Hur får man bort istart.websearch.com?

2014-11-12 16:41

Medlem

Registrerad: Nov 2013

●

Hur får man bort istart.websearch.com?

Hej! Jag har nu fått in detta irriterande virus men lyckas inte alls få bort det trots att jag har AVG 2015 istallerat, jag har även gjort som det står här:

http://blog.doofix.com/tips-to-remove-get-rid-of-istart-webss...

Men inte ens det hjälper.

Jag har även provat att gå in på inställningar och manuellt ändra startsida. Fattar inte vad jag gör för fel, borde jag formatera om hela datorn?

Rapportera Redigera

Citera flera Citera

2014-11-12 17:16

Permalänk

CeciliaB

Medlem

Plats: Stockholm
Registrerad: Nov 2011

●

Hej!

Den sidan ska väl bara fungera som reklam för deras "removal tool" som sen kostar pengar att använda.

Pröva med AdwCleaner och Malwarebytes Anti-Malware.
http://www.bleepingcomputer.com/download/adwcleaner/

Rapportera Redigera

Citera flera Citera

2014-11-12 18:11

Permalänk

panpo98

Medlem ★

Plats: Uppsala
Registrerad: Sep 2007

●

Vad är det för webbläsare och Windows version?

Först går du till kontrollpanelen där man avinstallerar program.

Sen startar du alla webbläsarna och får fram listan med add-ons.
Om webbläsaren har en lite ruta där man direkt kan söka så måste du försöka få fram hela lista.
Till sist går man i inställningar och ändrar start sida.

Hittar du inte i webbläsarna så kan du istället avinstallerar dom och ta bort mappar som ofta blir kvar innan du installera dom igen. Antagligen 2 st mappar i program mapparna och 2 st i den osynliga mappen under user. C:\Users\ditt namn\AppData

Rapportera Redigera

Citera flera Citera

2014-11-13 08:10

Permalänk

vipa

Medlem

Registrerad: Nov 2013

●

Det är samma när jag startar både Internet och Chrome men använder nästan bara Chrome. Sen så är det Windows 7.

Rapportera Redigera

Citera flera Citera

2014-11-13 08:28

Permalänk

Xubunticious

Medlem

Plats: Skellefteå
Registrerad: Apr 2012

●

Försök Avinstallera i kontrollpanelen om den finns där, sedan rensa lite med som Cecilia skrev, men kan tillägga att jag gillar också en körning av ComboFix. Se även till att sökmotor är ~vad du nu vill ha det~, samt ändra startsidan till din "vanliga".
Dubbelkolla även på genvägen för varje webbläsare att de slutar på "Explorer.exe" eller "Firefox.exe" och inte "Firefox.exe=23834742837hds383" tex.
[Högerklicka->Egenskaper-> Sökväg/plats]

Rapportera Redigera

Citera flera Citera

2014-11-13 09:19

Permalänk

vipa

Medlem

Registrerad: Nov 2013

●

Skrivet av Xubunticious:

Försök Avinstallera i kontrollpanelen om den finns där, sedan rensa lite med som Cecilia skrev, men kan tillägga att jag gillar också en körning av ComboFix. Se även till att sökmotor är ~vad du nu vill ha det~, samt ändra startsidan till din "vanliga".
Dubbelkolla även på genvägen för varje webbläsare att de slutar på "Explorer.exe" eller "Firefox.exe" och inte "Firefox.exe=23834742837hds383" tex.
[Högerklicka->Egenskaper-> Sökväg/plats]

Gå till inlägget

Det är jättekonstigt, även fast jag högerklickar på ikonen och det står att chrome ska starta ordentligt så gör det inte det.

Rapportera Redigera

Citera flera Citera

2014-11-13 13:48

Permalänk

CeciliaB

Medlem

Plats: Stockholm
Registrerad: Nov 2011

●

Om du vill ha en mer detaljerad beskrivning på hur du ska få bort istart.websearch.com behöver jag se på vilket sätt det har bitit sig fast i din dator. Det kan man se t ex med FRST.

Ladda ner Farbar Recovery Scan Tool (FRST) och spara på skrivbordet.
För 64-bitars Windows: http://download.bleepingcomputer.com/farbar/FRST64.exe
För 32-bitars Windows: http://download.bleepingcomputer.com/farbar/FRST.exe

Starta FRST.
Klicka på Scan-knappen.
När det är klart kommer det att ha skapats två loggar FRST.txt och Addition.txt på skrivbordet.
Klistra in innehållet i de två loggarna direkt i ditt svar men använd SPOILER-taggen/funktionen runt dem.

Rapportera Redigera

Citera flera Citera

2014-11-13 13:50

Permalänk

vipa

Medlem

Registrerad: Nov 2013

●

Drog ner det men AVG såg det som ett hot. Får väl leva med den där sidan ändå, verkar inte vara så farligt.

Rapportera Redigera

Citera flera Citera

2014-11-13 14:24

Permalänk

CeciliaB

Medlem

Plats: Stockholm
Registrerad: Nov 2011

●

FRST är inte skadlig, du kan ju söka här i forumet så ser du att flera stycken har använt det. Men det är ju upp till dig vilket företag som ska få annonsintäkterna från din dator, Google som ger dig bra sökresultat eller det som står bakom websearch.com och orsakar problem för dig.

Rapportera Redigera

Citera flera Citera

2014-11-13 15:08

Permalänk

Pnorberg

Medlem ★

Registrerad: Mar 2002

●

Följ den här guiden steg för steg.
En reset av din webbläsare, genomgång av genvägar och en körning med ADWCleaner och/eller Malwarebytes borde göra susen:
http://malwaretips.com/blogs/istart-webssearches-com-removal/

Som jag även tipsade i en annan tråd, var försiktig med vad du installerar. Detta är något som kommer med stor sannolikhet i ett gratis programpaket med "erbjudanden" om att installera "bra" program.

Visa signatur

"Wise men say, 'Forgiveness is divine, but never pay full price for a late pizza'."

Rapportera Redigera

Citera flera Citera

2014-11-13 15:15

Permalänk

Sir Hitman

SpelClockers

Registrerad: Aug 2006

●

Har du försökt med en systemåterställning till innan problemet uppstod? Start / Alla Program / Tillbehör / Systemverktyg

Visa signatur

Admin för Geeks Gaming/Skyttegrav Discord

Rapportera Redigera

Citera flera Citera

2014-11-13 15:25

Permalänk

vipa

Medlem

Registrerad: Nov 2013

●

Skrivet av Sir Hitman:

Har du försökt med en systemåterställning till innan problemet uppstod? Start / Alla Program / Tillbehör / Systemverktyg

Gå till inlägget

Yes, ska prova att gå lite längre bak i tiden.

Rapportera Redigera

Citera flera Citera

2014-11-13 15:34

Permalänk

vipa

Medlem

Registrerad: Nov 2013

●

Skrivet av CeciliaB:

FRST är inte skadlig, du kan ju söka här i forumet så ser du att flera stycken har använt det. Men det är ju upp till dig vilket företag som ska få annonsintäkterna från din dator, Google som ger dig bra sökresultat eller det som står bakom websearch.com och orsakar problem för dig.

Gå till inlägget

Då förstår jag, kör det nu så får vi se vad det säger.

Rapportera Redigera

Citera flera Citera

2014-11-13 15:41

Permalänk

vipa

Medlem

Registrerad: Nov 2013

●

Sådärdå Cecilia, nu är loggarna skapade:

FRST:

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 10-11-2014
Ran by Viktor (administrator) on VIKTOR-DATOR on 13-11-2014 15:34:28
Running from C:\Users\Viktor\Downloads
Loaded Profile: Viktor (Available profiles: Viktor)
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) OS Language: Svenska (Sverige)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how...

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgrsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgcsrvx.exe
(APN LLC.) C:\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgfws.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgwdsvc.exe
(Microsoft Corporation) C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgnsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgemcx.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\wbengine.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Nico Mak Computing) C:\Program Files\File Association Helper\FAHWindow.exe
(Power Software Ltd) C:\Program Files\PowerISO\PWRISOVM.EXE
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgui.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(APN) C:\Program Files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgcfgex.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [FAHConsole] => C:\Program Files\File Association Helper\FAHConsole.exe [616632 2014-01-28] (Nico Mak Computing)
HKLM\...\Run: [PWRISOVM.EXE] => C:\Program Files\PowerISO\PWRISOVM.EXE [366904 2014-10-08] (Power Software Ltd)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1348904 2008-08-14] (Synaptics, Inc.)
HKLM\...\Run: [AVG_UI] => C:\Program Files\AVG\AVG2015\avgui.exe [3649040 2014-10-16] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [507776 2014-10-07] (Oracle Corporation)
HKLM\...\Run: [ApnTBMon] => C:\Program Files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe [1942424 2014-10-10] (APN)
HKU\S-1-5-21-796748067-1158318008-2067075368-1000\...\Run: [SearchProtection] => "C:\Users\Viktor\AppData\Roaming\Search Protection\SearchProtection.EXE" /autostart
HKU\S-1-5-21-796748067-1158318008-2067075368-1000\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [30526056 2014-11-06] (Skype Technologies S.A.)
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/sv-se/?pc=UP97&ocid=UP97DHP
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://se.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x9D8D4AF5BDD5CF01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = sv
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://istart.webssearches.com/?type=hp&ts=1414956754&from=wp...
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://istart.webssearches.com/web/?type=ds&ts=1414956754&fro...
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://istart.webssearches.com/?type=hp&ts=1414956754&from=wp...
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://istart.webssearches.com/?type=hp&ts=1414956754&from=wp...
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://istart.webssearches.com/web/?type=ds&ts=1414956754&fro...
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe http://istart.webssearches.com/?type=sc&ts=1414956754&from=wp...
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://istart.webssearches.com/web/?type=ds&ts=1414956754&fro...
SearchScopes: HKLM - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://istart.webssearches.com/web/?type=ds&ts=1414956754&fro...
SearchScopes: HKCU - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://istart.webssearches.com/web/?type=ds&ts=1414956754&fro...
SearchScopes: HKCU - {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = http://www.trovi.com/Results.aspx?gd=&ctid=CT3321459&octid=EB...
SearchScopes: HKCU - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://istart.webssearches.com/web/?type=ds&ts=1414956754&fro...
SearchScopes: HKCU - {D43EEECC-59B2-4F4D-B46E-AEE0818EBF1E} URL = https://se.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf...
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_25\bin\ssv.dll (Oracle Corporation)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_25\bin\jp2ssv.dll (Oracle Corporation)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.25.2 -> C:\Program Files\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files\Java\jre1.8.0_25\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)

Chrome:
=======
CHR dev: Chrome dev build detected! <======= ATTENTION
CHR DefaultSearchKeyword: Default -> 0B2D565EE1CBD9B6BDCAFAC4A4245F8222D8291CA4FB1B9520EF7218A21EA788
CHR DefaultSearchURL: Default -> AA2DB7CD4E2CCA4494346090972D9A4653B9BC6022590172011EFB838B863760
CHR Profile: C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Presentationer) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-09-21]
CHR Extension: (Google Dokument) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-09-21]
CHR Extension: (Google Drive) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-09-21]
CHR Extension: (YouTube) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-09-21]
CHR Extension: (Sök på Google) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-09-21]
CHR Extension: (Google Kalkylark) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-09-21]
CHR Extension: (MSN Homepage) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkkcgfbgohboipdhliafmacjnhjbhmim [2014-11-12]
CHR Extension: (Google Wallet) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-09-21]
CHR Extension: (Gmail) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-09-21]
CHR HKLM\...\Chrome\Extension: [aaaaaiabcopkplhgaedhbloeejhhankf] - C:\ProgramData\AskPartnerNetwork\Toolbar\Shared\CRX\aaaaaiabcopkplhgaedhbloeejhhankf.crx [2014-10-10]
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-07-14]
CHR StartMenuInternet: Google Chrome - C:\Program Files\Google\Chrome\Application\chrome.exe http://istart.webssearches.com/?type=sc&ts=1414956754&from=wp...

