Inlägg
Inlägg som Wilsi har skrivit i forumet
Kan signalförstärkare vara en lösning?
Hej! För ett par månadersedan flyttade jag ut till ett hus i skogen och har ingen täckning där hemma. Ibland på vissa ställen på ovanvåningen och ute på trädgården har jag "E". Hittade ett telefonjack och tänkte: "gött, då kan jag skaffa ADSL!" Men upptäckte att telefonjacket inte var inkopplat.. Så nu letar jag efter en lösning för att få någon form av internet. Jag nöjer mig med relativt bra täckning på telefonen då jag kan dela till datorn om det behövs (behöver inte kunna streama i HD, men gärna Spotify och videos i 360p)
Så nu undrar jag: Kan en signalförstärkare vara en lösning, eller måste det finnas något bättre än den minimala täckning jag kan få för att det ens ska vara möjligt? Har ni här på forumet några andra smarta lösningar? Ska helst vara billigt för jag är inte rik..
Testade det, funkade inte..
Nyss testade jag att starta datorn med Winows 7-skivan. Jag installerade Windows på min andra hårddisk och det startar, datorn hittar även min SSD och allt ligger kvar så det är inte den som kraschat..
Känns nu som ett mjukvarufel? Nu till frågan. Kan jag installera om Windows 7 på min SSD utan att förlora något på den och så att alla i stallerade program ligger kvar?
Skickades från m.sweclockers.com
Det går inte heller att starta i felsäkertläge..
Skickades från m.sweclockers.com
Datorn vägrar starta
Hej! Som rubriken lyder vägrar datorn starta, jag skriver på telefonen och här verkar inte finnas någon sökfunktion, så jag ber om ursäkt om det redan finns trådar om detta.
Igår när jag skulle lägga mig funkade datorn helt normalt, jag stängde av den, men den tog ovanligt lång tid på sig att stängas av, sedan fick den blåskärm, jag var en bit bort så hann inte se vad som stod på skärmen. Den körde igång en startreparation automatiskt, som misslyckades. Jag har tydligen inga återställningspunkter, vilket jag tycker jag borde ha, så kan inte heller göra en systemåterställning. Har kört minnesdiagnostik och den hittar inga feldär heller.
Hoppas ni har någon fiffiig lösning! Har en del grejer påmin SSD där operativsystemet ligger som jag inte vill bli av med..
Tack så extremt sjukt mycket för all hjälp! Verkligen! Supersnällt.
Ha det bäst!!
Fixlog:
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 23-11-2014
Ran by Wilson at 2014-11-26 10:53:50 Run:5
Running from C:\Users\Wilson\Desktop
Loaded Profile: Wilson (Available profiles: Wilson)
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
C:\Windows\AppPatch\AppPatch64\VCLdr64.dll
*****************
C:\Windows\AppPatch\AppPatch64\VCLdr64.dll => Moved successfully.
==== End of Fixlog ====
Dold text
Skrivet av CeciliaB:
Hur fungerar datorn numera?
Några fler frågor innan jag skriver hur AdwCleaner och FRST ska avinstalleras.
Datorn verkar fungera bra. Har inte haft tid att använda den så mycket, men ett problem som uppstod igår var att när jag kommer till inloggningsskärmen när jag startat datorn tar det en liten stund innan mus och tangentbord börjar fungera (trådlöst). Inget stort problem, men ganska störigt. Vet du vad det kan bero på?
Sedan vet jag att den senaste tiden har jag haft problem att installera ny maskinvara via usb. Eller rättare sagt, jag har inte fått det till att fungera alls. Har inte testat sedan innan jag fick din hjälp. Ska testa igen till helgen och se om det har löst sig. Vet inte om det är något du kan hjälpa till med, annars gör jag en annan tråd i forumet.
Skrivet av CeciliaB:
Programmet skapar en logg Fixlog.txt på skrivbordet.
Klistra in innehållet i den i ditt svar.
Fixlog:
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 23-11-2014
Ran by Wilson at 2014-11-26 00:14:59 Run:4
Running from C:\Users\Wilson\Desktop
Loaded Profile: Wilson (Available profiles: Wilson)
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
File: C:\Windows\AppPatch\AppPatch64\VCLdr64.dll
Folder: C:\Windows\AppPatch\AppPatch64
EmptyTemp:
*****************
========================= File: C:\Windows\AppPatch\AppPatch64\VCLdr64.dll ========================
MD5: 43D93CF6F9BF25801E11634C2CE6C836
Creation and modification date: 2014-11-10 10:46 - 2014-11-10 10:46
Size: 0233280
Attributes: ----A
Company Name: Search Protect
Internal Name: Unknown
Original Name: Search Protect Search (R)
Product Name: Search Protect
Description: Search Protect
File Version: 2.18.20.209
Product Version: 2.18.20.209
Copyright:
====== End Of File: ======
========================= Folder: C:\Windows\AppPatch\AppPatch64 ========================
2013-05-16 02:40 - 2013-04-13 06:49 - 0308736 _____ (Microsoft Corporation) C:\Windows\AppPatch\AppPatch64\AcGenral.dll
2013-05-16 02:40 - 2013-04-13 06:49 - 0350208 _____ (Microsoft Corporation) C:\Windows\AppPatch\AppPatch64\AcLayers.dll
2013-05-16 02:40 - 2013-04-13 06:49 - 0111104 _____ (Microsoft Corporation) C:\Windows\AppPatch\AppPatch64\acspecfc.dll
2013-05-16 02:40 - 2013-04-13 06:49 - 0135168 _____ (Microsoft Corporation) C:\Windows\AppPatch\AppPatch64\AcXtrnal.dll
2009-07-14 00:32 - 2009-07-14 02:40 - 0052736 _____ (Microsoft Corporation) C:\Windows\AppPatch\AppPatch64\apihex64.dll
2013-05-16 02:40 - 2013-04-13 00:31 - 0125346 _____ () C:\Windows\AppPatch\AppPatch64\sysmain.sdb
2014-11-10 10:46 - 2014-11-10 10:46 - 0233280 _____ (Search Protect) C:\Windows\AppPatch\AppPatch64\VCLdr64.dll
====== End of Folder: ======
EmptyTemp: => Removed 1.6 GB temporary data.
The system needed a reboot.
==== End of Fixlog ====
Dold text
Skrivet av CeciliaB:
Gör en kontroll med Esets onlineskanner http://www.eset.com/onlinescan/
För att inte skannern ska ta för lång tid på sig stäng av ditt antivirusprogram under tiden.
För noggrannast kontroll:
Välj alternativet Enable detection of potentially unwanted applications.
Klicka på Advanced Settings.
Ta bort bocken framför Remove found threats.
Bocka för:
Scan Archives
Scan for potentially unsafe applications
Enable Anti-Stealth Technology
Klicka på Start
När skanningen är klar klicka på List of found threats, följt av Export to a text file. Spara till en fil på skrivbordet.
Antingen går du igenom filen och tar bort de filer den hittar om du tycker att de ska bort (falsklarm förekommer) eller så klistar du in den här så tittar jag på den.
Här är listan på found threats. Jag förstår inte så mycket av dethär, så du får jättegärna kolla igenom den.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Conduit\Community Alerts\Alert.dll.vir Win32/Toolbar.Conduit.Y potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\Main\bin\CltMngSvc.exe.vir a variant of Win32/Conduit.SearchProtect.H potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\Main\bin\SPtool.dll.vir a variant of Win32/ClientConnect.A potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\Main\bin\uninstall.exe.vir a variant of Win32/ClientConnect.A potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\SearchProtect\bin\cltmng.exe.vir a variant of Win32/Conduit.SearchProtect.I potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\SearchProtect\bin\SPtool64.exe.vir a variant of Win32/ClientConnect.A potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\SearchProtect\bin\VC32.dll.vir a variant of Win32/ClientConnect.A potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\SearchProtect\bin\VC32Loader.dll.vir a variant of Win32/ClientConnect.A potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\SearchProtect\bin\VC64.dll.vir a variant of Win32/ClientConnect.A potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\SearchProtect\bin\VC64Loader.dll.vir a variant of Win32/ClientConnect.A potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\UI\bin\cltmngui.exe.vir a variant of Win32/ClientConnect.A potentially unwanted application
C:\FRST\Quarantine\C\Users\Wilson\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdcnhipbjeadfjjkehbdcocmhkfpffnj\1\51001057efedd2.32293708.js Win32/Adware.MultiPlug.H application
C:\FRST\Quarantine\C\Users\Wilson\AppData\Roaming\Other.res.xBAD a variant of Win32/Kryptik.CQVT trojan
C:\FRST\Quarantine\C\Users\Wilson\AppData\Roaming\Fontcore\Fontcore.pif Win32/Zlader.F trojan
C:\Users\Wilson\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\M9HWNLI6\7b4261982415a58a8fad248e5a7eace0[1].swf SWF/Agent.C trojan
C:\Users\Wilson\AppData\Local\Temp\tbedrs.dll a variant of Win32/Toolbar.Conduit.B potentially unwanted application
C:\Users\Wilson\AppData\Local\Temp\tbuTo0.dll a variant of Win32/Toolbar.Conduit.X potentially unwanted application
C:\Users\Wilson\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\19\7ef72693-4e397488 Java/Exploit.Agent.RRI trojan
C:\Users\Wilson\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\55\4ecc23b7-51008b20 a variant of Java/Obfus.CE trojan
C:\Users\Wilson\Downloads\OS_X_10.8_Mountain_Lion_VMWare_Image_-_With_InstaSign_-_RegMyUDi_secure.exe Win32/TopMedia.B potentially unwanted application
C:\Windows\AppPatch\AppPatch64\VCLdr64.dll a variant of Win32/ClientConnect.A potentially unwanted application
Dold text
Skrivet av CeciliaB:
3. Har du själv ställt in att Firefox ska använda en proxy via mediahint.com?
.
Nä.. Det var något jag laddade ner för längesedan för att få tillgång til mer film på Netflix..
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 23-11-2014
Ran by Wilson at 2014-11-23 19:35:34 Run:2
Running from C:\Users\Wilson\Desktop
Loaded Profile: Wilson (Available profiles: Wilson)
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1733162776-2084631968-1138856860-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
FF DefaultSearchEngine,S:
FF DefaultSearchUrl:
FF SearchEngineOrder.1: Privitize VPN
FF SearchEngineOrder.1,S:
FF SelectedSearchEngine: Google
FF SelectedSearchEngine,S:
CHR Extension: (Zoomex) - C:\Users\Wilson\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdcnhipbjeadfjjkehbdcocmhkfpffnj [2013-01-23]
2014-11-23 13:32 - 2013-01-23 17:07 - 00000364 ____H () C:\Windows\Tasks\ZoomExUpdaterTask{339DF397-BC08-4CD8-ADC4-29768565B051}.job
*****************
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => Key deleted successfully.
"HKCR\Wow6432Node\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => Key not found.
HKU\S-1-5-21-1733162776-2084631968-1138856860-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
Firefox DefaultSearchEngine,S deleted successfully.
Firefox DefaultSearchUrl deleted successfully.
Firefox SearchEngineOrder.1 deleted successfully.
Firefox SearchEngineOrder.1,S deleted successfully.
Firefox SelectedSearchEngine deleted successfully.
Firefox SelectedSearchEngine,S deleted successfully.
C:\Users\Wilson\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdcnhipbjeadfjjkehbdcocmhkfpffnj => Moved successfully.
C:\Windows\Tasks\ZoomExUpdaterTask{339DF397-BC08-4CD8-ADC4-29768565B051}.job => Moved successfully.
==== End of Fixlog ====
Dold text
Skrivet av CeciliaB:
Kaspersky Anti-Virus 2011 är en mycket gammal programversion. I varje ny version/årsmodell av antivirusprogrammen har det tillkommit nya funktioner för att bättre upptäcka och ta bort de senaste typerna av skadliga program. Det är därför viktigt att varje år uppgradera till den senaste versionen.
Efter rensningen med AdwCleaner får du köra FRST igen och klistra in den nya FRST.txt så att jag kan se om det är ändå mer som ska bort.
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 23-11-2014
Ran by Wilson (administrator) on WILSON-DATOR on 23-11-2014 13:34:03
Running from C:\Users\Wilson\Desktop
Loaded Profile: Wilson (Available profiles: Wilson)
Platform: Windows 7 Professional Service Pack 1 (X64) OS Language: Svenska (Sverige)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how...
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Microsoft Corporation) C:\Windows\System32\audiodg.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Skype Technologies) C:\Program Files (x86)\Skype\Updater\Updater.exe
(M-Audio) C:\Program Files (x86)\M-Audio\USB MIDI Series\AudioDevMon.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(BitTorrent Inc.) C:\Users\Wilson\AppData\Roaming\uTorrent\uTorrent.exe
(Spotify Ltd) C:\Users\Wilson\AppData\Roaming\Spotify\spotify.exe
(Spotify Ltd) C:\Users\Wilson\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(Dropbox, Inc.) C:\Users\Wilson\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
() C:\Users\Wilson\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Wilson\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Wilson\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Wilson\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Wilson\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_15_0_0_223.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_15_0_0_223.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM-x32\...\Run: [AdobeCS4ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [611712 2008-08-14] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AVP] => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe [365336 2010-11-02] (Kaspersky Lab ZAO)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959176 2014-08-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-09-01] (Apple Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [271744 2014-09-26] (Oracle Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\klogon: C:\Windows\System32\klogon.dll (Kaspersky Lab ZAO)
HKU\S-1-5-21-1733162776-2084631968-1138856860-1000\...\Run: [uTorrent] => C:\Users\Wilson\AppData\Roaming\uTorrent\uTorrent.exe [1385808 2014-10-27] (BitTorrent Inc.)
HKU\S-1-5-21-1733162776-2084631968-1138856860-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-1733162776-2084631968-1138856860-1000\...\Run: [Spotify] => C:\Users\Wilson\AppData\Roaming\Spotify\Spotify.exe [6553144 2014-11-21] (Spotify Ltd)
HKU\S-1-5-21-1733162776-2084631968-1138856860-1000\...\Run: [Spotify Web Helper] => C:\Users\Wilson\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1514040 2014-11-21] (Spotify Ltd)
HKU\S-1-5-21-1733162776-2084631968-1138856860-1000\...\MountPoints2: I - I:\setup.exe
HKU\S-1-5-21-1733162776-2084631968-1138856860-1000\...\MountPoints2: {839d03c3-6249-11e2-ad42-806e6f6e6963} - F:\Run.exe
Startup: C:\Users\Wilson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Wilson\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKU\S-1-5-21-1733162776-2084631968-1138856860-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://se.msn.com/?ocid=iehp
HKU\S-1-5-21-1733162776-2084631968-1138856860-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xE6F7378214F8CD01
HKU\S-1-5-21-1733162776-2084631968-1138856860-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = sv-SE
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1733162776-2084631968-1138856860-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: IEVkbdBHO Class -> {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\x64\ievkbd.dll (Kaspersky Lab ZAO)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: FilterBHO Class -> {E33CF602-D945-461A-83F0-819F76A199F8} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\x64\klwtbbho.dll (Kaspersky Lab ZAO)
BHO-x32: IEVkbdBHO Class -> {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\ievkbd.dll (Kaspersky Lab ZAO)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Inloggningshjälp för Microsoft-konto -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: FilterBHO Class -> {E33CF602-D945-461A-83F0-819F76A199F8} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\klwtbbho.dll (Kaspersky Lab ZAO)
DPF: HKLM-x32 {0D6709DD-4ED8-40CA-B459-2757AEEF7BEE} http://download.gigabyte.com.tw/object/Dldrv.ocx
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
FireFox:
========
FF ProfilePath: C:\Users\Wilson\AppData\Roaming\Mozilla\Firefox\Profiles\jmidf0p9.default
FF DefaultSearchEngine,S:
FF DefaultSearchUrl:
FF SearchEngineOrder.1: Privitize VPN
FF SearchEngineOrder.1,S:
FF SelectedSearchEngine: Google
FF SelectedSearchEngine,S:
FF NetworkProxy: "autoconfig_url", "https://mediahint.com/default.pac"
FF NetworkProxy: "type", 2
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_223.dll ()
FF Plugin: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_223.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.71.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.71.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1733162776-2084631968-1138856860-1000: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\Wilson\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NPOFF12.DLL (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin6.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin7.dll (Apple Inc.)
