\Windows\Tasks\76760ead-f35c-4d00-b19e-7cacf1541f90-4.job => C:\Program Files (x86)\Plus-HD-9.5\76760ead-f35c-4d00-b19e-7cacf1541f90-4.exe <==== ATTENTION Task: C:\Windows\Tasks\76760ead-f35c-4d00-b19e-7cacf1541f90-5.job => C:\Program Files (x86)\Plus-HD-9.5\76760ead-f35c-4d00-b19e-7cacf1541f90-5.exe <==== ATTENTION Task: C:\Windows\Tasks\76760ead-f35c-4d00-b19e-7cacf1541f90-5_user.job => C:\Program Files (x86)\Plus-HD-9.5\76760ead-f35c-4d00-b19e-7cacf1541f90-5.exe <==== ATTENTION Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\AmiUpdXp.job => C:\Users\alex\AppData\Local\7775\Updater.exe <==== ATTENTION Task: C:\Windows\Tasks\DriverScanner.job => C:\PROGRA~2\Uniblue\DRIVER~1\driverscanner.exe Task: C:\Windows\Tasks\dsmonitor.job => C:\Program Files (x86)\Uniblue\DriverScanner\dsmonitor.exe Task: C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job => C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe <==== ATTENTION Task: C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job => C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe <==== ATTENTION Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\PC_Booster-S-493389286.job => c:\programdata\trusted publisher\pc_booster\PC_Booster.exe <==== ATTENTION Task: C:\Windows\Tasks\SO_Booster-S-126785670.job => c:\programdata\wideblue installer\so_booster\SO_Booster.exe <==== ATTENTION ==================== Loaded Modules (whitelisted) ============= 2014-07-10 18:06 - 2014-07-09 17:04 - 00665104 _____ () C:\Program Files (x86)\Settings Manager\systemk\x64\sysapcrt.dll 2014-07-28 01:45 - 2014-07-28 01:45 - 04210176 _____ () C:\Program Files (x86)\PC_Booster\Assistant_x64.dll 2014-07-01 08:51 - 2014-07-01 08:51 - 00729600 _____ () c:\programdata\wideblue installer\so_booster\SO_Booster.exe 2013-07-28 11:28 - 2013-07-28 11:28 - 01082880 _____ () c:\programdata\trusted publisher\pc_booster\PC_Booster.exe 2014-08-14 14:34 - 2014-08-25 02:16 - 00106376 _____ () C:\Program Files (x86)\SupTab\WindowsSupportDll64.dll 2013-09-04 23:17 - 2013-09-04 23:17 - 04300456 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF 2014-10-30 00:07 - 2014-11-07 23:04 - 00123680 _____ () C:\ProgramData\29a882f6-268a-4df9-b011-02fdee89f086\maintainer.exe 2014-07-15 21:06 - 2012-12-04 15:50 - 00051576 _____ () C:\Program Files (x86)\T-Mobile\ConnectionManager\BackgroundService\ServiceManager.exe 2014-10-21 15:09 - 2014-10-21 15:09 - 00180736 _____ () C:\Windows\SysWOW64\nethtsrv.exe 2014-10-21 15:09 - 2014-10-21 15:09 - 00161792 _____ () C:\Windows\SysWOW64\netupdsrv.exe 2014-08-14 14:34 - 2014-08-25 02:16 - 00731528 _____ () C:\Program Files (x86)\SupTab\HpUI.exe 2014-07-16 11:16 - 2014-07-16 11:16 - 00064000 _____ () C:\Program Files (x86)\SupTab\Loader32.exe 2014-07-16 10:55 - 2014-07-16 10:55 - 00073216 _____ () C:\Program Files (x86)\SupTab\Loader64.exe 2014-07-23 23:27 - 2014-06-23 08:07 - 00113376 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe 2014-07-15 21:06 - 2012-12-05 16:50 - 00114552 _____ () C:\Program Files (x86)\T-Mobile\ConnectionManager\Background\ModemListener.exe 2014-06-29 15:00 - 2014-11-07 23:20 - 00526112 _____ () C:\Program Files (x86)\trolatunt\bin\utiltrolatunt.exe 2014-06-29 15:01 - 2014-11-07 05:27 - 00353056 _____ () C:\Program Files (x86)\trolatunt\bin\trolatunt.PurBrowse64.exe 2014-09-04 21:40 - 2014-11-07 14:21 - 00114976 _____ () C:\Program Files (x86)\trolatunt\bin\trolatunt.BrowserAdapter64.exe 2014-06-29 15:01 - 2014-11-07 14:21 - 00098592 _____ () C:\Program Files (x86)\trolatunt\bin\trolatunt.BrowserAdapter.exe 2014-10-31 04:21 - 2014-11-05 16:23 - 01649952 _____ () C:\Program Files (x86)\trolatunt\bin\trolatunt.BOASHelper.exe 2014-06-29 12:14 - 2014-11-07 23:21 - 00526112 _____ () C:\Program Files (x86)\trolatunt\updatetrolatunt.exe 2014-10-31 04:21 - 2014-11-05 16:23 - 01786656 _____ () C:\Program Files (x86)\trolatunt\bin\trolatunt.BOASPRT.exe 2014-10-31 04:20 - 2014-11-05 16:23 - 01791264 _____ () C:\Program Files (x86)\trolatunt\bin\trolatunt.BOAS.exe 2014-07-10 18:06 - 2014-07-09 17:04 - 00489488 _____ () C:\Program Files (x86)\Settings Manager\systemk\sysapcrt.dll 2014-07-28 01:44 - 2014-07-28 01:45 - 04296192 _____ () c:\Program Files (x86)\PC_Booster\Assistant.dll 2014-07-28 01:45 - 2014-07-28 01:45 - 00174928 _____ () c:\Program Files (x86)\PC_Booster\AssistantSvc.dll 2014-07-01 08:51 - 2014-07-01 08:51 - 00174928 _____ () c:\Program Files (x86)\SO_Booster\AssistantSvc.dll 2014-07-01 08:51 - 2014-07-01 08:51 - 04296192 _____ () c:\Program Files (x86)\SO_Booster\Assistant.dll 2014-04-23 15:05 - 2014-04-23 15:05 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll 2014-04-23 15:04 - 2014-04-23 15:04 - 01044808 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll 2014-10-21 15:09 - 2014-10-21 15:09 - 00108544 _____ () C:\Windows\SysWOW64\hfnapi.dll 2014-10-21 15:09 - 2014-10-21 15:09 - 00246784 _____ () C:\Windows\SysWOW64\hfpapi.dll 2014-07-10 18:06 - 2014-07-09 17:04 - 00019472 _____ () C:\Program Files (x86)\Settings Manager\systemk\smdmfldr.dll 2014-08-14 14:34 - 2014-08-25 02:16 - 00023944 _____ () C:\Program Files (x86)\SupTab\WindowsSupportDll32.dll 2013-09-04 23:14 - 2013-09-04 23:14 - 04300456 _____ () C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF 2014-07-23 23:27 - 2012-04-30 10:57 - 00039936 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\TMonitorAPI.dll 2014-07-23 23:27 - 2013-09-13 10:02 - 00208896 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\MExplorer.dll 2011-07-07 13:54 - 2011-07-07 13:54 - 00233984 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\Report.dll 2014-07-23 23:27 - 2013-05-20 11:58 - 00620718 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\sqlite3.dll 2014-06-12 09:19 - 2014-06-12 09:19 - 00643584 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\PhoneUpdate.dll 2012-12-07 16:16 - 2012-12-07 16:16 - 22224096 _____ () C:\Users\alex\AppData\Roaming\GameRanger\GameRanger Prefs\Components\libcef.dll 2014-06-29 15:31 - 2014-06-29 15:31 - 00337920 _____ () C:\Program Files (x86)\trolatunt\bin\sqlite3.DLL 2014-10-28 14:55 - 2014-10-28 14:55 - 00305152 _____ () C:\Users\alex\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.15.4\chromext.dll 2014-08-22 01:45 - 2014-11-07 14:21 - 00195360 _____ () C:\Program Files (x86)\trolatunt\bin\0c0bb4a845a446859c1d.dll 2014-10-31 19:13 - 2014-10-22 06:04 - 01042760 _____ () C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.111\libglesv2.dll 2014-10-31 19:13 - 2014-10-22 06:04 - 00211272 _____ () C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.111\libegl.dll 2014-10-31 19:13 - 2014-10-22 06:04 - 08910664 _____ () C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.111\pdf.dll 2014-10-31 19:13 - 2014-10-22 06:04 - 01681224 _____ () C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.111\ffmpegsumo.dll 2014-10-31 19:13 - 2014-10-22 06:05 - 14902600 _____ () C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.111\PepperFlash\pepflashplayer.dll ==================== Alternate Data Streams (whitelisted) ========= (If an entry is included in the fixlist, only the Alternate Data Streams will be removed.) AlternateDataStreams: C:\Windows:nlsPreferences AlternateDataStreams: C:\ProgramData\TEMP:373E1720 ==================== Safe Mode (whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) ==================== EXE Association (whitelisted) ============= (If an entry is included in the fixlist, the default will be restored. None default entries will be removed.) ==================== MSCONFIG/TASK MANAGER disabled items ========= (Currently there is no automatic fix for this section.) ========================= Accounts: ========================== Administrator (S-1-5-21-2631065296-950240196-2606291329-500 - Administrator - Disabled) alex (S-1-5-21-2631065296-950240196-2606291329-1000 - Administrator - Enabled) => C:\Users\alex Guest (S-1-5-21-2631065296-950240196-2606291329-501 - Limited - Disabled) ==================== Faulty Device Manager Devices ============= Name: Teredo Tunneling Pseudo-Interface Description: Microsoft Teredo Tunneling Adapter Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Problem: : This device cannot start. (Code10) Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. ==================== Event log errors: ========================= Application errors: ================== Error: (11/07/2014 11:20:23 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Име на приложение с грешки: CS6ServiceManager.exe, версия: 3.0.0.389, времево клеймо: 0x4f5a20ec Име на модул с грешки: ntdll.dll, версия: 6.1.7601.18247, времево клеймо: 0x521ea8e7 Код на изключение: 0xc0000374 Отместване на грешка: 0x000ce753 ИД на процес на грешка: 0xff0 Начален час на приложението с грешки: 0xCS6ServiceManager.exe0 Път на приложението с грешки: CS6ServiceManager.exe1 Път на модула с грешки: CS6ServiceManager.exe2 ИД на доклад: CS6ServiceManager.exe3 Error: (11/07/2014 11:20:06 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (11/07/2014 09:40:14 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 14259 Error: (11/07/2014 09:40:14 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 14259 Error: (11/07/2014 09:40:14 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (11/07/2014 09:40:10 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 9095 Error: (11/07/2014 09:40:10 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 9095 Error: (11/07/2014 09:40:09 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (11/07/2014 09:40:08 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 8097 Error: (11/07/2014 09:40:08 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 8097 System errors: ============= Error: (11/07/2014 11:22:45 PM) (Source: DCOM) (EventID: 10016) (User: alex-PC) Description: machine-defaultLocalActivation{9BA05972-F6A8-11CF-A442-00A0C90A8F39}{9BA05972-F6A8-11CF-A442-00A0C90A8F39}alex-PCalexS-1-5-21-2631065296-950240196-2606291329-1000LocalHost (Using LRPC) Error: (11/07/2014 11:22:37 PM) (Source: DCOM) (EventID: 10016) (User: alex-PC) Description: machine-defaultLocalActivation{9BA05972-F6A8-11CF-A442-00A0C90A8F39}{9BA05972-F6A8-11CF-A442-00A0C90A8F39}alex-PCalexS-1-5-21-2631065296-950240196-2606291329-1000LocalHost (Using LRPC) Error: (11/07/2014 11:19:16 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Услуга Software Updater не може да бъде стартирана поради следната грешка: %%193 Error: (11/07/2014 11:16:54 PM) (Source: DCOM) (EventID: 10010) (User: ) Description: {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} Error: (11/07/2014 11:16:35 PM) (Source: DCOM) (EventID: 10010) (User: ) Description: {F9717507-6651-4EDB-BFF7-AE615179BCCF} Error: (11/07/2014 07:33:45 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Услуга Software Updater не може да бъде стартирана поради следната грешка: %%193 Error: (11/07/2014 07:33:02 PM) (Source: EventLog) (EventID: 6008) (User: ) Description: The previous system shutdown at 19:31:30 ч. on ‎7.‎11.‎2014 ‎г. was unexpected. Error: (11/07/2014 07:21:59 PM) (Source: DCOM) (EventID: 10016) (User: alex-PC) Description: machine-defaultLocalActivation{9BA05972-F6A8-11CF-A442-00A0C90A8F39}{9BA05972-F6A8-11CF-A442-00A0C90A8F39}alex-PCalexS-1-5-21-2631065296-950240196-2606291329-1000LocalHost (Using LRPC) Error: (11/07/2014 07:21:58 PM) (Source: DCOM) (EventID: 10016) (User: alex-PC) Description: machine-defaultLocalActivation{9BA05972-F6A8-11CF-A442-00A0C90A8F39}{9BA05972-F6A8-11CF-A442-00A0C90A8F39}alex-PCalexS-1-5-21-2631065296-950240196-2606291329-1000LocalHost (Using LRPC) Error: (11/07/2014 07:19:15 PM) (Source: DCOM) (EventID: 10016) (User: alex-PC) Description: machine-defaultLocalActivation{9BA05972-F6A8-11CF-A442-00A0C90A8F39}{9BA05972-F6A8-11CF-A442-00A0C90A8F39}alex-PCalexS-1-5-21-2631065296-950240196-2606291329-1000LocalHost (Using LRPC) Microsoft Office Sessions: ========================= Error: (11/07/2014 11:20:23 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: CS6ServiceManager.exe3.0.0.3894f5a20ecntdll.dll6.1.7601.18247521ea8e7c0000374000ce753ff001cffad09d809a08C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exeC:\Windows\SysWOW64\ntdll.dlle1e82f54-66c3-11e4-9163-14dae9cb71b4 Error: (11/07/2014 11:20:06 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (11/07/2014 09:40:14 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 14259 Error: (11/07/2014 09:40:14 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 14259 Error: (11/07/2014 09:40:14 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (11/07/2014 09:40:10 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 9095 Error: (11/07/2014 09:40:10 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 9095 Error: (11/07/2014 09:40:09 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (11/07/2014 09:40:08 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 8097 Error: (11/07/2014 09:40:08 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 8097 CodeIntegrity Errors: =================================== Date: 2014-11-07 23:18:55.980 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2014-11-07 20:32:25.574 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2014-11-07 19:49:10.333 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2014-11-07 19:40:18.781 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2014-11-07 19:33:31.994 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2014-11-07 18:59:06.139 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2014-11-07 18:49:46.905 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2014-11-07 16:44:26.065 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2014-11-07 13:45:22.939 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2014-11-06 14:31:03.840 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. ==================== Memory info =========================== Processor: Intel® Core i3-2310M CPU @ 2.10GHz Percentage of memory in use: 58% Total physical RAM: 4072.13 MB Available physical RAM: 1684.72 MB Total Pagefile: 8142.44 MB Available Pagefile: 5355.85 MB Total Virtual: 8192 MB Available Virtual: 8191.83 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:195.21 GB) (Free:80.38 GB) NTFS Drive d: () (Fixed) (Total:270.45 GB) (Free:210.84 GB) NTFS Drive f: (F1 2014) (CDROM) (Total:2.45 GB) (Free:0 GB) UDF ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 7C12E647) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=195.2 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=270.4 GB) - (Type=07 NTFS) ==================== End Of Log ============================
  12. wasew1914

    Много вируси + изкачащи