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 APNMCP; C:\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe [166296 2014-10-10] (APN LLC.)
R2 avgfws; C:\Program Files\AVG\AVG2015\avgfws.exe [1486664 2014-10-16] (AVG Technologies CZ, s.r.o.)
R2 AVGIDSAgent; C:\Program Files\AVG\AVG2015\avgidsagent.exe [3487248 2014-10-16] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files\AVG\AVG2015\avgwdsvc.exe [298080 2014-10-16] (AVG Technologies CZ, s.r.o.)
R2 c2cautoupdatesvc; C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390176 2014-07-14] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1767520 2014-07-14] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R1 Avgdiskx; C:\Windows\System32\DRIVERS\avgdiskx.sys [121624 2014-06-18] (AVG Technologies CZ, s.r.o.)
R1 Avgfwfd; C:\Windows\System32\DRIVERS\avgfwd6x.sys [47928 2013-09-26] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdriverx.sys [213272 2014-10-07] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\Windows\System32\DRIVERS\avgidshx.sys [147736 2014-06-18] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\Windows\System32\DRIVERS\avgidsshimx.sys [21272 2014-06-18] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; C:\Windows\System32\DRIVERS\avgldx86.sys [192792 2014-08-28] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\Windows\System32\DRIVERS\avglogx.sys [230680 2014-07-18] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\Windows\System32\DRIVERS\avgmfx86.sys [98584 2014-10-05] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\Windows\System32\DRIVERS\avgrkx86.sys [27416 2014-06-18] (AVG Technologies CZ, s.r.o.)
R1 Avgtdix; C:\Windows\System32\DRIVERS\avgtdix.sys [200984 2014-10-10] (AVG Technologies CZ, s.r.o.)
S3 DrvAgent32; C:\Windows\system32\Drivers\DrvAgent32.sys [23456 2014-11-13] (Phoenix Technologies) [File not signed]
R3 RTL8187B; C:\Windows\System32\DRIVERS\RTL8187B.sys [379904 2010-03-31] (Realtek Semiconductor Corporation )
R1 SCDEmu; C:\Windows\system32\Drivers\SCDEmu.sys [113904 2014-10-08] (Power Software Ltd)