FF Extension: Media Hint - C:\Users\Wilson\AppData\Roaming\Mozilla\Firefox\Profiles\jmidf0p9.default\Extensions\mediahint@jetpack.xpi [2013-02-01]
FF Extension: Save Session - C:\Users\Wilson\AppData\Roaming\Mozilla\Firefox\Profiles\jmidf0p9.default\Extensions\savesession@noasobi.net.xpi [2013-02-25]
FF Extension: YouTube High Definition - C:\Users\Wilson\AppData\Roaming\Mozilla\Firefox\Profiles\jmidf0p9.default\Extensions\{7b1bf0b6-a1b9-42b0-b75d-252036438bdc}.xpi [2014-09-22]
FF Extension: Adblock Plus - C:\Users\Wilson\AppData\Roaming\Mozilla\Firefox\Profiles\jmidf0p9.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-02-25]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\extensions\linkfilter@kaspersky.ru [2014-11-10]
FF Extension: 카스퍼스키 URL 분석기 - C:\Program Files (x86)\Mozilla Firefox\extensions\linkfilter@kaspersky.ru_bak [2014-11-10]
FF HKLM-x32\...\Firefox\Extensions: [virtualKeyboard@kaspersky.ru] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\FFExt\virtualKeyboard@kaspersky.ru
FF Extension: No Name - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\FFExt\virtualKeyboard@kaspersky.ru [2013-03-21]
FF HKLM-x32\...\Firefox\Extensions: [linkfilter@kaspersky.ru] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\FFExt\linkfilter@kaspersky.ru
FF Extension: No Name - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\FFExt\linkfilter@kaspersky.ru [2013-03-21]
Chrome:
=======
CHR Profile: C:\Users\Wilson\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Zoomex) - C:\Users\Wilson\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdcnhipbjeadfjjkehbdcocmhkfpffnj [2013-01-23]
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S2 AVP; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe [365336 2010-11-02] (Kaspersky Lab ZAO)
R2 USBMIDIAudioDevMon; C:\Program Files (x86)\M-Audio\USB MIDI Series\AudioDevMon.exe [1636872 2010-04-13] (M-Audio)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R0 KL1; C:\Windows\System32\DRIVERS\kl1.sys [460888 2010-06-09] (Kaspersky Lab ZAO)
R1 kl2; C:\Windows\System32\DRIVERS\kl2.sys [11864 2010-06-09] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [556120 2013-03-21] (Kaspersky Lab)
R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [27736 2010-04-22] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [22544 2009-11-02] (Kaspersky Lab)
R3 L6TPortB; C:\Windows\System32\Drivers\L6TPortB64.sys [772224 2012-03-26] (Line 6)
S3 MAUSBMIDI; C:\Windows\System32\DRIVERS\MAudioUSBMIDI.sys [200200 2010-04-13] (M-Audio)
S3 synusb64; C:\Windows\System32\DRIVERS\synusb64.sys [30352 2009-06-26] (Steinberg Media Technologies GmbH)
S3 gdrv; \??\C:\Windows\gdrv.sys [X]
U3 swmidi; No ImagePath
S3 VBoxNetFlt; system32\DRIVERS\VBoxNetFlt.sys [X]
S3 vmci; \SystemRoot\system32\DRIVERS\vmci.sys [X]
S3 VMnetAdapter; system32\DRIVERS\vmnetadapter.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-11-23 13:33 - 2014-11-23 13:33 - 00000000 ____D () C:\Users\Wilson\Desktop\FRST-OlderVersion
2014-11-23 13:29 - 2014-11-23 13:31 - 00000000 ____D () C:\AdwCleaner
2014-11-23 13:28 - 2014-11-23 13:28 - 02140160 _____ () C:\Users\Wilson\Downloads\adwcleaner_4.101.exe
2014-11-23 13:25 - 2014-11-23 13:25 - 00000000 ____D () C:\ProgramData\Oracle
2014-11-23 13:25 - 2014-11-23 13:24 - 00272808 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-11-23 13:24 - 2014-11-23 13:24 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-11-23 13:24 - 2014-11-23 13:24 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-11-23 13:24 - 2014-11-23 13:24 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-11-23 13:24 - 2014-11-23 13:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-11-22 00:16 - 2014-11-22 00:16 - 00038936 _____ () C:\Users\Wilson\Desktop\Addition.txt
2014-11-22 00:15 - 2014-11-23 13:34 - 00014543 _____ () C:\Users\Wilson\Desktop\FRST.txt
2014-11-22 00:15 - 2014-11-23 13:33 - 02118144 _____ (Farbar) C:\Users\Wilson\Desktop\FRST64.exe
2014-11-21 21:46 - 2014-11-23 13:32 - 00000000 ____D () C:\Users\Wilson\AppData\Roaming\Spotify
2014-11-21 21:46 - 2014-11-21 21:46 - 00001814 _____ () C:\Users\Wilson\Desktop\Spotify.lnk
2014-11-21 21:46 - 2014-11-21 21:46 - 00001800 _____ () C:\Users\Wilson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2014-11-21 14:23 - 2014-11-23 13:34 - 00000000 ____D () C:\FRST
2014-11-19 21:03 - 2014-11-19 20:27 - 36172929 ____N () C:\Users\Wilson\Desktop\CAM00063.mp4
2014-11-19 21:03 - 2014-11-11 04:08 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-11-19 21:03 - 2014-11-11 04:08 - 00241152 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll
2014-11-19 21:03 - 2014-11-11 03:44 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-11-19 21:03 - 2014-11-11 03:44 - 00186880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pku2u.dll
2014-11-13 16:27 - 2014-11-13 16:27 - 00000000 __SHD () C:\Users\Wilson\AppData\Local\EmieBrowserModeList
2014-11-12 17:08 - 2014-11-07 20:49 - 00388272 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-11-12 17:08 - 2014-11-07 20:23 - 00341168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-11-12 17:08 - 2014-11-06 05:04 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-11-12 17:08 - 2014-11-06 05:03 - 25110016 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-11-12 17:08 - 2014-11-06 05:03 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-11-12 17:08 - 2014-11-06 04:47 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-11-12 17:08 - 2014-11-06 04:46 - 00580096 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-11-12 17:08 - 2014-11-06 04:46 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-11-12 17:08 - 2014-11-06 04:44 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-11-12 17:08 - 2014-11-06 04:43 - 02884096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-11-12 17:08 - 2014-11-06 04:36 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-11-12 17:08 - 2014-11-06 04:35 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-11-12 17:08 - 2014-11-06 04:31 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-11-12 17:08 - 2014-11-06 04:30 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-11-12 17:08 - 2014-11-06 04:30 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-11-12 17:08 - 2014-11-06 04:29 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-11-12 17:08 - 2014-11-06 04:28 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-11-12 17:08 - 2014-11-06 04:23 - 06040064 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-11-12 17:08 - 2014-11-06 04:20 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-11-12 17:08 - 2014-11-06 04:16 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-11-12 17:08 - 2014-11-06 04:13 - 00501248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-11-12 17:08 - 2014-11-06 04:13 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-11-12 17:08 - 2014-11-06 04:12 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-11-12 17:08 - 2014-11-06 04:10 - 19781632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-11-12 17:08 - 2014-11-06 04:10 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-11-12 17:08 - 2014-11-06 04:07 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-11-12 17:08 - 2014-11-06 04:05 - 02277376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-11-12 17:08 - 2014-11-06 04:04 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-11-12 17:08 - 2014-11-06 04:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-11-12 17:08 - 2014-11-06 04:02 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-11-12 17:08 - 2014-11-06 04:00 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-11-12 17:08 - 2014-11-06 04:00 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-11-12 17:08 - 2014-11-06 03:59 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-11-12 17:08 - 2014-11-06 03:58 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-11-12 17:08 - 2014-11-06 03:57 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-11-12 17:08 - 2014-11-06 03:48 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-11-12 17:08 - 2014-11-06 03:42 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-11-12 17:08 - 2014-11-06 03:41 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-11-12 17:08 - 2014-11-06 03:41 - 00716800 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-11-12 17:08 - 2014-11-06 03:39 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-11-12 17:08 - 2014-11-06 03:38 - 02124288 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-11-12 17:08 - 2014-11-06 03:37 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-11-12 17:08 - 2014-11-06 03:36 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-11-12 17:08 - 2014-11-06 03:34 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-11-12 17:08 - 2014-11-06 03:30 - 14390272 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-11-12 17:08 - 2014-11-06 03:22 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-11-12 17:08 - 2014-11-06 03:21 - 04298240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-11-12 17:08 - 2014-11-06 03:21 - 02051072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-11-12 17:08 - 2014-11-06 03:20 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-11-12 17:08 - 2014-11-06 03:17 - 02365440 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-11-12 17:08 - 2014-11-06 03:04 - 01550336 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-11-12 17:08 - 2014-11-06 03:03 - 12819456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-11-12 17:08 - 2014-11-06 02:53 - 00799232 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-11-12 17:08 - 2014-11-06 02:52 - 01892864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-11-12 17:08 - 2014-11-06 02:48 - 01310208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-11-12 17:08 - 2014-11-06 02:47 - 00708096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-11-12 17:08 - 2014-11-05 18:56 - 00304640 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2014-11-12 17:08 - 2014-11-05 18:56 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-11-12 17:08 - 2014-11-05 18:52 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-11-12 17:08 - 2014-10-14 03:16 - 00155064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-11-12 17:08 - 2014-10-14 03:13 - 00683520 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2014-11-12 17:08 - 2014-10-14 03:12 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-11-12 17:08 - 2014-10-14 03:09 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2014-11-12 17:08 - 2014-10-14 03:07 - 00681984 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2014-11-12 17:08 - 2014-10-14 02:50 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-11-12 17:08 - 2014-10-14 02:49 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-11-12 17:08 - 2014-10-14 02:47 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2014-11-12 17:08 - 2014-10-14 02:46 - 00681984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2014-11-12 17:08 - 2014-10-03 03:12 - 00500224 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2014-11-12 17:08 - 2014-10-03 03:11 - 00680960 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2014-11-12 17:08 - 2014-10-03 03:11 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2014-11-12 17:08 - 2014-10-03 03:11 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2014-11-12 17:08 - 2014-10-03 03:11 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2014-11-12 17:08 - 2014-10-03 02:44 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2014-11-12 17:08 - 2014-10-03 02:44 - 00374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2014-11-12 17:08 - 2014-10-03 02:44 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2014-11-12 17:08 - 2014-09-19 10:42 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-11-12 17:08 - 2014-09-19 10:42 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-11-12 17:08 - 2014-09-19 10:42 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2014-11-12 17:08 - 2014-09-19 10:42 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-11-12 17:08 - 2014-09-19 10:42 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-11-12 17:08 - 2014-09-19 10:42 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-11-12 17:08 - 2014-09-19 10:23 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2014-11-12 17:08 - 2014-09-19 10:23 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-11-12 17:08 - 2014-09-19 10:23 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2014-11-12 17:08 - 2014-09-19 10:23 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2014-11-12 17:08 - 2014-09-19 10:23 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-11-12 17:08 - 2014-09-19 10:23 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-11-12 17:08 - 2014-08-21 07:43 - 01882624 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-11-12 17:08 - 2014-08-21 07:40 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-11-12 17:08 - 2014-08-21 07:26 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-11-12 17:08 - 2014-08-21 07:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-11-12 17:08 - 2014-08-12 03:02 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10K.DLL
2014-11-12 17:08 - 2014-08-12 02:36 - 00701440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IMJP10K.DLL
2014-11-12 17:07 - 2014-10-25 02:57 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-11-12 17:07 - 2014-10-25 02:32 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2014-11-12 17:07 - 2014-10-18 03:05 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2014-11-12 17:07 - 2014-10-18 02:33 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2014-11-12 17:07 - 2014-10-14 03:13 - 03241984 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-11-12 17:07 - 2014-10-14 02:50 - 02363904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-11-12 17:07 - 2014-10-10 01:57 - 03198976 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-11-10 23:45 - 2014-11-10 23:45 - 00044457 _____ () C:\Users\Wilson\Desktop\Judas Priest - Green Manalishi (Pro).gp5
2014-11-10 22:26 - 2014-11-10 22:26 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-11-09 18:26 - 2014-11-09 18:26 - 00113200 _____ () C:\Users\Wilson\Desktop\Led Zeppelin - Stairway To Heaven (Pro)-1.gp5
2014-10-26 12:33 - 2014-10-26 12:33 - 00955991 _____ () C:\Users\Wilson\Desktop\avatar.psd
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-11-23 13:32 - 2013-03-21 17:52 - 00000000 ____D () C:\ProgramData\Kaspersky Lab
2014-11-23 13:32 - 2013-03-05 23:49 - 00000990 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-11-23 13:32 - 2013-01-23 17:17 - 00000000 ____D () C:\Users\Wilson\AppData\Roaming\uTorrent
2014-11-23 13:32 - 2013-01-23 17:07 - 00000364 ____H () C:\Windows\Tasks\ZoomExUpdaterTask{339DF397-BC08-4CD8-ADC4-29768565B051}.job
2014-11-23 13:32 - 2013-01-21 16:18 - 00000000 ___RD () C:\Users\Wilson\Dropbox
2014-11-23 13:32 - 2013-01-21 16:17 - 00000000 ____D () C:\Users\Wilson\AppData\Roaming\Dropbox
2014-11-23 13:32 - 2013-01-21 12:16 - 00000868 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-11-23 13:32 - 2010-11-21 04:47 - 00332162 _____ () C:\Windows\PFRO.log
2014-11-23 13:32 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-11-23 13:32 - 2009-07-14 05:51 - 00028574 _____ () C:\Windows\setupact.log
2014-11-23 13:31 - 2013-01-19 16:10 - 01864269 _____ () C:\Windows\WindowsUpdate.log
2014-11-23 13:27 - 2013-02-15 01:22 - 00000932 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1733162776-2084631968-1138856860-1000UA.job
2014-11-23 13:24 - 2013-03-05 23:49 - 00000994 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-11-23 13:24 - 2013-01-20 22:05 - 00000000 ____D () C:\Program Files (x86)\Java
2014-11-23 13:19 - 2014-06-02 13:15 - 00000000 ____D () C:\Users\Wilson\AppData\Local\Adobe
2014-11-23 13:19 - 2013-01-21 12:16 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-11-23 13:19 - 2013-01-21 12:16 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-11-23 13:19 - 2013-01-21 12:16 - 00003806 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-11-23 12:22 - 2009-07-14 05:45 - 00031904 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-11-23 12:22 - 2009-07-14 05:45 - 00031904 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-11-23 12:19 - 2011-04-12 15:28 - 00666722 _____ () C:\Windows\system32\perfh01D.dat
2014-11-23 12:19 - 2011-04-12 15:28 - 00143462 _____ () C:\Windows\system32\perfc01D.dat
2014-11-23 12:19 - 2009-07-14 06:13 - 01588446 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-11-23 01:27 - 2013-02-15 01:22 - 00000910 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1733162776-2084631968-1138856860-1000Core.job
2014-11-22 14:40 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-11-21 21:46 - 2014-10-22 15:45 - 00000000 ____D () C:\Users\Wilson\AppData\Local\Spotify
2014-11-17 22:57 - 2014-06-26 18:20 - 00000000 ____D () C:\Users\Wilson\Documents\Cubase Projects
2014-11-17 16:00 - 2014-08-12 14:48 - 00000080 _____ () C:\Windows\SysWOW64\w3data.vss
2014-11-17 16:00 - 2014-08-12 14:48 - 00000080 _____ () C:\Windows\SysWOW64\msvcsv60.dll
2014-11-17 16:00 - 2014-08-12 14:48 - 00000080 _____ () C:\Windows\msocreg32.dat
2014-11-16 03:19 - 2013-03-05 23:49 - 00003990 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-11-16 03:19 - 2013-03-05 23:49 - 00003738 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-11-16 03:08 - 2013-01-21 16:17 - 00000000 ____D () C:\Users\Wilson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-11-13 16:26 - 2009-07-14 05:45 - 03026736 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-11-13 16:25 - 2014-06-02 02:56 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-11-13 00:31 - 2013-01-28 15:40 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-11-13 00:30 - 2014-06-02 02:06 - 00000000 ____D () C:\Windows\system32\MRT
2014-11-13 00:29 - 2013-03-10 23:10 - 103374192 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-11-12 17:02 - 2013-01-20 19:15 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-11-09 14:36 - 2013-01-20 22:58 - 00000000 ____D () C:\Users\Wilson\AppData\Local\CrashDumps
2014-11-09 14:35 - 2013-02-17 18:56 - 00000000 ____D () C:\Users\Wilson\Documents\MelodynePlugin
2014-11-04 14:30 - 2010-11-21 04:27 - 00275080 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-10-26 12:27 - 2013-01-20 20:04 - 00000000 ____D () C:\Users\Wilson\AppData\Roaming\Adobe
Files to move or delete:
====================
C:\Users\Wilson\Superior Installer.exe
Some content of TEMP:
====================
C:\Users\Wilson\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpcz_4mt.dll
C:\Users\Wilson\AppData\Local\Temp\firefoxjre_exe-1.exe
C:\Users\Wilson\AppData\Local\Temp\firefoxjre_exe-2.exe
C:\Users\Wilson\AppData\Local\Temp\firefoxjre_exe.exe
C:\Users\Wilson\AppData\Local\Temp\fp_pl_pfs_installer.exe
C:\Users\Wilson\AppData\Local\Temp\jre-7u71-windows-i586-iftw.exe
C:\Users\Wilson\AppData\Local\Temp\L6GPInst.dll
C:\Users\Wilson\AppData\Local\Temp\mtf4IA5.exe
C:\Users\Wilson\AppData\Local\Temp\nsw7246.exe
C:\Users\Wilson\AppData\Local\Temp\nsw8B44.exe
C:\Users\Wilson\AppData\Local\Temp\PlaySound.dll
C:\Users\Wilson\AppData\Local\Temp\Quarantine.exe
C:\Users\Wilson\AppData\Local\Temp\SEVINST64x86.EXE
C:\Users\Wilson\AppData\Local\Temp\sqlite3.dll
C:\Users\Wilson\AppData\Local\Temp\stuprt.exe
C:\Users\Wilson\AppData\Local\Temp\tbedrs.dll
C:\Users\Wilson\AppData\Local\Temp\tbuTo0.dll
C:\Users\Wilson\AppData\Local\Temp\utt2CEB.tmp.exe
C:\Users\Wilson\AppData\Local\Temp\uttF5FC.tmp.exe
C:\Users\Wilson\AppData\Local\Temp\vlc-2.0.5-win32.exe
C:\Users\Wilson\AppData\Local\Temp\_is8278.exe
C:\Users\Wilson\AppData\Local\Temp\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}_NIS_7387.exe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-11-16 13:24
==================== End Of Log ============================
Dold text
Jag var faktiskt inte medveten om att jag har inaktiverat uppdateringsprogrammen för Flash och Java. Hur aktiverar jag dem igen?