    Ето го цялото FRST направих и Addition ама не знам как да вмъкна файл ако може някой да ми каже . И също така ще може ли да се оправи компютъра ? Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 04-11-2014 Ran by alex (administrator) on ALEX-PC on 07-11-2014 23:23:27 Running from C:\Users\alex\Downloads Loaded Profile: alex (Available profiles: alex) Platform: Windows 7 Ultimate Service Pack 1 (X64) OS Language: Български (България) Internet Explorer Version 11 Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe (AMD) C:\Windows\System32\atiesrxx.exe (Microsoft Corporation) C:\Windows\System32\audiodg.exe (AMD) C:\Windows\System32\atieclxx.exe (Microsoft Corporation) C:\Windows\System32\wlanext.exe (Cherished Technololgy LIMITED) C:\ProgramData\IePluginServices\PluginService.exe (Microsoft Corporation) C:\Windows\System32\rundll32.exe (Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe (Microsoft Corporation) C:\Windows\System32\rundll32.exe (Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe (Uniblue Systems Ltd) C:\Program Files (x86)\Uniblue\DriverScanner\dsmonitor.exe (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe () C:\ProgramData\Wideblue installer\SO_Booster\SO_Booster.exe () C:\ProgramData\Trusted Publisher\PC_Booster\PC_Booster.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe () C:\ProgramData\29a882f6-268a-4df9-b011-02fdee89f086\maintainer.exe () C:\Program Files (x86)\T-Mobile\ConnectionManager\BackgroundService\ServiceManager.exe () C:\Windows\SysWOW64\nethtsrv.exe (Nalpeiron Ltd.) C:\Windows\SysWOW64\nlssrv32.exe () C:\Windows\SysWOW64\netupdsrv.exe (Aztec Media Inc) C:\Program Files (x86)\Settings Manager\systemk\SystemkService.exe () C:\Program Files (x86)\SupTab\HpUI.exe (Aztec Media Inc) C:\Program Files (x86)\Settings Manager\systemk\SystemkService.exe () C:\Program Files (x86)\SupTab\Loader32.exe () C:\Program Files (x86)\SupTab\Loader64.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe (Aztec Media Inc) C:\Program Files (x86)\Settings Manager\systemk\systemku.exe (Alcor Micro Corp.) C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe (DT Soft Ltd) C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (www.BitComet.com) C:\Program Files\BitComet\BitComet.exe (PC Utilities Software Limited) C:\Program Files (x86)\Optimizer Pro\OptProSmartScan.exe (SkypEmoticons) C:\Users\alex\AppData\Roaming\SkypEmoticons\SE.exe (PC Utilities Software Limited) C:\Program Files (x86)\Optimizer Pro\OptProReminder.exe (www.BitComet.com) C:\Program Files\BitComet\tools\BitCometService.exe (Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe (PC Utilities Software Limited) C:\Program Files (x86)\LiveSupport\LiveSupport.exe (Sony) C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe (Pay By Ads LTD) C:\Users\alex\AppData\Local\buenosearch\buenosearch\1.3.8.2\buenosearch.exe (Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe (Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe (Pay By Ads LTD) C:\Users\alex\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.15.4\dsrlte.exe () C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Reader 8.0\Reader\reader_sl.exe (Virage Logic Corporation / Sonic Focus) C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe (Disc Soft Ltd) C:\Program Files (x86)\DAEMON Tools Ultra\DiscSoftBusService.exe (Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe () C:\Program Files (x86)\T-Mobile\ConnectionManager\Background\ModemListener.exe (GameRanger Technologies) C:\Users\alex\AppData\Roaming\GameRanger\GameRanger\GameRanger.exe () C:\Program Files (x86)\trolatunt\bin\utiltrolatunt.exe (Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe () C:\Program Files (x86)\trolatunt\bin\trolatunt.PurBrowse64.exe () C:\Program Files (x86)\trolatunt\bin\trolatunt.BrowserAdapter64.exe () C:\Program Files (x86)\trolatunt\bin\trolatunt.BrowserAdapter.exe () C:\Program Files (x86)\trolatunt\bin\trolatunt.BOASHelper.exe () C:\Program Files (x86)\trolatunt\updatetrolatunt.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe () C:\Program Files (x86)\trolatunt\bin\trolatunt.BOASPRT.exe () C:\Program Files (x86)\trolatunt\bin\trolatunt.BOAS.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe () C:\Program Files (x86)\trolatunt\bin\trolatunt.BOASPRT.exe () C:\Program Files (x86)\trolatunt\bin\trolatunt.BOAS.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2587944 2010-12-31] (ELAN Microelectronics Corp.) HKLM\...\Run: [AmIcoSinglun64] => C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [361984 2011-03-21] (Alcor Micro Corp.) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11860072 2011-06-09] (Realtek Semiconductor) HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2226280 2011-06-03] (Realtek Semiconductor) HKLM\...\Run: [MSC] => C:\Program Files\Microsoft Security Client\msseces.exe [1331288 2014-08-22] (Microsoft Corporation) HKLM\...\Run: [AdobeAAMUpdater-1.0] => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" HKLM-x32\...\Run: [sonicMasterTray] => C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe [984400 2010-07-09] (Virage Logic Corporation / Sonic Focus) HKLM-x32\...\Run: [Wireless Console 3] => C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [1601536 2010-09-23] () HKLM-x32\...\Run: [bCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation) HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-05-26] (Apple Inc.) HKLM-x32\...\Run: [T-Mobile ModemListener] => C:\Program Files (x86)\T-Mobile\ConnectionManager\Background\ModemListener.exe [114552 2012-12-05] () HKLM-x32\...\Run: [switchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated) HKU\S-1-5-21-2631065296-950240196-2606291329-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [357696 2010-04-01] (DT Soft Ltd) HKU\S-1-5-21-2631065296-950240196-2606291329-1000\...\Run: [bitComet] => C:\Program Files\BitComet\BitComet.exe [17257648 2013-12-31] (www.BitComet.com) HKU\S-1-5-21-2631065296-950240196-2606291329-1000\...\Run: [DAEMON Tools Ultra Agent] => C:\Program Files (x86)\DAEMON Tools Ultra\DTAgent.exe [3198224 2014-04-28] (Disc Soft Ltd) HKU\S-1-5-21-2631065296-950240196-2606291329-1000\...\Run: [Optimizer Pro] => C:\Program Files (x86)\Optimizer Pro\OptProLauncher.exe [135112 2014-06-23] (PC Utilities Software Limited) HKU\S-1-5-21-2631065296-950240196-2606291329-1000\...\Run: [se] => C:\Users\alex\AppData\Roaming\SkypEmoticons\SE.exe [5679008 2014-07-01] (SkypEmoticons) HKU\S-1-5-21-2631065296-950240196-2606291329-1000\...\Run: [LiveSupport] => C:\Program Files (x86)\LiveSupport\LiveSupport.exe [1005056 2014-03-18] (PC Utilities Software Limited) HKU\S-1-5-21-2631065296-950240196-2606291329-1000\...\Run: [sony PC Companion] => C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [468192 2014-09-01] (Sony) HKU\S-1-5-21-2631065296-950240196-2606291329-1000\...\Run: [AdobeBridge] => [X] HKU\S-1-5-21-2631065296-950240196-2606291329-1000\...\Run: [buenosearch] => C:\Users\alex\AppData\Local\buenosearch\buenosearch\1.3.8.2\buenosearch.exe [543664 2014-08-25] (Pay By Ads LTD) HKU\S-1-5-21-2631065296-950240196-2606291329-1000\...\Run: [skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [22059616 2014-10-01] (Skype Technologies S.A.) HKU\S-1-5-21-2631065296-950240196-2606291329-1000\...\Run: [Yahoo! Search] => C:\Users\alex\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.15.4\dsrlte.exe [533352 2014-10-28] (Pay By Ads LTD) HKU\S-1-5-21-2631065296-950240196-2606291329-1000\...\MountPoints2: F - F:\setup.exe HKU\S-1-5-21-2631065296-950240196-2606291329-1000\...\MountPoints2: {34c73c43-ff63-11e3-b913-14dae9cb71b4} - F:\setup.exe HKU\S-1-5-21-2631065296-950240196-2606291329-1000\...\MountPoints2: {375aadcd-0c50-11e4-a877-14dae9cb71b4} - I:\Autorun.exe HKU\S-1-5-21-2631065296-950240196-2606291329-1000\...\MountPoints2: {cc807fe4-084b-11e4-aa1a-14dae9cb71b4} - H:\Go.exe HKU\S-1-5-21-2631065296-950240196-2606291329-1000\...\MountPoints2: {e0ea64fd-123d-11e4-919b-14dae9cb71b4} - H:\Startme.exe AppInit_DLLs: C:\PROGRA~2\PC_BOO~1\ASSIST~2.DLL => C:\Program Files (x86)\PC_Booster\Assistant_x64.dll [4210176 2014-07-28] () AppInit_DLLs-x32: c:\progra~2\pc_boo~1\assist~1.dll => c:\Program Files (x86)\PC_Booster\Assistant.dll [4296192 2014-07-28] () IFEO\bitguard.exe: [Debugger] tasklist.exe IFEO\bprotect.exe: [Debugger] tasklist.exe IFEO\bpsvc.exe: [Debugger] tasklist.exe IFEO\browserdefender.exe: [Debugger] tasklist.exe IFEO\browserprotect.exe: [Debugger] tasklist.exe IFEO\browsersafeguard.exe: [Debugger] tasklist.exe IFEO\dprotectsvc.exe: [Debugger] tasklist.exe IFEO\jumpflip: [Debugger] tasklist.exe IFEO\protectedsearch.exe: [Debugger] tasklist.exe IFEO\searchinstaller.exe: [Debugger] tasklist.exe IFEO\searchprotection.exe: [Debugger] tasklist.exe IFEO\searchprotector.exe: [Debugger] tasklist.exe IFEO\searchsettings.exe: [Debugger] tasklist.exe IFEO\searchsettings64.exe: [Debugger] tasklist.exe IFEO\snapdo.exe: [Debugger] tasklist.exe IFEO\stinst32.exe: [Debugger] tasklist.exe IFEO\stinst64.exe: [Debugger] tasklist.exe IFEO\umbrella.exe: [Debugger] tasklist.exe IFEO\utiljumpflip.exe: [Debugger] tasklist.exe IFEO\volaro: [Debugger] tasklist.exe IFEO\vonteera: [Debugger] tasklist.exe IFEO\websteroids.exe: [Debugger] tasklist.exe IFEO\websteroidsservice.exe: [Debugger] tasklist.exe Startup: C:\Users\alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GameRanger.lnk ShortcutTarget: GameRanger.lnk -> C:\Users\alex\AppData\Roaming\GameRanger\GameRanger\GameRanger.exe (GameRanger Technologies) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Reader Speed Launch.lnk ShortcutTarget: Adobe Reader Speed Launch.lnk -> C:\Program Files (x86)\Adobe\Reader 8.0\Reader\reader_sl.exe (Adobe Systems Incorporated) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Reader Synchronizer.lnk ShortcutTarget: Adobe Reader Synchronizer.lnk -> C:\Program Files (x86)\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe () GroupPolicy: Group Policy on Chrome detected <======= ATTENTION CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://rts.dsrlte.com?affID=na HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x1593C0A41A93CF01 HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = bg-BG HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.istartsurf.com/?type=hp&ts=1408925742&from=amt&uid=HitachiXHTS547550A9E384_J2160051CP58ZDCP58ZDX HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.istartsurf.com/web/?type=ds&ts=1408925742&from=amt&uid=HitachiXHTS547550A9E384_J2160051CP58ZDCP58ZDX&q={searchTerms} HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.istartsurf.com/?type=hp&ts=1408925742&from=amt&uid=HitachiXHTS547550A9E384_J2160051CP58ZDCP58ZDX HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.istartsurf.com/?type=hp&ts=1408925742&from=amt&uid=HitachiXHTS547550A9E384_J2160051CP58ZDCP58ZDX HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.istartsurf.com/web/?type=ds&ts=1408925742&from=amt&uid=HitachiXHTS547550A9E384_J2160051CP58ZDCP58ZDX&q={searchTerms} HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.istartsurf.com/web/?type=ds&ts=1408925742&from=amt&uid=HitachiXHTS547550A9E384_J2160051CP58ZDCP58ZDX&q={searchTerms} HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.istartsurf.com/?type=hp&ts=1408925742&from=amt&uid=HitachiXHTS547550A9E384_J2160051CP58ZDCP58ZDX HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.istartsurf.com/?type=hp&ts=1408925742&from=amt&uid=HitachiXHTS547550A9E384_J2160051CP58ZDCP58ZDX HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.istartsurf.com/web/?type=ds&ts=1408925742&from=amt&uid=HitachiXHTS547550A9E384_J2160051CP58ZDCP58ZDX&q={searchTerms} StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe http://www.istartsurf.com/?type=sc&ts=1408925742&from=amt&uid=HitachiXHTS547550A9E384_J2160051CP58ZDCP58ZDX SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.istartsurf.com/web/?type=ds&ts=1408925742&from=amt&uid=HitachiXHTS547550A9E384_J2160051CP58ZDCP58ZDX&q={searchTerms} SearchScopes: HKLM - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.istartsurf.com/web/?type=ds&ts=1408925742&from=amt&uid=HitachiXHTS547550A9E384_J2160051CP58ZDCP58ZDX&q={searchTerms} SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2503} URL = http://www.default-search.net/search?sid=503&aid=100&itype=a&ver=13337&tm=392&src=ds&p={searchTerms} SearchScopes: HKLM-x32 - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.istartsurf.com/web/?type=ds&ts=1408925742&from=amt&uid=HitachiXHTS547550A9E384_J2160051CP58ZDCP58ZDX&q={searchTerms} SearchScopes: HKLM-x32 - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.istartsurf.com/web/?type=ds&ts=1408925742&from=amt&uid=HitachiXHTS547550A9E384_J2160051CP58ZDCP58ZDX&q={searchTerms} SearchScopes: HKLM-x32 - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2503} URL = http://www.default-search.net/search?sid=503&aid=100&itype=a&ver=13337&tm=392&src=ds&p={searchTerms} SearchScopes: HKLM-x32 - {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = http://websearch.fastsearchings.info/?l=1&q={searchTerms}&pid=2354&r=2014/07/01&hid=14548232797880421759&lg=EN&cc=BG&unqvl=56 SearchScopes: HKCU - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.istartsurf.com/web/?type=ds&ts=1408925742&from=amt&uid=HitachiXHTS547550A9E384_J2160051CP58ZDCP58ZDX&q={searchTerms} SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www.buenosearch.com/?q={searchTerms}&babsrc=SP_ss&mntrId=083B9439E521B19E&affID=128235&tsp=5350 SearchScopes: HKCU - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.istartsurf.com/web/?type=ds&ts=1408925742&from=amt&uid=HitachiXHTS547550A9E384_J2160051CP58ZDCP58ZDX&q={searchTerms} SearchScopes: HKCU - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2503} URL = http://www.default-search.net/search?sid=503&aid=100&itype=a&ver=13337&tm=392&src=ds&p={searchTerms} SearchScopes: HKCU - {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = http://websearch.fastsearchings.info/?l=1&q={searchTerms}&pid=2354&r=2014/07/01&hid=14548232797880421759&lg=EN&cc=BG&unqvl=56 SearchScopes: HKCU - {F5568160-11E6-424A-ABF7-0012A75D33EB} URL = http://www.daemon-search.com/search?q={searchTerms} BHO: SaveNewaAppz -> {97f08afe-646d-4a8c-ab6d-d43a7c4312f6} -> C:\ProgramData\SaveNewaAppz\fI8Gj6rslBbgn6.x64.dll () BHO: NetoCoupon -> {fd53e7a7-70bd-4f62-89aa-44b24e2f67f3} -> C:\ProgramData\NetoCoupon\ocJhXUqjrQk3Ha.x64.dll () BHO-x32: SaveNewaAppz -> {97f08afe-646d-4a8c-ab6d-d43a7c4312f6} -> C:\ProgramData\SaveNewaAppz\fI8Gj6rslBbgn6.dll () BHO-x32: NetoCoupon -> {fd53e7a7-70bd-4f62-89aa-44b24e2f67f3} -> C:\ProgramData\NetoCoupon\ocJhXUqjrQk3Ha.dll () Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation) Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation) Tcpip\Parameters: [DhcpNameServer] 88.80.96.2 88.80.96.7 FireFox: ======== FF ProfilePath: C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\tr76ic8y.default FF NewTab: hxxp://rts.dsrlte.com/?m=tab&affID=na FF DefaultSearchEngine: Yahoo! Search FF DefaultSearchEngine,S: WebSearch FF DefaultSearchUrl: hxxp://websearch.fastsearchings.info/?pid=2354&r=2014/07/01&hid=14548232797880421759&lg=EN&cc=BG&unqvl=56&l=1&q= FF SearchEngineOrder.1: default-search.net FF SearchEngineOrder.1,S: WebSearch FF SearchEngineOrder.3: Bing FF SelectedSearchEngine: Yahoo! Search FF SelectedSearchEngine,S: WebSearch FF Homepage: hxxp://rts.dsrlte.com?affID=na FF Keyword.URL: hxxp://rts.dsrlte.com/?q= FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_152.dll () FF Plugin: @microsoft.com/GENUINE -> disabled No File FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll () FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll () FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation) FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks) FF Plugin-x32: @staging.google.com/globalUpdate Update;version=10 -> C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll (globalUpdate) FF Plugin-x32: @staging.google.com/globalUpdate Update;version=4 -> C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll (globalUpdate) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.) FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\alex\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS) FF Plugin HKCU: pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\np32dsw.dll (Macromedia, Inc.) FF SearchPlugin: C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\tr76ic8y.default\searchplugins\ask-web-search.xml FF SearchPlugin: C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\tr76ic8y.default\searchplugins\bingp.xml FF SearchPlugin: C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\tr76ic8y.default\searchplugins\default-search.xml FF SearchPlugin: C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\tr76ic8y.default\searchplugins\dsrlte.xml FF SearchPlugin: C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\tr76ic8y.default\searchplugins\WebSearch.