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-11-13 15:34 - 2014-11-13 15:37 - 00013086 _____ () C:\Users\Viktor\Downloads\FRST.txt
2014-11-13 15:33 - 2014-11-13 15:33 - 01107968 _____ (Farbar) C:\Users\Viktor\Downloads\FRST.exe
2014-11-13 14:09 - 2014-11-13 14:09 - 00974568 _____ (Copyright © 2013 eSupport.com, Inc • All Rights Reserved ) C:\Users\Viktor\Downloads\driveragent-setup-987.exe
2014-11-13 14:09 - 2014-11-13 14:09 - 00023456 _____ (Phoenix Technologies) C:\Windows\system32\Drivers\DrvAgent32.sys
2014-11-13 14:09 - 2014-11-13 14:09 - 00001248 _____ () C:\Users\Public\Desktop\Find Drivers with DriverAgent.lnk
2014-11-13 14:09 - 2014-11-13 14:09 - 00000000 ____D () C:\Users\Viktor\AppData\Local\eSupport.com
2014-11-13 14:09 - 2014-11-13 14:09 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eSupport.com
2014-11-13 14:09 - 2014-11-13 14:09 - 00000000 ____D () C:\Program Files\eSupport.com
2014-11-13 13:49 - 2014-11-13 15:34 - 00000000 ____D () C:\FRST
2014-11-13 07:57 - 2014-11-13 07:57 - 00000000 ____D () C:\Users\Viktor\AppData\Local\AskPartnerNetwork
2014-11-13 07:57 - 2014-11-13 07:57 - 00000000 ____D () C:\ProgramData\AskPartnerNetwork
2014-11-13 07:57 - 2014-11-13 07:57 - 00000000 ____D () C:\Program Files\AskPartnerNetwork
2014-11-13 07:56 - 2014-11-13 07:56 - 00000000 ____D () C:\Program Files\SystemRequirementsLab
2014-11-13 07:55 - 2014-11-13 07:55 - 00651264 _____ () C:\Users\Viktor\Downloads\Detection (1).msi
2014-11-13 07:54 - 2014-11-13 07:54 - 00000000 ____D () C:\Program Files\Common Files\Java
2014-11-13 07:50 - 2014-11-13 07:50 - 00638888 _____ (Oracle Corporation) C:\Users\Viktor\Downloads\chromeinstall-8u25.exe
2014-11-12 19:27 - 2014-11-12 19:30 - 00000000 ___RD () C:\Program Files\Skype
2014-11-12 19:27 - 2014-11-12 19:27 - 00002503 _____ () C:\Users\Public\Desktop\Skype.lnk
2014-11-12 19:27 - 2014-11-12 19:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2014-11-12 19:27 - 2014-11-12 19:27 - 00000000 ____D () C:\Program Files\Common Files\Skype
2014-11-12 19:25 - 2014-11-12 19:25 - 01546856 _____ (Skype Technologies S.A.) C:\Users\Viktor\Downloads\SkypeSetup (2).exe
2014-11-12 15:40 - 2014-11-12 15:40 - 00000000 ____D () C:\Users\Viktor\AppData\Roaming\AVG2015
2014-11-12 15:39 - 2014-11-12 15:39 - 00000935 _____ () C:\Users\Public\Desktop\AVG 2015.lnk
2014-11-12 15:39 - 2014-11-12 15:39 - 00000000 ____D () C:\Users\Viktor\AppData\Roaming\TuneUp Software
2014-11-12 15:39 - 2014-11-12 15:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2014-11-12 15:38 - 2014-11-12 15:39 - 00000000 ____D () C:\ProgramData\AVG2015
2014-11-12 15:38 - 2014-11-12 15:38 - 00000000 ___HD () C:\$AVG
2014-11-12 15:36 - 2014-11-12 15:36 - 00000000 ____D () C:\Program Files\AVG
2014-11-12 15:34 - 2014-11-13 15:36 - 00000000 ____D () C:\ProgramData\MFAData
2014-11-12 15:34 - 2014-11-12 15:45 - 00000000 ____D () C:\Users\Viktor\AppData\Local\Avg2015
2014-11-12 15:34 - 2014-11-12 15:34 - 04637504 _____ (AVG Technologies) C:\Users\Viktor\Downloads\avg_free_stb_all_2015_5557_cnet.exe
2014-11-12 15:34 - 2014-11-12 15:34 - 00000000 ____D () C:\Users\Viktor\AppData\Local\MFAData
2014-11-12 15:32 - 2014-11-12 15:32 - 01240264 _____ (Microsoft Corporation) C:\Users\Viktor\Downloads\wlsetup-web.exe
2014-11-12 15:19 - 2014-11-12 15:19 - 02998656 _____ (Enigma Software Group USA, LLC.) C:\Users\Viktor\Downloads\SpyHunter-Installer.exe
2014-11-12 14:47 - 2014-11-12 14:47 - 00000000 ____D () C:\ProgramData\23405448
2014-11-12 14:29 - 2014-11-12 14:29 - 00000000 ____D () C:\Program Files\discountit
2014-11-11 19:43 - 2014-10-25 02:32 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-11-11 19:43 - 2014-10-14 02:56 - 00136632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-11-11 19:43 - 2014-10-14 02:50 - 02363904 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-11-11 19:43 - 2014-10-14 02:50 - 01059840 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-11-11 19:43 - 2014-10-14 02:50 - 00523776 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2014-11-11 19:43 - 2014-10-14 02:47 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2014-11-11 19:43 - 2014-10-14 02:46 - 00681984 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2014-11-11 19:43 - 2014-10-10 01:45 - 02379264 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-11-11 19:43 - 2014-10-03 02:44 - 00475136 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2014-11-11 19:43 - 2014-10-03 02:44 - 00442880 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2014-11-11 19:43 - 2014-10-03 02:44 - 00374784 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2014-11-11 19:43 - 2014-10-03 02:44 - 00275968 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2014-11-11 19:43 - 2014-10-03 02:44 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2014-11-11 19:43 - 2014-09-19 10:23 - 00550912 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-11-11 19:43 - 2014-09-19 10:23 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-11-11 19:43 - 2014-09-19 10:23 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-11-11 19:43 - 2014-09-19 10:23 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2014-11-11 19:43 - 2014-09-19 10:23 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-11-11 19:43 - 2014-09-19 10:23 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-11-11 19:43 - 2014-09-19 10:23 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-11-11 19:43 - 2014-08-21 07:26 - 01237504 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-11-11 19:43 - 2014-08-21 07:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-11-11 19:43 - 2014-08-12 02:36 - 00701440 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10K.DLL
2014-11-11 19:42 - 2014-11-07 20:23 - 00341168 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-11-11 19:42 - 2014-11-06 04:28 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-11-11 19:42 - 2014-11-06 04:28 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-11-11 19:42 - 2014-11-06 04:13 - 00501248 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-11-11 19:42 - 2014-11-06 04:13 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-11-11 19:42 - 2014-11-06 04:12 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-11-11 19:42 - 2014-11-06 04:10 - 19781632 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-11-11 19:42 - 2014-11-06 04:10 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-11-11 19:42 - 2014-11-06 04:05 - 02277376 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-11-11 19:42 - 2014-11-06 04:04 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-11-11 19:42 - 2014-11-06 04:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-11-11 19:42 - 2014-11-06 04:00 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-11-11 19:42 - 2014-11-06 03:59 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-11-11 19:42 - 2014-11-06 03:59 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-11-11 19:42 - 2014-11-06 03:58 - 00620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-11-11 19:42 - 2014-11-06 03:51 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-11-11 19:42 - 2014-11-06 03:48 - 00418304 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-11-11 19:42 - 2014-11-06 03:42 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-11-11 19:42 - 2014-11-06 03:37 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-11-11 19:42 - 2014-11-06 03:36 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-11-11 19:42 - 2014-11-06 03:34 - 00285696 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-11-11 19:42 - 2014-11-06 03:22 - 00688640 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-11-11 19:42 - 2014-11-06 03:22 - 00683008 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-11-11 19:42 - 2014-11-06 03:21 - 04298240 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-11-11 19:42 - 2014-11-06 03:21 - 02051072 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-11-11 19:42 - 2014-11-06 03:20 - 01155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-11-11 19:42 - 2014-11-06 03:03 - 12819456 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-11-11 19:42 - 2014-11-06 02:52 - 01892864 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-11-11 19:42 - 2014-11-06 02:48 - 01310208 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-11-11 19:42 - 2014-11-06 02:47 - 00708096 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-11-11 08:45 - 2014-11-11 08:45 - 00000000 ____D () C:\Program Files\coolbuy
2014-11-10 20:05 - 2014-11-12 14:58 - 00000000 ____D () C:\ProgramData\discountit
2014-11-09 21:57 - 2014-11-12 14:58 - 00000000 ____D () C:\ProgramData\coolbuy
2014-11-09 21:56 - 2014-11-12 14:29 - 00000000 ____D () C:\ProgramData\81ac851e6909dfd8
2014-11-02 21:55 - 2014-11-02 21:55 - 00019700 _____ () C:\Users\Viktor\Downloads\The_House_by_the_Cemetery_(Lucio_Fulci)_-_DvDrip_MP4.10945953.TPB.torrent
2014-11-02 21:55 - 2014-11-02 21:55 - 00014532 _____ () C:\Users\Viktor\Downloads\The_House_by_the_Cemetery_[1981].8633522.TPB.torrent
2014-11-02 21:54 - 2014-11-02 21:55 - 00058027 _____ () C:\Users\Viktor\Downloads\City.of.the.Living.Dead.BLOOD.EDITION.UNCUT.1980.DVDRip.XviD-FiC.10756684.TPB.torrent
2014-11-02 21:54 - 2014-11-02 21:54 - 00014656 _____ () C:\Users\Viktor\Downloads\Suspiria.DVDRIP.XviD.1977.SWESUB._-Lindoff.6281973.TPB.torrent
2014-11-02 21:52 - 2014-11-02 21:52 - 01689168 _____ (BitTorrent Inc.) C:\Users\Viktor\Downloads\uTorrent (6).exe
2014-11-02 20:31 - 2014-11-02 20:31 - 00000000 ____D () C:\ProgramData\Trusted Publisher
2014-11-02 20:29 - 2014-11-02 20:29 - 00000180 _____ () C:\Users\Viktor\Desktop.lnk
2014-11-02 08:02 - 2014-11-12 14:37 - 00000000 ____D () C:\Users\Viktor\AppData\Local\CountAnything
2014-11-02 08:02 - 2014-11-02 08:02 - 00000000 ____D () C:\Users\Viktor\AppData\Local\AnalyzeAssist
2014-11-02 08:01 - 2014-11-02 08:01 - 11544064 _____ (Ginstrom IT Solutions (GITS) ) C:\Users\Viktor\Downloads\CountAnything_Setup_2.1.exe
2014-10-29 23:05 - 2014-10-29 23:05 - 00000000 ____D () C:\Users\Viktor\AppData\Roaming\Spacejock Software
2014-10-29 23:04 - 2014-10-29 23:04 - 01898982 _____ (Spacejock Software ) C:\Users\Viktor\Downloads\yWriter5Full.exe
2014-10-29 08:44 - 2014-09-05 02:52 - 05703168 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-10-29 08:44 - 2014-08-29 02:44 - 02744320 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-10-28 12:18 - 2014-05-08 10:06 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2014-10-27 23:59 - 2012-08-23 15:48 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2014-10-27 23:59 - 2012-08-23 15:44 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2014-10-27 23:59 - 2012-08-23 12:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll
2014-10-27 23:58 - 2014-10-27 23:58 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_SynTP_01007.Wdf
2014-10-27 23:58 - 2014-10-27 23:58 - 00000000 ____D () C:\Program Files\Synaptics
2014-10-27 23:58 - 2013-10-02 01:42 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2014-10-27 23:58 - 2013-10-02 01:32 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2014-10-27 23:58 - 2013-10-02 01:30 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2014-10-27 23:58 - 2013-10-02 01:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2014-10-27 23:58 - 2013-10-02 01:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2014-10-27 23:58 - 2013-10-02 00:58 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2014-10-27 23:58 - 2013-10-02 00:45 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2014-10-27 23:58 - 2013-10-02 00:08 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2014-10-27 23:58 - 2013-10-02 00:00 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2014-10-27 23:58 - 2013-10-01 23:53 - 00350208 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2014-10-27 23:58 - 2013-10-01 23:34 - 01068544 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2014-10-27 23:45 - 2014-10-27 23:46 - 06958304 _____ (Microsoft Corporation) C:\Users\Viktor\Downloads\Silverlight.exe
2014-10-27 23:17 - 2014-10-27 23:17 - 01689168 _____ (BitTorrent Inc.) C:\Users\Viktor\Downloads\uTorrent (5).exe
2014-10-27 22:58 - 2014-10-27 22:59 - 00000000 ____D () C:\Users\Viktor\Documents\Cooper's Revenge
2014-10-27 22:58 - 2014-10-27 22:58 - 00000000 ____D () C:\ProgramData\Trymedia
2014-10-27 22:58 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
2014-10-27 22:58 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2014-10-27 22:57 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
2014-10-27 22:57 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2014-10-27 22:57 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2014-10-27 22:57 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
2014-10-27 22:57 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
2014-10-27 22:57 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
2014-10-27 22:56 - 2014-10-27 22:58 - 00063055 _____ () C:\Windows\DirectX.log
2014-10-27 22:56 - 2014-10-27 22:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Desperados 2
2014-10-27 22:13 - 2014-10-27 22:13 - 03080572 _____ (OnePlayS Systems) C:\Users\Viktor\Downloads\Desperados 2- Cooper's Revenge (PC).exe
2014-10-25 22:29 - 2014-10-27 22:28 - 00000000 ____D () C:\Program Files\Nordic Games
2014-10-25 22:19 - 2014-10-27 22:26 - 00000314 _____ () C:\Users\Viktor\Downloads\debug.txt
2014-10-25 22:19 - 2014-10-25 22:19 - 03080461 _____ (OnePlayS Systems) C:\Users\Viktor\Downloads\Desperados- Wanted Dead or Alive (PC).exe
2014-10-25 22:03 - 2014-10-25 22:03 - 00000000 ____D () C:\Users\Viktor\AppData\Roaming\PowerISO
2014-10-25 22:02 - 2014-10-25 22:02 - 00000965 _____ () C:\Users\Public\Desktop\PowerISO.lnk
2014-10-25 22:02 - 2014-10-25 22:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerISO
2014-10-25 22:01 - 2014-10-25 22:02 - 00000000 ____D () C:\Program Files\PowerISO
2014-10-25 22:01 - 2014-10-25 22:01 - 02962832 _____ (Power Software Ltd) C:\Users\Viktor\Downloads\PowerISO6.exe
2014-10-25 22:00 - 2014-10-25 22:00 - 02878920 _____ (Power Software Ltd) C:\Users\Viktor\Downloads\PowerISO6-x64.exe
2014-10-21 17:49 - 2014-10-21 17:49 - 00056737 _____ () C:\Users\Viktor\Downloads\The.Phenix.City.Story.1955.DVDRip.XviD-VH-PROD.5860592.TPB.torrent
2014-10-21 17:49 - 2014-10-21 17:49 - 00014912 _____ () C:\Users\Viktor\Downloads\The_Phenix_City_Story_(1955)._Phil_Karlson.Noir.DVDRip.7495310.TPB.torrent
2014-10-21 17:39 - 2014-10-21 17:39 - 00028904 _____ () C:\Users\Viktor\Downloads\Maniac.1980.DVDRip-Morsan(SweSub).4492404.TPB (1).torrent
2014-10-21 17:37 - 2014-10-21 17:37 - 00022040 _____ () C:\Users\Viktor\Downloads\MANIAC_1980.4505920.TPB (1).torrent
2014-10-21 17:37 - 2014-10-21 17:37 - 00000000 ____D () C:\ProgramData\APN
2014-10-21 17:36 - 2014-10-21 17:36 - 01689680 _____ (BitTorrent Inc.) C:\Users\Viktor\Downloads\uTorrent (4).exe
2014-10-18 22:52 - 2014-10-18 22:52 - 00002275 _____ () C:\Users\Viktor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MaxBatch.lnk
2014-10-18 22:33 - 2014-10-18 22:38 - 00000000 ____D () C:\Users\Viktor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-10-18 22:27 - 2014-10-18 22:27 - 00405714 _____ () C:\Users\Viktor\Downloads\MaxPayneSoundPatchv1.12.rar
2014-10-18 22:24 - 2014-10-18 22:24 - 00872448 _____ ( ) C:\Users\Viktor\Downloads\winzip18-home.exe
2014-10-18 22:24 - 2014-10-18 22:24 - 00000000 ____D () C:\Program Files\File Association Helper
2014-10-18 22:18 - 2014-10-25 10:16 - 00000000 ____D () C:\Users\Viktor\Documents\Max Payne Savegames
2014-10-18 22:14 - 2014-10-18 22:15 - 00000000 ____D () C:\Program Files\Red Alert
2014-10-18 22:13 - 2014-10-18 22:14 - 06390873 _____ (FunkyFr3sh ) C:\Users\Viktor\Downloads\RA1installer.exe
2014-10-18 22:12 - 2014-10-18 22:13 - 10708853 _____ (FunkyFr3sh ) C:\Users\Viktor\Downloads\RedAlert1_Online_Installer.exe
2014-10-16 11:16 - 2014-10-10 02:44 - 00396288 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-10-16 11:16 - 2014-10-10 02:44 - 00230912 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2014-10-16 11:16 - 2014-10-10 02:39 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-10-16 11:15 - 2014-09-04 06:04 - 00372736 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2014-10-16 11:15 - 2014-07-17 02:40 - 00157696 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
2014-10-16 11:15 - 2014-07-17 02:39 - 00304128 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-10-16 11:15 - 2014-07-17 02:39 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2014-10-16 11:15 - 2014-07-17 02:03 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2014-10-16 11:15 - 2014-07-17 02:02 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2014-10-16 11:15 - 2014-07-09 02:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL
2014-10-16 11:15 - 2014-07-09 02:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL
2014-10-16 11:15 - 2014-07-09 02:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL
2014-10-16 11:15 - 2014-07-09 02:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL
2014-10-16 11:15 - 2014-07-09 02:29 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL
2014-10-16 11:15 - 2014-07-08 23:30 - 00419992 _____ () C:\Windows\system32\locale.nls
2014-10-16 11:15 - 2014-06-18 23:23 - 01131664 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2014-10-16 11:15 - 2014-06-18 23:23 - 00156824 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
2014-10-16 11:15 - 2014-06-18 23:23 - 00081560 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-11-13 15:37 - 2014-09-21 17:49 - 01674997 _____ () C:\Windows\WindowsUpdate.log
2014-11-13 15:31 - 2014-09-21 18:05 - 00000978 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-11-13 15:31 - 2009-07-14 05:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-11-13 15:31 - 2009-07-14 05:39 - 00031276 _____ () C:\Windows\setupact.log
2014-11-13 15:29 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\registration
2014-11-13 15:19 - 2014-09-21 18:05 - 00000982 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-11-13 13:53 - 2009-07-14 05:34 - 00027920 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-11-13 13:53 - 2009-07-14 05:34 - 00027920 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-11-13 09:14 - 2014-09-21 18:06 - 00002153 _____ () C:\Users\Public\Desktop\ares (1).lnk
2014-11-13 07:53 - 2014-10-13 20:52 - 00000000 ____D () C:\ProgramData\Oracle
2014-11-13 07:53 - 2014-10-13 20:51 - 00096680 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2014-11-13 07:53 - 2014-10-13 20:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-11-13 07:52 - 2014-10-13 20:50 - 00000000 ____D () C:\Program Files\Java
2014-11-13 07:45 - 2014-09-25 17:23 - 00000000 ____D () C:\Users\Viktor\AppData\Roaming\Skype
2014-11-12 19:27 - 2014-09-25 17:23 - 00000000 ____D () C:\ProgramData\Skype
2014-11-12 16:01 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-11-12 15:22 - 2014-09-25 17:29 - 00001912 _____ () C:\Windows\epplauncher.mif
2014-11-12 15:20 - 2014-09-21 18:00 - 00000000 ____D () C:\Users\Viktor
2014-11-12 15:00 - 2009-07-14 05:33 - 00268112 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-11-12 14:58 - 2010-11-20 22:48 - 00019454 _____ () C:\Windows\PFRO.log
2014-11-12 14:57 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\sv-SE
2014-11-12 14:45 - 2014-10-13 17:43 - 00000000 ____D () C:\Program Files\Rockstar Games
2014-11-12 14:41 - 2014-09-27 12:40 - 00000000 ____D () C:\Windows\system32\MRT
2014-11-12 14:28 - 2014-09-27 12:40 - 100445232 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-11-10 20:09 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\wfp
2014-11-04 14:30 - 2014-09-25 17:30 - 00229000 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-11-02 22:04 - 2014-09-27 21:34 - 00000000 ____D () C:\Users\Viktor\AppData\Roaming\uTorrent
2014-11-02 20:32 - 2014-09-21 18:02 - 00001629 _____ () C:\Users\Viktor\Desktop\Internet Explorer.lnk
2014-11-02 20:31 - 2014-10-04 21:01 - 00000000 ____D () C:\ProgramData\2308189059
2014-10-31 14:19 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\rescache
2014-10-29 11:41 - 2011-04-12 07:32 - 00663312 _____ () C:\Windows\system32\perfh01D.dat
2014-10-29 11:41 - 2011-04-12 07:32 - 00142080 _____ () C:\Windows\system32\perfc01D.dat
2014-10-29 11:41 - 2010-11-20 22:01 - 01578190 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-10-28 00:04 - 2009-07-14 03:37 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2014-10-27 22:57 - 2014-09-27 23:25 - 00000000 ____D () C:\Users\Viktor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2014-10-27 21:36 - 2014-09-25 17:43 - 00000000 ____D () C:\Program Files\Common Files\Steam
2014-10-25 22:02 - 2014-10-04 20:59 - 00000000 ____D () C:\Users\Viktor\AppData\Roaming\OpenCandy
2014-10-17 15:02 - 2014-09-26 13:48 - 00000000 ___SD () C:\Windows\system32\CompatTel