Har du tips på något bra virusskydd som är up to date? Jag vill ha något som inte tar bort filer automatiskt, jag vet att Kaspersky eller Norton ibland automatiskt tog bort filer jag som ville ha..
Addition:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 20-11-2014
Ran by Wilson at 2014-11-22 00:16:03
Running from C:\Users\Wilson\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Kaspersky Anti-Virus (Disabled - Up to date) {56547CC9-C9B2-849D-8FEF-A496150D6A06}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Kaspersky Anti-Virus (Disabled - Up to date) {ED359D2D-EF88-8B13-B55F-9FE46E8A20BB}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
µTorrent (HKU\S-1-5-21-1733162776-2084631968-1138856860-1000\...\uTorrent) (Version: 3.4.2.34944 - BitTorrent Inc.)
Adobe Anchor Service x64 CS4 (Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe CMaps x64 CS4 (Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe Creative Suite 4 Master Collection (HKLM-x32\...\Adobe_b2d6abde968e6f277ddbfd501383e02) (Version: 4.0 - Adobe Systems Incorporated)
Adobe CSI CS4 x64 (Version: 1 - Adobe Systems Incorporated) Hidden
Adobe Drive CS4 x64 (Version: 1 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 14 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 14.0.0.145 - Adobe Systems Incorporated)
Adobe Flash Player 15 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 15.0.0.152 - Adobe Systems Incorporated)
Adobe Fonts All x64 (Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe Linguistics CS4 x64 (Version: 4.0.0 - Adobe Systems Incorporated) Hidden
Adobe PDF Library Files x64 CS4 (Version: 9.0 - Adobe Systems Incorporated) Hidden
Adobe Photoshop CS4 (64 Bit) (Version: 11.0 - Adobe Systems Incorporated) Hidden
Adobe Reader XI (11.0.09) - Svenska (HKLM-x32\...\{AC76BA86-7AD7-1053-7B44-AB0000000001}) (Version: 11.0.09 - Adobe Systems Incorporated)
Adobe Type Support x64 CS4 (Version: 9.0 - Adobe Systems Incorporated) Hidden
Adobe WinSoft Linguistics Plugin x64 (Version: 1.1 - Adobe Systems Incorporated) Hidden
AmpegSVX (HKLM-x32\...\{CF1D7323-8A0A-49C7-83B0-088DB90721E2}) (Version: 1.1.3 - IK Multimedia)
AmpliTube Fender (HKLM-x32\...\{B178BACA-880B-4D20-85F9-522F7F2DECBE}) (Version: 1.1.0 - IK Multimedia)
AmpliTube Metal (HKLM-x32\...\{9EDEF5B1-B740-4DFF-AC16-E2428E1713E8}) (Version: 1.0.3 - IK Multimedia)
AmpliTube X-GEAR (HKLM-x32\...\{21E77392-C30A-4AA2-8CA7-5728316939D6}) (Version: 1.1.0 - IK Multimedia)
Analog Factory 2.5 (HKLM-x32\...\Analog Factory_is1) (Version: - Arturia)
Apple Mobile Device Support (HKLM\...\{B678797F-DF38-4556-8A31-8B818E261868}) (Version: 8.0.0.23 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Apple-programstöd (HKLM-x32\...\{78002155-F025-4070-85B3-7C0453561701}) (Version: 3.0.6 - Apple Inc.)
ARP2600 V2 2.0 (HKLM-x32\...\ARP2600 V2_is1) (Version: - Arturia)
Avid 002 Rack and 003 Rack Driver (x64) (HKLM\...\{8B78288C-1474-49D3-8DB7-A776F588D85C}) (Version: 9.0.2 - Avid Technology, Inc.)
Band-in-a-Box 2014 (Build 375) (HKLM-x32\...\BB_is1) (Version: - PG Music Inc.)
Band-in-a-Box Server (HKLM-x32\...\BBServer_is1) (Version: - PG Music Inc.)
BBE Sonic Maximizer Plugin (HKLM-x32\...\BBE Sonic Maximizer Plugin) (Version: 1.0.0.0 - BBE Sound)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Canon RAW Codec (HKLM-x32\...\Canon RAW Codec) (Version: 1.8.0.68 - Canon Inc.)
Celemony Melodyne Plugin VST RTAS v1.0 (HKLM-x32\...\Celemony Melodyne Plugin_is1) (Version: - )
Connect (x32 Version: 1.0.0.1 - Adobe Systems Incorporated) Hidden
CoyoteWT 1.1 (HKLM-x32\...\CoyoteWT_is1) (Version: - Coyote Electronics Inc.)
CS-80V2 2.0 (HKLM-x32\...\CS-80V2_is1) (Version: - Arturia)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
db audioware Sidechain Compressor VST v1.1.0 (HKLM-x32\...\db audioware Sidechain Compressor VST v1.1.0) (Version: - )
Dropbox (HKU\S-1-5-21-1733162776-2084631968-1138856860-1000\...\Dropbox) (Version: 2.10.52 - Dropbox, Inc.)
eLicenser Control (HKLM-x32\...\eLicenser Control) (Version: 6.7.1.8149 - Steinberg Media Technologies GmbH)
Equalizer APO (HKLM\...\EqualizerAPO) (Version: 0.8.1 - )
Etron USB3.0 Host Controller (x32 Version: 0.104 - Etron Technology) Hidden
EZdrummer (HKLM-x32\...\{43E8D9E7-AFC9-4BA3-8106-B95E02B87AB7}) (Version: 1.0.2 - Toontrack)
EZmix 64 bit (HKLM\...\{BF5872A6-66E4-4854-851D-EF36B6321F2E}) (Version: 1.0.2 - Toontrack)
EZmix 64-bit (HKLM\...\{3D83CC9F-E2E1-47AE-B1AF-F6D3A8825196}) (Version: 2.0.0 - Toontrack)
EZXCocktail (HKLM-x32\...\{147567F0-8575-4BE0-B5B3-62706C67FA5A}) (Version: 1.0 - Toontrack)
EZXDfh (HKLM-x32\...\{DB1299AF-9EE0-422B-959E-F4171B2AE0F7}) (Version: 1.0 - Toontrack)
EZXTwisted (HKLM-x32\...\{D1EBF11E-8CE3-4EF5-8E2D-FD5B8D6BD294}) (Version: 1.0 - Toontrack)
EZXVintage (HKLM-x32\...\{430399DC-98BC-4A7F-8F8E-77981CABAE05}) (Version: 1.0 - Toontrack)
Facebook Video Calling 3.1.0.521 (HKLM-x32\...\{2091F234-EB58-4B80-8C96-8EB78C808CF7}) (Version: 3.1.521 - Skype Limited)
Fotogalleriet (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Google Earth Plug-in (HKLM-x32\...\{34B32B70-8081-11E2-89AF-B8AC6F98CCE3}) (Version: 7.0.3.8542 - Google)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Guitar Pro 5.2 (HKLM-x32\...\Guitar Pro 5_is1) (Version: - Arobas Music)
Guitar Pro 6 (HKLM-x32\...\{14A487F2-1259-4E6C-AE3C-3C888DDBCB60}_is1) (Version: - Arobas Music)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1118 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.3347 - Intel Corporation)
Interlok driver setup x64 (HKLM\...\{25613C10-27D2-410B-942B-D922D5C3A7BE}) (Version: 5.9.0 - PACE Anti-Piracy, Inc.)
iTunes (HKLM\...\{F46AA0F1-E284-4878-A462-5F11B9166C0E}) (Version: 11.4.0.18 - Apple Inc.)
Java 7 Update 13 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217013FF}) (Version: 7.0.130 - Oracle)
Jupiter-8V2 2.0 (HKLM-x32\...\Jupiter-8V2_is1) (Version: - Arturia)
Kaspersky Anti-Virus 2011 (HKLM-x32\...\InstallWIX_{66F1F013-008F-4875-B283-5A814B820347}) (Version: 11.0.2.556 - Kaspersky Lab)
Kaspersky Internet Security 2011 (x32 Version: 11.0.2.556 - Kaspersky Lab) Hidden
kuler (x32 Version: 2.0 - Adobe Systems Incorporated) Hidden
Line 6 Uninstaller (HKLM-x32\...\Line 6 Uninstaller) (Version: - Line 6)
M-Audio USB MIDI Series Driver 5.0.1 (x64) (HKLM\...\{32ED2629-C9B1-4C29-A32A-F3E04A5EE303}) (Version: 5.0.1 - M-Audio)
Metal EZmix pack (HKLM-x32\...\{B232052F-1339-42DB-85A6-178CAA8E73A7}) (Version: 1.0.0 - Toontrack)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (svenska) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1053) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (HKLM-x32\...\{6e8f74e0-43bd-4dce-8477-6ff6828acc07}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (HKLM-x32\...\{8e70e4e1-06d7-470b-9f74-a51bef21088e}) (Version: 11.0.51106.1 - Microsoft Corporation)
Moog Modular V 2.2 (HKLM-x32\...\Moog Modular V 2_is1) (Version: - Arturia)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 33.1 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 33.1 (x86 en-US)) (Version: 33.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) Hidden
PCM Native Reverb VST Plug-in (HKLM-x32\...\PCM Native Reverb VST Plug-in) (Version: - Lexicon)
PCM Native Reverb VST Plug-in (x32 Version: 1.0.0 - Lexicon) Hidden
PDF Settings CS4 (x32 Version: 9.0 - Adobe Systems Incorporated) Hidden
PG Music DirectX Plugins 2.0.0.0 (HKLM-x32\...\PG_DX_Plugins_is1) (Version: - PG Music Inc.)
Photo Common (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Photo Gallery (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Photoshop Camera Raw (x32 Version: 5.0 - Adobe Systems Incorporated) Hidden
Photoshop Camera Raw_x64 (Version: 5.0 - Adobe Systems Incorporated) Hidden
PowerISO (HKLM-x32\...\PowerISO) (Version: 4.9 - Power Software Ltd)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.46.531.2011 - Realtek)
Reason 4.0 (HKLM-x32\...\Reason4_is1) (Version: 4.0 - Propellerhead Software AB)
ReValver Mk III (HKLM-x32\...\ReValver Mk III_is1) (Version: - )
Rock EZmix pack (HKLM-x32\...\{038B2DB1-2B9C-45C6-A55F-17B60D80C9D2}) (Version: 1.0.0 - Toontrack)
Room EQ Wizard V5 (HKLM-x32\...\RoomEQWizardV5) (Version: - John Mulcahy)
Search Protect (HKLM-x32\...\SearchProtect) (Version: 2.18.20.209 - Search Protect) <==== ATTENTION
Sidechain Compressor 1.1.0 (HKLM-x32\...\db-audioware-Sidechain Compressor-1.1.0) (Version: - )
Skype™ 6.11 (HKLM-x32\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.11.102 - Skype Technologies S.A.)