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\911bg.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\default-search.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\diribg.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\istartsurf.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\pe-bg.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\portalbgdict.xml FF Extension: Plus-HD-9.5 - C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\tr76ic8y.default\Extensions\e46480cf-7cf6-495e-af69-573053f52c72@b33ab36d-5952-49aa-adb2-a41b3dbe51a5.com [2014-11-07] FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2014-08-08] FF HKLM-x32\...\Firefox\Extensions: [faststartff@gmail.com] - C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\tr76ic8y.default\extensions\faststartff@gmail.com FF HKLM-x32\...\Firefox\Extensions: [ext@RichMediaViewV1release7753.net] - C:\Program Files (x86)\RichMediaViewV1\RichMediaViewV1release7753\ff FF Extension: No Name - C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\tr76ic8y.default\extensions\89ffxtbr@SafePCRepair_89.com [Not Found] FF Extension: No Name - C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\tr76ic8y.default\extensions\faststartff@gmail.com [Not Found] FF Extension: No Name - C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\tr76ic8y.default\extensions\{0c0bb4a8-45a4-4685-9c1d-08d98af4b926}.xpi [Not Found] FF Extension: No Name - C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\tr76ic8y.default\extensions\{B042753D-F57E-4e8e-A01B-7379A6D4CEFB} [Not Found] FF Extension: No Name - C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\tr76ic8y.default\extensions\67b66852-ecfb-49db-a836-51ece018b002@gmail.com [Not Found] FF StartMenuInternet: FIREFOX.EXE - C:\Program Files (x86)\Mozilla Firefox\firefox.exe http://www.istartsurf.com/?type=sc&ts=1408925742&from=amt&uid=HitachiXHTS547550A9E384_J2160051CP58ZDCP58ZDX Chrome: ======= CHR dev: Chrome dev build detected! <======= ATTENTION CHR Profile: C:\Users\alex\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Skype Click to Call) - C:\Users\alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2014-11-07] CHR Extension: (Plus-HD-9.5) - C:\Users\alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\olnkgiapbjhdboldbhkagdodklkphaip [2014-11-06] CHR Extension: (MetaProducts Offline Explorer integration) - C:\Users\alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkijdmeepjhpenmighhaodgfoogncnlk [2014-11-07] CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-07-14] ==================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R2 248642b4; c:\Program Files (x86)\PC_Booster\AssistantSvc.dll [174928 2014-07-28] () [File not signed] R2 29850aa3; c:\Program Files (x86)\SO_Booster\AssistantSvc.dll [174928 2014-07-01] () [File not signed] R3 BITCOMET_HELPER_SERVICE; C:\Program Files\BitComet\tools\BitCometService.exe [1296728 2013-11-29] (www.BitComet.com) R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390176 2014-07-14] (Microsoft Corporation) R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1767520 2014-07-14] (Microsoft Corporation) R3 Disc Soft Bus Service; C:\Program Files (x86)\DAEMON Tools Ultra\DiscSoftBusService.exe [813328 2014-04-28] (Disc Soft Ltd) S2 globalUpdate; C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [68608 2014-06-29] (globalUpdate) [File not signed] S3 globalUpdatem; C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [68608 2014-06-29] (globalUpdate) [File not signed] R2 IePluginServices; C:\ProgramData\IePluginServices\PluginService.exe [715656 2014-08-25] (Cherished Technololgy LIMITED) S3 ioloService; C:\Program Files (x86)\SafePCRepair\ioloToolService.exe [2625800 2013-11-22] (iolo technologies, LLC) R2 MaintainerSvc6.89.982339; C:\ProgramData\29a882f6-268a-4df9-b011-02fdee89f086\maintainer.exe [123680 2014-11-07] () R2 Modem Device Helper; C:\Program Files (x86)\T-Mobile\ConnectionManager\BackgroundService\ServiceManager.exe [51576 2012-12-04] () R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [23784 2014-08-22] (Microsoft Corporation) R2 NetHttpService; C:\Windows\SysWOW64\nethtsrv.exe [180736 2014-10-21] () [File not signed] R3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [368624 2014-08-22] (Microsoft Corporation) R2 nlsX86cc; C:\Windows\SysWOW64\nlssrv32.exe [66560 2011-09-22] (Nalpeiron Ltd.) [File not signed] R2 ServiceUpdater; C:\Windows\SysWOW64\netupdsrv.exe [161792 2014-10-21] () [File not signed] S2 SrvUpdater; C:\Program Files (x86)\SoftwareUpdater\UpdaterService.exe [0 2014-07-08] () [File not signed] R2 SystemkService; C:\Program Files (x86)\Settings Manager\systemk\SystemkService.exe [3572240 2014-07-09] (Aztec Media Inc) R2 Update trolatunt; C:\Program Files (x86)\trolatunt\updatetrolatunt.exe [526112 2014-11-07] () R2 Util trolatunt; C:\Program Files (x86)\trolatunt\bin\utiltrolatunt.exe [526112 2014-11-07] () S3 SwitchBoard; "C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [X] ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) S3 ALCATELUSB; C:\Windows\System32\Drivers\AlcatelUsb.sys [25088 2012-12-04] (Windows ® Codename Longhorn DDK provider) R3 dtscsibus; C:\Windows\System32\DRIVERS\dtscsibus.sys [29696 2014-06-29] (Disc Soft Ltd) R1 F06DEFF2-5B9C-490D-910F-35D3A91196222; C:\Program Files (x86)\Settings Manager\systemk\x64\systemkmgrc2.cfg [41872 2014-07-09] (Aztec Media Inc) S3 ggsomc; C:\Windows\System32\DRIVERS\ggsomc.sys [30424 2014-07-23] (Sony Mobile Communications) S3 jrdusbser; C:\Windows\System32\DRIVERS\jrdusbser.sys [120832 2012-12-04] (TCT International Mobile Ltd) R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15416 2009-07-20] ( ) R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [269008 2014-07-17] (Microsoft Corporation) R1 nethfdrv; C:\Windows\system32\drivers\nethfdrv.sys [46160 2014-10-21] (nethfdrv) R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [125584 2014-07-17] (Microsoft Corporation) R0 sptd; C:\Windows\System32\Drivers\sptd.sys [834544 2014-06-28] () [File not signed] R1 {0c0bb4a8-45a4-4685-9c1d-08d98af4b926}Gw64; C:\Windows\System32\drivers\{0c0bb4a8-45a4-4685-9c1d-08d98af4b926}Gw64.sys [61112 2014-06-23] (StdLib) U3 a7gfeca1; C:\Windows\System32\Drivers\a7gfeca1.sys [0 ] (Microsoft Corporation) S3 VGPU; System32\drivers\rdvgkmd.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) ==================== One Month Created Files and Folders ======== (If an entry is included in the fixlist, the file\folder will be moved.) 2014-11-07 20:56 - 2014-11-07 21:06 - 00036927 _____ () C:\Users\alex\Downloads\Addition.txt 2014-11-07 20:52 - 2014-11-07 23:23 - 00028938 _____ () C:\Users\alex\Downloads\FRST.txt 2014-11-07 20:52 - 2014-11-07 23:23 - 00000000 ____D () C:\FRST 2014-11-07 20:44 - 2014-11-07 20:45 - 02114560 _____ (Farbar) C:\Users\alex\Downloads\FRST64.exe 2014-11-07 19:38 - 2014-11-07 19:38 - 00000687 _____ () C:\awhA247.tmp 2014-11-07 19:27 - 2014-11-07 19:28 - 00000000 ____D () C:\Program Files\MyDefrag v4.3.1 2014-11-07 19:27 - 2014-11-07 19:27 - 00004108 _____ () C:\Windows\System32\Tasks\MyDefrag v4.3.1 Monthly 2014-11-07 19:27 - 2014-11-07 19:27 - 00003428 _____ () C:\Windows\System32\Tasks\MyDefrag v4.3.1 Daily 2014-11-07 19:27 - 2014-11-07 19:27 - 00000863 _____ () C:\Users\Public\Desktop\MyDefrag.lnk 2014-11-07 19:27 - 2014-11-07 19:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyDefrag v4.3.1 2014-11-07 19:27 - 2010-05-21 12:11 - 01147392 _____ (J.C. Kessels) C:\Windows\system32\MyDefragScreenSaver_v4.3.1.exe 2014-11-07 19:27 - 2010-05-21 12:11 - 00485376 _____ (J.C. Kessels) C:\Windows\system32\MyDefragScreenSaver_v4.3.1.scr 2014-11-07 19:25 - 2014-11-07 19:26 - 02082630 _____ (J.C. Kessels ) C:\Users\alex\Downloads\MyDefrag-v4.3.1.exe 2014-11-07 19:04 - 2014-11-07 19:04 - 00000687 _____ () C:\awh93D6.tmp 2014-11-07 18:55 - 2014-11-07 18:55 - 00000687 _____ () C:\awhBEEB.tmp 2014-11-07 02:39 - 2014-11-07 02:39 - 00000000 ____D () C:\ProgramData\SaveNewaAppz 2014-11-07 02:37 - 2014-11-07 02:38 - 00000000 ____D () C:\ProgramData\NetoCoupon 2014-11-05 16:48 - 2014-11-05 16:48 - 00050396 _____ () C:\Users\alex\Desktop\ALTERNAN.TTF 2014-11-05 16:47 - 2014-11-05 16:47 - 00048592 _____ () C:\Users\alex\Desktop\CITYNB.TTF 2014-11-05 13:58 - 2014-11-05 13:58 - 00000687 _____ () C:\awhA469.tmp 2014-11-04 21:59 - 2014-11-04 21:59 - 00000687 _____ () C:\awh7C02.tmp 2014-11-04 21:28 - 2014-11-04 21:28 - 00000687 _____ () C:\awh8C57.tmp 2014-11-04 20:56 - 2014-11-04 20:56 - 00000687 _____ () C:\awh7158.tmp 2014-11-04 20:25 - 2014-11-04 20:25 - 00000687 _____ () C:\awh8D31.tmp 2014-11-04 19:51 - 2014-11-04 19:51 - 00000687 _____ () C:\awh7879.tmp 2014-11-04 19:19 - 2014-11-04 19:19 - 00000687 _____ () C:\awh8FA1.tmp 2014-11-04 18:47 - 2014-11-04 18:47 - 00000687 _____ () C:\awh9848.tmp 2014-11-04 18:11 - 2014-11-04 18:11 - 00000687 _____ () C:\awh8796.tmp 2014-11-04 17:35 - 2014-11-04 17:35 - 00000687 _____ () C:\awhB6EF.tmp 2014-11-04 17:03 - 2014-11-04 17:03 - 00000687 _____ () C:\awhB78B.tmp 2014-11-04 16:31 - 2014-11-04 16:31 - 00000687 _____ () C:\awhAF13.tmp 2014-11-04 16:23 - 2014-11-04 16:23 - 00000000 ____D () C:\ProgramData\DriverGenius 2014-11-04 16:22 - 2014-11-04 16:22 - 00001207 _____ () C:\Users\alex\Desktop\Driver Genius.lnk 2014-11-04 16:22 - 2014-11-04 16:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Genius 2014-11-04 16:22 - 2014-11-04 16:22 - 00000000 ____D () C:\Program Files (x86)\Driver-Soft 2014-11-04 16:21 - 2014-11-04 16:21 - 08027504 _____ (Driver-Soft Inc. ) C:\Users\alex\Downloads\Driver_Genius.exe 2014-11-04 16:07 - 2014-11-04 16:07 - 26314800 _____ (Intel® Corporation) C:\Users\alex\Downloads\Wireless_15.3.1_Ds64.exe 2014-11-03 20:52 - 2014-11-03 20:52 - 00000687 _____ () C:\awhD6BE.tmp 2014-11-03 20:19 - 2014-11-03 20:19 - 00000687 _____ () C:\awhB192.tmp 2014-11-03 19:46 - 2014-11-03 19:46 - 00000687 _____ () C:\awhD326.tmp 2014-11-03 17:30 - 2014-11-03 20:10 - 00000000 ____D () C:\Users\alex\Documents\GTA San Andreas User Files 2014-11-03 17:16 - 2014-11-03 17:16 - 00000687 _____ () C:\awh624B.tmp 2014-11-03 16:18 - 2014-11-03 16:18 - 00000687 _____ () C:\awh8FB1.tmp 2014-11-03 16:16 - 2014-11-03 16:16 - 00142732 _____ () C:\Users\alex\Downloads\GTA.San.Andreas.ULTRA.MoD.v2 (2).torrent 2014-11-03 16:03 - 2014-11-03 16:03 - 00142732 _____ () C:\Users\alex\Downloads\GTA.San.Andreas.ULTRA.MoD.v2 (1).torrent 2014-11-03 16:01 - 2014-11-03 16:01 - 00142732 _____ () C:\Users\alex\Downloads\GTA.San.Andreas.ULTRA.MoD.v2.torrent 2014-11-02 10:45 - 2014-11-02 10:45 - 00000687 _____ () C:\awh7177.tmp 2014-11-02 10:11 - 2014-11-02 10:11 - 00000687 _____ () C:\awh4BFE.tmp 2014-11-01 21:33 - 2014-11-01 21:33 - 00000687 _____ () C:\awh6F07.tmp 2014-11-01 20:37 - 2014-11-01 20:37 - 00000687 _____ () C:\awh3BA8.tmp 2014-10-31 22:51 - 2014-10-31 22:51 - 00000687 _____ () C:\awh452A.tmp 2014-10-31 20:34 - 2014-10-31 20:34 - 00000687 _____ () C:\awh49AC.tmp 2014-10-31 19:30 - 2014-10-31 19:30 - 00000687 _____ () C:\awh5C04.tmp 2014-10-31 19:13 - 2014-10-31 19:13 - 00002253 _____ () C:\Users\Public\Desktop\Google Chrome.lnk 2014-10-31 19:13 - 2014-10-31 19:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome 2014-10-31 19:08 - 2014-10-31 19:08 - 00000000 ____D () C:\Users\alex\Documents\Updater5 2014-10-31 19:07 - 2014-10-31 19:07 - 00000687 _____ () C:\awh5CCF.tmp 2014-10-31 12:50 - 2014-10-31 12:50 - 00000687 _____ () C:\awh2A2B.tmp 2014-10-31 00:06 - 2014-10-31 00:06 - 00000687 _____ () C:\awh3A8F.tmp 2014-10-30 20:48 - 2014-10-30 20:48 - 00000687 _____ () C:\awh9F5A.tmp 2014-10-30 19:58 - 2014-10-30 19:58 - 00000687 _____ () C:\awhA581.tmp 2014-10-30 19:06 - 2014-10-30 19:06 - 00000687 _____ () C:\awh93D5.tmp 2014-10-30 14:01 - 2014-10-30 14:01 - 00000687 _____ () C:\awh974F.tmp 2014-10-30 12:31 - 2014-10-30 12:31 - 00000687 _____ () C:\awhA1F9.tmp 2014-10-30 00:17 - 2014-11-07 23:04 - 00000000 ____D () C:\ProgramData\29a882f6-268a-4df9-b011-02fdee89f086 2014-10-29 16:01 - 2014-11-07 02:38 - 00000000 ____D () C:\ProgramData\MinimumPrice 2014-10-28 15:36 - 2014-10-28 15:36 - 00000687 _____ () C:\awh8CE3.tmp 2014-10-28 15:10 - 2014-10-31 19:11 - 00000000 ____D () C:\Users\alex\Downloads\Музика 2014-10-28 15:09 - 2014-11-07 02:38 - 00000000 ____D () C:\ProgramData\GoSave 2014-10-28 14:55 - 2014-10-28 14:55 - 00003488 _____ () C:\Windows\System32\Tasks\Yahoo! Search Updater 2014-10-28 14:55 - 2014-10-28 14:55 - 00003484 _____ () C:\Windows\System32\Tasks\Yahoo! Search 2014-10-28 14:55 - 2014-10-28 14:55 - 00000000 ____D () C:\Users\alex\AppData\Local\Pay-By-Ads 2014-10-28 14:32 - 2014-10-28 14:32 - 00000687 _____ () C:\awhDE94.tmp 2014-10-27 17:24 - 2014-10-27 17:24 - 00000687 _____ () C:\awh90D9.tmp 2014-10-26 10:01 - 2014-10-26 10:01 - 00000776 _____ () C:\Users\alex\Desktop\F1 2014.lnk 2014-10-26 09:23 - 2014-10-26 09:23 - 00000687 _____ () C:\awhF0F3.tmp 2014-10-24 22:23 - 2014-10-26 10:02 - 00000788 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\F1 2014.lnk 2014-10-24 22:23 - 2014-10-26 10:02 - 00000776 _____ () C:\Users\Public\Desktop\F1 2014.lnk 2014-10-24 22:23 - 2014-10-26 10:02 - 00000000 ____D () C:\Program Files (x86)\F1 2014 2014-10-24 21:53 - 2014-10-24 21:53 - 00012799 _____ () C:\Users\alex\Downloads\rld-f12014.iso.torrent 2014-10-21 15:10 - 2014-10-21 15:10 - 00046160 _____ (nethfdrv) C:\Windows\system32\Drivers\nethfdrv.sys 2014-10-21 15:09 - 2014-10-21 15:09 - 00246784 _____ () C:\Windows\SysWOW64\hfpapi.dll 2014-10-21 15:09 - 2014-10-21 15:09 - 00180736 _____ () C:\Windows\SysWOW64\nethtsrv.exe 2014-10-21 15:09 - 2014-10-21 15:09 - 00161792 _____ () C:\Windows\SysWOW64\netupdsrv.exe 2014-10-21 15:09 - 2014-10-21 15:09 - 00111104 _____ () C:\Windows\SysWOW64\installd.exe 2014-10-21 15:09 - 2014-10-21 15:09 - 00108544 _____ () C:\Windows\SysWOW64\hfnapi.dll 2014-10-18 16:04 - 2014-10-18 16:04 - 00000687 _____ () C:\awh4D93.tmp 2014-10-18 15:47 - 2014-10-18 15:47 - 00000687 _____ () C:\awh55AD.tmp 2014-10-16 14:08 - 2014-10-16 14:08 - 00000687 _____ () C:\awh60E4.tmp 2014-10-16 13:52 - 2014-10-16 13:52 - 00000687 _____ () C:\awhE57E.tmp 2014-10-15 20:06 - 2014-10-15 20:06 - 00001996 _____ () C:\Users\Public\Desktop\Counter-Strike.lnk 2014-10-15 20:04 - 2014-10-15 20:04 - 00010520 _____ () C:\Users\alex\Downloads\Counter-Strike.exe (2).torrent 2014-10-15 19:24 - 2014-09-29 02:58 - 03198976 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2014-10-15 19:24 - 2014-07-07 04:07 - 14632960 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll 2014-10-15 19:24 - 2014-07-07 04:07 - 00782848 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll 2014-10-15 19:24 - 2014-07-07 04:06 - 04120576 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll 2014-10-15 19:24 - 2014-07-07 04:06 - 01202176 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll 2014-10-15 19:24 - 2014-07-07 04:06 - 00842240 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll 2014-10-15 19:24 - 2014-07-07 04:06 - 00500224 