Some content of TEMP:
====================
C:\Users\Viktor\AppData\Local\Temp\APNSetup.exe
C:\Users\Viktor\AppData\Local\Temp\optprosetup.exe
C:\Users\Viktor\AppData\Local\Temp\SearchProtectionSetup.exe
C:\Users\Viktor\AppData\Local\Temp\SRLDetectionLibrary4994943531707818099.dll
C:\Users\Viktor\AppData\Local\Temp\utt960D.tmp.exe

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2014-11-05 14:53

==================== End Of Log ============================

Dold text

Addition:

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 10-11-2014
Ran by Viktor at 2014-11-13 15:38:08
Running from C:\Users\Viktor\Downloads
Boot Mode: Normal
==========================================================

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: AVG Internet Security 2015 (Enabled - Up to date) {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG Internet Security 2015 (Enabled - Up to date) {B5F5C120-2089-702E-0001-553BB0D5A664}
FW: AVG Internet Security 2015 (Enabled) {36AFA1E1-4CDC-7EF8-11EE-C77C3581ABA2}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

AVG 2015 (HKLM\...\AVG) (Version: 2015.0.5557 - AVG Technologies)
AVG 2015 (Version: 15.0.4213 - AVG Technologies) Hidden
AVG 2015 (Version: 15.0.5557 - AVG Technologies) Hidden
AVI DVD Burner v6.7.0.224 (HKLM\...\AVI DVD Burner_is1) (Version: - AviDvdBurner.com Inc.)
Desperados 2 (HKLM\...\{EF4A1390-9545-4897-B846-A15C2B78F232}_is1) (Version: - Nordic Games GmbH)
DriverAgent by eSupport.com (HKLM\...\DriverAgent_is1) (Version: - Copyright © 2013 eSupport.com, Inc • All Rights Reserved)
File Association Helper (HKLM\...\{8975E3CB-A762-4B14-BD62-A3972A098E82}) (Version: 1.2.225.65451 - WinZip Computing International, LLC)
Google Chrome (HKLM\...\Google Chrome) (Version: 38.0.2125.111 - Google Inc.)
Google Update Helper (Version: 1.3.25.5 - Google Inc.) Hidden
Intel(R) Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: 8.15.10.1930 - Intel Corporation)
Intel(R) TV Wizard (HKLM\...\TVWiz) (Version: - Intel Corporation)
Java 7 Update 67 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F03217067FF}) (Version: 7.0.670 - Oracle)
Java 8 Update 25 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218025F0}) (Version: 8.0.250 - Oracle Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (svenska) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1053) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
NVIDIA PhysX (HKLM\...\{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}) (Version: 9.10.0513 - NVIDIA Corporation)
PowerISO (HKLM\...\PowerISO) (Version: 6.1 - Power Software Ltd)
Search App by Ask (HKLM\...\{4F524A2D-5350-4500-76A7-A758B70C1200}) (Version: 12.18.0.82 - APN, LLC) <==== ATTENTION
Skype Click to Call (HKLM\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.3.16540.9015 - Microsoft Corporation)
Skype™ 6.22 (HKLM\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 6.22.105 - Skype Technologies S.A.)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 11.2.4.0 - Synaptics)
System Requirements Lab Detection (HKLM\...\{FE002233-A82A-4C53-B5A7-641F1CB2054F}) (Version: 2.2.3.0 - Husdawg, LLC)
Visual Studio 2012 x86 Redistributables (HKLM\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-796748067-1158318008-2067075368-1000_Classes\CLSID\{F28C2F70-47DE-4EA5-8F6D-7D1476CD1EF5}\localserver32 -> C:\Users\Viktor\AppData\Local\Temp\D0b229bcb41.exe No File

==================== Restore Points =========================

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:04 - 2009-06-10 22:39 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {3F517E49-9E6A-4FF7-832C-A84F3FF58B3B} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => c:\Program Files\Microsoft Security Client\MpCmdRun.exe
Task: {C5BD08C9-BFB9-4988-A1C5-B7DC396DA976} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-09-21] (Google Inc.)
Task: {F9D4FAA8-6ADB-46E5-951D-931A15FDFE8C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-09-21] (Google Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2014-10-28 19:43 - 2014-10-22 05:04 - 01042760 _____ () C:\Program Files\Google\Chrome\Application\38.0.2125.111\libglesv2.dll
2014-10-28 19:43 - 2014-10-22 05:04 - 00211272 _____ () C:\Program Files\Google\Chrome\Application\38.0.2125.111\libegl.dll
2014-10-28 19:43 - 2014-10-22 05:04 - 08910664 _____ () C:\Program Files\Google\Chrome\Application\38.0.2125.111\pdf.dll
2014-10-28 19:43 - 2014-10-22 05:04 - 01681224 _____ () C:\Program Files\Google\Chrome\Application\38.0.2125.111\ffmpegsumo.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)

==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

========================= Accounts: ==========================

Administratör (S-1-5-21-796748067-1158318008-2067075368-500 - Administrator - Disabled)
Gäst (S-1-5-21-796748067-1158318008-2067075368-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-796748067-1158318008-2067075368-1002 - Limited - Enabled)
Viktor (S-1-5-21-796748067-1158318008-2067075368-1000 - Administrator - Enabled) => C:\Users\Viktor

==================== Faulty Device Manager Devices =============

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

==================== Event log errors: =========================

Application errors:
==================
Error: (11/13/2014 03:32:43 PM) (Source: System Restore) (EventID: 8210) (User: )
Description: Ett ospecificerat fel uppstod under systemåterställningen: (2014-10-20). Ytterligare information: 0x80070005.

Error: (11/13/2014 03:32:37 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/13/2014 10:21:04 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Felet uppstod i programmet med namn: TBNotifier.exe, version 31.10.3.0, tidsstämpel 0x542f0232
, felet uppstod i modulen med namn: TBNotifier.exe, version 31.10.3.0, tidsstämpel 0x542f0232
Undantagskod: 0x40000015
Felförskjutning: 0x0011486c
Process-ID: 0xba8
Programmets starttid: 0xTBNotifier.exe0
Sökväg till program: TBNotifier.exe1
Sökväg till modul: TBNotifier.exe2
Rapport-ID: TBNotifier.exe3

Error: (11/13/2014 08:07:40 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/12/2014 03:43:21 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/12/2014 03:31:07 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/12/2014 03:18:50 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/12/2014 03:08:20 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/12/2014 03:00:59 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/10/2014 08:11:21 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

System errors:
=============
Error: (11/13/2014 03:31:41 PM) (Source: volsnap) (EventID: 25) (User: )
Description: Skuggkopiorna för volymen C: togs bort eftersom lagringsutrymmet för skuggkopian inte kunde växa snabbt nog. Överväg att minska I/O-belastning i datorn eller välj en volym för lagringsutrymmet som inte ingår i en skuggkopia.

Error: (11/13/2014 08:06:38 AM) (Source: volsnap) (EventID: 25) (User: )
Description: Skuggkopiorna för volymen C: togs bort eftersom lagringsutrymmet för skuggkopian inte kunde växa snabbt nog. Överväg att minska I/O-belastning i datorn eller välj en volym för lagringsutrymmet som inte ingår i en skuggkopia.

Error: (11/12/2014 03:41:56 PM) (Source: volsnap) (EventID: 25) (User: )
Description: Skuggkopiorna för volymen C: togs bort eftersom lagringsutrymmet för skuggkopian inte kunde växa snabbt nog. Överväg att minska I/O-belastning i datorn eller välj en volym för lagringsutrymmet som inte ingår i en skuggkopia.

Error: (11/12/2014 03:14:39 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Tjänsten Computer Browser är beroende av tjänsten Server. Den sistnämnda kunde inte starta på grund av följande fel:
%%1068

Error: (11/12/2014 03:09:39 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Tjänsten Computer Browser är beroende av tjänsten Server. Den sistnämnda kunde inte starta på grund av följande fel:
%%1068

Error: (11/12/2014 03:07:59 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Tjänsten HomeGroup Provider är beroende av tjänsten Function Discovery Provider Host. Den sistnämnda kunde inte starta på grund av följande fel:
%%1068

Microsoft Office Sessions:
=========================
Error: (11/13/2014 03:32:43 PM) (Source: System Restore) (EventID: 8210) (User: )
Description: 2014-10-200x80070005

Error: (11/13/2014 03:32:37 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/13/2014 10:21:04 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: TBNotifier.exe31.10.3.0542f0232TBNotifier.exe31.10.3.0542f0232400000150011486cba801cfff106e41d68cC:\Program Files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exeC:\Program Files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe63fa7cf2-6b16-11e4-8239-001e333e2cd8

Error: (11/13/2014 08:07:40 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/12/2014 03:43:21 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/12/2014 03:31:07 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/12/2014 03:18:50 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/12/2014 03:08:20 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/12/2014 03:00:59 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/10/2014 08:11:21 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

==================== Memory info ===========================

Processor: Intel(R) Pentium(R) Dual CPU T2370 @ 1.73GHz
Percentage of memory in use: 64%
Total physical RAM: 2037.96 MB
Available physical RAM: 730.22 MB
Total Pagefile: 4075.92 MB
Available Pagefile: 2316.1 MB
Total Virtual: 2047.88 MB
Available Virtual: 1932.5 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:149.05 GB) (Free:98.24 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: (RESERVOIR_DOGS) (CDROM) (Total:5.87 GB) (Free:0 GB) UDF

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 149.1 GB) (Disk ID: F6F46710)
Partition 1: (Active) - (Size=149 GB) - (Type=07 NTFS)

==================== End Of Log ============================

Dold text

Rapportera Redigera

Citera flera Citera

2014-11-13 16:19

Permalänk

CeciliaB

Medlem

Plats: Stockholm
Registrerad: Nov 2011

●

AdwCleaner är ett första steg.