Spotify (HKU\S-1-5-21-1733162776-2084631968-1138856860-1000\...\Spotify) (Version: 0.9.14.13.gba5645ad - Spotify AB)
Steinberg Cubase 7.5 64bit (HKLM\...\{C75E8AD9-C89F-4505-5E87-CFCCEBE284FA}) (Version: 7.5.20 - Steinberg Media Technologies GmbH)
Steinberg Drum Loop Expansion 01 (HKLM-x32\...\{490BF87E-1F75-4453-BF55-9F540543A3CA}) (Version: 2.0.0.0 - Steinberg Media Technologies GmbH)
Steinberg EDM Toolbox MIDI Loops (HKLM-x32\...\{8C9B2EA8-9A30-4347-95E9-10E919C4F32E}) (Version: 1.0.0 - Steinberg Media Technologies GmbH)
Steinberg Eucon Adapter 6.5 64bit (HKLM\...\{95D90857-61C2-4927-85FF-A317E46E7351}) (Version: 6.5.2 - Steinberg Media Technologies GmbH)
Steinberg Groove Agent ONE Allen Morgan Signature Drums (HKLM-x32\...\{611A7035-0172-4B9B-8BB6-5046F6867D8A}) (Version: 1.0.0 - Steinberg Media Technologies GmbH)
Steinberg Groove Agent ONE Content (HKLM-x32\...\{BD86F1AC-B594-46E4-85DC-1258AC9E2232}) (Version: 1.0.0.003 - Steinberg Media Technologies GmbH)
Steinberg Groove Agent ONE Vintage Beatboxes (HKLM-x32\...\{DBF4BC99-53F1-4C97-84C3-7557D103E182}) (Version: 1.0.0.000 - Steinberg Media Technologies GmbH)
Steinberg Groove Agent SE 64bit (HKLM\...\{A5AB0D21-21BD-4DB8-F097-02E8FC8C486A}) (Version: 4.0.1 - Steinberg Media Technologies GmbH)
Steinberg Groove Agent SE Content (HKLM-x32\...\{AFC9D1CE-F050-437C-35A5-62DEDB262DC7}) (Version: 1.0.0 - Steinberg Media Technologies GmbH)
Steinberg HALion Sonic SE 64bit (HKLM\...\{B99C316B-C135-43B5-8E77-2BC5E241F964}) (Version: 2.0.2 - Steinberg Media Technologies GmbH)
Steinberg HALion Sonic SE Content (HKLM-x32\...\{A5051ABF-A497-4C3C-85EA-F7A4D5C19B82}) (Version: 1.6.3 - Steinberg Media Technologies GmbH)
Steinberg HALionOne (HKLM-x32\...\{E70E7159-93B1-470D-9FBD-D8E9EF34B538}) (Version: 1.1.0.457 - Steinberg Media Technologies GmbH)
Steinberg HALionOne Additional Content Set 01 (HKLM-x32\...\{F3AFD063-8BAD-485E-B641-E7F5A2C5AE71}) (Version: 1.0.0.001 - Steinberg Media Technologies GmbH)
Steinberg HALionOne Expression Set (HKLM-x32\...\{E22AD5D3-EB60-4A8F-835C-6C10E369DCE2}) (Version: 1.0.1.0 - Steinberg Media Technologies GmbH)
Steinberg HALionOne GM Drum Set (HKLM-x32\...\{AC997F93-0757-4ED4-A701-F40C2D654D09}) (Version: 1.0.1.457 - Steinberg Media Technologies GmbH)
Steinberg HALionOne GM Set (HKLM-x32\...\{F057965A-D974-4C64-ADB1-4381CD4B8956}) (Version: 1.0.1.457 - Steinberg Media Technologies GmbH)
Steinberg HALionOne Pro Set (HKLM-x32\...\{D82CDA0D-C182-42C8-8FF2-5649C98D6003}) (Version: 1.0.1.457 - Steinberg Media Technologies GmbH)
Steinberg HALionOne Studio Drum Set (HKLM-x32\...\{865D9ED1-EAC2-436D-AFA7-0B750EB5AAAB}) (Version: 1.0.1.457 - Steinberg Media Technologies GmbH)
Steinberg HALionOne Studio Set (HKLM-x32\...\{D23CBFDA-C46B-4920-BA70-FC7878A3F05A}) (Version: 1.0.1.457 - Steinberg Media Technologies GmbH)
Steinberg LoopMash Content (HKLM-x32\...\{4D454CF8-12FD-464D-B57B-B46FE27B78BB}) (Version: 2.0.0.000 - Steinberg Media Technologies GmbH)
Steinberg LoopMash Content 2 (HKLM-x32\...\{88C337F0-4CF2-4098-BDC0-D94859ECA2B4}) (Version: 1.0.0.000 - Steinberg Media Technologies GmbH)
Steinberg Midi Loop Library (HKLM-x32\...\{89DE2651-6DD9-4C15-AC94-8348362D456C}) (Version: 1.0.0 - Steinberg Media Technologies GmbH)
Steinberg Padshop 64bit (HKLM\...\{75F15019-C0C2-4047-AA45-97B4BD313719}) (Version: 1.1.0 - Steinberg Media Technologies GmbH)
Steinberg Retrologue 64bit (HKLM\...\{4D65ECE6-131D-4B5F-8470-2750D3161619}) (Version: 1.1.0 - Steinberg Media Technologies GmbH)
Steinberg REVerence Content 01 (HKLM-x32\...\{532B917B-8235-4FA5-BE36-643A8BB053A5}) (Version: 2.0.1.000 - Steinberg Media Technologies GmbH)
Steinberg Upload Manager (HKLM-x32\...\{88BBBD8F-4C19-4809-B84B-7A8F8238B48D}) (Version: 1.0.1 - Steinberg Media Technologies GmbH)
Steinberg VST Amp Rack Content 01 (HKLM-x32\...\{8CBA7E47-48DA-47DC-8E98-6984BA830295}) (Version: 1.0.1 - Steinberg Media Technologies GmbH)
Suite Shared Configuration CS4 (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Superior Drummer Installer (HKLM-x32\...\{009AC76E-1A66-4682-82B7-417E77F3C648}) (Version: 2.2.1 - Toontrack)
System Requirements Lab CYRI (HKLM-x32\...\{E5F05232-96B6-4552-A480-785A60A94B21}) (Version: 5.0.6.0 - Husdawg, LLC)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
uTorrentControl_v2 Toolbar (HKLM-x32\...\uTorrentControl_v2 Toolbar) (Version: 6.11.2.6 - uTorrentControl_v2) <==== ATTENTION
Waves Complete V9r15 (HKLM-x32\...\{91000001-C561-4E32-99EB-3C5AD3683A70}) (Version: 9.1.15 - Waves)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 4.20 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
VLC media player 2.0.5 (HKLM-x32\...\VLC media player) (Version: 2.0.5 - VideoLAN)
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
CustomCLSID: HKU\S-1-5-21-1733162776-2084631968-1138856860-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Wilson\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1733162776-2084631968-1138856860-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Wilson\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1733162776-2084631968-1138856860-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Wilson\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1733162776-2084631968-1138856860-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Wilson\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1733162776-2084631968-1138856860-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Wilson\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1733162776-2084631968-1138856860-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Wilson\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1733162776-2084631968-1138856860-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Wilson\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1733162776-2084631968-1138856860-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Wilson\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1733162776-2084631968-1138856860-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Wilson\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
==================== Restore Points =========================
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
Task: {01F046E0-0F12-4F0D-B24C-A4A2BDE92EEC} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-09-17] (Adobe Systems Incorporated)
Task: {1AC5C216-556E-4252-926C-6714322580DC} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1733162776-2084631968-1138856860-1000Core => C:\Users\Wilson\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-02-15] (Facebook Inc.)
Task: {54CB1A09-9034-442D-AEF1-C537E91C9DDB} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1733162776-2084631968-1138856860-1000UA => C:\Users\Wilson\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-02-15] (Facebook Inc.)
Task: {6AE7292A-62C6-473E-B2CC-CCA479F981D1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-03-05] (Google Inc.)
Task: {891D0FAB-2DAF-43F7-B5EE-68361C233086} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-03-05] (Google Inc.)
Task: {E1A9477F-7FA7-4D45-816A-EF4D0B23A1CB} - System32\Tasks\ZoomExUpdaterTask{339DF397-BC08-4CD8-ADC4-29768565B051} => C:\ProgramData\Premium\ZoomEx\ZoomEx.exe <==== ATTENTION
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1733162776-2084631968-1138856860-1000Core.job => C:\Users\Wilson\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1733162776-2084631968-1138856860-1000UA.job => C:\Users\Wilson\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\ZoomExUpdaterTask{339DF397-BC08-4CD8-ADC4-29768565B051}.job => C:\ProgramData\Premium\ZoomEx\ZoomEx.exe <==== ATTENTION
==================== Loaded Modules (whitelisted) =============
2013-01-20 19:03 - 2011-06-10 03:36 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2014-11-21 21:46 - 2014-11-21 21:46 - 00613944 _____ () C:\Users\Wilson\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
2014-07-31 11:16 - 2014-07-31 11:16 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-07-31 11:16 - 2014-07-31 11:16 - 01044776 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2014-11-21 21:34 - 2014-11-21 21:34 - 00043008 _____ () c:\users\wilson\appdata\local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpzzysbq.dll
2013-08-23 20:01 - 2013-08-23 20:01 - 25100288 _____ () C:\Users\Wilson\AppData\Roaming\Dropbox\bin\libcef.dll
2014-11-21 21:46 - 2014-11-21 21:46 - 36966968 _____ () C:\Users\Wilson\AppData\Roaming\Spotify\Data\libcef.dll
2014-11-21 21:46 - 2014-11-21 21:46 - 00867896 _____ () C:\Users\Wilson\AppData\Roaming\Spotify\Data\ffmpegsumo.dll
2014-11-21 21:46 - 2014-11-21 21:46 - 00886840 _____ () C:\Users\Wilson\AppData\Roaming\Spotify\Data\libglesv2.dll
2014-11-21 21:46 - 2014-11-21 21:46 - 00108600 _____ () C:\Users\Wilson\AppData\Roaming\Spotify\Data\libegl.dll
2014-11-10 22:26 - 2014-11-10 22:26 - 03649648 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
2014-09-17 11:30 - 2014-09-17 11:30 - 16825520 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
AlternateDataStreams: C:\ProgramData\Microsoft:Sz7If05f2tW4kIth5KF
AlternateDataStreams: C:\ProgramData\Microsoft:ybB1F83wjbCS9Qw5xzNK8jt0
AlternateDataStreams: C:\Users\Wilson\AppData\Local\Temporary Internet Files:JAf2EkSC2vU9scQppexgqoy2Pb
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== EXE Association (whitelisted) =============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
==================== MSCONFIG/TASK MANAGER disabled items =========
(Currently there is no automatic fix for this section.)
MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3
MSCONFIG\Services: FLEXnet Licensing Service => 3
MSCONFIG\Services: FLEXnet Licensing Service 64 => 3
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: MozillaMaintenance => 3
MSCONFIG\Services: SkypeUpdate => 2
MSCONFIG\Services: VMAuthdService => 2
MSCONFIG\Services: VMUSBArbService => 2
MSCONFIG\Services: VMwareHostd => 2
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: AdobeCS4ServiceManager => "C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" -launchedbylogin
MSCONFIG\startupreg: Facebook Update => "C:\Users\Wilson\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
MSCONFIG\startupreg: GrooveMonitor => "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
MSCONFIG\startupreg: HotKeysCmds => C:\Windows\system32\hkcmd.exe
MSCONFIG\startupreg: IgfxTray => C:\Windows\system32\igfxtray.exe
MSCONFIG\startupreg: Persistence => C:\Windows\system32\igfxpers.exe
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: uTorrent => "G:\Program\uTorrent.exe" /MINIMIZED
MSCONFIG\startupreg: vmware-tray.exe => "C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe"
========================= Accounts: ==========================
Administratör (S-1-5-21-1733162776-2084631968-1138856860-500 - Administrator - Disabled)
Gäst (S-1-5-21-1733162776-2084631968-1138856860-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1733162776-2084631968-1138856860-1002 - Limited - Enabled)
Wilson (S-1-5-21-1733162776-2084631968-1138856860-1000 - Administrator - Enabled) => C:\Users\Wilson
==================== Faulty Device Manager Devices =============
Name: HID Non-User Input Data Filter
Description: HID Non-User Input Data Filter
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: Microsoft
Service:
Problem: : The software for this device has been blocked from starting because it is known to have problems with Windows. Contact the hardware vendor for a new driver. (Code 48)
Resolution: Download the latest drivers from the manufacturer, uninstall the current driver, and then install the latest drivers.
Name: HID Non-User Input Data Filter
Description: HID Non-User Input Data Filter
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: Microsoft
Service:
Problem: : The software for this device has been blocked from starting because it is known to have problems with Windows. Contact the hardware vendor for a new driver. (Code 48)
Resolution: Download the latest drivers from the manufacturer, uninstall the current driver, and then install the latest drivers.
==================== Event log errors: =========================
Application errors:
==================
Error: (11/22/2014 00:15:33 AM) (Source: SideBySide) (EventID: 35) (User: )
Description: Det gick inte att skapa aktiveringskontext för WavesQtLibs_4.8.2_Win32_Release,processorArchitecture="AMD64",type="win32",version="1.0.0.0"1. Det finns ett fel i manifest- eller principfilen WavesQtLibs_4.8.2_Win32_Release,processorArchitecture="AMD64",type="win32",version="1.0.0.0"2 på rad WavesQtLibs_4.8.2_Win32_Release,processorArchitecture="AMD64",type="win32",version="1.0.0.0"3.
Den komponentidentitet som hittades i manifestet matchar inte identiteten i den komponent som begärdes.
Referens är WavesQtLibs_4.8.2_Win32_Release,processorArchitecture="AMD64",type="win32",version="1.0.0.0".
Definition är WavesQtLibs_4.8.2_Win32_Release,processorArchitecture="x86",type="win32",version="1.0.0.0".
Använd sxstrace.exe om du vill diagnostisera ytterligare.
Error: (11/22/2014 00:15:33 AM) (Source: SideBySide) (EventID: 35) (User: )
Description: Det gick inte att skapa aktiveringskontext för WavesQtLibs_4.7.3_Win32_Release,processorArchitecture="AMD64",type="win32",version="1.0.0.0"1. Det finns ett fel i manifest- eller principfilen WavesQtLibs_4.7.3_Win32_Release,processorArchitecture="AMD64",type="win32",version="1.0.0.0"2 på rad WavesQtLibs_4.7.3_Win32_Release,processorArchitecture="AMD64",type="win32",version="1.0.0.0"3.
Den komponentidentitet som hittades i manifestet matchar inte identiteten i den komponent som begärdes.
Referens är WavesQtLibs_4.7.3_Win32_Release,processorArchitecture="AMD64",type="win32",version="1.0.0.0".
Definition är WavesQtLibs_4.7.3_Win32_Release,processorArchitecture="x86",type="win32",version="1.0.0.0".
Använd sxstrace.exe om du vill diagnostisera ytterligare.
Error: (11/21/2014 09:35:47 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (11/21/2014 07:27:05 PM) (Source: Google Update) (EventID: 20) (User: Wilson-Dator)
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80
Error: (11/21/2014 04:27:05 PM) (Source: Google Update) (EventID: 20) (User: Wilson-Dator)
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80
Error: (11/21/2014 03:23:03 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (11/21/2014 00:26:08 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Det gick inte att skapa aktiveringskontext för WavesQtLibs_4.8.2_Win32_Release,processorArchitecture="AMD64",type="win32",version="1.0.0.0"1. Det finns ett fel i manifest- eller principfilen WavesQtLibs_4.8.2_Win32_Release,processorArchitecture="AMD64",type="win32",version="1.0.0.0"2 på rad WavesQtLibs_4.8.2_Win32_Release,processorArchitecture="AMD64",type="win32",version="1.0.0.0"3.
