Just nu i M3-nätverket
Gå till innehåll

Trött på yahoo sökmotor


reso

Rekommendera Poster

God fortsättning och

ETT GOTT NYTT ÅR

alla forumister

 

Är det någon som vet hur jag får bort Yahoos sökmotor när jag 

startar  wbbläsaren Chrome.

 

Jag har varit inne i inställningar i chrome

och valt google i stället men när jag startar om

chrome så kommer den irriterande yahoo upp i alla fall.

 

Kristian

Länk till inlägg
Dela på andra webbplatser

Tack detsamma!

 

Det finns ett antal möjligheter och som jag ser det är det bäst att först kolla hur det ser ut.

 

1. Spara AdwCleaner av Xplode på Skrivbordet: http://general-changelog-team.fr/fr/downloads/finish/20-outils-de-xplode/2-adwcleaner

Stäng alla program, inklusive webbläsare.
Dubbelklicka på AdwCleaner för att starta programmet.

Klicka på Scan-knappen.
Vänta tills sökningen är klar.
Klicka på Report-knappen.
En rapport kommer upp, kopiera innehållet och klistra in i ditt svar.
Om rapporten inte kommer upp, så finns den även som C:\AdwCleaner[R0].txt

 

2. Ladda ner Farbar Recovery Scan Tool (FRST) och spara på skrivbordet.
För 64-bitars Windows: http://download.bleepingcomputer.com/farbar/FRST64.exe
För 32-bitars Windows: http://download.bleepingcomputer.com/farbar/FRST.exe

 

Starta FRST.

Läs villkoren för programmet.
Klicka på Yes för att acceptera.
Klicka på Scan-knappen.
När det är klart kommer det att ha skapats en log FRST.txt på skrivbordet.

Kopiera innehållet i loggen och klistra in i ditt svar.

Länk till inlägg
Dela på andra webbplatser

Tack detsamma!

 

Det finns ett antal möjligheter och som jag ser det är det bäst att först kolla hur det ser ut.

 

1. Spara AdwCleaner av Xplode på Skrivbordet: http://general-changelog-team.fr/fr/downloads/finish/20-outils-de-xplode/2-adwcleaner

 

Stäng alla program, inklusive webbläsare.

Dubbelklicka på AdwCleaner för att starta programmet.

 

Klicka på Scan-knappen.

Vänta tills sökningen är klar.

Klicka på Report-knappen.

En rapport kommer upp, kopiera innehållet och klistra in i ditt svar.

Om rapporten inte kommer upp, så finns den även som C:\AdwCleaner[R0].txt

 

2. Ladda ner Farbar Recovery Scan Tool (FRST) och spara på skrivbordet.

För 64-bitars Windows: http://download.bleepingcomputer.com/farbar/FRST64.exe

För 32-bitars Windows: http://download.bleepingcomputer.com/farbar/FRST.exe

 

Starta FRST.

Läs villkoren för programmet.

Klicka på Yes för att acceptera.

Klicka på Scan-knappen.

När det är klart kommer det att ha skapats en log FRST.txt på skrivbordet.

Kopiera innehållet i loggen och klistra in i ditt svar.

God fortsättning Mäster Cecilia

här kommer kopieringen av AdwCleaner texten:

Hoppas du hittar något "matnyttigt" som jag INTE behöver. 
 
Kristian
-----------------------------------------------------------------------------------------
 
# AdwCleaner v3.016 - Report created 01/01/2014 at 11:36:05
# Updated 23/12/2013 by Xplode
# Operating System : Windows Vista Home Basic Service Pack 2 (32 bits)
# Username : Kristian - SQUAREDATORN
# Running from : C:\Users\Kristian\Desktop\adwcleaner.exe
# Option : Scan
 