Spara AdwCleaner av Xplode på Skrivbordet: https://toolslib.net/downloads/viewdownload/1-adwcleaner/

Stäng alla program, inklusive webbläsare.
Dubbelklicka på AdwCleaner för att starta programmet.

Klicka på Scan-knappen.
Vänta tills sökningen är klar.
Klicka på Report-knappen.
En rapport kommer upp, kopiera innehållet och klistra in i ditt svar.
Om rapporten inte kommer upp, så finns den även som C:\AdwCleaner[R0].txt

Falsklarm förekommer så jag kollar gärna loggen innan du rensar bort allt som AdwCleaner hittar.

Rapportera Redigera

Citera flera Citera

2014-11-13 16:30

Permalänk

vipa

Medlem

Registrerad: Nov 2013

●

# AdwCleaner v4.101 - Report created 13/11/2014 at 16:27:56
# Updated 09/11/2014 by Xplode
# Database : 2014-11-12.2 [Live]
# Operating System : Windows 7 Home Premium Service Pack 1 (32 bits)
# Username : Viktor - VIKTOR-DATOR
# Running from : C:\Users\Viktor\Downloads\adwcleaner_4.101.exe
# Option : Scan

***** [ Services ] *****

Service Found : APNMCP

***** [ Files / Folders ] *****

File Found : C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_istart.webssearches.com_0.localstorage
File Found : C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_istart.webssearches.com_0.localstorage-journal
File Found : C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage
File Found : C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage-journal
Folder Found : C:\Program Files\AskPartnerNetwork
Folder Found : C:\Program Files\eSupport.com
Folder Found : C:\ProgramData\2308189059
Folder Found : C:\ProgramData\81ac851e6909dfd8
Folder Found : C:\ProgramData\apn
Folder Found : C:\ProgramData\AskPartnerNetwork
Folder Found : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eSupport.com
Folder Found : C:\ProgramData\Trusted Publisher
Folder Found : C:\ProgramData\Trymedia
Folder Found : C:\ProgramData\Uniblue
Folder Found : C:\ProgramData\Uniblue\DriverScanner
Folder Found : C:\Users\Viktor\AppData\Local\AskPartnerNetwork
Folder Found : C:\Users\Viktor\AppData\Local\eSupport.com
Folder Found : C:\Users\Viktor\AppData\Local\Temp\apn
Folder Found : C:\Users\Viktor\AppData\Roaming\OpenCandy
Folder Found : C:\Users\Viktor\AppData\Roaming\RHEng

***** [ Scheduled Tasks ] *****

***** [ Shortcuts ] *****

***** [ Registry ] *****

Data Found : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\Google Chrome\shell\open\command [(Default)] - "C:\Program Files\Google\Chrome\Application\chrome.exe" hxxp://istart.webssearches.com/?type=sc&ts=1414956754&from=wp...
Data Found : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command [(Default)] - C:\Program Files\Internet Explorer\iexplore.exe hxxp://istart.webssearches.com/?type=sc&ts=1414956754&from=wp...
Key Found : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Found : HKCU\Software\AskPartnerNetwork
Key Found : HKCU\Software\eSupport.com
Key Found : HKCU\Software\InstallCore
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Found : HKCU\Software\Optimizer Pro
Key Found : HKCU\Software\systweak
Key Found : HKLM\SOFTWARE\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Found : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Key Found : HKLM\SOFTWARE\{6791A2F3-FC80-475C-A002-C014AF797E9C}
Key Found : HKLM\SOFTWARE\AskPartnerNetwork
Key Found : HKLM\SOFTWARE\Classes\driverscanner
Key Found : HKLM\SOFTWARE\Classes\Interface\{EAF749DC-CD87-4B04-B22A-D4AC3FBCB2BC}
Key Found : HKLM\SOFTWARE\Classes\speedupmypc
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\S-792098896
Key Found : HKLM\SOFTWARE\Uniblue
Key Found : HKLM\SOFTWARE\webssearchesSoftware
Value Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [SearchProtection]
Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [ApnTbMon]

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17420

Setting Found : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL] - hxxp://istart.webssearches.com/?type=hp&ts=1414956754&from=wp...
Setting Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL] - hxxp://istart.webssearches.com/web/?type=ds&ts=1414956754&fro...
Setting Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL] - hxxp://istart.webssearches.com/?type=hp&ts=1414956754&from=wp...
Setting Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page] - hxxp://istart.webssearches.com/?type=hp&ts=1414956754&from=wp...
Setting Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page] - hxxp://istart.webssearches.com/web/?type=ds&ts=1414956754&fro...

-\\ Google Chrome v38.0.2125.111

[C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Web data] - Found [Search Provider] : hxxp://en.softonic.com/s/{searchTerms}
[C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\preferences] - Found [Extension] : booedmolknjekdopkepjjeckmjkdpfgl
[C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\preferences] - Found [Extension] : flpcjncodpafbgdpnkljologafpionhb
[C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\preferences] - Found [Extension] : lifbcibllhkdhoafpjfnlhfpfgnpldfl
[C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\preferences] - Found [Extension] : aaaaaiabcopkplhgaedhbloeejhhankf
[C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\preferences] - Found [Homepage] : hxxp://www.search.ask.com/?gct=hp
[C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\preferences] - Found [Homepage] : hxxp://istart.webssearches.com/?type=hp&ts=1414956754&from=wp...
[C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\preferences] - Found [Homepage] : hxxp://istart.webssearches.com/?type=hp&ts=1414956754&from=wp...

-\\ Chromium v

*************************

AdwCleaner[R0].txt - [6370 octets] - [13/11/2014 16:27:56]

########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [6430 octets] ##########

Dold text

Rapportera Redigera

Citera flera Citera

2014-11-13 16:47

Permalänk

CeciliaB

Medlem

Plats: Stockholm
Registrerad: Nov 2011

●

Har du installerat "DriverAgent by eSupport.com" med vilje?
Är det något du vill ha kvar i datorn?

https://answers.yahoo.com/question/index?qid=20101019200450AA...
https://www.mywot.com/en/scorecard/esupport.com

Rapportera Redigera

Citera flera Citera

2014-11-13 16:49

Permalänk

vipa

Medlem

Registrerad: Nov 2013

●

Skrivet av CeciliaB:

Har du installerat "DriverAgent by eSupport.com" med vilje?
Är det något du vill ha kvar i datorn?

https://answers.yahoo.com/question/index?qid=20101019200450AA...
https://www.mywot.com/en/scorecard/esupport.com

Gå till inlägget

Ja, det har jag installerat med vilje men känner inte att jag behöver det.

Rapportera Redigera

Citera flera Citera

2014-11-13 16:50

Permalänk

vipa

Medlem

Registrerad: Nov 2013

●

Rättare sagt, det är inget jag vill ha.

Rapportera Redigera

Citera flera Citera

2014-11-13 17:27

Permalänk

CeciliaB

Medlem

Plats: Stockholm
Registrerad: Nov 2011

●

Börja då med att avinstallera det.

Har du gjort något annat med datorn än det som framkommit i tråden (med tanke på ditt PM)?

Om inte är det dags att låta AdwCleaner rensa.
Stäng alla program, inklusive webbläsare.
Dubbelklicka på AdwCleaner för att starta programmet.

Klicka på Scan-knappen.
Vänta tills sökningen är klar.

Klicka på Clean-knappen.
Tryck på OK.
Tryck på OK fler gånger om det kommer upp meddelanden.

Datorn kommer att startas om.
En rapport kommer upp, kopiera innehållet och klistra in i ditt svar.
Om rapporten inte kommer upp, så finns den även som C:\AdwCleaner\AdwCleaner[S0].txt

Rapportera Redigera

Citera flera Citera

2014-11-13 17:29

Permalänk

vipa

Medlem

Registrerad: Nov 2013

●

Skrivet av CeciliaB:

Börja då med att avinstallera det.

Har du gjort något annat med datorn än det som framkommit i tråden (med tanke på ditt PM)?

Om inte är det dags att låta AdwCleaner rensa.
Stäng alla program, inklusive webbläsare.
Dubbelklicka på AdwCleaner för att starta programmet.

Klicka på Scan-knappen.
Vänta tills sökningen är klar.

Klicka på Clean-knappen.
Tryck på OK.
Tryck på OK fler gånger om det kommer upp meddelanden.

Datorn kommer att startas om.
En rapport kommer upp, kopiera innehållet och klistra in i ditt svar.
Om rapporten inte kommer upp, så finns den även som C:\AdwCleaner\AdwCleaner[S0].txt

Gå till inlägget

Det är avinstallerat, ska göra som du säger nu.

Rapportera Redigera

Citera flera Citera

2014-11-13 17:30

Permalänk

vipa

Medlem

Registrerad: Nov 2013

●

På tal om jag har gjort något annat, inte såvitt jag vet. Dock ska det sägas att Cleanern hittade något som heter Ask Update som jag inte vet vad det är.

Rapportera Redigera

Citera flera Citera

2014-11-13 17:37

Permalänk

vipa

Medlem

Registrerad: Nov 2013

●

Det funkade! Nice! Blir lätt nojjig när det är nåt vajs med datorn.