Den komponentidentitet som hittades i manifestet matchar inte identiteten i den komponent som begärdes.
Referens är WavesQtLibs_4.8.2_Win32_Release,processorArchitecture="AMD64",type="win32",version="1.0.0.0".
Definition är WavesQtLibs_4.8.2_Win32_Release,processorArchitecture="x86",type="win32",version="1.0.0.0".
Använd sxstrace.exe om du vill diagnostisera ytterligare.
Error: (11/21/2014 00:26:08 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Det gick inte att skapa aktiveringskontext för WavesQtLibs_4.8.2_Win32_Release,processorArchitecture="AMD64",type="win32",version="1.0.0.0"1. Det finns ett fel i manifest- eller principfilen WavesQtLibs_4.8.2_Win32_Release,processorArchitecture="AMD64",type="win32",version="1.0.0.0"2 på rad WavesQtLibs_4.8.2_Win32_Release,processorArchitecture="AMD64",type="win32",version="1.0.0.0"3.
Den komponentidentitet som hittades i manifestet matchar inte identiteten i den komponent som begärdes.
Referens är WavesQtLibs_4.8.2_Win32_Release,processorArchitecture="AMD64",type="win32",version="1.0.0.0".
Definition är WavesQtLibs_4.8.2_Win32_Release,processorArchitecture="x86",type="win32",version="1.0.0.0".
Använd sxstrace.exe om du vill diagnostisera ytterligare.
Error: (11/21/2014 00:26:08 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Det gick inte att skapa aktiveringskontext för WavesQtLibs_4.7.3_Win32_Release,processorArchitecture="AMD64",type="win32",version="1.0.0.0"1. Det finns ett fel i manifest- eller principfilen WavesQtLibs_4.7.3_Win32_Release,processorArchitecture="AMD64",type="win32",version="1.0.0.0"2 på rad WavesQtLibs_4.7.3_Win32_Release,processorArchitecture="AMD64",type="win32",version="1.0.0.0"3.
Den komponentidentitet som hittades i manifestet matchar inte identiteten i den komponent som begärdes.
Referens är WavesQtLibs_4.7.3_Win32_Release,processorArchitecture="AMD64",type="win32",version="1.0.0.0".
Definition är WavesQtLibs_4.7.3_Win32_Release,processorArchitecture="x86",type="win32",version="1.0.0.0".
Använd sxstrace.exe om du vill diagnostisera ytterligare.
Error: (11/21/2014 00:26:08 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Det gick inte att skapa aktiveringskontext för WavesQtLibs_4.7.3_Win32_Release,processorArchitecture="AMD64",type="win32",version="1.0.0.0"1. Det finns ett fel i manifest- eller principfilen WavesQtLibs_4.7.3_Win32_Release,processorArchitecture="AMD64",type="win32",version="1.0.0.0"2 på rad WavesQtLibs_4.7.3_Win32_Release,processorArchitecture="AMD64",type="win32",version="1.0.0.0"3.
Den komponentidentitet som hittades i manifestet matchar inte identiteten i den komponent som begärdes.
Referens är WavesQtLibs_4.7.3_Win32_Release,processorArchitecture="AMD64",type="win32",version="1.0.0.0".
Definition är WavesQtLibs_4.7.3_Win32_Release,processorArchitecture="x86",type="win32",version="1.0.0.0".
Använd sxstrace.exe om du vill diagnostisera ytterligare.
System errors:
=============
Error: (11/21/2014 10:26:18 PM) (Source: volsnap) (EventID: 35) (User: )
Description: Skuggkopiorna för volymen C: avbröts eftersom lagringsutrymmet för skuggkopian inte kunde växa.
Error: (11/21/2014 09:33:56 PM) (Source: Application Popup) (EventID: 875) (User: )
Description: Drivrutinen NuidFltr.sys har blockerats för inläsning
Error: (11/21/2014 09:33:54 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Den senaste avstängningen av datorn vid 21:31:07 den 2014-11-21 skedde oväntat.
Error: (11/21/2014 03:21:12 PM) (Source: Application Popup) (EventID: 875) (User: )
Description: Drivrutinen NuidFltr.sys har blockerats för inläsning
Error: (11/21/2014 00:25:57 PM) (Source: Application Popup) (EventID: 875) (User: )
Description: Drivrutinen NuidFltr.sys har blockerats för inläsning
Error: (11/21/2014 00:20:07 PM) (Source: volsnap) (EventID: 35) (User: )
Description: Skuggkopiorna för volymen C: avbröts eftersom lagringsutrymmet för skuggkopian inte kunde växa.
Error: (11/21/2014 00:19:20 PM) (Source: DCOM) (EventID: 10005) (User: )
Description: 1084wuauserv{E60687F7-01A1-40AA-86AC-DB1CBF673334}
Error: (11/21/2014 00:11:18 PM) (Source: Application Popup) (EventID: 875) (User: )
Description: Drivrutinen NuidFltr.sys har blockerats för inläsning
Error: (11/21/2014 00:11:17 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Följande start- eller systemstartdrivrutin(er) avbröts på grund av fel under start:
AFD
CSC
DfsC
discache
kl2
KLIF
KLIM6
NetBIOS
NetBT
nsiproxy
Psched
rdbss
SCDEmu
spldr
tdx
Wanarpv6
WfpLwf
Error: (11/21/2014 00:11:17 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Tjänsten Network Location Awareness är beroende av tjänsten Network Store Interface Service. Den sistnämnda kunde inte starta på grund av följande fel:
%%1068
Microsoft Office Sessions:
=========================
Error: (11/02/2014 08:22:18 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6705.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 13633 seconds with 1200 seconds of active time. This session ended with a crash.
CodeIntegrity Errors:
===================================
Date: 2014-06-01 17:30:36.108
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\EqualizerAPO\EqualizerAPO.dll because the set of per-page image hashes could not be found on the system.
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i5-2500K CPU @ 3.30GHz
Percentage of memory in use: 35%
Total physical RAM: 8109.12 MB
Available physical RAM: 5210.31 MB
Total Pagefile: 16216.41 MB
Available Pagefile: 13214.7 MB
Total Virtual: 8192 MB
Available Virtual: 8191.84 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:111.79 GB) (Free:0.83 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive g: () (Fixed) (Total:931.51 GB) (Free:906.93 GB) NTFS
Drive h: (WILSONS USB) (Removable) (Total:14.42 GB) (Free:14.42 GB) FAT32
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 7C621371)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (Size: 335.4 GB) (Disk ID: 00000000)
Partition: GPT Partition Type.
========================================================
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 111.8 GB) (Disk ID: 6192F889)
Partition 1: (Active) - (Size=111.8 GB) - (Type=07 NTFS)
========================================================
Disk: 3 (Size: 14.4 GB) (Disk ID: 00000000)
Partition: GPT Partition Type.
==================== End Of Log ============================
Dold text
Fixlog:
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 20-11-2014
Ran by SYSTEM at 2014-11-21 15:19:58 Run:1
Running from f:\
Boot Mode: Recovery
==============================================
Content of fixlist:
*****************
HKU\Wilson\...\CurrentVersion\Windows: [Run] C:\Users\Wilson\AppData\Roaming\Fontcore\Fontcore.pif <===== ATTENTION
HKU\Wilson\...\Winlogon: [Shell] C:\Users\Wilson\AppData\Roaming\Other.res [182272 2013-08-29] (Symantec Corporation) <==== ATTENTION
C:\Users\Wilson\AppData\Roaming\Fontcore
C:\Users\Wilson\AppData\Roaming\Other.res
*****************
HKU\Wilson\Software\Microsoft\Windows NT\CurrentVersion\Windows\\Run => value deleted successfully.
HKU\Wilson\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell => value deleted successfully.
C:\Users\Wilson\AppData\Roaming\Fontcore => Moved successfully.
C:\Users\Wilson\AppData\Roaming\Other.res => Moved successfully.
==== End of Fixlog ====
Dold text
FRST.txt:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 20-11-2014
Ran by Wilson (administrator) on WILSON-DATOR on 22-11-2014 00:15:47
Running from C:\Users\Wilson\Desktop
Loaded Profile: Wilson (Available profiles: Wilson)
Platform: Windows 7 Professional Service Pack 1 (X64) OS Language: Svenska (Sverige)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how...
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(M-Audio) C:\Program Files (x86)\M-Audio\USB MIDI Series\AudioDevMon.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Search Protect) C:\Program Files (x86)\SearchProtect\Main\bin\CltMngSvc.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(BitTorrent Inc.) C:\Users\Wilson\AppData\Roaming\uTorrent\uTorrent.exe
(Dropbox, Inc.) C:\Users\Wilson\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Line 6, Inc.) C:\Program Files (x86)\Line6\GearBox\GearBox.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\System32\audiodg.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Spotify Ltd) C:\Users\Wilson\AppData\Roaming\Spotify\spotify.exe
() C:\Users\Wilson\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Wilson\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Wilson\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Wilson\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_15_0_0_152.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_15_0_0_152.exe
() C:\Users\Wilson\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM-x32\...\Run: [AdobeCS4ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [611712 2008-08-14] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AVP] => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe [365336 2010-11-02] (Kaspersky Lab ZAO)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959176 2014-08-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-09-01] (Apple Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\klogon: C:\Windows\System32\klogon.dll (Kaspersky Lab ZAO)
HKU\S-1-5-21-1733162776-2084631968-1138856860-1000\...\Run: [uTorrent] => C:\Users\Wilson\AppData\Roaming\uTorrent\uTorrent.exe [1385808 2014-10-27] (BitTorrent Inc.)
HKU\S-1-5-21-1733162776-2084631968-1138856860-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-1733162776-2084631968-1138856860-1000\...\Run: [Spotify] => C:\Users\Wilson\AppData\Roaming\Spotify\Spotify.exe [6553144 2014-11-21] (Spotify Ltd)
HKU\S-1-5-21-1733162776-2084631968-1138856860-1000\...\MountPoints2: I - I:\setup.exe
HKU\S-1-5-21-1733162776-2084631968-1138856860-1000\...\MountPoints2: {839d03c3-6249-11e2-ad42-806e6f6e6963} - F:\Run.exe
AppInit_DLLs: C:\PROGRA~2\SearchProtect\SearchProtect\bin\VC64Loader.dll => C:\Program Files (x86)\SearchProtect\SearchProtect\bin\VC64Loader.dll [233280 2014-11-10] (Search Protect)
AppInit_DLLs-x32: C:\PROGRA~2\SearchProtect\SearchProtect\bin\VC32Loader.dll => C:\Program Files (x86)\SearchProtect\SearchProtect\bin\VC32Loader.dll [188224 2014-11-10] (Search Protect)
Startup: C:\Users\Wilson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Wilson\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKU\S-1-5-21-1733162776-2084631968-1138856860-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://searchab.com/?aff=7&uid=f82722e1-6576-11e2-8b31-50e549...
HKU\S-1-5-21-1733162776-2084631968-1138856860-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://se.msn.com/?ocid=iehp
HKU\S-1-5-21-1733162776-2084631968-1138856860-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xE6F7378214F8CD01
HKU\S-1-5-21-1733162776-2084631968-1138856860-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = sv-SE
URLSearchHook: HKLM-x32 - uTorrentControl_v2 Toolbar - {7473b6bd-4691-4744-a82b-7854eb3d70b6} - C:\Program Files (x86)\uTorrentControl_v2\prxtbuTo0.dll (Conduit Ltd.)
URLSearchHook: HKU\S-1-5-21-1733162776-2084631968-1138856860-1000 - uTorrentControl_v2 Toolbar - {7473b6bd-4691-4744-a82b-7854eb3d70b6} - C:\Program Files (x86)\uTorrentControl_v2\prxtbuTo0.dll (Conduit Ltd.)
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1733162776-2084631968-1138856860-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://searchab.com/?aff=7&uid=f82722e1-6576-11e2-8b31-50e549...
SearchScopes: HKU\S-1-5-21-1733162776-2084631968-1138856860-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://searchab.com/?aff=7&uid=f82722e1-6576-11e2-8b31-50e549...
SearchScopes: HKU\S-1-5-21-1733162776-2084631968-1138856860-1000 -> {784DF7CC-41E9-4DDD-A207-0BAE2B91921C} URL = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&Sea...
BHO: IEVkbdBHO Class -> {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\x64\ievkbd.dll (Kaspersky Lab ZAO)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: FilterBHO Class -> {E33CF602-D945-461A-83F0-819F76A199F8} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\x64\klwtbbho.dll (Kaspersky Lab ZAO)
BHO-x32: IEVkbdBHO Class -> {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\ievkbd.dll (Kaspersky Lab ZAO)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: uTorrentControl_v2 Toolbar -> {7473b6bd-4691-4744-a82b-7854eb3d70b6} -> C:\Program Files (x86)\uTorrentControl_v2\prxtbuTo0.dll (Conduit Ltd.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> G:\Program\bin\ssv.dll (Oracle Corporation)
BHO-x32: Inloggningshjälp för Microsoft-konto -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> G:\Program\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: FilterBHO Class -> {E33CF602-D945-461A-83F0-819F76A199F8} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\klwtbbho.dll (Kaspersky Lab ZAO)
Toolbar: HKLM-x32 - uTorrentControl_v2 Toolbar - {7473b6bd-4691-4744-a82b-7854eb3d70b6} - C:\Program Files (x86)\uTorrentControl_v2\prxtbuTo0.dll (Conduit Ltd.)
Toolbar: HKU\S-1-5-21-1733162776-2084631968-1138856860-1000 -> No Name - {7473B6BD-4691-4744-A82B-7854EB3D70B6} - No File
DPF: HKLM-x32 {0D6709DD-4ED8-40CA-B459-2757AEEF7BEE} http://download.gigabyte.com.tw/object/Dldrv.ocx
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
FireFox:
========
FF ProfilePath: C:\Users\Wilson\AppData\Roaming\Mozilla\Firefox\Profiles\jmidf0p9.default
FF NewTab: hxxp://www.trovi.com/?gd=&ctid=CT3330789&octid=EB_ORIGINAL_CT...
FF DefaultSearchEngine,S:
FF DefaultSearchUrl:
FF SearchEngineOrder.1: Privitize VPN
FF SearchEngineOrder.1,S:
FF SelectedSearchEngine: Google
FF SelectedSearchEngine,S:
FF Homepage: hxxp://www.trovi.com/?gd=&ctid=CT3330789&octid=EB_ORIGINAL_CT...
FF Keyword.URL: hxxp://searchab.com/?aff=7&uid=f82722e1-6576-11e2-8b31-50e549...
FF NetworkProxy: "autoconfig_url", "https://mediahint.com/default.pac"
FF NetworkProxy: "type", 2
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_152.dll ()
FF Plugin: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.13.2 -> C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.13.2 -> G:\Program\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1733162776-2084631968-1138856860-1000: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\Wilson\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NPOFF12.DLL (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin6.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin7.dll (Apple Inc.)