***** [ Services ] *****
 
Service Found : Application Updater
 
***** [ Files / Folders ] *****
 
File Found : C:\Users\Kristian\AppData\Roaming\Mozilla\Firefox\Profiles\e1dcuci1.Kristian\user.js
File Found : C:\Users\Kristian\AppData\Roaming\Mozilla\Firefox\Profiles\e1uhbxfw.default\user.js
File Found : C:\Windows\System32\Tasks\LaunchApp
File Found : C:\Windows\System32\Tasks\ProtectedSearch
Folder Found : C:\Users\Kristian\AppData\Roaming\Mozilla\Firefox\Profiles\e1dcuci1.Kristian\Extensions\speeddial@instair.net
Folder Found : C:\Users\Kristian\AppData\Roaming\Mozilla\Firefox\Profiles\e1uhbxfw.default\Extensions\{8A9386B4-E958-4C4C-ADF4-8F26DB3E4829}
Folder Found : C:\Users\Kristian\AppData\Roaming\Mozilla\Firefox\Profiles\e1uhbxfw.default\Extensions\speeddial@instair.net
Folder Found : C:\Users\Kristian\AppData\Roaming\Mozilla\Firefox\Profiles\zxstjh0r.default\Extensions\speeddial@instair.net
Folder Found C:\Program Files\Application Updater
Folder Found C:\Program Files\Common Files\Spigot
Folder Found C:\Program Files\IObit Apps Toolbar
Folder Found C:\Program Files\myfree codec
Folder Found C:\Program Files\MyPC Backup
Folder Found C:\Program Files\Secure Speed Dial
Folder Found C:\ProgramData\Microsoft\Windows\Start Menu\Programs\myfree codec
Folder Found C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PriceGong
Folder Found C:\Users\Kristian\AppData\LocalLow\PriceGong
Folder Found C:\Users\Kristian\AppData\LocalLow\Search Settings
 
***** [ Shortcuts ] *****
 
 
***** [ Registry ] *****
 
Key Found : HKCU\Software\AppDataLow\Software\PriceGong
Key Found : HKCU\Software\AppDataLow\Software\Search Settings
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\MyFreeCodec
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\MyPC Backup
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{48A789BF-F6D6-4930-9C8B-77855A63EDE1}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{03EB0E9C-7A91-4381-A220-9B52B641CDB1}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{48A789BF-F6D6-4930-9C8B-77855A63EDE1}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\MyFreeCodec
Key Found : HKCU\Software\Myfree Codec
Key Found : HKCU\Software\Search Settings
Key Found : HKLM\Software\Application Updater
Key Found : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Key Found : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}
Key Found : HKLM\SOFTWARE\Classes\AppID\secman.DLL
Key Found : HKLM\SOFTWARE\Classes\CLSID\{00000001-4FEF-40D3-B3FA-E0531B897F98}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{03EB0E9C-7A91-4381-A220-9B52B641CDB1}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{48A789BF-F6D6-4930-9C8B-77855A63EDE1}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{5C3B5DAA-0AFF-4808-90FB-0F2F2D760E36}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{64697678-0000-0010-8000-00AA00389B71}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{FD501041-8EBE-11CE-8183-00AA00577DA2}
Key Found : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Found : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Key Found : HKLM\SOFTWARE\Classes\secman.OutlookSecurityManager
Key Found : HKLM\SOFTWARE\Classes\secman.OutlookSecurityManager.1
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\hbcennhacfaagdopikcegfcobcadeocj
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\pfndaklgolladniicklehhancnlgocpp
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{03EB0E9C-7A91-4381-A220-9B52B641CDB1}
Key Found : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\LaunchApp
Key Found : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B459D8FD-B090-4842-80BD-5D6088691D26}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{03EB0E9C-7A91-4381-A220-9B52B641CDB1}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{48A789BF-F6D6-4930-9C8B-77855A63EDE1}
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\08121C32A9C319F4CB0C11FF059552A4
Key Found : HKLM\Software\Myfree Codec
Key Found : HKLM\Software\Search Settings
Key Found : HKLM\Software\Uniblue
Value Found : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{03EB0E9C-7A91-4381-A220-9B52B641CDB1}]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{03EB0E9C-7A91-4381-A220-9B52B641CDB1}]
 
***** [ Browsers ] *****
 
-\\ Internet Explorer v9.0.8112.16526
 
 
-\\ Mozilla Firefox v25.0.1 (sv-SE)
 
[ File : C:\Users\Kristian\AppData\Roaming\Mozilla\Firefox\Profiles\e1dcuci1.Kristian\prefs.js ]
 
 
[ File : C:\Users\Kristian\AppData\Roaming\Mozilla\Firefox\Profiles\e1uhbxfw.default\prefs.js ]
 
 
[ File : C:\Users\Kristian\AppData\Roaming\Mozilla\Firefox\Profiles\zxstjh0r.default\prefs.js ]
 
 
-\\ Google Chrome v
 
[ File : C:\Users\Kristian\AppData\Local\Google\Chrome\User Data\Default\preferences ]
 
 
*************************
 
AdwCleaner[R0].txt - [5984 octets] - [01/01/2014 11:36:05]
 
########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [6044 octets] ##########
Länk till inlägg
Dela på andra webbplatser

Tack detsamma! :)

 

Jag ser inget du behöver i AdwCleaner-loggen. Ser du något som du vill ha kvar?