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll 2014-10-15 19:24 - 2014-07-07 03:40 - 11411456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll 2014-10-15 19:24 - 2014-07-07 03:40 - 00988160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmv2clt.dll 2014-10-15 19:24 - 2014-07-07 03:40 - 00744960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\blackbox.dll 2014-10-15 19:24 - 2014-07-07 03:40 - 00617984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmsdk.dll 2014-10-15 19:24 - 2014-06-19 00:23 - 01943696 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll 2014-10-15 19:24 - 2014-06-19 00:23 - 01131664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfshim.dll 2014-10-15 19:24 - 2014-06-19 00:23 - 00156824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscorier.dll 2014-10-15 19:24 - 2014-06-19 00:23 - 00156312 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll 2014-10-15 19:24 - 2014-06-19 00:23 - 00081560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscories.dll 2014-10-15 19:24 - 2014-06-19 00:23 - 00073880 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll 2014-10-15 19:23 - 2014-10-10 04:05 - 00507392 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll 2014-10-15 19:23 - 2014-10-10 04:05 - 00276480 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll 2014-10-15 19:23 - 2014-10-10 04:00 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2014-10-15 19:23 - 2014-10-07 04:54 - 00378552 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2014-10-15 19:23 - 2014-10-07 04:04 - 00331448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2014-10-15 19:23 - 2014-09-26 00:50 - 13619200 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2014-10-15 19:23 - 2014-09-26 00:46 - 00365056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2014-10-15 19:23 - 2014-09-26 00:46 - 00243200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2014-10-15 19:23 - 2014-09-26 00:46 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2014-10-15 19:23 - 2014-09-26 00:43 - 11807232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2014-10-15 19:23 - 2014-09-26 00:32 - 02017280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2014-10-15 19:23 - 2014-09-26 00:31 - 02108416 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2014-10-15 19:23 - 2014-09-19 04:25 - 23631360 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2014-10-15 19:23 - 2014-09-19 03:56 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2014-10-15 19:23 - 2014-09-19 03:55 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2014-10-15 19:23 - 2014-09-19 03:44 - 17484800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2014-10-15 19:23 - 2014-09-19 03:41 - 02796032 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2014-10-15 19:23 - 2014-09-19 03:40 - 00547328 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2014-10-15 19:23 - 2014-09-19 03:40 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2014-10-15 19:23 - 2014-09-19 03:39 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2014-10-15 19:23 - 2014-09-19 03:38 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2014-10-15 19:23 - 2014-09-19 03:36 - 05829632 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2014-10-15 19:23 - 2014-09-19 03:31 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2014-10-15 19:23 - 2014-09-19 03:30 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2014-10-15 19:23 - 2014-09-19 03:27 - 00595968 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2014-10-15 19:23 - 2014-09-19 03:26 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2014-10-15 19:23 - 2014-09-19 03:25 - 04201472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2014-10-15 19:23 - 2014-09-19 03:25 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2014-10-15 19:23 - 2014-09-19 03:25 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2014-10-15 19:23 - 2014-09-19 03:18 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2014-10-15 19:23 - 2014-09-19 03:14 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2014-10-15 19:23 - 2014-09-19 03:14 - 00446464 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2014-10-15 19:23 - 2014-09-19 03:06 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2014-10-15 19:23 - 2014-09-19 03:02 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2014-10-15 19:23 - 2014-09-19 03:01 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2014-10-15 19:23 - 2014-09-19 03:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2014-10-15 19:23 - 2014-09-19 03:01 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll 2014-10-15 19:23 - 2014-09-19 03:00 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2014-10-15 19:23 - 2014-09-19 02:59 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll 2014-10-15 19:23 - 2014-09-19 02:58 - 00289280 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2014-10-15 19:23 - 2014-09-19 02:55 - 02187264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2014-10-15 19:23 - 2014-09-19 02:54 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2014-10-15 19:23 - 2014-09-19 02:53 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2014-10-15 19:23 - 2014-09-19 02:51 - 00440320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2014-10-15 19:23 - 2014-09-19 02:50 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2014-10-15 19:23 - 2014-09-19 02:49 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2014-10-15 19:23 - 2014-09-19 02:42 - 00731136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2014-10-15 19:23 - 2014-09-19 02:42 - 00710656 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2014-10-15 19:23 - 2014-09-19 02:40 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2014-10-15 19:23 - 2014-09-19 02:36 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2014-10-15 19:23 - 2014-09-19 02:33 - 02309632 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2014-10-15 19:23 - 2014-09-19 02:32 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2014-10-15 19:23 - 2014-09-19 02:20 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2014-10-15 19:23 - 2014-09-19 02:18 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll 2014-10-15 19:23 - 2014-09-19 02:14 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2014-10-15 19:23 - 2014-09-19 01:59 - 01810944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2014-10-15 19:23 - 2014-09-19 01:59 - 00775168 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2014-10-15 19:23 - 2014-09-19 01:53 - 01190400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2014-10-15 19:23 - 2014-09-19 01:52 - 00678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2014-10-15 19:23 - 2014-08-19 05:11 - 00693176 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi 2014-10-15 19:23 - 2014-08-19 05:10 - 00616352 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi 2014-10-15 19:23 - 2014-08-19 05:08 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll 2014-10-15 19:23 - 2014-08-19 05:08 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll 2014-10-15 19:23 - 2014-08-19 05:08 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll 2014-10-15 19:23 - 2014-08-19 05:07 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe 2014-10-15 19:23 - 2014-08-19 05:07 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe 2014-10-15 19:23 - 2014-08-19 05:07 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll 2014-10-15 19:23 - 2014-08-19 05:07 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll 2014-10-15 19:23 - 2014-08-19 05:07 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe 2014-10-15 19:23 - 2014-08-19 04:41 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll 2014-10-15 19:23 - 2014-08-19 04:41 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll 2014-10-15 19:23 - 2014-08-19 04:06 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys 2014-10-15 19:23 - 2014-07-07 04:07 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 05551032 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2014-10-15 19:23 - 2014-07-07 04:06 - 01574400 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 01480192 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 01069056 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 00679424 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 00641024 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 00432128 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 00325632 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 00188416 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe 2014-10-15 19:23 - 2014-07-07 04:06 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe 2014-10-15 19:23 - 2014-07-07 04:06 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx 2014-10-15 19:23 - 2014-07-07 04:06 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll 2014-10-15 19:23 - 2014-07-07 04:05 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL 2014-10-15 19:23 - 2014-07-07 04:05 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe 2014-10-15 19:23 - 2014-07-07 04:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll 2014-10-15 19:23 - 2014-07-07 03:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys 2014-10-15 19:23 - 2014-07-07 03:40 - 03208704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll 2014-10-15 19:23 - 2014-07-07 03:40 - 01329664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll 2014-10-15 19:23 - 2014-07-07 03:40 - 01174528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll 2014-10-15 19:23 - 2014-07-07 03:40 - 01005056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll 2014-10-15 19:23 - 2014-07-07 03:40 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscp.dll 2014-10-15 19:23 - 2014-07-07 03:40 - 00489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll 2014-10-15 19:23 - 2014-07-07 03:40 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll 2014-10-15 19:23 - 2014-07-07 03:40 - 00406016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmmgrtn.dll 2014-10-15 19:23 - 2014-07-07 03:40 - 00374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll 2014-10-15 19:23 - 2014-07-07 03:40 - 00354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll 2014-10-15 19:23 - 2014-07-07 03:40 - 00265216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msnetobj.dll 2014-10-15 19:23 - 2014-07-07 03:40 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll 2014-10-15 19:23 - 2014-07-07 03:40 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll 2014-10-15 19:23 - 2014-07-07 03:40 - 00143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll 2014-10-15 19:23 - 2014-07-07 03:40 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll 2014-10-15 19:23 - 2014-07-07 03:40 - 00081408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsp.dll 2014-10-15 19:23 - 2014-07-07 03:40 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll 2014-10-15 19:23 - 2014-07-07 03:40 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx 2014-10-15 19:23 - 2014-07-07 03:40 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll 2014-10-15 19:23 - 2014-07-07 03:39 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL 2014-10-15 19:23 - 2014-07-07 03:39 - 03970488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe 2014-10-15 19:23 - 2014-07-07 03:39 - 03914680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe 2014-10-15 19:23 - 2014-07-07 03:39 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe 2014-10-15 19:23 - 2014-07-07 03:39 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe 2014-10-15 19:23 - 2014-07-07 03:37 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll 2014-10-15 19:23 - 2014-06-28 02:21 - 00619056 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe 2014-10-15 19:23 - 2014-06-28 02:21 - 00532176 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe 2014-10-15 19:23 - 2014-06-28 02:21 - 00457400 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll 2014-10-15 19:22 - 2014-09-18 04:00 - 03241472 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll 2014-10-15 19:22 - 2014-09-18 03:32 - 02363904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll 2014-10-15 19:22 - 2014-09-13 03:58 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll 2014-10-15 19:22 - 2014-09-13 03:40 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll 2014-10-15 19:22 - 2014-09-04 07:23 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll 2014-10-15 19:22 - 2014-09-04 07:04 - 00372736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll 2014-10-15 19:22 - 2014-07-17 04:07 - 03722240 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll 2014-10-15 19:22 - 2014-07-17 04:07 - 01118720 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe 2014-10-15 19:22 - 2014-07-17 04:07 - 01113088 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll 2014-10-15 19:22 - 2014-07-17 04:07 - 00681984 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll 2014-10-15 19:22 - 2014-07-17 04:07 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll 2014-10-15 19:22 - 2014-07-17 04:07 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll 2014-10-15 19:22 - 2014-07-17 04:07 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll 2014-10-15 19:22 - 2014-07-17 04:07 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll 2014-10-15 19:22 - 2014-07-17 03:40 - 00157696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsta.dll 2014-10-15 19:22 - 2014-07-17 03:39 - 03221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll 2014-10-15 19:22 - 2014-07-17 03:39 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe 2014-10-15 19:22 - 2014-07-17 03:39 - 00131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll 2014-10-15 19:22 - 2014-07-17 03:39 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll 2014-10-15 19:22 - 2014-07-17 03:39 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll 2014-10-15 19:22 - 2014-07-17 03:21 - 00212480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys 2014-10-15 19:22 - 2014-07-17 03:21 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys 2014-10-15 19:22 - 2011-01-16 02:01 - 00389632 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe 2014-10-15 14:13 - 2014-10-15 14:13 - 00000687 _____ () C:\awh4865.tmp 2014-10-14 20:12 - 2014-10-14 20:12 - 00000687 _____ () C:\awhD4B7.tmp 2014-10-13 13:38 - 2014-10-13 13:38 - 00000687 _____ () C:\awhFFDF.tmp 2014-10-11 09:26 - 2014-10-11 09:26 - 00002220 _____ () C:\Users\alex\Desktop\Counter-Strike 1.6 LH.lnk 2014-10-11 09:26 - 2014-10-11 09:26 - 00002197 _____ () C:\Users\alex\Desktop\(UCP) Counter-Strike 1.6 LH.lnk 2014-10-11 09:22 - 2014-10-11 09:22 - 00000687 _____ () C:\awh49DB.tmp 2014-10-10 19:01 - 2014-10-10 19:01 - 00002026 _____ () C:\Users\Public\Desktop\Sony PC Companion 2.1.lnk 2014-10-10 14:09 - 2014-10-10 14:09 - 00000687 _____ () C:\awhC1A0.tmp ==================== One Month Modified Files and Folders ======= (If an entry is included in the fixlist, the file\folder will be moved.) 