Men iaf., här är rapporten:

# AdwCleaner v4.101 - Report created 13/11/2014 at 17:31:46
# Updated 09/11/2014 by Xplode
# Database : 2014-11-12.2 [Live]
# Operating System : Windows 7 Home Premium Service Pack 1 (32 bits)
# Username : Viktor - VIKTOR-DATOR
# Running from : C:\Users\Viktor\Downloads\adwcleaner_4.101.exe
# Option : Clean

***** [ Services ] *****

Service Deleted : APNMCP

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\2308189059
Folder Deleted : C:\ProgramData\apn
Folder Deleted : C:\ProgramData\AskPartnerNetwork
Folder Deleted : C:\ProgramData\Trusted Publisher
Folder Deleted : C:\ProgramData\Trymedia
Folder Deleted : C:\ProgramData\Uniblue
Folder Deleted : C:\ProgramData\81ac851e6909dfd8
Folder Deleted : C:\Program Files\AskPartnerNetwork
Folder Deleted : C:\Program Files\eSupport.com
Folder Deleted : C:\Users\Viktor\AppData\Local\AskPartnerNetwork
Folder Deleted : C:\Users\Viktor\AppData\Local\eSupport.com
Folder Deleted : C:\Users\Viktor\AppData\Local\Temp\apn
Folder Deleted : C:\Users\Viktor\AppData\Roaming\OpenCandy
Folder Deleted : C:\Users\Viktor\AppData\Roaming\RHEng
File Deleted : C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_istart.webssearches.com_0.localstorage
File Deleted : C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_istart.webssearches.com_0.localstorage-journal
File Deleted : C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage
File Deleted : C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage-journal

***** [ Scheduled Tasks ] *****

***** [ Shortcuts ] *****

Shortcut Disinfected : C:\Users\Viktor\Desktop\Internet Explorer.lnk
Shortcut Disinfected : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk
Shortcut Disinfected : C:\Users\Viktor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk
Shortcut Disinfected : C:\Users\Viktor\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
Shortcut Disinfected : C:\Users\Viktor\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
Shortcut Disinfected : C:\Users\Viktor\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk
Shortcut Disinfected : C:\Users\Viktor\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk

***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf
Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [SearchProtection]
Key Deleted : HKLM\SOFTWARE\Classes\driverscanner
Key Deleted : HKLM\SOFTWARE\Classes\speedupmypc
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [ApnTbMon]
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\S-792098896
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EAF749DC-CD87-4B04-B22A-D4AC3FBCB2BC}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}
Data Restored : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command
Data Restored : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\Google Chrome\shell\open\command
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Deleted : HKCU\Software\AskPartnerNetwork
Key Deleted : HKCU\Software\eSupport.com
Key Deleted : HKCU\Software\InstallCore
Key Deleted : HKCU\Software\Optimizer Pro
Key Deleted : HKCU\Software\systweak
Key Deleted : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Deleted : HKLM\SOFTWARE\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Deleted : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Key Deleted : HKLM\SOFTWARE\{6791A2F3-FC80-475C-A002-C014AF797E9C}
Key Deleted : HKLM\SOFTWARE\AskPartnerNetwork
Key Deleted : HKLM\SOFTWARE\Uniblue
Key Deleted : HKLM\SOFTWARE\webssearchesSoftware

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17420

Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]

-\\ Google Chrome v38.0.2125.111

[C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://en.softonic.com/s/{searchTerms}
[C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Extension] : booedmolknjekdopkepjjeckmjkdpfgl
[C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Extension] : flpcjncodpafbgdpnkljologafpionhb
[C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Extension] : lifbcibllhkdhoafpjfnlhfpfgnpldfl
[C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Extension] : aaaaaiabcopkplhgaedhbloeejhhankf
[C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Homepage] : hxxp://www.search.ask.com/?gct=hp
[C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Homepage] : hxxp://istart.webssearches.com/?type=hp&ts=1414956754&from=wp...
[C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Homepage] : hxxp://istart.webssearches.com/?type=hp&ts=1414956754&from=wp...

-\\ Chromium v

[C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://en.softonic.com/s/{searchTerms}

*************************

AdwCleaner[R0].txt - [6510 octets] - [13/11/2014 16:27:56]
AdwCleaner[S0].txt - [6494 octets] - [13/11/2014 17:31:46]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [6554 octets] ##########

Dold text

Rapportera Redigera

Citera flera Citera

2014-11-13 17:38

Permalänk

CeciliaB

Medlem

Plats: Stockholm
Registrerad: Nov 2011

●

Om du kollar i AdwCleaner-loggen så hittar du AskPartnerNetwork där vilket hör ihop med Ask Update. Så det rensas av AdwCleaner.

Rapportera Redigera

Citera flera Citera

2014-11-13 17:40

Permalänk

vipa

Medlem

Registrerad: Nov 2013

●

Tack ska ni ha allihopa! Nu funkar det som det ska.

Rapportera Redigera

Citera flera Citera

2014-11-13 17:40

Permalänk

CeciliaB

Medlem

Plats: Stockholm
Registrerad: Nov 2011

●

Utmärkt!

Kör FRST igen och klistra in en ny FRST.txt så får vi se om det är något kvar i den som ska bort.

Rapportera Redigera

Citera flera Citera

2014-11-13 17:47

Permalänk

vipa

Medlem

Registrerad: Nov 2013

●

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 10-11-2014
Ran by Viktor (administrator) on VIKTOR-DATOR on 13-11-2014 17:44:24
Running from C:\Users\Viktor\Downloads
Loaded Profile: Viktor (Available profiles: Viktor)
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) OS Language: Svenska (Sverige)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how...

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgrsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgcsrvx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgfws.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgwdsvc.exe
(Microsoft Corporation) C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Microsoft Corporation) C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Power Software Ltd) C:\Program Files\PowerISO\PWRISOVM.EXE
(Nico Mak Computing) C:\Program Files\File Association Helper\FAHWindow.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgnsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgemcx.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgui.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(Microsoft Corporation) C:\Windows\System32\wuauclt.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Farbar) C:\Users\Viktor\Downloads\FRST (1).exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [FAHConsole] => C:\Program Files\File Association Helper\FAHConsole.exe [616632 2014-01-28] (Nico Mak Computing)
HKLM\...\Run: [PWRISOVM.EXE] => C:\Program Files\PowerISO\PWRISOVM.EXE [366904 2014-10-08] (Power Software Ltd)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1348904 2008-08-14] (Synaptics, Inc.)
HKLM\...\Run: [AVG_UI] => C:\Program Files\AVG\AVG2015\avgui.exe [3649040 2014-10-16] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [507776 2014-10-07] (Oracle Corporation)
HKU\S-1-5-21-796748067-1158318008-2067075368-1000\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [30526056 2014-11-06] (Skype Technologies S.A.)
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/sv-se/?pc=UP97&ocid=UP97DHP
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://se.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x9D8D4AF5BDD5CF01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = sv
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKCU - DefaultScope {D43EEECC-59B2-4F4D-B46E-AEE0818EBF1E} URL = https://se.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf...
SearchScopes: HKCU - {D43EEECC-59B2-4F4D-B46E-AEE0818EBF1E} URL = https://se.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf...
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_25\bin\ssv.dll (Oracle Corporation)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_25\bin\jp2ssv.dll (Oracle Corporation)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.25.2 -> C:\Program Files\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files\Java\jre1.8.0_25\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)

Chrome:
=======
CHR dev: Chrome dev build detected! <======= ATTENTION
CHR DefaultSearchKeyword: Default -> 0B2D565EE1CBD9B6BDCAFAC4A4245F8222D8291CA4FB1B9520EF7218A21EA788
CHR DefaultSearchURL: Default -> AA2DB7CD4E2CCA4494346090972D9A4653B9BC6022590172011EFB838B863760
CHR Profile: C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Presentationer) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-09-21]
CHR Extension: (Google Dokument) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-09-21]
CHR Extension: (Google Drive) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-09-21]
CHR Extension: (YouTube) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-09-21]
CHR Extension: (SÃ¶k pÃ¥ Google) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-09-21]
CHR Extension: (Google Kalkylark) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-09-21]
CHR Extension: (MSN Homepage) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkkcgfbgohboipdhliafmacjnhjbhmim [2014-11-12]
CHR Extension: (Google Wallet) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-09-21]
CHR Extension: (Gmail) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-09-21]

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 avgfws; C:\Program Files\AVG\AVG2015\avgfws.exe [1486664 2014-10-16] (AVG Technologies CZ, s.r.o.)
R2 AVGIDSAgent; C:\Program Files\AVG\AVG2015\avgidsagent.exe [3487248 2014-10-16] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files\AVG\AVG2015\avgwdsvc.exe [298080 2014-10-16] (AVG Technologies CZ, s.r.o.)
R2 c2cautoupdatesvc; C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390176 2014-07-14] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1767520 2014-07-14] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R1 Avgdiskx; C:\Windows\System32\DRIVERS\avgdiskx.sys [121624 2014-06-18] (AVG Technologies CZ, s.r.o.)
R1 Avgfwfd; C:\Windows\System32\DRIVERS\avgfwd6x.sys [47928 2013-09-26] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdriverx.sys [213272 2014-10-07] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\Windows\System32\DRIVERS\avgidshx.sys [147736 2014-06-18] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\Windows\System32\DRIVERS\avgidsshimx.sys [21272 2014-06-18] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; C:\Windows\System32\DRIVERS\avgldx86.sys [192792 2014-08-28] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\Windows\System32\DRIVERS\avglogx.sys [230680 2014-07-18] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\Windows\System32\DRIVERS\avgmfx86.sys [98584 2014-10-05] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\Windows\System32\DRIVERS\avgrkx86.sys [27416 2014-06-18] (AVG Technologies CZ, s.r.o.)
R1 Avgtdix; C:\Windows\System32\DRIVERS\avgtdix.sys [200984 2014-10-10] (AVG Technologies CZ, s.r.o.)
S3 DrvAgent32; C:\Windows\system32\Drivers\DrvAgent32.sys [23456 2014-11-13] (Phoenix Technologies) [File not signed]
R3 RTL8187B; C:\Windows\System32\DRIVERS\RTL8187B.sys [379904 2010-03-31] (Realtek Semiconductor Corporation )
R1 SCDEmu; C:\Windows\system32\Drivers\SCDEmu.sys [113904 2014-10-08] (Power Software Ltd)