 

Om inte:

 

Stäng alla program, inklusive webbläsare.
Dubbelklicka på AdwCleaner för att starta programmet.

Klicka på [/b]Scan[/b]-knappen.
Vänta tills sökningen är klar.

Klicka på Clean-knappen.
Tryck på OK.
Tryck på OK fler gånger om det kommer upp meddelanden.

Datorn kommer att startas om.
En rapport kommer upp, kopiera innehållet och klistra in i ditt svar.
Om rapporten inte kommer upp, så finns den även som C:\AdwCleaner[s0].txt

 

Försvann yahoo?

Om inte behöver jag se FRST-loggen.

Länk till inlägg
Dela på andra webbplatser

Tack detsamma! :)

 

Jag ser inget du behöver i AdwCleaner-loggen. Ser du något som du vill ha kvar?

 

Om inte:

 

Stäng alla program, inklusive webbläsare.

Dubbelklicka på AdwCleaner för att starta programmet.

 

Klicka på [/b]Scan[/b]-knappen.

Vänta tills sökningen är klar.

 

Klicka på Clean-knappen.

Tryck på OK.

Tryck på OK fler gånger om det kommer upp meddelanden.

 

Datorn kommer att startas om.

En rapport kommer upp, kopiera innehållet och klistra in i ditt svar.

Om rapporten inte kommer upp, så finns den även som C:\AdwCleaner[s0].txt

 

Försvann yahoo?

Om inte behöver jag se FRST-loggen.

Hej igen

Här kommer den andra textfilen från FRST

--------------------------------------------------------------

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 31-12-2013
Ran by Kristian (administrator) on SQUAREDATORN on 01-01-2014 12:19:18
Running from C:\Users\Kristian\Desktop
Microsoft® Windows Vista™ Home Basic  Service Pack 2 (X86) OS Language: Swedish
Internet Explorer Version 9
Boot Mode: Normal
 
==================== Processes (Whitelisted) ===================
 
(IObit) C:\Program Files\IObit\Advanced SystemCare 7\ASCService.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(IObit) D:\IObit Malware Fighter\IMFsrv.exe
(Google Inc.) D:\Program Files\Google\Gmail Notifier\gnotify.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(SPAMfighter ApS) C:\Program Files\Fighters\Tray\FightersTray.exe
(SPAMfighter ApS) C:\Program Files\Fighters\SPAMfighter\sfagent.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(IObit) C:\Program Files\IObit\Advanced SystemCare 7\Monitor.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
(Microsoft Corporation) C:\Windows\System32\CISVC.EXE
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\System32\Locator.exe
(Microsoft Corporation) C:\Windows\System32\TCPSVCS.EXE
(Microsoft Corporation) C:\Windows\System32\snmp.exe
(SPAMfighter ApS) C:\Program Files\Fighters\SPAMfighter\sfus.exe
(SPAMfighter ApS) C:\Program Files\Fighters\FighterSuiteService.exe
(Microsoft Corporation) C:\Windows\System32\UI0Detect.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Windows\System32\iashost.exe
(IObit) D:\IObit Malware Fighter\IMF.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Microsoft Corporation) C:\Windows\System32\vds.exe
(Microsoft Corporation) C:\Windows\System32\conime.exe
 