2014-11-07 23:23 - 2014-07-10 18:06 - 00000000 ____D () C:\ProgramData\systemk 2014-11-07 23:23 - 2014-06-28 22:16 - 02025543 _____ () C:\Windows\WindowsUpdate.log 2014-11-07 23:20 - 2014-06-29 15:16 - 00000246 _____ () C:\Windows\Tasks\DriverScanner.job 2014-11-07 23:20 - 2014-06-29 13:59 - 00000000 ____D () C:\Program Files (x86)\trolatunt 2014-11-07 23:20 - 2009-07-14 04:34 - 00000580 _____ () C:\Windows\win.ini 2014-11-07 23:19 - 2014-10-01 18:40 - 00000356 _____ () C:\Windows\Tasks\AmiUpdXp.job 2014-11-07 23:19 - 2014-07-28 01:45 - 00000474 ____H () C:\Windows\Tasks\PC_Booster-S-493389286.job 2014-11-07 23:19 - 2014-07-01 08:51 - 00000478 ____H () C:\Windows\Tasks\SO_Booster-S-126785670.job 2014-11-07 23:19 - 2014-06-29 15:02 - 00001440 _____ () C:\Windows\Tasks\76760ead-f35c-4d00-b19e-7cacf1541f90-5_user.job 2014-11-07 23:19 - 2014-06-29 15:01 - 00003790 _____ () C:\Windows\Tasks\76760ead-f35c-4d00-b19e-7cacf1541f90-11.job 2014-11-07 23:19 - 2014-06-29 15:01 - 00003108 _____ () C:\Windows\Tasks\76760ead-f35c-4d00-b19e-7cacf1541f90-3.job 2014-11-07 23:19 - 2014-06-29 15:01 - 00002186 _____ () C:\Windows\Tasks\76760ead-f35c-4d00-b19e-7cacf1541f90-4.job 2014-11-07 23:19 - 2014-06-29 15:01 - 00001532 _____ () C:\Windows\Tasks\76760ead-f35c-4d00-b19e-7cacf1541f90-1.job 2014-11-07 23:19 - 2014-06-29 15:01 - 00001418 _____ () C:\Windows\Tasks\76760ead-f35c-4d00-b19e-7cacf1541f90-5.job 2014-11-07 23:19 - 2014-06-29 15:01 - 00001326 _____ () C:\Windows\Tasks\76760ead-f35c-4d00-b19e-7cacf1541f90-2.job 2014-11-07 23:19 - 2014-06-29 15:01 - 00000908 _____ () C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job 2014-11-07 23:19 - 2014-06-29 15:01 - 00000338 _____ () C:\Windows\Tasks\dsmonitor.job 2014-11-07 23:19 - 2014-06-29 10:02 - 00000990 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2014-11-07 23:19 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2014-11-07 23:18 - 2009-07-14 06:51 - 00042432 _____ () C:\Windows\setupact.log 2014-11-07 23:17 - 2014-06-29 10:02 - 00000994 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2014-11-07 23:17 - 2009-07-14 06:45 - 00026144 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2014-11-07 23:17 - 2009-07-14 06:45 - 00026144 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2014-11-07 23:16 - 2014-06-29 10:27 - 00000000 ____D () C:\Users\alex\AppData\Roaming\BitComet 2014-11-07 23:16 - 2014-06-29 00:33 - 00000000 ____D () C:\Users\alex\AppData\Roaming\Skype 2014-11-07 22:34 - 2014-06-29 10:05 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job 2014-11-07 22:06 - 2014-06-29 15:01 - 00000912 _____ () C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job 2014-11-07 19:39 - 2009-07-14 07:13 - 00782470 _____ () C:\Windows\system32\PerfStringBackup.INI 2014-11-07 02:39 - 2014-07-01 08:50 - 00000000 ____D () C:\ProgramData\21c40c2fc7716a18 2014-11-07 02:38 - 2014-09-29 10:47 - 00000000 ____D () C:\ProgramData\DouWnSave 2014-11-07 02:38 - 2014-09-26 08:31 - 00000000 ____D () C:\ProgramData\NetoCooupon 2014-11-07 02:38 - 2014-08-10 02:21 - 00000000 ____D () C:\ProgramData\MiinimumPrice 2014-11-07 02:38 - 2014-07-22 10:07 - 00000000 ____D () C:\ProgramData\ChEApMe 2014-11-07 02:38 - 2014-07-15 11:30 - 00000000 ____D () C:\ProgramData\EXstraSaavoinggs 2014-11-07 02:38 - 2014-07-08 12:34 - 00000000 ____D () C:\ProgramData\TakeTheCaouupon 2014-11-04 16:09 - 2014-06-28 23:02 - 00442286 _____ () C:\Windows\DPINST.LOG 2014-11-04 15:53 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\NDF 2014-11-03 17:29 - 2014-07-11 11:35 - 00000000 ____D () C:\Users\alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games 2014-11-03 16:12 - 2010-11-21 05:47 - 00094712 _____ () C:\Windows\PFRO.log 2014-10-31 19:12 - 2014-06-29 10:02 - 00003990 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2014-10-31 19:12 - 2014-06-29 10:02 - 00003738 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2014-10-31 19:08 - 2014-09-19 12:43 - 00000000 ____D () C:\Users\alex\AppData\Roaming\Adobe 2014-10-31 19:08 - 2014-09-19 12:43 - 00000000 ____D () C:\Users\alex\AppData\Local\Adobe 2014-10-30 17:58 - 2014-07-01 09:08 - 00000000 ____D () C:\ProgramData\TEMP 2014-10-30 13:25 - 2010-11-21 05:27 - 00275080 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe 2014-10-28 15:32 - 2009-07-14 07:09 - 00000000 ____D () C:\Windows\System32\Tasks\WPD 2014-10-27 17:22 - 2014-07-01 08:50 - 00001044 __RSH () C:\ProgramData\ntuser.pol 2014-10-18 15:40 - 2014-08-25 02:16 - 00000000 ____D () C:\Program Files (x86)\SupTab 2014-10-18 15:40 - 2014-06-28 22:28 - 00000000 _RSHD () C:\Windows Activation Technologies 2014-10-18 15:40 - 2014-06-28 22:22 - 00000000 ____D () C:\Users\alex 2014-10-18 15:40 - 2009-07-14 05:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared 2014-10-18 15:39 - 2014-07-01 14:04 - 00000000 ___SD () C:\Windows\system32\CompatTel 2014-10-18 15:39 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\Dism 2014-10-18 15:39 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\bg-BG 2014-10-18 15:39 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\Dism 2014-10-18 15:39 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\bg-BG 2014-10-18 15:39 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache 2014-10-18 15:39 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\registration 2014-10-17 20:02 - 2014-07-09 11:51 - 00000000 ____D () C:\Users\alex\Desktop\Photoscape 2014-10-16 13:46 - 2009-07-14 06:45 - 05036256 _____ () C:\Windows\system32\FNTCACHE.DAT 2014-10-16 00:16 - 2014-06-28 23:39 - 00000000 ____D () C:\ProgramData\Microsoft Help 2014-10-16 00:10 - 2014-08-09 13:00 - 00000000 ____D () C:\Windows\system32\MRT 2014-10-16 00:02 - 2014-06-28 23:53 - 103265616 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2014-10-15 20:06 - 2014-09-01 13:31 - 00002026 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Counter-Strike.lnk 2014-10-15 20:06 - 2014-09-01 13:31 - 00002018 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Half-Life.lnk 2014-10-15 20:06 - 2014-09-01 13:31 - 00001988 _____ () C:\Users\Public\Desktop\Half-Life.lnk 2014-10-15 20:06 - 2014-09-01 13:31 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Counter-Strike 1.6 2014-10-14 13:58 - 2014-06-29 00:33 - 00000000 ____D () C:\ProgramData\Skype 2014-10-11 23:31 - 2014-09-09 14:38 - 00000000 ____D () C:\Users\alex\AppData\Local\PMB Files 2014-10-11 23:31 - 2014-09-09 14:37 - 00000000 ____D () C:\ProgramData\PMB Files 2014-10-10 19:01 - 2014-07-23 23:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony 2014-10-10 19:01 - 2014-06-28 22:52 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information Some content of TEMP: ==================== C:\Users\alex\AppData\Local\Temp\aplinstal.exe C:\Users\alex\AppData\Local\Temp\drv46019.exe ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\System32\winlogon.exe [2014-10-15 19:22] - [2011-01-16 02:01] - 0389632 ____A (Microsoft Corporation) 81257415084B84F3C0D95C381A8D4C8F C:\Windows\System32\wininit.exe => File is digitally signed C:\Windows\SysWOW64\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\System32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\System32\services.exe => File is digitally signed C:\Windows\System32\User32.dll [2010-11-21 05:24] - [2011-01-16 02:01] - 1008640 ____A (Microsoft Corporation) 0B864E15A0BADFF0E7BB8B59009FDDCF C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\System32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\System32\rpcss.dll => File is digitally signed C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2014-11-05 14:22 ==================== End Of Log ============================ Поздрави
  13. Имал съм същият проблем. Отиваш в офиса от където си купил телефона и те ти го оправят . Или по точно ако си на ГЛОБУЛ пращаш SMS на номер 100 с текст Wap и те ти пращат настройки който трябва да приемеш и след като ги приемеш ще имаш мобилни данни (sms-са не струва пари ) ПОЗДРАВИ
  14. Здравейте не знам с кой проблем да започна. Значи компютърът ми постоянно забива в интернет като вляза ми изкачат винаги някакви прозорци , от които компютърът ми започва да забива повече и повече. Искам да ви попитам дали ще може да се оправи това Поздрави Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 04-11-2014 Ran by alex (administrator) on ALEX-PC on 07-11-2014 20:52:18 Running from C:\Users\alex\Downloads Loaded Profile: alex (Available profiles: alex) Platform: Windows 7 Ultimate Service Pack 1 (X64) OS Language: Български (България) Internet Explorer Version 11 Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe (AMD) C:\Windows\System32\atiesrxx.exe (AMD) C:\Windows\System32\atieclxx.exe (Microsoft Corporation) C:\Windows\System32\wlanext.exe (Cherished Technololgy LIMITED) C:\ProgramData\IePluginServices\PluginService.exe (Microsoft Corporation) C:\Windows\System32\rundll32.exe (Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe (Microsoft Corporation) C:\Windows\System32\rundll32.exe (Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Uniblue Systems Ltd) C:\Program Files (x86)\Uniblue\DriverScanner\dsmonitor.exe () C:\ProgramData\Wideblue installer\SO_Booster\SO_Booster.exe () C:\ProgramData\Trusted Publisher\PC_Booster\PC_Booster.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe () C:\ProgramData\29a882f6-268a-4df9-b011-02fdee89f086\maintainer.exe () C:\Program Files (x86)\T-Mobile\ConnectionManager\BackgroundService\ServiceManager.exe () C:\Windows\SysWOW64\nethtsrv.exe (Nalpeiron Ltd.) C:\Windows\SysWOW64\nlssrv32.exe () C:\Windows\SysWOW64\netupdsrv.exe (Aztec Media Inc) C:\Program Files (x86)\Settings Manager\systemk\SystemkService.exe () C:\Program Files (x86)\trolatunt\updatetrolatunt.exe (Aztec Media Inc) C:\Program Files (x86)\Settings Manager\systemk\SystemkService.exe (Aztec Media Inc) C:\Program Files (x86)\Settings Manager\systemk\systemku.exe () C:\Program Files (x86)\trolatunt\bin\utiltrolatunt.exe (Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe () C:\Program Files (x86)\SupTab\HpUI.exe () C:\Program Files (x86)\SupTab\Loader32.exe () C:\Program Files (x86)\SupTab\Loader64.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe (Alcor Micro Corp.) C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe (DT Soft Ltd) C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (www.BitComet.com) C:\Program Files\BitComet\BitComet.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe (www.BitComet.com) C:\Program Files\BitComet\tools\BitCometService.exe (PC Utilities Software Limited) C:\Program Files (x86)\Optimizer Pro\OptProReminder.exe (SkypEmoticons) C:\Users\alex\AppData\Roaming\SkypEmoticons\SE.exe (PC Utilities Software Limited) C:\Program Files (x86)\LiveSupport\LiveSupport.exe (Sony) C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe (Pay By Ads LTD) C:\Users\alex\AppData\Local\buenosearch\buenosearch\1.3.8.2\buenosearch.exe (Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe () C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe (Pay By Ads LTD) C:\Users\alex\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.15.4\dsrlte.exe (Disc Soft Ltd) C:\Program Files (x86)\DAEMON Tools Ultra\DiscSoftBusService.exe (Virage Logic Corporation / Sonic Focus) C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe (Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe () C:\Program Files (x86)\T-Mobile\ConnectionManager\Background\ModemListener.exe (GameRanger Technologies) C:\Users\alex\AppData\Roaming\GameRanger\GameRanger\GameRanger.exe (Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe () C:\Program Files (x86)\trolatunt\bin\trolatunt.BrowserAdapter.exe () C:\Program Files (x86)\trolatunt\bin\trolatunt.BrowserAdapter64.exe () C:\Program Files (x86)\trolatunt\bin\trolatunt.PurBrowse64.exe () C:\Program Files (x86)\trolatunt\bin\trolatunt.BOASHelper.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\System32\audiodg.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2587944 2010-12-31] (ELAN Microelectronics Corp.) HKLM\...\Run: [AmIcoSinglun64] => C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [361984 2011-03-21] (Alcor Micro Corp.) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11860072 2011-06-09] (Realtek Semiconductor) HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2226280 2011-06-03] (Realtek Semiconductor) HKLM\...\Run: [MSC] => C:\Program Files\Microsoft Security Client\msseces.exe [1331288 2014-08-22] (Microsoft Corporation) HKLM\...\Run: [AdobeAAMUpdater-1.0] => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" HKLM-x32\...\Run: [sonicMasterTray] => C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe [984400 2010-07-09] (Virage Logic Corporation / Sonic Focus) HKLM-x32\...\Run: [Wireless Console 3] => C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [1601536 2010-09-23] () HKLM-x32\...\Run: [bCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation) HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-05-26] (Apple Inc.) HKLM-x32\...\Run: [T-Mobile ModemListener] => C:\Program Files (x86)\T-Mobile\ConnectionManager\Background\ModemListener.exe [114552 2012-12-05] () HKLM-x32\...\Run: [switchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated) HKU\S-1-5-21-2631065296-950240196-2606291329-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [357696 2010-04-01] (DT Soft Ltd) HKU\S-1-5-21-2631065296-950240196-2606291329-1000\...\Run: [bitComet] => C:\Program Files\BitComet\BitComet.exe [17257648 2013-12-31] (www.BitComet.com) HKU\S-1-5-21-2631065296-950240196-2606291329-1000\...\Run: [DAEMON Tools Ultra Agent] => C:\Program Files (x86)\DAEMON Tools Ultra\DTAgent.exe [3198224 2014-04-28] (Disc Soft Ltd) HKU\S-1-5-21-2631065296-950240196-2606291329-1000\...\Run: [Optimizer Pro] => C:\Program Files (x86)\Optimizer Pro\OptProLauncher.exe [135112 2014-06-23] (PC Utilities Software Limited) HKU\S-1-5-21-2631065296-950240196-2606291329-1000\...\Run: [se] => C:\Users\alex\AppData\Roaming\SkypEmoticons\SE.exe [5679008 2014-07-01] (SkypEmoticons) HKU\S-1-5-21-2631065296-950240196-2606291329-1000\...\Run: [LiveSupport] => C:\Program Files (x86)\LiveSupport\LiveSupport.exe [1005056 2014-03-18] (PC Utilities Software Limited) HKU\S-1-5-21-2631065296-950240196-2606291329-1000\...\Run: [sony PC Companion] => C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [468192 2014-09-01] (Sony) HKU\S-1-5-21-2631065296-950240196-2606291329-1000\...\Run: [AdobeBridge] => [X] HKU\S-1-5-21-2631065296-950240196-2606291329-1000\...\Run: [buenosearch] => C:\Users\alex\AppData\Local\buenosearch\buenosearch\1.3.8.2\buenosearch.exe [543664 2014-08-25] (Pay By Ads LTD) HKU\S-1-5-21-2631065296-950240196-2606291329-1000\...\Run: [skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [22059616 2014-10-01] (Skype Technologies S.A.) HKU\S-1-5-21-2631065296-950240196-2606291329-1000\...\Run: [Yahoo! Search] => C:\Users\alex\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.15.4\dsrlte.exe [533352 2014-10-28] (Pay By Ads LTD) HKU\S-1-5-21-2631065296-950240196-2606291329-1000\...\MountPoints2: F - F:\setup.exe HKU\S-1-5-21-2631065296-950240196-2606291329-1000\...\MountPoints2: {34c73c43-ff63-11e3-b913-14dae9cb71b4} - F:\setup.exe HKU\S-1-5-21-2631065296-950240196-2606291329-1000\...\MountPoints2: {375aadcd-0c50-11e4-a877-14dae9cb71b4} - I:\Autorun.exe HKU\S-1-5-21-2631065296-950240196-2606291329-1000\...\MountPoints2: {cc807fe4-084b-11e4-aa1a-14dae9cb71b4} - H:\Go.exe HKU\S-1-5-21-2631065296-950240196-2606291329-1000\...