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-11-13 17:44 - 2014-11-13 17:44 - 01107968 _____ (Farbar) C:\Users\Viktor\Downloads\FRST (1).exe
2014-11-13 17:35 - 2014-11-13 17:35 - 00000000 __SHD () C:\Users\Viktor\AppData\Local\EmieBrowserModeList
2014-11-13 16:27 - 2014-11-13 17:31 - 00000000 ____D () C:\AdwCleaner
2014-11-13 16:25 - 2014-11-13 16:26 - 02140160 _____ () C:\Users\Viktor\Downloads\adwcleaner_4.101.exe
2014-11-13 15:38 - 2014-11-13 15:39 - 00016451 _____ () C:\Users\Viktor\Downloads\Addition.txt
2014-11-13 15:34 - 2014-11-13 17:44 - 00009960 _____ () C:\Users\Viktor\Downloads\FRST.txt
2014-11-13 15:33 - 2014-11-13 15:33 - 01107968 _____ (Farbar) C:\Users\Viktor\Downloads\FRST.exe
2014-11-13 14:09 - 2014-11-13 14:09 - 00974568 _____ (Copyright © 2013 eSupport.com, Inc • All Rights Reserved ) C:\Users\Viktor\Downloads\driveragent-setup-987.exe
2014-11-13 14:09 - 2014-11-13 14:09 - 00023456 _____ (Phoenix Technologies) C:\Windows\system32\Drivers\DrvAgent32.sys
2014-11-13 13:49 - 2014-11-13 17:44 - 00000000 ____D () C:\FRST
2014-11-13 07:56 - 2014-11-13 07:56 - 00000000 ____D () C:\Program Files\SystemRequirementsLab
2014-11-13 07:55 - 2014-11-13 07:55 - 00651264 _____ () C:\Users\Viktor\Downloads\Detection (1).msi
2014-11-13 07:54 - 2014-11-13 07:54 - 00000000 ____D () C:\Program Files\Common Files\Java
2014-11-13 07:50 - 2014-11-13 07:50 - 00638888 _____ (Oracle Corporation) C:\Users\Viktor\Downloads\chromeinstall-8u25.exe
2014-11-12 19:27 - 2014-11-12 19:30 - 00000000 ___RD () C:\Program Files\Skype
2014-11-12 19:27 - 2014-11-12 19:27 - 00002503 _____ () C:\Users\Public\Desktop\Skype.lnk
2014-11-12 19:27 - 2014-11-12 19:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2014-11-12 19:27 - 2014-11-12 19:27 - 00000000 ____D () C:\Program Files\Common Files\Skype
2014-11-12 19:25 - 2014-11-12 19:25 - 01546856 _____ (Skype Technologies S.A.) C:\Users\Viktor\Downloads\SkypeSetup (2).exe
2014-11-12 15:40 - 2014-11-12 15:40 - 00000000 ____D () C:\Users\Viktor\AppData\Roaming\AVG2015
2014-11-12 15:39 - 2014-11-12 15:39 - 00000935 _____ () C:\Users\Public\Desktop\AVG 2015.lnk
2014-11-12 15:39 - 2014-11-12 15:39 - 00000000 ____D () C:\Users\Viktor\AppData\Roaming\TuneUp Software
2014-11-12 15:39 - 2014-11-12 15:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2014-11-12 15:38 - 2014-11-12 15:39 - 00000000 ____D () C:\ProgramData\AVG2015
2014-11-12 15:38 - 2014-11-12 15:38 - 00000000 ___HD () C:\$AVG
2014-11-12 15:36 - 2014-11-12 15:36 - 00000000 ____D () C:\Program Files\AVG
2014-11-12 15:34 - 2014-11-13 17:28 - 00000000 ____D () C:\ProgramData\MFAData
2014-11-12 15:34 - 2014-11-12 15:45 - 00000000 ____D () C:\Users\Viktor\AppData\Local\Avg2015
2014-11-12 15:34 - 2014-11-12 15:34 - 04637504 _____ (AVG Technologies) C:\Users\Viktor\Downloads\avg_free_stb_all_2015_5557_cnet.exe
2014-11-12 15:34 - 2014-11-12 15:34 - 00000000 ____D () C:\Users\Viktor\AppData\Local\MFAData
2014-11-12 15:32 - 2014-11-12 15:32 - 01240264 _____ (Microsoft Corporation) C:\Users\Viktor\Downloads\wlsetup-web.exe
2014-11-12 15:19 - 2014-11-12 15:19 - 02998656 _____ (Enigma Software Group USA, LLC.) C:\Users\Viktor\Downloads\SpyHunter-Installer.exe
2014-11-12 14:47 - 2014-11-12 14:47 - 00000000 ____D () C:\ProgramData\23405448
2014-11-12 14:29 - 2014-11-12 14:29 - 00000000 ____D () C:\Program Files\discountit
2014-11-11 19:43 - 2014-10-25 02:32 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-11-11 19:43 - 2014-10-14 02:56 - 00136632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-11-11 19:43 - 2014-10-14 02:50 - 02363904 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-11-11 19:43 - 2014-10-14 02:50 - 01059840 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-11-11 19:43 - 2014-10-14 02:50 - 00523776 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2014-11-11 19:43 - 2014-10-14 02:47 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2014-11-11 19:43 - 2014-10-14 02:46 - 00681984 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2014-11-11 19:43 - 2014-10-10 01:45 - 02379264 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-11-11 19:43 - 2014-10-03 02:44 - 00475136 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2014-11-11 19:43 - 2014-10-03 02:44 - 00442880 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2014-11-11 19:43 - 2014-10-03 02:44 - 00374784 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2014-11-11 19:43 - 2014-10-03 02:44 - 00275968 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2014-11-11 19:43 - 2014-10-03 02:44 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2014-11-11 19:43 - 2014-09-19 10:23 - 00550912 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-11-11 19:43 - 2014-09-19 10:23 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-11-11 19:43 - 2014-09-19 10:23 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-11-11 19:43 - 2014-09-19 10:23 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2014-11-11 19:43 - 2014-09-19 10:23 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-11-11 19:43 - 2014-09-19 10:23 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-11-11 19:43 - 2014-09-19 10:23 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-11-11 19:43 - 2014-08-21 07:26 - 01237504 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-11-11 19:43 - 2014-08-21 07:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-11-11 19:43 - 2014-08-12 02:36 - 00701440 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10K.DLL
2014-11-11 19:42 - 2014-11-07 20:23 - 00341168 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-11-11 19:42 - 2014-11-06 04:28 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-11-11 19:42 - 2014-11-06 04:28 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-11-11 19:42 - 2014-11-06 04:13 - 00501248 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-11-11 19:42 - 2014-11-06 04:13 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-11-11 19:42 - 2014-11-06 04:12 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-11-11 19:42 - 2014-11-06 04:10 - 19781632 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-11-11 19:42 - 2014-11-06 04:10 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-11-11 19:42 - 2014-11-06 04:05 - 02277376 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-11-11 19:42 - 2014-11-06 04:04 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-11-11 19:42 - 2014-11-06 04:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-11-11 19:42 - 2014-11-06 04:00 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-11-11 19:42 - 2014-11-06 03:59 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-11-11 19:42 - 2014-11-06 03:59 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-11-11 19:42 - 2014-11-06 03:58 - 00620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-11-11 19:42 - 2014-11-06 03:51 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-11-11 19:42 - 2014-11-06 03:48 - 00418304 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-11-11 19:42 - 2014-11-06 03:42 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-11-11 19:42 - 2014-11-06 03:37 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-11-11 19:42 - 2014-11-06 03:36 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-11-11 19:42 - 2014-11-06 03:34 - 00285696 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-11-11 19:42 - 2014-11-06 03:22 - 00688640 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-11-11 19:42 - 2014-11-06 03:22 - 00683008 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-11-11 19:42 - 2014-11-06 03:21 - 04298240 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-11-11 19:42 - 2014-11-06 03:21 - 02051072 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-11-11 19:42 - 2014-11-06 03:20 - 01155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-11-11 19:42 - 2014-11-06 03:03 - 12819456 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-11-11 19:42 - 2014-11-06 02:52 - 01892864 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-11-11 19:42 - 2014-11-06 02:48 - 01310208 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-11-11 19:42 - 2014-11-06 02:47 - 00708096 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-11-11 08:45 - 2014-11-11 08:45 - 00000000 ____D () C:\Program Files\coolbuy
2014-11-10 20:05 - 2014-11-12 14:58 - 00000000 ____D () C:\ProgramData\discountit
2014-11-09 21:57 - 2014-11-12 14:58 - 00000000 ____D () C:\ProgramData\coolbuy
2014-11-02 21:55 - 2014-11-02 21:55 - 00019700 _____ () C:\Users\Viktor\Downloads\The_House_by_the_Cemetery_(Lucio_Fulci)_-_DvDrip_MP4.10945953.TPB.torrent
2014-11-02 21:55 - 2014-11-02 21:55 - 00014532 _____ () C:\Users\Viktor\Downloads\The_House_by_the_Cemetery_[1981].8633522.TPB.torrent
2014-11-02 21:54 - 2014-11-02 21:55 - 00058027 _____ () C:\Users\Viktor\Downloads\City.of.the.Living.Dead.BLOOD.EDITION.UNCUT.1980.DVDRip.XviD-FiC.10756684.TPB.torrent
2014-11-02 21:54 - 2014-11-02 21:54 - 00014656 _____ () C:\Users\Viktor\Downloads\Suspiria.DVDRIP.XviD.1977.SWESUB._-Lindoff.6281973.TPB.torrent
2014-11-02 21:52 - 2014-11-02 21:52 - 01689168 _____ (BitTorrent Inc.) C:\Users\Viktor\Downloads\uTorrent (6).exe
2014-11-02 20:29 - 2014-11-02 20:29 - 00000180 _____ () C:\Users\Viktor\Desktop.lnk
2014-11-02 08:02 - 2014-11-12 14:37 - 00000000 ____D () C:\Users\Viktor\AppData\Local\CountAnything
2014-11-02 08:02 - 2014-11-02 08:02 - 00000000 ____D () C:\Users\Viktor\AppData\Local\AnalyzeAssist
2014-11-02 08:01 - 2014-11-02 08:01 - 11544064 _____ (Ginstrom IT Solutions (GITS) ) C:\Users\Viktor\Downloads\CountAnything_Setup_2.1.exe
2014-10-29 23:05 - 2014-10-29 23:05 - 00000000 ____D () C:\Users\Viktor\AppData\Roaming\Spacejock Software
2014-10-29 23:04 - 2014-10-29 23:04 - 01898982 _____ (Spacejock Software ) C:\Users\Viktor\Downloads\yWriter5Full.exe
2014-10-29 08:44 - 2014-09-05 02:52 - 05703168 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-10-29 08:44 - 2014-08-29 02:44 - 02744320 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-10-28 12:18 - 2014-05-08 10:06 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2014-10-27 23:59 - 2012-08-23 15:48 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2014-10-27 23:59 - 2012-08-23 15:44 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2014-10-27 23:59 - 2012-08-23 12:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll
2014-10-27 23:58 - 2014-10-27 23:58 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_SynTP_01007.Wdf
2014-10-27 23:58 - 2014-10-27 23:58 - 00000000 ____D () C:\Program Files\Synaptics
2014-10-27 23:58 - 2013-10-02 01:42 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2014-10-27 23:58 - 2013-10-02 01:32 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2014-10-27 23:58 - 2013-10-02 01:30 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2014-10-27 23:58 - 2013-10-02 01:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2014-10-27 23:58 - 2013-10-02 01:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2014-10-27 23:58 - 2013-10-02 00:58 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2014-10-27 23:58 - 2013-10-02 00:45 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2014-10-27 23:58 - 2013-10-02 00:08 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2014-10-27 23:58 - 2013-10-02 00:00 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2014-10-27 23:58 - 2013-10-01 23:53 - 00350208 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2014-10-27 23:58 - 2013-10-01 23:34 - 01068544 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2014-10-27 23:45 - 2014-10-27 23:46 - 06958304 _____ (Microsoft Corporation) C:\Users\Viktor\Downloads\Silverlight.exe
2014-10-27 23:17 - 2014-10-27 23:17 - 01689168 _____ (BitTorrent Inc.) C:\Users\Viktor\Downloads\uTorrent (5).exe
2014-10-27 22:58 - 2014-10-27 22:59 - 00000000 ____D () C:\Users\Viktor\Documents\Cooper's Revenge
2014-10-27 22:58 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
2014-10-27 22:58 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2014-10-27 22:57 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
2014-10-27 22:57 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2014-10-27 22:57 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2014-10-27 22:57 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
2014-10-27 22:57 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
2014-10-27 22:57 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
2014-10-27 22:56 - 2014-10-27 22:58 - 00063055 _____ () C:\Windows\DirectX.log
2014-10-27 22:56 - 2014-10-27 22:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Desperados 2
2014-10-27 22:13 - 2014-10-27 22:13 - 03080572 _____ (OnePlayS Systems) C:\Users\Viktor\Downloads\Desperados 2- Cooper's Revenge (PC).exe
2014-10-25 22:29 - 2014-10-27 22:28 - 00000000 ____D () C:\Program Files\Nordic Games
2014-10-25 22:19 - 2014-10-27 22:26 - 00000314 _____ () C:\Users\Viktor\Downloads\debug.txt
2014-10-25 22:19 - 2014-10-25 22:19 - 03080461 _____ (OnePlayS Systems) C:\Users\Viktor\Downloads\Desperados- Wanted Dead or Alive (PC).exe
2014-10-25 22:03 - 2014-10-25 22:03 - 00000000 ____D () C:\Users\Viktor\AppData\Roaming\PowerISO
2014-10-25 22:02 - 2014-10-25 22:02 - 00000965 _____ () C:\Users\Public\Desktop\PowerISO.lnk
2014-10-25 22:02 - 2014-10-25 22:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerISO
2014-10-25 22:01 - 2014-10-25 22:02 - 00000000 ____D () C:\Program Files\PowerISO
2014-10-25 22:01 - 2014-10-25 22:01 - 02962832 _____ (Power Software Ltd) C:\Users\Viktor\Downloads\PowerISO6.exe
2014-10-25 22:00 - 2014-10-25 22:00 - 02878920 _____ (Power Software Ltd) C:\Users\Viktor\Downloads\PowerISO6-x64.exe
2014-10-21 17:49 - 2014-10-21 17:49 - 00056737 _____ () C:\Users\Viktor\Downloads\The.Phenix.City.Story.1955.DVDRip.XviD-VH-PROD.5860592.TPB.torrent
2014-10-21 17:49 - 2014-10-21 17:49 - 00014912 _____ () C:\Users\Viktor\Downloads\The_Phenix_City_Story_(1955)._Phil_Karlson.Noir.DVDRip.7495310.TPB.torrent
2014-10-21 17:39 - 2014-10-21 17:39 - 00028904 _____ () C:\Users\Viktor\Downloads\Maniac.1980.DVDRip-Morsan(SweSub).4492404.TPB (1).torrent
2014-10-21 17:37 - 2014-10-21 17:37 - 00022040 _____ () C:\Users\Viktor\Downloads\MANIAC_1980.4505920.TPB (1).torrent
2014-10-21 17:36 - 2014-10-21 17:36 - 01689680 _____ (BitTorrent Inc.) C:\Users\Viktor\Downloads\uTorrent (4).exe
2014-10-18 22:52 - 2014-10-18 22:52 - 00002275 _____ () C:\Users\Viktor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MaxBatch.lnk
2014-10-18 22:33 - 2014-10-18 22:38 - 00000000 ____D () C:\Users\Viktor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-10-18 22:27 - 2014-10-18 22:27 - 00405714 _____ () C:\Users\Viktor\Downloads\MaxPayneSoundPatchv1.12.rar
2014-10-18 22:24 - 2014-10-18 22:24 - 00872448 _____ ( ) C:\Users\Viktor\Downloads\winzip18-home.exe
2014-10-18 22:24 - 2014-10-18 22:24 - 00000000 ____D () C:\Program Files\File Association Helper
2014-10-18 22:18 - 2014-10-25 10:16 - 00000000 ____D () C:\Users\Viktor\Documents\Max Payne Savegames
2014-10-18 22:14 - 2014-10-18 22:15 - 00000000 ____D () C:\Program Files\Red Alert
2014-10-18 22:13 - 2014-10-18 22:14 - 06390873 _____ (FunkyFr3sh ) C:\Users\Viktor\Downloads\RA1installer.exe
2014-10-18 22:12 - 2014-10-18 22:13 - 10708853 _____ (FunkyFr3sh ) C:\Users\Viktor\Downloads\RedAlert1_Online_Installer.exe
2014-10-16 11:16 - 2014-10-10 02:44 - 00396288 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-10-16 11:16 - 2014-10-10 02:44 - 00230912 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2014-10-16 11:16 - 2014-10-10 02:39 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-10-16 11:15 - 2014-09-04 06:04 - 00372736 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2014-10-16 11:15 - 2014-07-17 02:40 - 00157696 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
2014-10-16 11:15 - 2014-07-17 02:39 - 00304128 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-10-16 11:15 - 2014-07-17 02:39 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2014-10-16 11:15 - 2014-07-17 02:03 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2014-10-16 11:15 - 2014-07-17 02:02 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2014-10-16 11:15 - 2014-07-09 02:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL
2014-10-16 11:15 - 2014-07-09 02:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL
2014-10-16 11:15 - 2014-07-09 02:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL
2014-10-16 11:15 - 2014-07-09 02:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL
2014-10-16 11:15 - 2014-07-09 02:29 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL
2014-10-16 11:15 - 2014-07-08 23:30 - 00419992 _____ () C:\Windows\system32\locale.nls
2014-10-16 11:15 - 2014-06-18 23:23 - 01131664 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2014-10-16 11:15 - 2014-06-18 23:23 - 00156824 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
2014-10-16 11:15 - 2014-06-18 23:23 - 00081560 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-11-13 17:41 - 2009-07-14 05:34 - 00027920 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-11-13 17:41 - 2009-07-14 05:34 - 00027920 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-11-13 17:38 - 2014-09-25 17:23 - 00000000 ____D () C:\Users\Viktor\AppData\Roaming\Skype
2014-11-13 17:33 - 2014-09-21 18:05 - 00000978 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-11-13 17:33 - 2010-11-20 22:48 - 00019772 _____ () C:\Windows\PFRO.log
2014-11-13 17:33 - 2009-07-14 05:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-11-13 17:33 - 2009-07-14 05:39 - 00031332 _____ () C:\Windows\setupact.log
2014-11-13 17:32 - 2014-09-21 17:49 - 01759975 _____ () C:\Windows\WindowsUpdate.log
2014-11-13 17:31 - 2014-09-21 18:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-11-13 17:31 - 2014-09-21 18:02 - 00001116 _____ () C:\Users\Viktor\Desktop\Internet Explorer.lnk
2014-11-13 17:17 - 2014-09-21 18:05 - 00000982 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-11-13 15:29 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\registration
2014-11-13 09:14 - 2014-09-21 18:06 - 00002153 _____ () C:\Users\Public\Desktop\ares (1).lnk
2014-11-13 07:53 - 2014-10-13 20:52 - 00000000 ____D () C:\ProgramData\Oracle
2014-11-13 07:53 - 2014-10-13 20:51 - 00096680 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2014-11-13 07:53 - 2014-10-13 20:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-11-13 07:52 - 2014-10-13 20:50 - 00000000 ____D () C:\Program Files\Java
2014-11-12 19:27 - 2014-09-25 17:23 - 00000000 ____D () C:\ProgramData\Skype
2014-11-12 16:01 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-11-12 15:22 - 2014-09-25 17:29 - 00001912 _____ () C:\Windows\epplauncher.mif
2014-11-12 15:20 - 2014-09-21 18:00 - 00000000 ____D () C:\Users\Viktor
2014-11-12 15:00 - 2009-07-14 05:33 - 00268112 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-11-12 14:57 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\sv-SE
2014-11-12 14:45 - 2014-10-13 17:43 - 00000000 ____D () C:\Program Files\Rockstar Games
2014-11-12 14:41 - 2014-09-27 12:40 - 00000000 ____D () C:\Windows\system32\MRT
2014-11-12 14:28 - 2014-09-27 12:40 - 100445232 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-11-10 20:09 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\wfp
2014-11-04 14:30 - 2014-09-25 17:30 - 00229000 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-11-02 22:04 - 2014-09-27 21:34 - 00000000 ____D () C:\Users\Viktor\AppData\Roaming\uTorrent
2014-10-31 14:19 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\rescache
2014-10-29 11:41 - 2011-04-12 07:32 - 00663312 _____ () C:\Windows\system32\perfh01D.dat
2014-10-29 11:41 - 2011-04-12 07:32 - 00142080 _____ () C:\Windows\system32\perfc01D.dat
2014-10-29 11:41 - 2010-11-20 22:01 - 01578190 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-10-28 00:04 - 2009-07-14 03:37 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2014-10-27 22:57 - 2014-09-27 23:25 - 00000000 ____D () C:\Users\Viktor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2014-10-27 21:36 - 2014-09-25 17:43 - 00000000 ____D () C:\Program Files\Common Files\Steam
2014-10-17 15:02 - 2014-09-26 13:48 - 00000000 ___SD () C:\Windows\system32\CompatTel