FF SearchPlugin: C:\Users\Wilson\AppData\Roaming\Mozilla\Firefox\Profiles\jmidf0p9.default\searchplugins\trovi-search.xml
FF Extension: Media Hint - C:\Users\Wilson\AppData\Roaming\Mozilla\Firefox\Profiles\jmidf0p9.default\Extensions\mediahint@jetpack.xpi [2013-02-01]
FF Extension: Save Session - C:\Users\Wilson\AppData\Roaming\Mozilla\Firefox\Profiles\jmidf0p9.default\Extensions\savesession@noasobi.net.xpi [2013-02-25]
FF Extension: YouTube High Definition - C:\Users\Wilson\AppData\Roaming\Mozilla\Firefox\Profiles\jmidf0p9.default\Extensions\{7b1bf0b6-a1b9-42b0-b75d-252036438bdc}.xpi [2014-09-22]
FF Extension: Adblock Plus - C:\Users\Wilson\AppData\Roaming\Mozilla\Firefox\Profiles\jmidf0p9.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-02-25]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\extensions\linkfilter@kaspersky.ru [2014-11-10]
FF Extension: 카스퍼스키 URL 분석기 - C:\Program Files (x86)\Mozilla Firefox\extensions\linkfilter@kaspersky.ru_bak [2014-11-10]
FF HKLM-x32\...\Firefox\Extensions: [virtualKeyboard@kaspersky.ru] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\FFExt\virtualKeyboard@kaspersky.ru
FF Extension: No Name - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\FFExt\virtualKeyboard@kaspersky.ru [2013-03-21]
FF HKLM-x32\...\Firefox\Extensions: [linkfilter@kaspersky.ru] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\FFExt\linkfilter@kaspersky.ru
FF Extension: No Name - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\FFExt\linkfilter@kaspersky.ru [2013-03-21]
Chrome:
=======
CHR Profile: C:\Users\Wilson\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (No Name) - C:\Users\Wilson\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejpbbhjlbipncjklfjjaedaieimbmdda [2013-01-23]
CHR Extension: (Zoomex) - C:\Users\Wilson\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdcnhipbjeadfjjkehbdcocmhkfpffnj [2013-01-23]
CHR HKLM-x32\...\Chrome\Extension: [ejpbbhjlbipncjklfjjaedaieimbmdda] - C:\Users\Wilson\AppData\Local\CRE\ejpbbhjlbipncjklfjjaedaieimbmdda.crx [2012-11-19]
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S2 AVP; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe [365336 2010-11-02] (Kaspersky Lab ZAO)
R2 CltMngSvc; C:\Program Files (x86)\SearchProtect\Main\bin\CltMngSvc.exe [3056960 2014-11-10] (Search Protect)
R2 USBMIDIAudioDevMon; C:\Program Files (x86)\M-Audio\USB MIDI Series\AudioDevMon.exe [1636872 2010-04-13] (M-Audio)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R0 KL1; C:\Windows\System32\DRIVERS\kl1.sys [460888 2010-06-09] (Kaspersky Lab ZAO)
R1 kl2; C:\Windows\System32\DRIVERS\kl2.sys [11864 2010-06-09] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [556120 2013-03-21] (Kaspersky Lab)
R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [27736 2010-04-22] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [22544 2009-11-02] (Kaspersky Lab)
R3 L6TPortB; C:\Windows\System32\Drivers\L6TPortB64.sys [772224 2012-03-26] (Line 6)
S3 MAUSBMIDI; C:\Windows\System32\DRIVERS\MAudioUSBMIDI.sys [200200 2010-04-13] (M-Audio)
S3 synusb64; C:\Windows\System32\DRIVERS\synusb64.sys [30352 2009-06-26] (Steinberg Media Technologies GmbH)
S3 gdrv; \??\C:\Windows\gdrv.sys [X]
R3 SPPD; \??\C:\Windows\system32\drivers\SPPD.sys [X]
U3 swmidi; No ImagePath
S3 VBoxNetFlt; system32\DRIVERS\VBoxNetFlt.sys [X]
S3 vmci; \SystemRoot\system32\DRIVERS\vmci.sys [X]
S3 VMnetAdapter; system32\DRIVERS\vmnetadapter.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-11-22 00:15 - 2014-11-22 00:15 - 00017144 _____ () C:\Users\Wilson\Desktop\FRST.txt
2014-11-22 00:15 - 2014-11-21 14:09 - 02117632 _____ (Farbar) C:\Users\Wilson\Desktop\FRST64.exe
2014-11-21 21:46 - 2014-11-21 21:46 - 00001814 _____ () C:\Users\Wilson\Desktop\Spotify.lnk
2014-11-21 21:46 - 2014-11-21 21:46 - 00001800 _____ () C:\Users\Wilson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2014-11-21 21:46 - 2014-11-21 21:46 - 00000000 ____D () C:\Users\Wilson\AppData\Roaming\Spotify
2014-11-21 14:23 - 2014-11-22 00:15 - 00000000 ____D () C:\FRST
2014-11-19 21:03 - 2014-11-19 20:27 - 36172929 ____N () C:\Users\Wilson\Desktop\CAM00063.mp4
2014-11-19 21:03 - 2014-11-11 04:08 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-11-19 21:03 - 2014-11-11 04:08 - 00241152 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll
2014-11-19 21:03 - 2014-11-11 03:44 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-11-19 21:03 - 2014-11-11 03:44 - 00186880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pku2u.dll
2014-11-13 16:27 - 2014-11-13 16:27 - 00000000 __SHD () C:\Users\Wilson\AppData\Local\EmieBrowserModeList
2014-11-12 17:08 - 2014-11-07 20:49 - 00388272 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-11-12 17:08 - 2014-11-07 20:23 - 00341168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-11-12 17:08 - 2014-11-06 05:04 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-11-12 17:08 - 2014-11-06 05:03 - 25110016 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-11-12 17:08 - 2014-11-06 05:03 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-11-12 17:08 - 2014-11-06 04:47 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-11-12 17:08 - 2014-11-06 04:46 - 00580096 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-11-12 17:08 - 2014-11-06 04:46 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-11-12 17:08 - 2014-11-06 04:44 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-11-12 17:08 - 2014-11-06 04:43 - 02884096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-11-12 17:08 - 2014-11-06 04:36 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-11-12 17:08 - 2014-11-06 04:35 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-11-12 17:08 - 2014-11-06 04:31 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-11-12 17:08 - 2014-11-06 04:30 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-11-12 17:08 - 2014-11-06 04:30 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-11-12 17:08 - 2014-11-06 04:29 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-11-12 17:08 - 2014-11-06 04:28 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-11-12 17:08 - 2014-11-06 04:23 - 06040064 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-11-12 17:08 - 2014-11-06 04:20 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-11-12 17:08 - 2014-11-06 04:16 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-11-12 17:08 - 2014-11-06 04:13 - 00501248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-11-12 17:08 - 2014-11-06 04:13 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-11-12 17:08 - 2014-11-06 04:12 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-11-12 17:08 - 2014-11-06 04:10 - 19781632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-11-12 17:08 - 2014-11-06 04:10 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-11-12 17:08 - 2014-11-06 04:07 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-11-12 17:08 - 2014-11-06 04:05 - 02277376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-11-12 17:08 - 2014-11-06 04:04 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-11-12 17:08 - 2014-11-06 04:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-11-12 17:08 - 2014-11-06 04:02 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-11-12 17:08 - 2014-11-06 04:00 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-11-12 17:08 - 2014-11-06 04:00 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-11-12 17:08 - 2014-11-06 03:59 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-11-12 17:08 - 2014-11-06 03:58 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-11-12 17:08 - 2014-11-06 03:57 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-11-12 17:08 - 2014-11-06 03:48 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-11-12 17:08 - 2014-11-06 03:42 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-11-12 17:08 - 2014-11-06 03:41 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-11-12 17:08 - 2014-11-06 03:41 - 00716800 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-11-12 17:08 - 2014-11-06 03:39 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-11-12 17:08 - 2014-11-06 03:38 - 02124288 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-11-12 17:08 - 2014-11-06 03:37 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-11-12 17:08 - 2014-11-06 03:36 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-11-12 17:08 - 2014-11-06 03:34 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-11-12 17:08 - 2014-11-06 03:30 - 14390272 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-11-12 17:08 - 2014-11-06 03:22 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-11-12 17:08 - 2014-11-06 03:21 - 04298240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-11-12 17:08 - 2014-11-06 03:21 - 02051072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-11-12 17:08 - 2014-11-06 03:20 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-11-12 17:08 - 2014-11-06 03:17 - 02365440 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-11-12 17:08 - 2014-11-06 03:04 - 01550336 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-11-12 17:08 - 2014-11-06 03:03 - 12819456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-11-12 17:08 - 2014-11-06 02:53 - 00799232 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-11-12 17:08 - 2014-11-06 02:52 - 01892864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-11-12 17:08 - 2014-11-06 02:48 - 01310208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-11-12 17:08 - 2014-11-06 02:47 - 00708096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-11-12 17:08 - 2014-11-05 18:56 - 00304640 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2014-11-12 17:08 - 2014-11-05 18:56 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-11-12 17:08 - 2014-11-05 18:52 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-11-12 17:08 - 2014-10-14 03:16 - 00155064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-11-12 17:08 - 2014-10-14 03:13 - 00683520 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2014-11-12 17:08 - 2014-10-14 03:12 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-11-12 17:08 - 2014-10-14 03:09 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2014-11-12 17:08 - 2014-10-14 03:07 - 00681984 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2014-11-12 17:08 - 2014-10-14 02:50 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-11-12 17:08 - 2014-10-14 02:49 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-11-12 17:08 - 2014-10-14 02:47 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2014-11-12 17:08 - 2014-10-14 02:46 - 00681984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2014-11-12 17:08 - 2014-10-03 03:12 - 00500224 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2014-11-12 17:08 - 2014-10-03 03:11 - 00680960 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2014-11-12 17:08 - 2014-10-03 03:11 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2014-11-12 17:08 - 2014-10-03 03:11 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2014-11-12 17:08 - 2014-10-03 03:11 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2014-11-12 17:08 - 2014-10-03 02:44 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2014-11-12 17:08 - 2014-10-03 02:44 - 00374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2014-11-12 17:08 - 2014-10-03 02:44 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2014-11-12 17:08 - 2014-09-19 10:42 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-11-12 17:08 - 2014-09-19 10:42 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-11-12 17:08 - 2014-09-19 10:42 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2014-11-12 17:08 - 2014-09-19 10:42 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-11-12 17:08 - 2014-09-19 10:42 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-11-12 17:08 - 2014-09-19 10:42 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-11-12 17:08 - 2014-09-19 10:23 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2014-11-12 17:08 - 2014-09-19 10:23 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-11-12 17:08 - 2014-09-19 10:23 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2014-11-12 17:08 - 2014-09-19 10:23 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2014-11-12 17:08 - 2014-09-19 10:23 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-11-12 17:08 - 2014-09-19 10:23 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-11-12 17:08 - 2014-08-21 07:43 - 01882624 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-11-12 17:08 - 2014-08-21 07:40 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-11-12 17:08 - 2014-08-21 07:26 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-11-12 17:08 - 2014-08-21 07:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-11-12 17:08 - 2014-08-12 03:02 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10K.DLL
2014-11-12 17:08 - 2014-08-12 02:36 - 00701440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IMJP10K.DLL
2014-11-12 17:07 - 2014-10-25 02:57 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-11-12 17:07 - 2014-10-25 02:32 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2014-11-12 17:07 - 2014-10-18 03:05 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2014-11-12 17:07 - 2014-10-18 02:33 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2014-11-12 17:07 - 2014-10-14 03:13 - 03241984 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-11-12 17:07 - 2014-10-14 02:50 - 02363904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-11-12 17:07 - 2014-10-10 01:57 - 03198976 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-11-10 23:45 - 2014-11-10 23:45 - 00044457 _____ () C:\Users\Wilson\Desktop\Judas Priest - Green Manalishi (Pro).gp5
2014-11-10 22:26 - 2014-11-10 22:26 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-11-09 18:26 - 2014-11-09 18:26 - 00113200 _____ () C:\Users\Wilson\Desktop\Led Zeppelin - Stairway To Heaven (Pro)-1.gp5
2014-10-26 12:33 - 2014-10-26 12:33 - 00955991 _____ () C:\Users\Wilson\Desktop\avatar.psd
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-11-22 00:14 - 2013-01-23 17:17 - 00000000 ____D () C:\Users\Wilson\AppData\Roaming\uTorrent
2014-11-21 23:52 - 2013-01-21 12:16 - 00000868 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-11-21 23:24 - 2013-03-05 23:49 - 00000994 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-11-21 22:27 - 2013-02-15 01:22 - 00000932 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1733162776-2084631968-1138856860-1000UA.job
2014-11-21 21:49 - 2013-01-21 16:18 - 00000000 ___RD () C:\Users\Wilson\Dropbox
2014-11-21 21:49 - 2013-01-21 16:17 - 00000000 ____D () C:\Users\Wilson\AppData\Roaming\Dropbox
2014-11-21 21:46 - 2014-10-22 15:45 - 00000000 ____D () C:\Users\Wilson\AppData\Local\Spotify
2014-11-21 21:44 - 2013-01-19 16:10 - 01821458 _____ () C:\Windows\WindowsUpdate.log
2014-11-21 21:40 - 2011-04-12 15:28 - 00666722 _____ () C:\Windows\system32\perfh01D.dat
2014-11-21 21:40 - 2011-04-12 15:28 - 00143462 _____ () C:\Windows\system32\perfc01D.dat
2014-11-21 21:40 - 2009-07-14 06:13 - 01588446 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-11-21 21:40 - 2009-07-14 05:45 - 00031904 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-11-21 21:40 - 2009-07-14 05:45 - 00031904 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-11-21 21:34 - 2013-03-21 17:52 - 00000000 ____D () C:\ProgramData\Kaspersky Lab
2014-11-21 21:34 - 2013-03-05 23:49 - 00000990 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-11-21 21:34 - 2013-01-23 17:07 - 00000364 ____H () C:\Windows\Tasks\ZoomExUpdaterTask{339DF397-BC08-4CD8-ADC4-29768565B051}.job
2014-11-21 21:33 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-11-21 21:33 - 2009-07-14 05:51 - 00028238 _____ () C:\Windows\setupact.log
2014-11-17 22:57 - 2014-06-26 18:20 - 00000000 ____D () C:\Users\Wilson\Documents\Cubase Projects
2014-11-17 16:00 - 2014-08-12 14:48 - 00000080 _____ () C:\Windows\SysWOW64\w3data.vss
2014-11-17 16:00 - 2014-08-12 14:48 - 00000080 _____ () C:\Windows\SysWOW64\msvcsv60.dll
2014-11-17 16:00 - 2014-08-12 14:48 - 00000080 _____ () C:\Windows\msocreg32.dat
2014-11-17 01:27 - 2013-02-15 01:22 - 00000910 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1733162776-2084631968-1138856860-1000Core.job
2014-11-16 03:19 - 2013-03-05 23:49 - 00003990 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-11-16 03:19 - 2013-03-05 23:49 - 00003738 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-11-16 03:08 - 2013-01-21 16:17 - 00000000 ____D () C:\Users\Wilson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-11-15 11:00 - 2010-11-21 04:47 - 00331844 _____ () C:\Windows\PFRO.log
2014-11-15 02:19 - 2014-08-19 13:13 - 00000000 ____D () C:\Program Files (x86)\SearchProtect
2014-11-13 16:26 - 2009-07-14 05:45 - 03026736 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-11-13 16:25 - 2014-06-02 02:56 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-11-13 00:31 - 2013-01-28 15:40 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-11-13 00:30 - 2014-06-02 02:06 - 00000000 ____D () C:\Windows\system32\MRT
2014-11-13 00:29 - 2013-03-10 23:10 - 103374192 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-11-12 17:02 - 2013-01-20 19:15 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-11-09 14:36 - 2013-01-20 22:58 - 00000000 ____D () C:\Users\Wilson\AppData\Local\CrashDumps
2014-11-09 14:35 - 2013-02-17 18:56 - 00000000 ____D () C:\Users\Wilson\Documents\MelodynePlugin
2014-11-04 14:30 - 2010-11-21 04:27 - 00275080 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-10-26 12:27 - 2014-06-02 13:15 - 00000000 ____D () C:\Users\Wilson\AppData\Local\Adobe
2014-10-26 12:27 - 2013-01-20 20:04 - 00000000 ____D () C:\Users\Wilson\AppData\Roaming\Adobe
Files to move or delete:
====================
C:\Users\Wilson\Superior Installer.exe
Some content of TEMP:
====================
C:\Users\Wilson\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpzzysbq.dll
C:\Users\Wilson\AppData\Local\Temp\firefoxjre_exe-1.exe
C:\Users\Wilson\AppData\Local\Temp\firefoxjre_exe-2.exe
C:\Users\Wilson\AppData\Local\Temp\firefoxjre_exe.exe
C:\Users\Wilson\AppData\Local\Temp\fp_pl_pfs_installer.exe
C:\Users\Wilson\AppData\Local\Temp\L6GPInst.dll
C:\Users\Wilson\AppData\Local\Temp\mtf4IA5.exe
C:\Users\Wilson\AppData\Local\Temp\nsw7246.exe
C:\Users\Wilson\AppData\Local\Temp\nsw8B44.exe
C:\Users\Wilson\AppData\Local\Temp\PlaySound.dll
C:\Users\Wilson\AppData\Local\Temp\SEVINST64x86.EXE
C:\Users\Wilson\AppData\Local\Temp\SpotifyUninstall.exe
C:\Users\Wilson\AppData\Local\Temp\stuprt.exe
C:\Users\Wilson\AppData\Local\Temp\tbedrs.dll
C:\Users\Wilson\AppData\Local\Temp\utt2CEB.tmp.exe
C:\Users\Wilson\AppData\Local\Temp\uttF5FC.tmp.exe
C:\Users\Wilson\AppData\Local\Temp\vlc-2.0.5-win32.exe
C:\Users\Wilson\AppData\Local\Temp\_is8278.exe
C:\Users\Wilson\AppData\Local\Temp\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}_NIS_7387.exe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-11-16 13:24
==================== End Of Log ============================
Dold text
Wow, datorn startade normalt nu! Tack så sjukt mycket Cecilia!