==================== Registry (Whitelisted) ==================
 
HKLM\...\Run: [{0228e555-4f9c-4e35-a3ec-b109a192b4c2}] - D:\Program Files\Google\Gmail Notifier\gnotify.exe [479232 2005-07-15] (Google Inc.)
HKLM\...\Run: [synTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1348904 2008-08-14] (Synaptics, Inc.)
HKLM\...\Run: [CommonToolkitTray] - C:\Program Files\Fighters\Tray\FightersTray.exe [1681952 2013-10-29] (SPAMfighter ApS)
HKLM\...\Run: [sfagent] - C:\Program Files\Fighters\SPAMfighter\sfagent.exe [1069600 2013-10-30] (SPAMfighter ApS)
HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [12017368 2013-12-31] (Realtek Semiconductor)
HKLM\...\Run: [iObit Malware Fighter] - D:\IObit Malware Fighter\IMF.exe [1573184 2013-12-13] (IObit)
HKCU\...\Run: [WMPNSCFG] - C:\Program Files\Windows Media Player\wmpnscfg.exe [202240 2008-01-19] (Microsoft Corporation)
HKCU\...\Policies\Explorer\Run: [sidebar] - C:\Program Files\Windows Sidebar\sidebar.exe [1233920 2009-04-11] ( (Microsoft Corporation))
HKU\Default\...\Run: [WindowsWelcomeCenter] - rundll32.exe oobefldr.dll,ShowWelcomeCenter
HKU\Default User\...\Run: [WindowsWelcomeCenter] - rundll32.exe oobefldr.dll,ShowWelcomeCenter
IFEO\cmm.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\diskanalysis.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\dupefinder.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\eff.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\encryptexe.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\fileencrypt.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\filesplitter.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\gsd.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\gtbsetup.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\gubar.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\iehelper.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\initialize.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\Integrator.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\IObitCommunities.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\joinexe.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\junkcleaner.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\memdefrag.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\NewUpdater.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\oneclickoptimizer.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\procmgr.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\regdefrag.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\regrepair.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\SDInit.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\shortcutsfixer.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\shredder.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\SmartDefrag.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\startup.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\sysinfo.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\TracksEraser.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\undelete.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\webupdate.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\winstd.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
Startup: C:\Users\Kristian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\StartupFaster ()
 
==================== Internet (Whitelisted) ====================
 
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://se.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x2D5AF0F447EACC01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = sv
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://se.search.yahoo.com/?type=800236&fr=spigot-yhp-ie
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://search.certified-toolbar.com?si=41460&bs=true&tid=2938&q={searchTerms}
SearchScopes: HKCU - {559CE0E7-8137-4F91-8A02-4C76C5D1DAF6} URL = 
SearchScopes: HKCU - {7A32C2E3-984F-4D9A-B303-4FF545950486} URL = 
BHO: ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll (IObit)
BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO: Advanced SystemCare Browser Protection - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\Program Files\IObit\Surfing Protection\BrowerProtect\ASCPlugin_Protection.dll (IObit)
BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: Freemake.YoutubeButton - {e9e8eb35-ff77-455d-b677-91e5e4fc06c2} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
 
FireFox:
========
FF ProfilePath: C:\Users\Kristian\AppData\Roaming\Mozilla\Firefox\Profiles\e1dcuci1.Kristian
FF DefaultSearchEngine: Yahoo
FF Homepage: hxxp://se.search.yahoo.com/?type=800236&fr=spigot-yhp-ff
FF Keyword.URL: hxxp://se.search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&ilc=12&type=800236&p=
FF Keyword.URL: hxxp://se.search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&ilc=12&type=198484&p=
FF SelectedSearchEngine: Yahoo
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.4 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Kristian\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Kristian\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF SearchPlugin: C:\Users\Kristian\AppData\Roaming\Mozilla\Firefox\Profiles\e1dcuci1.Kristian\searchplugins\yahoo_ff.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\allaannonser-sv-SE.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\prisjakt-sv-SE.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\tyda-sv-SE.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\wikipedia-sv-SE.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-sv-SE.xml
FF Extension: Ads Removal - C:\Users\Kristian\AppData\Roaming\Mozilla\Firefox\Profiles\e1dcuci1.Kristian\Extensions\adsremoval@adsremoval.net
FF Extension: Advanced SystemCare Surfing Protection - C:\Users\Kristian\AppData\Roaming\Mozilla\Firefox\Profiles\e1dcuci1.Kristian\Extensions\ascsurfingprotection@iobit.com
FF Extension: AD Block - C:\Users\Kristian\AppData\Roaming\Mozilla\Firefox\Profiles\e1dcuci1.Kristian\Extensions\searchads@instair.net
FF Extension: Start Page - C:\Users\Kristian\AppData\Roaming\Mozilla\Firefox\Profiles\e1dcuci1.Kristian\Extensions\{58d2a791-6199-482f-a9aa-9b725ec61362}
FF Extension: Click to call with Skype - C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF HKLM\...\Firefox\Extensions: [fmdownloader@gmail.com] - D:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Firefox\fmdownloader@gmail.com\
FF Extension: Freemake Video Downloader Plugin - D:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Firefox\fmdownloader@gmail.com\
FF HKLM\...\Firefox\Extensions: [ytfmdownloader@gmail.com] - D:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Firefox\ytfmdownloader@gmail.com\
FF Extension: Freemake Youtube Download Button - D:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Firefox\ytfmdownloader@gmail.com\
FF HKLM\...\Firefox\Extensions: [fmconverter@gmail.com] - D:\Program Files\Freemake\Freemake Video Converter\BrowserPlugin\Firefox\
FF Extension: Freemake Video Converter Plugin - D:\Program Files\Freemake\Freemake Video Converter\BrowserPlugin\Firefox\
 