\MountPoints2: {e0ea64fd-123d-11e4-919b-14dae9cb71b4} - H:\Startme.exe AppInit_DLLs: C:\PROGRA~2\PC_BOO~1\ASSIST~2.DLL => C:\Program Files (x86)\PC_Booster\Assistant_x64.dll [4210176 2014-07-28] () AppInit_DLLs-x32: c:\progra~2\pc_boo~1\assist~1.dll => c:\Program Files (x86)\PC_Booster\Assistant.dll [4296192 2014-07-28] () IFEO\bitguard.exe: [Debugger] tasklist.exe IFEO\bprotect.exe: [Debugger] tasklist.exe IFEO\bpsvc.exe: [Debugger] tasklist.exe IFEO\browserdefender.exe: [Debugger] tasklist.exe IFEO\browserprotect.exe: [Debugger] tasklist.exe IFEO\browsersafeguard.exe: [Debugger] tasklist.exe IFEO\dprotectsvc.exe: [Debugger] tasklist.exe IFEO\jumpflip: [Debugger] tasklist.exe IFEO\protectedsearch.exe: [Debugger] tasklist.exe IFEO\searchinstaller.exe: [Debugger] tasklist.exe IFEO\searchprotection.exe: [Debugger] tasklist.exe IFEO\searchprotector.exe: [Debugger] tasklist.exe IFEO\searchsettings.exe: [Debugger] tasklist.exe IFEO\searchsettings64.exe: [Debugger] tasklist.exe IFEO\snapdo.exe: [Debugger] tasklist.exe IFEO\stinst32.exe: [Debugger] tasklist.exe IFEO\stinst64.exe: [Debugger] tasklist.exe IFEO\umbrella.exe: [Debugger] tasklist.exe IFEO\utiljumpflip.exe: [Debugger] tasklist.exe IFEO\volaro: [Debugger] tasklist.exe IFEO\vonteera: [Debugger] tasklist.exe IFEO\websteroids.exe: [Debugger] tasklist.exe IFEO\websteroidsservice.exe: [Debugger] tasklist.exe Startup: C:\Users\alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GameRanger.lnk ShortcutTarget: GameRanger.lnk -> C:\Users\alex\AppData\Roaming\GameRanger\GameRanger\GameRanger.exe (GameRanger Technologies) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Reader Speed Launch.lnk ShortcutTarget: Adobe Reader Speed Launch.lnk -> C:\Program Files (x86)\Adobe\Reader 8.0\Reader\reader_sl.exe (Adobe Systems Incorporated) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Reader Synchronizer.lnk ShortcutTarget: Adobe Reader Synchronizer.lnk -> C:\Program Files (x86)\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe () GroupPolicy: Group Policy on Chrome detected <======= ATTENTION CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://rts.dsrlte.com?affID=na HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x1593C0A41A93CF01 HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = bg-BG HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.istartsurf.com/?type=hp&ts=1408925742&from=amt&uid=HitachiXHTS547550A9E384_J2160051CP58ZDCP58ZDX HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.istartsurf.com/web/?type=ds&ts=1408925742&from=amt&uid=HitachiXHTS547550A9E384_J2160051CP58ZDCP58ZDX&q={searchTerms} HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.istartsurf.com/?type=hp&ts=1408925742&from=amt&uid=HitachiXHTS547550A9E384_J2160051CP58ZDCP58ZDX HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.istartsurf.com/?type=hp&ts=1408925742&from=amt&uid=HitachiXHTS547550A9E384_J2160051CP58ZDCP58ZDX HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.istartsurf.com/web/?type=ds&ts=1408925742&from=amt&uid=HitachiXHTS547550A9E384_J2160051CP58ZDCP58ZDX&q={searchTerms} HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.istartsurf.com/web/?type=ds&ts=1408925742&from=amt&uid=HitachiXHTS547550A9E384_J2160051CP58ZDCP58ZDX&q={searchTerms} HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.istartsurf.com/?type=hp&ts=1408925742&from=amt&uid=HitachiXHTS547550A9E384_J2160051CP58ZDCP58ZDX HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.istartsurf.com/?type=hp&ts=1408925742&from=amt&uid=HitachiXHTS547550A9E384_J2160051CP58ZDCP58ZDX HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.istartsurf.com/web/?type=ds&ts=1408925742&from=amt&uid=HitachiXHTS547550A9E384_J2160051CP58ZDCP58ZDX&q={searchTerms} StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe http://www.istartsurf.com/?type=sc&ts=1408925742&from=amt&uid=HitachiXHTS547550A9E384_J2160051CP58ZDCP58ZDX SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.istartsurf.com/web/?type=ds&ts=1408925742&from=amt&uid=HitachiXHTS547550A9E384_J2160051CP58ZDCP58ZDX&q={searchTerms} SearchScopes: HKLM - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.istartsurf.com/web/?type=ds&ts=1408925742&from=amt&uid=HitachiXHTS547550A9E384_J2160051CP58ZDCP58ZDX&q={searchTerms} SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2503} URL = http://www.default-search.net/search?sid=503&aid=100&itype=a&ver=13337&tm=392&src=ds&p={searchTerms} SearchScopes: HKLM-x32 - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.istartsurf.com/web/?type=ds&ts=1408925742&from=amt&uid=HitachiXHTS547550A9E384_J2160051CP58ZDCP58ZDX&q={searchTerms} SearchScopes: HKLM-x32 - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.istartsurf.com/web/?type=ds&ts=1408925742&from=amt&uid=HitachiXHTS547550A9E384_J2160051CP58ZDCP58ZDX&q={searchTerms} SearchScopes: HKLM-x32 - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2503} URL = http://www.default-search.net/search?sid=503&aid=100&itype=a&ver=13337&tm=392&src=ds&p={searchTerms} SearchScopes: HKLM-x32 - {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = http://websearch.fastsearchings.info/?l=1&q={searchTerms}&pid=2354&r=2014/07/01&hid=14548232797880421759&lg=EN&cc=BG&unqvl=56 SearchScopes: HKCU - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.istartsurf.com/web/?type=ds&ts=1408925742&from=amt&uid=HitachiXHTS547550A9E384_J2160051CP58ZDCP58ZDX&q={searchTerms} SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www.buenosearch.com/?q={searchTerms}&babsrc=SP_ss&mntrId=083B9439E521B19E&affID=128235&tsp=5350 SearchScopes: HKCU - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.istartsurf.com/web/?type=ds&ts=1408925742&from=amt&uid=HitachiXHTS547550A9E384_J2160051CP58ZDCP58ZDX&q={searchTerms} SearchScopes: HKCU - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2503} URL = http://www.default-search.net/search?sid=503&aid=100&itype=a&ver=13337&tm=392&src=ds&p={searchTerms} SearchScopes: HKCU - {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = http://websearch.fastsearchings.info/?l=1&q={searchTerms}&pid=2354&r=2014/07/01&hid=14548232797880421759&lg=EN&cc=BG&unqvl=56 SearchScopes: HKCU - {F5568160-11E6-424A-ABF7-0012A75D33EB} URL = http://www.daemon-search.com/search?q={searchTerms} BHO: SaveNewaAppz -> {97f08afe-646d-4a8c-ab6d-d43a7c4312f6} -> C:\ProgramData\SaveNewaAppz\fI8Gj6rslBbgn6.x64.dll () BHO: NetoCoupon -> {fd53e7a7-70bd-4f62-89aa-44b24e2f67f3} -> C:\ProgramData\NetoCoupon\ocJhXUqjrQk3Ha.x64.dll () BHO-x32: SaveNewaAppz -> {97f08afe-646d-4a8c-ab6d-d43a7c4312f6} -> C:\ProgramData\SaveNewaAppz\fI8Gj6rslBbgn6.dll () BHO-x32: NetoCoupon -> {fd53e7a7-70bd-4f62-89aa-44b24e2f67f3} -> C:\ProgramData\NetoCoupon\ocJhXUqjrQk3Ha.dll () Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation) Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation) Tcpip\Parameters: [DhcpNameServer] 88.80.96.2 88.80.96.7 FireFox: ======== FF ProfilePath: C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\tr76ic8y.default FF NewTab: hxxp://rts.dsrlte.com/?m=tab&affID=na FF DefaultSearchEngine: Yahoo! Search FF DefaultSearchEngine,S: WebSearch FF DefaultSearchUrl: hxxp://websearch.fastsearchings.info/?pid=2354&r=2014/07/01&hid=14548232797880421759&lg=EN&cc=BG&unqvl=56&l=1&q= FF SearchEngineOrder.1: default-search.net FF SearchEngineOrder.1,S: WebSearch FF SearchEngineOrder.3: Bing FF SelectedSearchEngine: Yahoo! Search FF SelectedSearchEngine,S: WebSearch FF Homepage: hxxp://rts.dsrlte.com?affID=na FF Keyword.URL: hxxp://rts.dsrlte.com/?q= FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_152.dll () FF Plugin: @microsoft.com/GENUINE -> disabled No File FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll () FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll () FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation) FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks) FF Plugin-x32: @staging.google.com/globalUpdate Update;version=10 -> C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll (globalUpdate) FF Plugin-x32: @staging.google.com/globalUpdate Update;version=4 -> C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll (globalUpdate) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.) FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\alex\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS) FF Plugin HKCU: pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\np32dsw.dll (Macromedia, Inc.) FF SearchPlugin: C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\tr76ic8y.default\searchplugins\ask-web-search.xml FF SearchPlugin: C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\tr76ic8y.default\searchplugins\bingp.xml FF SearchPlugin: C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\tr76ic8y.default\searchplugins\default-search.xml FF SearchPlugin: C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\tr76ic8y.default\searchplugins\dsrlte.xml FF SearchPlugin: C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\tr76ic8y.default\searchplugins\WebSearch.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\911bg.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\default-search.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\diribg.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\istartsurf.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\pe-bg.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\portalbgdict.xml FF Extension: Plus-HD-9.5 - C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\tr76ic8y.default\Extensions\e46480cf-7cf6-495e-af69-573053f52c72@b33ab36d-5952-49aa-adb2-a41b3dbe51a5.com [2014-11-07] FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2014-08-08] FF HKLM-x32\...\Firefox\Extensions: [faststartff@gmail.com] - C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\tr76ic8y.default\extensions\faststartff@gmail.com FF HKLM-x32\...\Firefox\Extensions: [ext@RichMediaViewV1release7753.net] - C:\Program Files (x86)\RichMediaViewV1\RichMediaViewV1release7753\ff FF Extension: No Name - C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\tr76ic8y.default\extensions\89ffxtbr@SafePCRepair_89.com [Not Found] FF Extension: No Name - C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\tr76ic8y.default\extensions\faststartff@gmail.com [Not Found] FF Extension: No Name - C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\tr76ic8y.default\extensions\{0c0bb4a8-45a4-4685-9c1d-08d98af4b926}.xpi [Not Found] FF Extension: No Name - C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\tr76ic8y.default\extensions\{B042753D-F57E-4e8e-A01B-7379A6D4CEFB} [Not Found] FF Extension: No Name - C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\tr76ic8y.default\extensions\67b66852-ecfb-49db-a836-51ece018b002@gmail.com [Not Found] FF StartMenuInternet: FIREFOX.EXE - C:\Program Files (x86)\Mozilla Firefox\firefox.exe http://www.istartsurf.com/?type=sc&ts=1408925742&from=amt&uid=HitachiXHTS547550A9E384_J2160051CP58ZDCP58ZDX Chrome: ======= CHR dev: Chrome dev build detected! <======= ATTENTION CHR Profile: C:\Users\alex\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (trolatunt) - C:\Users\alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\blfmadcppllbkhnmekfllfgbajlmolho [2014-11-07] CHR Extension: (Skype Click to Call) - C:\Users\alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2014-11-07] CHR Extension: (Plus-HD-9.5) - C:\Users\alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\olnkgiapbjhdboldbhkagdodklkphaip [2014-11-06] CHR Extension: (MetaProducts Offline Explorer integration) - C:\Users\alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkijdmeepjhpenmighhaodgfoogncnlk [2014-11-07] CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-07-14] ==================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R2 248642b4; c:\Program Files (x86)\PC_Booster\AssistantSvc.dll [174928 2014-07-28] () [File not signed] R2 29850aa3; c:\Program Files (x86)\SO_Booster\AssistantSvc.dll [174928 2014-07-01] () [File not signed] R3 BITCOMET_HELPER_SERVICE; C:\Program Files\BitComet\tools\BitCometService.exe [1296728 2013-11-29] (www.BitComet.com) R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390176 2014-07-14] (Microsoft Corporation) R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1767520 2014-07-14] (Microsoft Corporation) R3 Disc Soft Bus Service; C:\Program Files (x86)\DAEMON Tools Ultra\DiscSoftBusService.exe [813328 2014-04-28] (Disc Soft Ltd) S2 globalUpdate; C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [68608 2014-06-29] (globalUpdate) [File not signed] S3 globalUpdatem; C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [68608 2014-06-29] (globalUpdate) [File not signed] R2 IePluginServices; C:\ProgramData\IePluginServices\PluginService.exe [715656 2014-08-25] (Cherished Technololgy LIMITED) S3 ioloService; C:\Program Files (x86)\SafePCRepair\ioloToolService.exe [2625800 2013-11-22] (iolo technologies, LLC) R2 MaintainerSvc6.89.982339; C:\ProgramData\29a882f6-268a-4df9-b011-02fdee89f086\maintainer.exe [123680 2014-11-07] () R2 Modem Device Helper; C:\Program Files (x86)\T-Mobile\ConnectionManager\BackgroundService\ServiceManager.exe [51576 2012-12-04] () R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [23784 2014-08-22] (Microsoft Corporation) R2 NetHttpService; C:\Windows\SysWOW64\nethtsrv.exe [180736 2014-10-21] () [File not signed] R3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [368624 2014-08-22] (Microsoft Corporation) R2 nlsX86cc; C:\Windows\SysWOW64\nlssrv32.exe [66560 2011-09-22] (Nalpeiron Ltd.) [File not signed] R2 ServiceUpdater; C:\Windows\SysWOW64\netupdsrv.exe [161792 2014-10-21] () [File not signed] S2 SrvUpdater; C:\Program Files (x86)\SoftwareUpdater\UpdaterService.exe [0 2014-07-08] () [File not signed] R2 SystemkService; C:\Program Files (x86)\Settings Manager\systemk\SystemkService.exe [3572240 2014-07-09] (Aztec Media Inc) R2 Update trolatunt; C:\Program Files (x86)\trolatunt\updatetrolatunt.exe [526112 2014-11-07] () R2 Util trolatunt; C:\Program Files (x86)\trolatunt\bin\utiltrolatunt.exe [526112 2014-11-07] () S3 SwitchBoard; "C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [X] ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) S3 ALCATELUSB; C:\Windows\System32\Drivers\AlcatelUsb.sys [25088 2012-12-04] (Windows ® Codename Longhorn DDK provider) R3 dtscsibus; C:\Windows\System32\DRIVERS\dtscsibus.sys [29696 2014-06-29] (Disc Soft Ltd) R1 F06DEFF2-5B9C-490D-910F-35D3A91196222; C:\Program Files (x86)\Settings Manager\systemk\x64\systemkmgrc2.cfg [41872 2014-07-09] (Aztec Media Inc) S3 ggsomc; C:\Windows\System32\DRIVERS\ggsomc.sys [30424 2014-07-23] (Sony Mobile Communications) S3 jrdusbser; C:\Windows\System32\DRIVERS\jrdusbser.sys [120832 2012-12-04] (TCT International Mobile Ltd) R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15416 2009-07-20] ( ) R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [269008 2014-07-17] (Microsoft Corporation) R1 nethfdrv; C:\Windows\system32\drivers\nethfdrv.sys [46160 2014-10-21] (nethfdrv) R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [125584 2014-07-17] (Microsoft Corporation) R0 sptd; C:\Windows\System32\Drivers\sptd.sys [834544 2014-06-28] () [File not signed] R1 {0c0bb4a8-45a4-4685-9c1d-08d98af4b926}Gw64; C:\Windows\System32\drivers\{0c0bb4a8-45a4-4685-9c1d-08d98af4b926}Gw64.sys [61112 2014-06-23] (StdLib) U3 a474qm3b; C:\Windows\System32\Drivers\a474qm3b.sys [0 ] (Microsoft Corporation) S3 VGPU; System32\drivers\rdvgkmd.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) ==================== One Month Created Files and Folders ======== (If an entry is included in the fixlist, the file\folder will be moved.) 