Jag klistrar in svaret och det senare, måste iväg nu, sorry för att loggen blev så stor, jag letade efter spoiler-knappen innan, men hittade den ej, hittade den du dock. Tror det berodde på min stress över datorn. Använder den nästa gång
Tack.
Hej, jag skulle också jättegärna vilja ha hjälp,
Här är min logg:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 20-11-2014
Ran by SYSTEM on MININT-FSD00Q7 on 21-11-2014 14:23:57
Running from f:\
Platform: Windows 7 Professional Service Pack 1 (X64) OS Language: Svenska (Sverige)
Internet Explorer Version 11
Boot Mode: Recovery
The current controlset is ControlSet001
ATTENTION!:=====> If the system is bootable FRST must be run from normal or Safe mode to create a complete log.
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how...
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM-x32\...\Run: [AdobeCS4ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [611712 2008-08-14] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AVP] => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe [365336 2010-11-02] (Kaspersky Lab ZAO)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959176 2014-08-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-09-01] (Apple Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\klogon: C:\Windows\System32\klogon.dll (Kaspersky Lab ZAO)
HKU\Wilson\...\Run: [uTorrent] => C:\Users\Wilson\AppData\Roaming\uTorrent\uTorrent.exe [1385808 2014-10-27] (BitTorrent Inc.)
HKU\Wilson\...\Run: [Spotify] => C:\Users\Wilson\AppData\Roaming\Spotify\Spotify.exe [6553144 2014-10-22] (Spotify Ltd)
HKU\Wilson\...\Run: [AdobeBridge] => [X]
HKU\Wilson\...\Run: [Spotify Web Helper] => C:\Users\Wilson\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1514040 2014-10-22] (Spotify Ltd)
HKU\Wilson\...\CurrentVersion\Windows: [Run] C:\Users\Wilson\AppData\Roaming\Fontcore\Fontcore.pif <===== ATTENTION
HKU\Wilson\...\Winlogon: [Shell] C:\Users\Wilson\AppData\Roaming\Other.res [182272 2013-08-29] (Symantec Corporation) <==== ATTENTION
AppInit_DLLs: C:\PROGRA~2\SearchProtect\SearchProtect\bin\VC64Loader.dll => C:\Program Files (x86)\SearchProtect\SearchProtect\bin\VC64Loader.dll [233280 2014-11-10] (Search Protect)
AppInit_DLLs-x32: C:\PROGRA~2\SearchProtect\SearchProtect\bin\VC32Loader.dll => C:\Program Files (x86)\SearchProtect\SearchProtect\bin\VC32Loader.dll [188224 2014-11-10] (Search Protect)
Startup: C:\Users\Wilson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> (No File)
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S2 AVP; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe [365336 2010-11-02] (Kaspersky Lab ZAO)
S2 CltMngSvc; C:\Program Files (x86)\SearchProtect\Main\bin\CltMngSvc.exe [3056960 2014-11-10] (Search Protect)
S2 USBMIDIAudioDevMon; C:\Program Files (x86)\M-Audio\USB MIDI Series\AudioDevMon.exe [1636872 2010-04-13] (M-Audio)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S0 KL1; C:\Windows\System32\DRIVERS\kl1.sys [460888 2010-06-09] (Kaspersky Lab ZAO)
S1 kl2; C:\Windows\System32\DRIVERS\kl2.sys [11864 2010-06-09] (Kaspersky Lab ZAO)
S1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [556120 2013-03-21] (Kaspersky Lab)
S1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [27736 2010-04-22] (Kaspersky Lab ZAO)
S3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [22544 2009-11-02] (Kaspersky Lab)
S3 L6TPortB; C:\Windows\System32\Drivers\L6TPortB64.sys [772224 2012-03-26] (Line 6)
S3 MAUSBMIDI; C:\Windows\System32\DRIVERS\MAudioUSBMIDI.sys [200200 2010-04-13] (M-Audio)
S3 synusb64; C:\Windows\System32\DRIVERS\synusb64.sys [30352 2009-06-26] (Steinberg Media Technologies GmbH)
S3 gdrv; \??\C:\Windows\gdrv.sys [X]
S3 SPPD; \??\C:\Windows\system32\drivers\SPPD.sys [X]
S3 swmidi; No ImagePath
S3 VBoxNetFlt; system32\DRIVERS\VBoxNetFlt.sys [X]
S3 vmci; \SystemRoot\system32\DRIVERS\vmci.sys [X]
S3 VMnetAdapter; system32\DRIVERS\vmnetadapter.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-11-21 14:23 - 2014-11-21 14:23 - 00000000 ____D () C:\FRST
2014-11-19 21:03 - 2014-11-19 20:27 - 36172929 ____N () C:\Users\Wilson\Desktop\CAM00063.mp4
2014-11-19 21:03 - 2014-11-11 04:08 - 00728064 _____ (Microsoft Corporation) C:\Windows\System32\kerberos.dll
2014-11-19 21:03 - 2014-11-11 04:08 - 00241152 _____ (Microsoft Corporation) C:\Windows\System32\pku2u.dll
2014-11-19 21:03 - 2014-11-11 03:44 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-11-19 21:03 - 2014-11-11 03:44 - 00186880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pku2u.dll
2014-11-13 16:27 - 2014-11-13 16:27 - 00000000 __SHD () C:\Users\Wilson\AppData\Local\EmieBrowserModeList
2014-11-12 17:08 - 2014-11-07 20:49 - 00388272 _____ (Microsoft Corporation) C:\Windows\System32\iedkcs32.dll
2014-11-12 17:08 - 2014-11-07 20:23 - 00341168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-11-12 17:08 - 2014-11-06 05:04 - 02724864 _____ (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2014-11-12 17:08 - 2014-11-06 05:03 - 25110016 _____ (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2014-11-12 17:08 - 2014-11-06 05:03 - 00004096 _____ (Microsoft Corporation) C:\Windows\System32\ieetwcollectorres.dll
2014-11-12 17:08 - 2014-11-06 04:47 - 00066560 _____ (Microsoft Corporation) C:\Windows\System32\iesetup.dll
2014-11-12 17:08 - 2014-11-06 04:46 - 00580096 _____ (Microsoft Corporation) C:\Windows\System32\vbscript.dll
2014-11-12 17:08 - 2014-11-06 04:46 - 00048640 _____ (Microsoft Corporation) C:\Windows\System32\ieetwproxystub.dll
2014-11-12 17:08 - 2014-11-06 04:44 - 00088064 _____ (Microsoft Corporation) C:\Windows\System32\MshtmlDac.dll
2014-11-12 17:08 - 2014-11-06 04:43 - 02884096 _____ (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2014-11-12 17:08 - 2014-11-06 04:36 - 00054784 _____ (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2014-11-12 17:08 - 2014-11-06 04:35 - 00034304 _____ (Microsoft Corporation) C:\Windows\System32\iernonce.dll
2014-11-12 17:08 - 2014-11-06 04:31 - 00633856 _____ (Microsoft Corporation) C:\Windows\System32\ieui.dll
2014-11-12 17:08 - 2014-11-06 04:30 - 00144384 _____ (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
2014-11-12 17:08 - 2014-11-06 04:30 - 00114688 _____ (Microsoft Corporation) C:\Windows\System32\ieetwcollector.exe
2014-11-12 17:08 - 2014-11-06 04:29 - 00814080 _____ (Microsoft Corporation) C:\Windows\System32\jscript9diag.dll
2014-11-12 17:08 - 2014-11-06 04:28 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-11-12 17:08 - 2014-11-06 04:23 - 06040064 _____ (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2014-11-12 17:08 - 2014-11-06 04:20 - 00968704 _____ (Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe
2014-11-12 17:08 - 2014-11-06 04:16 - 00490496 _____ (Microsoft Corporation) C:\Windows\System32\dxtmsft.dll
2014-11-12 17:08 - 2014-11-06 04:13 - 00501248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-11-12 17:08 - 2014-11-06 04:13 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-11-12 17:08 - 2014-11-06 04:12 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-11-12 17:08 - 2014-11-06 04:10 - 19781632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-11-12 17:08 - 2014-11-06 04:10 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-11-12 17:08 - 2014-11-06 04:07 - 00077824 _____ (Microsoft Corporation) C:\Windows\System32\JavaScriptCollectionAgent.dll
2014-11-12 17:08 - 2014-11-06 04:05 - 02277376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-11-12 17:08 - 2014-11-06 04:04 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-11-12 17:08 - 2014-11-06 04:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-11-12 17:08 - 2014-11-06 04:02 - 00199680 _____ (Microsoft Corporation) C:\Windows\System32\msrating.dll
2014-11-12 17:08 - 2014-11-06 04:00 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-11-12 17:08 - 2014-11-06 04:00 - 00092160 _____ (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2014-11-12 17:08 - 2014-11-06 03:59 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-11-12 17:08 - 2014-11-06 03:58 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-11-12 17:08 - 2014-11-06 03:57 - 00316928 _____ (Microsoft Corporation) C:\Windows\System32\dxtrans.dll
2014-11-12 17:08 - 2014-11-06 03:48 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-11-12 17:08 - 2014-11-06 03:42 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-11-12 17:08 - 2014-11-06 03:41 - 00800768 _____ (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2014-11-12 17:08 - 2014-11-06 03:41 - 00716800 _____ (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
2014-11-12 17:08 - 2014-11-06 03:39 - 01359360 _____ (Microsoft Corporation) C:\Windows\System32\mshtmlmedia.dll
2014-11-12 17:08 - 2014-11-06 03:38 - 02124288 _____ (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2014-11-12 17:08 - 2014-11-06 03:37 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-11-12 17:08 - 2014-11-06 03:36 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-11-12 17:08 - 2014-11-06 03:34 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-11-12 17:08 - 2014-11-06 03:30 - 14390272 _____ (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2014-11-12 17:08 - 2014-11-06 03:22 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-11-12 17:08 - 2014-11-06 03:21 - 04298240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-11-12 17:08 - 2014-11-06 03:21 - 02051072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-11-12 17:08 - 2014-11-06 03:20 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-11-12 17:08 - 2014-11-06 03:17 - 02365440 _____ (Microsoft Corporation) C:\Windows\System32\wininet.dll
2014-11-12 17:08 - 2014-11-06 03:04 - 01550336 _____ (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2014-11-12 17:08 - 2014-11-06 03:03 - 12819456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-11-12 17:08 - 2014-11-06 02:53 - 00799232 _____ (Microsoft Corporation) C:\Windows\System32\ieapfltr.dll
2014-11-12 17:08 - 2014-11-06 02:52 - 01892864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-11-12 17:08 - 2014-11-06 02:48 - 01310208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-11-12 17:08 - 2014-11-06 02:47 - 00708096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-11-12 17:08 - 2014-11-05 18:56 - 00304640 _____ (Microsoft Corporation) C:\Windows\System32\generaltel.dll
2014-11-12 17:08 - 2014-11-05 18:56 - 00228864 _____ (Microsoft Corporation) C:\Windows\System32\aepdu.dll
2014-11-12 17:08 - 2014-11-05 18:52 - 00424448 _____ (Microsoft Corporation) C:\Windows\System32\aeinv.dll
2014-11-12 17:08 - 2014-10-14 03:16 - 00155064 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\ksecpkg.sys
2014-11-12 17:08 - 2014-10-14 03:13 - 00683520 _____ (Microsoft Corporation) C:\Windows\System32\termsrv.dll
2014-11-12 17:08 - 2014-10-14 03:12 - 01460736 _____ (Microsoft Corporation) C:\Windows\System32\lsasrv.dll
2014-11-12 17:08 - 2014-10-14 03:09 - 00146432 _____ (Microsoft Corporation) C:\Windows\System32\msaudite.dll
2014-11-12 17:08 - 2014-10-14 03:07 - 00681984 _____ (Microsoft Corporation) C:\Windows\System32\adtschema.dll
2014-11-12 17:08 - 2014-10-14 02:50 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-11-12 17:08 - 2014-10-14 02:49 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-11-12 17:08 - 2014-10-14 02:47 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2014-11-12 17:08 - 2014-10-14 02:46 - 00681984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2014-11-12 17:08 - 2014-10-03 03:12 - 00500224 _____ (Microsoft Corporation) C:\Windows\System32\AUDIOKSE.dll
2014-11-12 17:08 - 2014-10-03 03:11 - 00680960 _____ (Microsoft Corporation) C:\Windows\System32\audiosrv.dll
2014-11-12 17:08 - 2014-10-03 03:11 - 00440832 _____ (Microsoft Corporation) C:\Windows\System32\AudioEng.dll
2014-11-12 17:08 - 2014-10-03 03:11 - 00296448 _____ (Microsoft Corporation) C:\Windows\System32\AudioSes.dll
2014-11-12 17:08 - 2014-10-03 03:11 - 00284672 _____ (Microsoft Corporation) C:\Windows\System32\EncDump.dll
2014-11-12 17:08 - 2014-10-03 02:44 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2014-11-12 17:08 - 2014-10-03 02:44 - 00374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2014-11-12 17:08 - 2014-10-03 02:44 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2014-11-12 17:08 - 2014-09-19 10:42 - 00342016 _____ (Microsoft Corporation) C:\Windows\System32\schannel.dll
2014-11-12 17:08 - 2014-09-19 10:42 - 00314880 _____ (Microsoft Corporation) C:\Windows\System32\msv1_0.dll
2014-11-12 17:08 - 2014-09-19 10:42 - 00309760 _____ (Microsoft Corporation) C:\Windows\System32\ncrypt.dll
2014-11-12 17:08 - 2014-09-19 10:42 - 00210944 _____ (Microsoft Corporation) C:\Windows\System32\wdigest.dll
2014-11-12 17:08 - 2014-09-19 10:42 - 00086528 _____ (Microsoft Corporation) C:\Windows\System32\TSpkg.dll
2014-11-12 17:08 - 2014-09-19 10:42 - 00022016 _____ (Microsoft Corporation) C:\Windows\System32\credssp.dll