Chrome: 
=======
CHR HomePage: hxxp://www.rednote.se/
CHR RestoreOnStartup: "hxxp://se.search.yahoo.com/?type=800236&fr=spigot-yhp-ch"
CHR DefaultNewTabURL: 
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\Kristian\AppData\Local\Google\Chrome\Application\31.0.1650.63\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Kristian\AppData\Local\Google\Chrome\Application\31.0.1650.63\pdf.dll ()
CHR Plugin: (Shockwave Flash) - C:\Users\Kristian\AppData\Local\Google\Chrome\Application\31.0.1650.63\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\system32\Macromed\Flash\NPSWF32_11_3_300_262.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Microsoft\u00ae Windows Media Player Firefox Plugin) - C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll (Microsoft Corporation)
CHR Plugin: (Windows Genuine Advantage) - C:\Program Files\Mozilla Firefox\plugins\npLegitCheckPlugin.dll (Microsoft Corporation)
CHR Plugin: (2007 Microsoft Office system) - C:\Program Files\Mozilla Firefox\plugins\NPOFF12.DLL (Microsoft Corporation)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll (Apple Inc.)
CHR Plugin: (Java Platform SE 6 U33) - C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll No File
CHR Plugin: (Java Deployment Toolkit 6.0.330.3) - C:\Windows\system32\npdeployJava1.dll No File
CHR Plugin: (Silverlight Plug-In) - C:\Program Files\Microsoft Silverlight\5.0.61118.0\npctrl.dll No File
CHR Plugin: (Google Update) - C:\Users\Kristian\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File
CHR Plugin: (Windows Presentation Foundation) - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR Plugin: (VLC Web Plugin) - D:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
CHR Extension: (YouTube) - C:\Users\Kristian\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\Kristian\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Advanced SystemCare Surfing Protection) - C:\Users\Kristian\AppData\Local\Google\Chrome\User Data\Default\Extensions\nfengeggddojhakldhlpjdlddgkkjkdd\1.0.0_1
CHR Extension: (Google Wallet) - C:\Users\Kristian\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_0
CHR Extension: (Gmail) - C:\Users\Kristian\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1
CHR HKLM\...\Chrome\Extension: [bpegkgagfojjbcpkihigfmkojdmmimdf] - D:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Chrome\Freemake.Plugin.Chrome.crx
CHR HKLM\...\Chrome\Extension: [ehgldbbpchgpcfagfpfjgoomddhccfgh] - D:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Chrome\ChromeYoutubePlugin.crx
CHR HKLM\...\Chrome\Extension: [jbolfgndggfhhpbnkgnpjkfhinclbigj] - D:\Program Files\Freemake\Freemake Video Converter\BrowserPlugin\Chrome\Freemake.Plugin.Chrome.crx
CHR HKLM\...\Chrome\Extension: [nfengeggddojhakldhlpjdlddgkkjkdd] - C:\Program Files\IObit\Surfing Protection\BrowerProtect\ASC_GhromePlugin.crx
CHR StartMenuInternet: Google Chrome - C:\Users\Kristian\AppData\Local\Google\Chrome\Application\chrome.exe
 