2014-11-07 20:52 - 2014-11-07 20:53 - 00028520 _____ () C:\Users\alex\Downloads\FRST.txt 2014-11-07 20:52 - 2014-11-07 20:53 - 00000000 ____D () C:\FRST 2014-11-07 20:44 - 2014-11-07 20:45 - 02114560 _____ (Farbar) C:\Users\alex\Downloads\FRST64.exe 2014-11-07 19:38 - 2014-11-07 19:38 - 00000687 _____ () C:\awhA247.tmp 2014-11-07 19:27 - 2014-11-07 19:28 - 00000000 ____D () C:\Program Files\MyDefrag v4.3.1 2014-11-07 19:27 - 2014-11-07 19:27 - 00004108 _____ () C:\Windows\System32\Tasks\MyDefrag v4.3.1 Monthly 2014-11-07 19:27 - 2014-11-07 19:27 - 00003428 _____ () C:\Windows\System32\Tasks\MyDefrag v4.3.1 Daily 2014-11-07 19:27 - 2014-11-07 19:27 - 00000863 _____ () C:\Users\Public\Desktop\MyDefrag.lnk 2014-11-07 19:27 - 2014-11-07 19:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyDefrag v4.3.1 2014-11-07 19:27 - 2010-05-21 12:11 - 01147392 _____ (J.C. Kessels) C:\Windows\system32\MyDefragScreenSaver_v4.3.1.exe 2014-11-07 19:27 - 2010-05-21 12:11 - 00485376 _____ (J.C. Kessels) C:\Windows\system32\MyDefragScreenSaver_v4.3.1.scr 2014-11-07 19:25 - 2014-11-07 19:26 - 02082630 _____ (J.C. Kessels ) C:\Users\alex\Downloads\MyDefrag-v4.3.1.exe 2014-11-07 19:04 - 2014-11-07 19:04 - 00000687 _____ () C:\awh93D6.tmp 2014-11-07 18:55 - 2014-11-07 18:55 - 00000687 _____ () C:\awhBEEB.tmp 2014-11-07 02:39 - 2014-11-07 02:39 - 00000000 ____D () C:\ProgramData\SaveNewaAppz 2014-11-07 02:37 - 2014-11-07 02:38 - 00000000 ____D () C:\ProgramData\NetoCoupon 2014-11-05 16:48 - 2014-11-05 16:48 - 00050396 _____ () C:\Users\alex\Desktop\ALTERNAN.TTF 2014-11-05 16:47 - 2014-11-05 16:47 - 00048592 _____ () C:\Users\alex\Desktop\CITYNB.TTF 2014-11-05 13:58 - 2014-11-05 13:58 - 00000687 _____ () C:\awhA469.tmp 2014-11-04 21:59 - 2014-11-04 21:59 - 00000687 _____ () C:\awh7C02.tmp 2014-11-04 21:28 - 2014-11-04 21:28 - 00000687 _____ () C:\awh8C57.tmp 2014-11-04 20:56 - 2014-11-04 20:56 - 00000687 _____ () C:\awh7158.tmp 2014-11-04 20:25 - 2014-11-04 20:25 - 00000687 _____ () C:\awh8D31.tmp 2014-11-04 19:51 - 2014-11-04 19:51 - 00000687 _____ () C:\awh7879.tmp 2014-11-04 19:19 - 2014-11-04 19:19 - 00000687 _____ () C:\awh8FA1.tmp 2014-11-04 18:47 - 2014-11-04 18:47 - 00000687 _____ () C:\awh9848.tmp 2014-11-04 18:11 - 2014-11-04 18:11 - 00000687 _____ () C:\awh8796.tmp 2014-11-04 17:35 - 2014-11-04 17:35 - 00000687 _____ () C:\awhB6EF.tmp 2014-11-04 17:03 - 2014-11-04 17:03 - 00000687 _____ () C:\awhB78B.tmp 2014-11-04 16:31 - 2014-11-04 16:31 - 00000687 _____ () C:\awhAF13.tmp 2014-11-04 16:23 - 2014-11-04 16:23 - 00000000 ____D () C:\ProgramData\DriverGenius 2014-11-04 16:22 - 2014-11-04 16:22 - 00001207 _____ () C:\Users\alex\Desktop\Driver Genius.lnk 2014-11-04 16:22 - 2014-11-04 16:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Genius 2014-11-04 16:22 - 2014-11-04 16:22 - 00000000 ____D () C:\Program Files (x86)\Driver-Soft 2014-11-04 16:21 - 2014-11-04 16:21 - 08027504 _____ (Driver-Soft Inc. ) C:\Users\alex\Downloads\Driver_Genius.exe 2014-11-04 16:07 - 2014-11-04 16:07 - 26314800 _____ (Intel® Corporation) C:\Users\alex\Downloads\Wireless_15.3.1_Ds64.exe 2014-11-03 20:52 - 2014-11-03 20:52 - 00000687 _____ () C:\awhD6BE.tmp 2014-11-03 20:19 - 2014-11-03 20:19 - 00000687 _____ () C:\awhB192.tmp 2014-11-03 19:46 - 2014-11-03 19:46 - 00000687 _____ () C:\awhD326.tmp 2014-11-03 17:30 - 2014-11-03 20:10 - 00000000 ____D () C:\Users\alex\Documents\GTA San Andreas User Files 2014-11-03 17:16 - 2014-11-03 17:16 - 00000687 _____ () C:\awh624B.tmp 2014-11-03 16:18 - 2014-11-03 16:18 - 00000687 _____ () C:\awh8FB1.tmp 2014-11-03 16:16 - 2014-11-03 16:16 - 00142732 _____ () C:\Users\alex\Downloads\GTA.San.Andreas.ULTRA.MoD.v2 (2).torrent 2014-11-03 16:03 - 2014-11-03 16:03 - 00142732 _____ () C:\Users\alex\Downloads\GTA.San.Andreas.ULTRA.MoD.v2 (1).torrent 2014-11-03 16:01 - 2014-11-03 16:01 - 00142732 _____ () C:\Users\alex\Downloads\GTA.San.Andreas.ULTRA.MoD.v2.torrent 2014-11-02 10:45 - 2014-11-02 10:45 - 00000687 _____ () C:\awh7177.tmp 2014-11-02 10:11 - 2014-11-02 10:11 - 00000687 _____ () C:\awh4BFE.tmp 2014-11-01 21:33 - 2014-11-01 21:33 - 00000687 _____ () C:\awh6F07.tmp 2014-11-01 20:37 - 2014-11-01 20:37 - 00000687 _____ () C:\awh3BA8.tmp 2014-10-31 22:51 - 2014-10-31 22:51 - 00000687 _____ () C:\awh452A.tmp 2014-10-31 20:34 - 2014-10-31 20:34 - 00000687 _____ () C:\awh49AC.tmp 2014-10-31 19:30 - 2014-10-31 19:30 - 00000687 _____ () C:\awh5C04.tmp 2014-10-31 19:13 - 2014-10-31 19:13 - 00002253 _____ () C:\Users\Public\Desktop\Google Chrome.lnk 2014-10-31 19:13 - 2014-10-31 19:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome 2014-10-31 19:08 - 2014-10-31 19:08 - 00000000 ____D () C:\Users\alex\Documents\Updater5 2014-10-31 19:07 - 2014-10-31 19:07 - 00000687 _____ () C:\awh5CCF.tmp 2014-10-31 12:50 - 2014-10-31 12:50 - 00000687 _____ () C:\awh2A2B.tmp 2014-10-31 00:06 - 2014-10-31 00:06 - 00000687 _____ () C:\awh3A8F.tmp 2014-10-30 20:48 - 2014-10-30 20:48 - 00000687 _____ () C:\awh9F5A.tmp 2014-10-30 19:58 - 2014-10-30 19:58 - 00000687 _____ () C:\awhA581.tmp 2014-10-30 19:06 - 2014-10-30 19:06 - 00000687 _____ () C:\awh93D5.tmp 2014-10-30 14:01 - 2014-10-30 14:01 - 00000687 _____ () C:\awh974F.tmp 2014-10-30 12:31 - 2014-10-30 12:31 - 00000687 _____ () C:\awhA1F9.tmp 2014-10-30 00:17 - 2014-11-07 17:34 - 00000000 ____D () C:\ProgramData\29a882f6-268a-4df9-b011-02fdee89f086 2014-10-29 16:01 - 2014-11-07 02:38 - 00000000 ____D () C:\ProgramData\MinimumPrice 2014-10-28 15:36 - 2014-10-28 15:36 - 00000687 _____ () C:\awh8CE3.tmp 2014-10-28 15:10 - 2014-10-31 19:11 - 00000000 ____D () C:\Users\alex\Downloads\Музика 2014-10-28 15:09 - 2014-11-07 02:38 - 00000000 ____D () C:\ProgramData\GoSave 2014-10-28 14:55 - 2014-10-28 14:55 - 00003488 _____ () C:\Windows\System32\Tasks\Yahoo! Search Updater 2014-10-28 14:55 - 2014-10-28 14:55 - 00003484 _____ () C:\Windows\System32\Tasks\Yahoo! Search 2014-10-28 14:55 - 2014-10-28 14:55 - 00000000 ____D () C:\Users\alex\AppData\Local\Pay-By-Ads 2014-10-28 14:32 - 2014-10-28 14:32 - 00000687 _____ () C:\awhDE94.tmp 2014-10-27 17:24 - 2014-10-27 17:24 - 00000687 _____ () C:\awh90D9.tmp 2014-10-26 10:01 - 2014-10-26 10:01 - 00000776 _____ () C:\Users\alex\Desktop\F1 2014.lnk 2014-10-26 09:23 - 2014-10-26 09:23 - 00000687 _____ () C:\awhF0F3.tmp 2014-10-24 22:23 - 2014-10-26 10:02 - 00000788 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\F1 2014.lnk 2014-10-24 22:23 - 2014-10-26 10:02 - 00000776 _____ () C:\Users\Public\Desktop\F1 2014.lnk 2014-10-24 22:23 - 2014-10-26 10:02 - 00000000 ____D () C:\Program Files (x86)\F1 2014 2014-10-24 21:53 - 2014-10-24 21:53 - 00012799 _____ () C:\Users\alex\Downloads\rld-f12014.iso.torrent 2014-10-21 15:10 - 2014-10-21 15:10 - 00046160 _____ (nethfdrv) C:\Windows\system32\Drivers\nethfdrv.sys 2014-10-21 15:09 - 2014-10-21 15:09 - 00246784 _____ () C:\Windows\SysWOW64\hfpapi.dll 2014-10-21 15:09 - 2014-10-21 15:09 - 00180736 _____ () C:\Windows\SysWOW64\nethtsrv.exe 2014-10-21 15:09 - 2014-10-21 15:09 - 00161792 _____ () C:\Windows\SysWOW64\netupdsrv.exe 2014-10-21 15:09 - 2014-10-21 15:09 - 00111104 _____ () C:\Windows\SysWOW64\installd.exe 2014-10-21 15:09 - 2014-10-21 15:09 - 00108544 _____ () C:\Windows\SysWOW64\hfnapi.dll 2014-10-18 16:04 - 2014-10-18 16:04 - 00000687 _____ () C:\awh4D93.tmp 2014-10-18 15:47 - 2014-10-18 15:47 - 00000687 _____ () C:\awh55AD.tmp 2014-10-16 14:08 - 2014-10-16 14:08 - 00000687 _____ () C:\awh60E4.tmp 2014-10-16 13:52 - 2014-10-16 13:52 - 00000687 _____ () C:\awhE57E.tmp 2014-10-15 20:06 - 2014-10-15 20:06 - 00001996 _____ () C:\Users\Public\Desktop\Counter-Strike.lnk 2014-10-15 20:04 - 2014-10-15 20:04 - 00010520 _____ () C:\Users\alex\Downloads\Counter-Strike.exe (2).torrent 2014-10-15 19:24 - 2014-09-29 02:58 - 03198976 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2014-10-15 19:24 - 2014-07-07 04:07 - 14632960 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll 2014-10-15 19:24 - 2014-07-07 04:07 - 00782848 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll 2014-10-15 19:24 - 2014-07-07 04:06 - 04120576 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll 2014-10-15 19:24 - 2014-07-07 04:06 - 01202176 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll 2014-10-15 19:24 - 2014-07-07 04:06 - 00842240 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll 2014-10-15 19:24 - 2014-07-07 04:06 - 00500224 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll 2014-10-15 19:24 - 2014-07-07 03:40 - 11411456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll 2014-10-15 19:24 - 2014-07-07 03:40 - 00988160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmv2clt.dll 2014-10-15 19:24 - 2014-07-07 03:40 - 00744960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\blackbox.dll 2014-10-15 19:24 - 2014-07-07 03:40 - 00617984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmsdk.dll 2014-10-15 19:24 - 2014-06-19 00:23 - 01943696 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll 2014-10-15 19:24 - 2014-06-19 00:23 - 01131664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfshim.dll 2014-10-15 19:24 - 2014-06-19 00:23 - 00156824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscorier.dll 2014-10-15 19:24 - 2014-06-19 00:23 - 00156312 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll 2014-10-15 19:24 - 2014-06-19 00:23 - 00081560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscories.dll 2014-10-15 19:24 - 2014-06-19 00:23 - 00073880 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll 2014-10-15 19:23 - 2014-10-10 04:05 - 00507392 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll 2014-10-15 19:23 - 2014-10-10 04:05 - 00276480 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll 2014-10-15 19:23 - 2014-10-10 04:00 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2014-10-15 19:23 - 2014-10-07 04:54 - 00378552 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2014-10-15 19:23 - 2014-10-07 04:04 - 00331448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2014-10-15 19:23 - 2014-09-26 00:50 - 13619200 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2014-10-15 19:23 - 2014-09-26 00:46 - 00365056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2014-10-15 19:23 - 2014-09-26 00:46 - 00243200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2014-10-15 19:23 - 2014-09-26 00:46 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2014-10-15 19:23 - 2014-09-26 00:43 - 11807232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2014-10-15 19:23 - 2014-09-26 00:32 - 02017280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2014-10-15 19:23 - 2014-09-26 00:31 - 02108416 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2014-10-15 19:23 - 2014-09-19 04:25 - 23631360 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2014-10-15 19:23 - 2014-09-19 03:56 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2014-10-15 19:23 - 2014-09-19 03:55 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2014-10-15 19:23 - 2014-09-19 03:44 - 17484800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2014-10-15 19:23 - 2014-09-19 03:41 - 02796032 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2014-10-15 19:23 - 2014-09-19 03:40 - 00547328 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2014-10-15 19:23 - 2014-09-19 03:40 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2014-10-15 19:23 - 2014-09-19 03:39 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2014-10-15 19:23 - 2014-09-19 03:38 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2014-10-15 19:23 - 2014-09-19 03:36 - 05829632 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2014-10-15 19:23 - 2014-09-19 03:31 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2014-10-15 19:23 - 2014-09-19 03:30 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2014-10-15 19:23 - 2014-09-19 03:27 - 00595968 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2014-10-15 19:23 - 2014-09-19 03:26 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2014-10-15 19:23 - 2014-09-19 03:25 - 04201472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2014-10-15 19:23 - 2014-09-19 03:25 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2014-10-15 19:23 - 2014-09-19 03:25 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2014-10-15 19:23 - 2014-09-19 03:18 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2014-10-15 19:23 - 2014-09-19 03:14 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2014-10-15 19:23 - 2014-09-19 03:14 - 00446464 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2014-10-15 19:23 - 2014-09-19 03:06 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2014-10-15 19:23 - 2014-09-19 03:02 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2014-10-15 19:23 - 2014-09-19 03:01 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2014-10-15 19:23 - 2014-09-19 03:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2014-10-15 19:23 - 2014-09-19 03:01 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll 2014-10-15 19:23 - 2014-09-19 03:00 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2014-10-15 19:23 - 2014-09-19 02:59 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll 2014-10-15 19:23 - 2014-09-19 02:58 - 00289280 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2014-10-15 19:23 - 2014-09-19 02:55 - 02187264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2014-10-15 19:23 - 2014-09-19 02:54 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2014-10-15 19:23 - 2014-09-19 02:53 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2014-10-15 19:23 - 2014-09-19 02:51 - 00440320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2014-10-15 19:23 - 2014-09-19 02:50 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2014-10-15 19:23 - 2014-09-19 02:49 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2014-10-15 19:23 - 2014-09-19 02:42 - 00731136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2014-10-15 19:23 - 2014-09-19 02:42 - 00710656 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2014-10-15 19:23 - 2014-09-19 02:40 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2014-10-15 19:23 - 2014-09-19 02:36 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2014-10-15 19:23 - 2014-09-19 02:33 - 02309632 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2014-10-15 19:23 - 2014-09-19 02:32 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2014-10-15 19:23 - 2014-09-19 02:20 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2014-10-15 19:23 - 2014-09-19 02:18 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll 2014-10-15 19:23 - 2014-09-19 02:14 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2014-10-15 19:23 - 2014-09-19 01:59 - 01810944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2014-10-15 19:23 - 2014-09-19 01:59 - 00775168 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2014-10-15 19:23 - 2014-09-19 01:53 - 01190400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2014-10-15 19:23 - 2014-09-19 01:52 - 00678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2014-10-15 19:23 - 2014-08-19 05:11 - 00693176 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi 2014-10-15 19:23 - 2014-08-19 05:10 - 00616352 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi 2014-10-15 19:23 - 2014-08-19 05:08 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll 2014-10-15 19:23 - 2014-08-19 05:08 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll 2014-10-15 19:23 - 2014-08-19 05:08 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll 2014-10-15 19:23 - 2014-08-19 05:07 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe 2014-10-15 19:23 - 2014-08-19 05:07 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe 2014-10-15 19:23 - 2014-08-19 05:07 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll 2014-10-15 19:23 - 2014-08-19 05:07 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll 2014-10-15 19:23 - 2014-08-19 05:07 