2014-11-12 17:08 - 2014-09-19 10:23 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2014-11-12 17:08 - 2014-09-19 10:23 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-11-12 17:08 - 2014-09-19 10:23 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2014-11-12 17:08 - 2014-09-19 10:23 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2014-11-12 17:08 - 2014-09-19 10:23 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-11-12 17:08 - 2014-09-19 10:23 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-11-12 17:08 - 2014-08-21 07:43 - 01882624 _____ (Microsoft Corporation) C:\Windows\System32\msxml3.dll
2014-11-12 17:08 - 2014-08-21 07:40 - 00002048 _____ (Microsoft Corporation) C:\Windows\System32\msxml3r.dll
2014-11-12 17:08 - 2014-08-21 07:26 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-11-12 17:08 - 2014-08-21 07:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-11-12 17:08 - 2014-08-12 03:02 - 00878080 _____ (Microsoft Corporation) C:\Windows\System32\IMJP10K.DLL
2014-11-12 17:08 - 2014-08-12 02:36 - 00701440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IMJP10K.DLL
2014-11-12 17:07 - 2014-10-25 02:57 - 00077824 _____ (Microsoft Corporation) C:\Windows\System32\packager.dll
2014-11-12 17:07 - 2014-10-25 02:32 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2014-11-12 17:07 - 2014-10-18 03:05 - 00861696 _____ (Microsoft Corporation) C:\Windows\System32\oleaut32.dll
2014-11-12 17:07 - 2014-10-18 02:33 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2014-11-12 17:07 - 2014-10-14 03:13 - 03241984 _____ (Microsoft Corporation) C:\Windows\System32\msi.dll
2014-11-12 17:07 - 2014-10-14 02:50 - 02363904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-11-12 17:07 - 2014-10-10 01:57 - 03198976 _____ (Microsoft Corporation) C:\Windows\System32\win32k.sys
2014-11-10 23:45 - 2014-11-10 23:45 - 00044457 _____ () C:\Users\Wilson\Desktop\Judas Priest - Green Manalishi (Pro).gp5
2014-11-10 22:26 - 2014-11-10 22:26 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-11-09 18:26 - 2014-11-09 18:26 - 00113200 _____ () C:\Users\Wilson\Desktop\Led Zeppelin - Stairway To Heaven (Pro)-1.gp5
2014-10-26 12:33 - 2014-10-26 12:33 - 00955991 _____ () C:\Users\Wilson\Desktop\avatar.psd
2014-10-22 15:45 - 2014-11-21 12:26 - 00000000 ____D () C:\Users\Wilson\AppData\Local\Spotify
2014-10-22 15:45 - 2014-11-18 22:23 - 00000000 ____D () C:\Users\Wilson\AppData\Roaming\Spotify
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-11-21 12:26 - 2013-03-21 17:52 - 00000000 ____D () C:\ProgramData\Kaspersky Lab
2014-11-21 12:26 - 2013-03-05 23:49 - 00000990 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-11-21 12:26 - 2013-01-23 17:17 - 00000000 ____D () C:\Users\Wilson\AppData\Roaming\uTorrent
2014-11-21 12:26 - 2013-01-23 17:07 - 00000364 ____H () C:\Windows\Tasks\ZoomExUpdaterTask{339DF397-BC08-4CD8-ADC4-29768565B051}.job
2014-11-21 12:25 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-11-21 12:25 - 2009-07-14 05:51 - 00028014 _____ () C:\Windows\setupact.log
2014-11-21 12:20 - 2013-01-19 16:10 - 01814354 _____ () C:\Windows\WindowsUpdate.log
2014-11-21 12:15 - 2011-04-12 15:28 - 00666722 _____ () C:\Windows\System32\perfh01D.dat
2014-11-21 12:15 - 2011-04-12 15:28 - 00143462 _____ () C:\Windows\System32\perfc01D.dat
2014-11-21 12:15 - 2009-07-14 06:13 - 01588446 _____ () C:\Windows\System32\PerfStringBackup.INI
2014-11-21 11:34 - 2013-01-21 16:18 - 00000000 ___RD () C:\Users\Wilson\Dropbox
2014-11-21 11:34 - 2009-07-14 05:45 - 00031904 ____H () C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-11-21 11:34 - 2009-07-14 05:45 - 00031904 ____H () C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-11-21 11:29 - 2013-01-21 16:17 - 00000000 ____D () C:\Users\Wilson\AppData\Roaming\Dropbox
2014-11-21 11:24 - 2013-03-05 23:49 - 00000994 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-11-21 10:52 - 2013-01-21 12:16 - 00000868 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-11-18 22:27 - 2013-02-15 01:22 - 00000932 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1733162776-2084631968-1138856860-1000UA.job
2014-11-17 22:57 - 2014-06-26 18:20 - 00000000 ____D () C:\Users\Wilson\Documents\Cubase Projects
2014-11-17 16:00 - 2014-08-12 14:48 - 00000080 _____ () C:\Windows\SysWOW64\w3data.vss
2014-11-17 16:00 - 2014-08-12 14:48 - 00000080 _____ () C:\Windows\SysWOW64\msvcsv60.dll
2014-11-17 16:00 - 2014-08-12 14:48 - 00000080 _____ () C:\Windows\msocreg32.dat
2014-11-17 01:27 - 2013-02-15 01:22 - 00000910 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1733162776-2084631968-1138856860-1000Core.job
2014-11-16 03:19 - 2013-03-05 23:49 - 00003990 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-11-16 03:19 - 2013-03-05 23:49 - 00003738 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-11-15 11:00 - 2010-11-21 04:47 - 00331844 _____ () C:\Windows\PFRO.log
2014-11-15 02:19 - 2014-08-19 13:13 - 00000000 ____D () C:\Program Files (x86)\SearchProtect
2014-11-13 16:26 - 2009-07-14 05:45 - 03026736 _____ () C:\Windows\System32\FNTCACHE.DAT
2014-11-13 16:25 - 2014-06-02 02:56 - 00000000 ___SD () C:\Windows\System32\CompatTel
2014-11-13 00:31 - 2013-01-28 15:40 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-11-13 00:30 - 2014-06-02 02:06 - 00000000 ____D () C:\Windows\System32\MRT
2014-11-13 00:29 - 2013-03-10 23:10 - 103374192 _____ (Microsoft Corporation) C:\Windows\System32\MRT.exe
2014-11-12 17:02 - 2013-01-20 19:15 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-11-09 14:36 - 2013-01-20 22:58 - 00000000 ____D () C:\Users\Wilson\AppData\Local\CrashDumps
2014-11-09 14:35 - 2013-02-17 18:56 - 00000000 ____D () C:\Users\Wilson\Documents\MelodynePlugin
2014-11-04 14:30 - 2010-11-21 04:27 - 00275080 ____N (Microsoft Corporation) C:\Windows\System32\MpSigStub.exe
2014-10-26 12:27 - 2014-06-02 13:15 - 00000000 ____D () C:\Users\Wilson\AppData\Local\Adobe
2014-10-26 12:27 - 2013-01-20 20:04 - 00000000 ____D () C:\Users\Wilson\AppData\Roaming\Adobe
2014-10-22 15:45 - 2013-03-30 11:45 - 00001814 _____ () C:\Users\Wilson\Desktop\Spotify.lnk
Files to move or delete:
====================
C:\Users\Wilson\Superior Installer.exe
Some content of TEMP:
====================
C:\Users\Wilson\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp0arczx.dll
C:\Users\Wilson\AppData\Local\Temp\firefoxjre_exe-1.exe
C:\Users\Wilson\AppData\Local\Temp\firefoxjre_exe-2.exe
C:\Users\Wilson\AppData\Local\Temp\firefoxjre_exe.exe
C:\Users\Wilson\AppData\Local\Temp\fp_pl_pfs_installer.exe
C:\Users\Wilson\AppData\Local\Temp\L6GPInst.dll
C:\Users\Wilson\AppData\Local\Temp\mtf4IA5.exe
C:\Users\Wilson\AppData\Local\Temp\nsw7246.exe
C:\Users\Wilson\AppData\Local\Temp\nsw8B44.exe
C:\Users\Wilson\AppData\Local\Temp\PlaySound.dll
C:\Users\Wilson\AppData\Local\Temp\SEVINST64x86.EXE
C:\Users\Wilson\AppData\Local\Temp\stuprt.exe
C:\Users\Wilson\AppData\Local\Temp\tbedrs.dll
C:\Users\Wilson\AppData\Local\Temp\utt2CEB.tmp.exe
C:\Users\Wilson\AppData\Local\Temp\uttF5FC.tmp.exe
C:\Users\Wilson\AppData\Local\Temp\vlc-2.0.5-win32.exe
C:\Users\Wilson\AppData\Local\Temp\_is8278.exe
C:\Users\Wilson\AppData\Local\Temp\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}_NIS_7387.exe
==================== Known DLLs (Whitelisted) ================
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
==================== Restore Points =========================
==================== Memory info ===========================
Percentage of memory in use: 10%
Total physical RAM: 8109.12 MB
Available physical RAM: 7293.03 MB
Total Pagefile: 8107.32 MB
Available Pagefile: 7303.25 MB
Total Virtual: 8192 MB
Available Virtual: 8191.89 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:111.79 GB) (Free:0.82 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive f: (WILSONS USB) (Removable) (Total:14.42 GB) (Free:14.42 GB) FAT32
Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS
Drive y: () (Fixed) (Total:931.51 GB) (Free:906.93 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 7C621371)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (Size: 335.4 GB) (Disk ID: 00000000)
Partition: GPT Partition Type.
========================================================
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 111.8 GB) (Disk ID: 6192F889)
Partition 1: (Active) - (Size=111.8 GB) - (Type=07 NTFS)
========================================================
Disk: 3 (Size: 14.4 GB) (Disk ID: 00000000)
Partition: GPT Partition Type.
LastRegBack: 2014-11-16 13:24
==================== End Of Log ============================
Dold text
Skrivet av nakednakedguy:
Är även windowsbrandväggen avstängd och går ej att aktivera? Isf har du nog fått ett virus som t ex anti malware doctor eller liknande.
Du får då ladda ner malwarebytes eller liknande och byta namn på exe filen före installation och sen även byta namn på programmet innan du öppnar det.
Såja! Har int haft tid/glömt bort att skriva hur det gick. Det gick bra! Efter första körningen hittade den en del ZoomEx-filer, och jag kände inte igen namnet, raderade filerna, såg också att där var ett program installerat på datorn som hette ZoomEx, så jag avinstallerade det. Då funkade Windows Update igen, men brandväggen funkade inte och datorn kunde fortfarande inte läsa skivor. Datorn låste sig också i avstängningsläge vid omstart eller avstängning. Jag körde sökningen ett par gånger till och den hittade flera filer varje gång, (Varför hittar den inte alla i samma sökning?) främst ZoomEx. Men efter ett antal sökningar och raderat alla filer den hittat funkar datorn fint igen!
TACK!
Skrivet av nakednakedguy:
Är även windowsbrandväggen avstängd och går ej att aktivera? Isf har du nog fått ett virus som t ex anti malware doctor eller liknande.
Du får då ladda ner malwarebytes eller liknande och byta namn på exe filen före installation och sen även byta namn på programmet innan du öppnar det.
Alldeles riktigt! Tack för svaret, kör Malwarebytes just nu. Hoppas på att det hjälper..
Konstiga problem (norton är borta, sysåterställning, update + cd-läsare funkar ej)
Hej!
För ca en vecka sedan hade jag problem med att vissa program vägrade starta ibland, samt att jag fick upp texten att mitt operativsystem inte var äkta, vilket det är, googlade om problemen lite, försökte göra en systemåterställning som inte funkade, försökte få rätt på det men ingenting funkade, jag hade givit upp och berättade för min pappa om problemen och han frågade om det inte bara var så att jag behövde en uppdatering, jag tyckte det lät konstigt att man skulle få sådana problem bara för att man inte installerat de senaste uppdateringarna, men jag installerade de 2 viktiga uppdateringarna som fanns där och datorn funkade helt plötsligt bra, förutom att systemåterställningen fortfarande inte fungerade.
Fram tills igår fungerade det bra. Då märkte jag att Norton inte fanns i verktygsfältet, tänkte att datorn kanske hade missat att starta Norton vid uppstart och tänkte att jag skulle starta Norton manuellt. Men Norton finns inte på min dator längre. Tyckte jag också var konstigt och tänkte: "jaja, jag får installera om det imorgon" Idag fick jag upp att operativsystemet inte var äkta igen, vilket försvann efter en omstart, jag satte i installationsskivan till Norton men fick ett felmeddelande på datorn som sa att den inte kunde läsa skivan när jag försökte öppna den (den syntes i "Dator"), kollade efter uppdateringar i Windows Update, men där var ett stort rött kryss och när jag tryckte på "sök efter uppdateringar" stod det att det inte gick för att Windows Update inte körs.
Kör Windows 7 Pro x64
Hjälp?
Hårdvara
Mjukvara
Datorkomponenter
Ljud, bild och kommunikation
- Svart skärm0
- ShowCase: Sladdar – eller inga sladdar?33
- Apple ber om ursäkt för kritiserad reklam63
- AMD stoppar Windows 10-stöd i Ryzen 8050/900097
- TV-guiden 2023/24 – diskussionstråden630
- NFC-telefon och pass för mobilt Bank-ID???2
- Bäst verktyg for hårddisk-recovery?6
- Indiana Jones and the Great Circle3
- TL-PA7017 Dålig hastighet.1
- SweCyklers1511
- Säljes Palit 3070ti gamerock och noctual nh-d15
- Säljes Zowie XL2546K 25" 240Hz
- Säljes 5900x + B550I PRO AX + SF750 + Kraken X63
- Säljes Radiatorer, RGB & Fläktar.
- Säljes Acer Predator Helios 300
- Säljes Asus Rog Strix RTX 2080 Ti & GTX 1050 Ti
- Säljes Netgear Orbi350 2st
- Säljes Lian Li PCMR O11D & EKWB QR5D Distro, Corsair Obsidian 1000D
- Säljes Lenovo Legion Pro 16ACH6H
- Säljes Secretlab Omega 2020
Nytt i testlabbet
Tester av chassi, grafikkort, processorer m.m.
- SweClockers Noob-byggarguide Del 27
- Bästa komponenterna enligt SweClockers medlemmar41
- SweClockers Noob-byggarguide Del 116
- Prispressat mejselkit är Testlabbets favorit40
- Corsair Platform 6: För dig som inte nöjer dig med Ikea-skrivbord11
- Airtec Pro Type1 – batteridrivet alternativ till tryckluft på burk128
- Snabbtest: Bli mer Pro med mindre tangentbord43
- Snabbtest: Högre spelprestanda med Intel APO46
- Snabbtest: Asus ROG Swift PG32UCDM – kryss i nästan alla rutor38
- Cooler Master Ncore 100 Max – lättbyggt minstingchassi17