Some content of TEMP:
====================
C:\Users\Viktor\AppData\Local\Temp\APNSetup.exe
C:\Users\Viktor\AppData\Local\Temp\optprosetup.exe
C:\Users\Viktor\AppData\Local\Temp\SearchProtectionSetup.exe
C:\Users\Viktor\AppData\Local\Temp\sqlite3.dll
C:\Users\Viktor\AppData\Local\Temp\SRLDetectionLibrary4994943531707818099.dll
C:\Users\Viktor\AppData\Local\Temp\utt960D.tmp.exe

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

Dold text

Rapportera Redigera

Citera flera Citera

2014-11-13 17:47

Permalänk

Trizones

Medlem

Registrerad: Maj 2013

●

Ask brukar vara en toolbar som installeras i din webbläsare som bara är i vägen, så ta bort den du.

Visa signatur

Processor: R5 2600 Moderkort: X470-F Gaming Grafikkort: Nvidia 3080 FE Ram: Trident Z Neo 16gb Nätaggregat: CM 850V Chassi: FD Meshify C Lagring: Corsair MP510 1TB, Crucial MX300 750gb

Rapportera Redigera

Citera flera Citera

2014-11-13 18:00

Permalänk

RasmusC

Medlem ★

Plats: 127.0.0.1
Registrerad: Aug 2011

●

Bra att det fungerar igen! Annars är alltid en formation och ominstallation ett bra alternativ om man vill vara säker på att få bort allt.

Visa signatur

CPU:AMD 7950X3D UV (Noctua NH-D15) GPU: Powercolor 7900XTX Red Devil UV MINNE:32gb 6000mhz CL 32-36-36-72 MODERKORT:ASUS x670e PRIME NÄTAGG:Gigabyte 1000w SSD: Samung 980 PRO 2TB m.2, SK hynix PC401 512gb m.2, Samsung 860 EVO 500GB, Samsung SM871b 512GB, Samsung 830 256GB, Samsung 840 PRO 256GB CHASSI: Fractal Design Define R5 Titanium LJUDKORT: Creative Sound Blaster X4 HÖRLURAR: Beyerdynamics MMX300 V2OS: Windows 11 Pro

Rapportera Redigera

Citera flera Citera

2014-11-13 18:04

Permalänk

CeciliaB

Medlem

Plats: Stockholm
Registrerad: Nov 2011

●

Starta Anteckningar.
Kopiera alla rader i rutan:

CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKCU - DefaultScope {D43EEECC-59B2-4F4D-B46E-AEE0818EBF1E} URL = https://se.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf...
SearchScopes: HKCU - {D43EEECC-59B2-4F4D-B46E-AEE0818EBF1E} URL = https://se.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf...
CHR DefaultSearchKeyword: Default -> 0B2D565EE1CBD9B6BDCAFAC4A4245F8222D8291CA4FB1B9520EF7218A21EA788
CHR DefaultSearchURL: Default -> AA2DB7CD4E2CCA4494346090972D9A4653B9BC6022590172011EFB838B863760
Folder: C:\ProgramData\23405448
Folder: C:\Program Files\discountit
Folder: C:\Program Files\coolbuy
Folder: C:\ProgramData\discountit
Folder: C:\ProgramData\coolbuy

och klistra in i Anteckningar. Kontrollera att inga filer har delats upp på två rader.
Spara filen på skrivbordet med namnet fixlist.txt.

Starta FRST som finns på skrivbordet.
Klicka på knappen Fix.
Vänta tills programmet är klart.

Programmet skapar en logg Fixlog.txt på skrivbordet.
Klistra in innehållet i den i ditt svar.

Går det att avinstallera "Java 7 Update 67"?
Det är inte senaste versionen så den innehåller säkerhetshål.

Rapportera Redigera

Citera flera Citera

Hur får man bort istart.websearch.com?

Hur får man bort istart.websearch.com?

Externa nyheter

Spelnyheter från FZ