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe 2014-10-15 19:23 - 2014-08-19 04:41 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll 2014-10-15 19:23 - 2014-08-19 04:41 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll 2014-10-15 19:23 - 2014-08-19 04:06 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys 2014-10-15 19:23 - 2014-07-07 04:07 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 05551032 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2014-10-15 19:23 - 2014-07-07 04:06 - 01574400 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 01480192 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 01069056 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 00679424 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 00641024 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 00432128 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 00325632 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 00188416 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe 2014-10-15 19:23 - 2014-07-07 04:06 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe 2014-10-15 19:23 - 2014-07-07 04:06 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll 2014-10-15 19:23 - 2014-07-07 04:06 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx 2014-10-15 19:23 - 2014-07-07 04:06 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll 2014-10-15 19:23 - 2014-07-07 04:05 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL 2014-10-15 19:23 - 2014-07-07 04:05 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe 2014-10-15 19:23 - 2014-07-07 04:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll 2014-10-15 19:23 - 2014-07-07 03:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys 2014-10-15 19:23 - 2014-07-07 03:40 - 03208704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll 2014-10-15 19:23 - 2014-07-07 03:40 - 01329664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll 2014-10-15 19:23 - 2014-07-07 03:40 - 01174528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll 2014-10-15 19:23 - 2014-07-07 03:40 - 01005056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll 2014-10-15 19:23 - 2014-07-07 03:40 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscp.dll 2014-10-15 19:23 - 2014-07-07 03:40 - 00489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll 2014-10-15 19:23 - 2014-07-07 03:40 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll 2014-10-15 19:23 - 2014-07-07 03:40 - 00406016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmmgrtn.dll 2014-10-15 19:23 - 2014-07-07 03:40 - 00374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll 2014-10-15 19:23 - 2014-07-07 03:40 - 00354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll 2014-10-15 19:23 - 2014-07-07 03:40 - 00265216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msnetobj.dll 2014-10-15 19:23 - 2014-07-07 03:40 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll 2014-10-15 19:23 - 2014-07-07 03:40 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll 2014-10-15 19:23 - 2014-07-07 03:40 - 00143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll 2014-10-15 19:23 - 2014-07-07 03:40 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll 2014-10-15 19:23 - 2014-07-07 03:40 - 00081408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsp.dll 2014-10-15 19:23 - 2014-07-07 03:40 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll 2014-10-15 19:23 - 2014-07-07 03:40 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx 2014-10-15 19:23 - 2014-07-07 03:40 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll 2014-10-15 19:23 - 2014-07-07 03:39 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL 2014-10-15 19:23 - 2014-07-07 03:39 - 03970488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe 2014-10-15 19:23 - 2014-07-07 03:39 - 03914680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe 2014-10-15 19:23 - 2014-07-07 03:39 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe 2014-10-15 19:23 - 2014-07-07 03:39 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe 2014-10-15 19:23 - 2014-07-07 03:37 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll 2014-10-15 19:23 - 2014-06-28 02:21 - 00619056 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe 2014-10-15 19:23 - 2014-06-28 02:21 - 00532176 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe 2014-10-15 19:23 - 2014-06-28 02:21 - 00457400 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll 2014-10-15 19:22 - 2014-09-18 04:00 - 03241472 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll 2014-10-15 19:22 - 2014-09-18 03:32 - 02363904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll 2014-10-15 19:22 - 2014-09-13 03:58 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll 2014-10-15 19:22 - 2014-09-13 03:40 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll 2014-10-15 19:22 - 2014-09-04 07:23 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll 2014-10-15 19:22 - 2014-09-04 07:04 - 00372736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll 2014-10-15 19:22 - 2014-07-17 04:07 - 03722240 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll 2014-10-15 19:22 - 2014-07-17 04:07 - 01118720 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe 2014-10-15 19:22 - 2014-07-17 04:07 - 01113088 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll 2014-10-15 19:22 - 2014-07-17 04:07 - 00681984 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll 2014-10-15 19:22 - 2014-07-17 04:07 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll 2014-10-15 19:22 - 2014-07-17 04:07 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll 2014-10-15 19:22 - 2014-07-17 04:07 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll 2014-10-15 19:22 - 2014-07-17 04:07 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll 2014-10-15 19:22 - 2014-07-17 03:40 - 00157696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsta.dll 2014-10-15 19:22 - 2014-07-17 03:39 - 03221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll 2014-10-15 19:22 - 2014-07-17 03:39 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe 2014-10-15 19:22 - 2014-07-17 03:39 - 00131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll 2014-10-15 19:22 - 2014-07-17 03:39 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll 2014-10-15 19:22 - 2014-07-17 03:39 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll 2014-10-15 19:22 - 2014-07-17 03:21 - 00212480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys 2014-10-15 19:22 - 2014-07-17 03:21 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys 2014-10-15 19:22 - 2011-01-16 02:01 - 00389632 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe 2014-10-15 14:13 - 2014-10-15 14:13 - 00000687 _____ () C:\awh4865.tmp 2014-10-14 20:12 - 2014-10-14 20:12 - 00000687 _____ () C:\awhD4B7.tmp 2014-10-13 13:38 - 2014-10-13 13:38 - 00000687 _____ () C:\awhFFDF.tmp 2014-10-11 09:26 - 2014-10-11 09:26 - 00002220 _____ () C:\Users\alex\Desktop\Counter-Strike 1.6 LH.lnk 2014-10-11 09:26 - 2014-10-11 09:26 - 00002197 _____ () C:\Users\alex\Desktop\(UCP) Counter-Strike 1.6 LH.lnk 2014-10-11 09:22 - 2014-10-11 09:22 - 00000687 _____ () C:\awh49DB.tmp 2014-10-10 19:01 - 2014-10-10 19:01 - 00002026 _____ () C:\Users\Public\Desktop\Sony PC Companion 2.1.lnk 2014-10-10 14:09 - 2014-10-10 14:09 - 00000687 _____ () C:\awhC1A0.tmp ==================== One Month Modified Files and Folders ======= (If an entry is included in the fixlist, the file\folder will be moved.) 2014-11-07 20:55 - 2014-06-29 10:27 - 00000000 ____D () C:\Users\alex\AppData\Roaming\BitComet 2014-11-07 20:54 - 2014-06-29 00:33 - 00000000 ____D () C:\Users\alex\AppData\Roaming\Skype 2014-11-07 20:50 - 2014-06-28 22:16 - 02021063 _____ () C:\Windows\WindowsUpdate.log 2014-11-07 20:45 - 2014-07-10 18:06 - 00000000 ____D () C:\ProgramData\systemk 2014-11-07 20:39 - 2014-06-29 13:59 - 00000000 ____D () C:\Program Files (x86)\trolatunt 2014-11-07 20:34 - 2014-06-29 10:05 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job 2014-11-07 20:17 - 2014-06-29 10:02 - 00000994 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2014-11-07 19:40 - 2014-06-29 15:16 - 00000246 _____ () C:\Windows\Tasks\DriverScanner.job 2014-11-07 19:39 - 2009-07-14 07:13 - 00782470 _____ () C:\Windows\system32\PerfStringBackup.INI 2014-11-07 19:39 - 2009-07-14 04:34 - 00000580 _____ () C:\Windows\win.ini 2014-11-07 19:33 - 2014-10-01 18:40 - 00000356 _____ () C:\Windows\Tasks\AmiUpdXp.job 2014-11-07 19:33 - 2014-07-28 01:45 - 00000474 ____H () C:\Windows\Tasks\PC_Booster-S-493389286.job 2014-11-07 19:33 - 2014-07-01 08:51 - 00000478 ____H () C:\Windows\Tasks\SO_Booster-S-126785670.job 2014-11-07 19:33 - 2014-06-29 15:02 - 00001440 _____ () C:\Windows\Tasks\76760ead-f35c-4d00-b19e-7cacf1541f90-5_user.job 2014-11-07 19:33 - 2014-06-29 15:01 - 00003790 _____ () C:\Windows\Tasks\76760ead-f35c-4d00-b19e-7cacf1541f90-11.job 2014-11-07 19:33 - 2014-06-29 15:01 - 00003108 _____ () C:\Windows\Tasks\76760ead-f35c-4d00-b19e-7cacf1541f90-3.job 2014-11-07 19:33 - 2014-06-29 15:01 - 00002186 _____ () C:\Windows\Tasks\76760ead-f35c-4d00-b19e-7cacf1541f90-4.job 2014-11-07 19:33 - 2014-06-29 15:01 - 00001532 _____ () C:\Windows\Tasks\76760ead-f35c-4d00-b19e-7cacf1541f90-1.job 2014-11-07 19:33 - 2014-06-29 15:01 - 00001418 _____ () C:\Windows\Tasks\76760ead-f35c-4d00-b19e-7cacf1541f90-5.job 2014-11-07 19:33 - 2014-06-29 15:01 - 00001326 _____ () C:\Windows\Tasks\76760ead-f35c-4d00-b19e-7cacf1541f90-2.job 2014-11-07 19:33 - 2014-06-29 15:01 - 00000908 _____ () C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job 2014-11-07 19:33 - 2014-06-29 15:01 - 00000338 _____ () C:\Windows\Tasks\dsmonitor.job 2014-11-07 19:33 - 2014-06-29 10:02 - 00000990 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2014-11-07 19:33 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2014-11-07 19:33 - 2009-07-14 06:51 - 00042376 _____ () C:\Windows\setupact.log 2014-11-07 18:57 - 2009-07-14 06:45 - 00026144 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2014-11-07 18:57 - 2009-07-14 06:45 - 00026144 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2014-11-07 16:06 - 2014-06-29 15:01 - 00000912 _____ () C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job 2014-11-07 02:39 - 2014-07-01 08:50 - 00000000 ____D () C:\ProgramData\21c40c2fc7716a18 2014-11-07 02:38 - 2014-09-29 10:47 - 00000000 ____D () C:\ProgramData\DouWnSave 2014-11-07 02:38 - 2014-09-26 08:31 - 00000000 ____D () C:\ProgramData\NetoCooupon 2014-11-07 02:38 - 2014-08-10 02:21 - 00000000 ____D () C:\ProgramData\MiinimumPrice 2014-11-07 02:38 - 2014-07-22 10:07 - 00000000 ____D () C:\ProgramData\ChEApMe 2014-11-07 02:38 - 2014-07-15 11:30 - 00000000 ____D () C:\ProgramData\EXstraSaavoinggs 2014-11-07 02:38 - 2014-07-08 12:34 - 00000000 ____D () C:\ProgramData\TakeTheCaouupon 2014-11-04 16:09 - 2014-06-28 23:02 - 00442286 _____ () C:\Windows\DPINST.LOG 2014-11-04 15:53 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\NDF 2014-11-03 17:29 - 2014-07-11 11:35 - 00000000 ____D () C:\Users\alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games 2014-11-03 16:12 - 2010-11-21 05:47 - 00094712 _____ () C:\Windows\PFRO.log 2014-10-31 19:12 - 2014-06-29 10:02 - 00003990 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2014-10-31 19:12 - 2014-06-29 10:02 - 00003738 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2014-10-31 19:08 - 2014-09-19 12:43 - 00000000 ____D () C:\Users\alex\AppData\Roaming\Adobe 2014-10-31 19:08 - 2014-09-19 12:43 - 00000000 ____D () C:\Users\alex\AppData\Local\Adobe 2014-10-30 17:58 - 2014-07-01 09:08 - 00000000 ____D () C:\ProgramData\TEMP 2014-10-30 13:25 - 2010-11-21 05:27 - 00275080 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe 2014-10-28 15:32 - 2009-07-14 07:09 - 00000000 ____D () C:\Windows\System32\Tasks\WPD 2014-10-27 17:22 - 2014-07-01 08:50 - 00001044 __RSH () C:\ProgramData\ntuser.pol 2014-10-18 15:40 - 2014-08-25 02:16 - 00000000 ____D () C:\Program Files (x86)\SupTab 2014-10-18 15:40 - 2014-06-28 22:28 - 00000000 _RSHD () C:\Windows Activation Technologies 2014-10-18 15:40 - 2014-06-28 22:22 - 00000000 ____D () C:\Users\alex 2014-10-18 15:40 - 2009-07-14 05:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared 2014-10-18 15:39 - 2014-07-01 14:04 - 00000000 ___SD () C:\Windows\system32\CompatTel 2014-10-18 15:39 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\Dism 2014-10-18 15:39 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\bg-BG 2014-10-18 15:39 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\Dism 2014-10-18 15:39 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\bg-BG 2014-10-18 15:39 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache 2014-10-18 15:39 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\registration 2014-10-17 20:02 - 2014-07-09 11:51 - 00000000 ____D () C:\Users\alex\Desktop\Photoscape 2014-10-16 13:46 - 2009-07-14 06:45 - 05036256 _____ () C:\Windows\system32\FNTCACHE.DAT 2014-10-16 00:16 - 2014-06-28 23:39 - 00000000 ____D () C:\ProgramData\Microsoft Help 2014-10-16 00:10 - 2014-08-09 13:00 - 00000000 ____D () C:\Windows\system32\MRT 2014-10-16 00:02 - 2014-06-28 23:53 - 103265616 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2014-10-15 20:06 - 2014-09-01 13:31 - 00002026 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Counter-Strike.lnk 2014-10-15 20:06 - 2014-09-01 13:31 - 00002018 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Half-Life.lnk 2014-10-15 20:06 - 2014-09-01 13:31 - 00001988 _____ () C:\Users\Public\Desktop\Half-Life.lnk 2014-10-15 20:06 - 2014-09-01 13:31 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Counter-Strike 1.6 2014-10-14 13:58 - 2014-06-29 00:33 - 00000000 ____D () C:\ProgramData\Skype 2014-10-11 23:31 - 2014-09-09 14:38 - 00000000 ____D () C:\Users\alex\AppData\Local\PMB Files 2014-10-11 23:31 - 2014-09-09 14:37 - 00000000 ____D () C:\ProgramData\PMB Files 2014-10-10 19:01 - 2014-07-23 23:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony 2014-10-10 19:01 - 2014-06-28 22:52 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information Some content of TEMP: ==================== C:\Users\alex\AppData\Local\Temp\aplinstal.exe C:\Users\alex\AppData\Local\Temp\drv46019.exe ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\System32\winlogon.exe [2014-10-15 19:22] - [2011-01-16 02:01] - 0389632 ____A (Microsoft Corporation) 81257415084B84F3C0D95C381A8D4C8F C:\Windows\System32\wininit.exe => File is digitally signed C:\Windows\SysWOW64\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\System32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\System32\services.exe => File is digitally signed C:\Windows\System32\User32.dll [2010-11-21 05:24] - [2011-01-16 02:01] - 1008640 ____A (Microsoft Corporation) 0B864E15A0BADFF0E7BB8B59009FDDCF C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\System32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\System32\rpcss.dll => File is digitally signed C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2014-11-05 14:22 ==================== End Of Log ============================
  • Разглеждащи това в момента   0 потребители

    Няма регистрирани потребители разглеждащи тази страница.

×

Информация

Поставихме бисквитки на устройството ви за най-добро потребителско изживяване. Можете да промените настройките си за бисквитки, или в противен случай приемаме, че сте съгласни с нашите условия за ползване.