========================== Services (Whitelisted) =================
 
R2 AdvancedSystemCareService7; C:\Program Files\IObit\Advanced SystemCare 7\ASCService.exe [881440 2013-12-09] (IObit)
R2 HFGService; C:\Windows\System32\HFGService.dll [419224 2010-02-05] (CSR, plc)
R2 IMFservice; D:\IObit Malware Fighter\IMFsrv.exe [341824 2013-11-11] (IObit)
R2 iprip; C:\Windows\System32\iprip.dll [29696 2006-11-02] (Microsoft Corporation)
S2 LiveUpdateSvc; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2151200 2013-12-03] (IObit)
S4 MBAMScheduler; D:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
S4 MBAMService; D:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [22208 2013-10-23] (Microsoft Corporation)
R3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [280288 2013-10-23] (Microsoft Corporation)
R2 SPAMfighter Update Service; C:\Program Files\Fighters\SPAMfighter\sfus.exe [216608 2013-10-30] (SPAMfighter ApS)
R2 Suite Service; C:\Program Files\Fighters\FighterSuiteService.exe [1281568 2013-10-29] (SPAMfighter ApS)
S4 SecureUpdateSvc; C:\Program Files\Secure Speed Dial\IE\SecureUpdate.exe [x]
 
==================== Drivers (Whitelisted) ====================
 
R1 avgtp; C:\Windows\system32\drivers\avgtpx86.sys [37664 2013-11-22] (AVG Technologies)
S3 BthAudioHF; C:\Windows\System32\DRIVERS\BthAudioHF.sys [48024 2010-02-05] (CSR, plc)
S3 BthAvrcp; C:\Windows\System32\DRIVERS\BthAvrcp.sys [28048 2010-02-05] (CSR, plc)
S3 csr_a2dp; C:\Windows\System32\drivers\bthav.sys [66952 2010-02-05] (CSR, plc)
S4 FileMonitor; D:\IObit Malware Fighter\Drivers\wlh_x86\FileMonitor.sys [21480 2013-03-23] (IObit)
S4 JRAID; C:\Windows\system32\drivers\jraid.sys [48256 2007-06-13] (JMicron Technology Corp.)
S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [22856 2013-04-04] (Malwarebytes Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [214696 2013-09-27] (Microsoft Corporation)
R1 MpKsl11399ac5; C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{EF4B1B95-63A5-4375-A08B-6BEBAACA8046}\MpKsl11399ac5.sys [40392 2014-01-01] (Microsoft Corporation)
S3 NPF; C:\Windows\System32\drivers\NPF.sys [35088 2011-02-11] (CACE Technologies, Inc.)
S3 s0017bus; C:\Windows\System32\DRIVERS\s0017bus.sys [86824 2008-10-21] (MCCI Corporation)
S3 s0017mdfl; C:\Windows\System32\DRIVERS\s0017mdfl.sys [15016 2008-10-21] (MCCI Corporation)
S3 s0017mdm; C:\Windows\System32\DRIVERS\s0017mdm.sys [114600 2008-10-21] (MCCI Corporation)
S3 s0017mgmt; C:\Windows\System32\DRIVERS\s0017mgmt.sys [108328 2008-10-21] (MCCI Corporation)
S3 s0017nd5; C:\Windows\System32\DRIVERS\s0017nd5.sys [26024 2008-10-21] (MCCI Corporation)
S3 s0017obex; C:\Windows\System32\DRIVERS\s0017obex.sys [104616 2008-10-21] (MCCI Corporation)
S3 s0017unic; C:\Windows\System32\DRIVERS\s0017unic.sys [109736 2008-10-21] (MCCI Corporation)
R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [15672 2013-05-22] ()
S3 UrlFilter; D:\IObit Malware Fighter\drivers\wlh_x86\UrlFilter.sys [20944 2013-11-19] (IObit.com)
S4 blbdrive; \SystemRoot\system32\drivers\blbdrive.sys [x]
U3 DfSdkS; 
S3 IpInIp; system32\DRIVERS\ipinip.sys [x]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [x]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [x]
S3 RegFilter; \??\C:\Program Files\IObit\IObit Malware Fighter\drivers\wlh_x86\regfilter.sys [x]
S3 USBAAPL; System32\Drivers\usbaapl.sys [x]
 
==================== NetSvcs (Whitelisted) ===================
 
 
==================== One Month Created Files and Folders ========
 
2014-01-01 12:19 - 2014-01-01 12:20 - 00021538 _____ C:\Users\Kristian\Desktop\FRST.txt
2014-01-01 12:19 - 2014-01-01 12:19 - 00000000 ____D C:\FRST
2014-01-01 11:43 - 2014-01-01 11:43 - 01064333 _____ (Farbar) C:\Users\Kristian\Desktop\FRST.exe
2014-01-01 11:37 - 2014-01-01 11:37 - 00006124 _____ C:\Users\Kristian\Desktop\AdwCleaner[R0].txt
2014-01-01 11:35 - 2014-01-01 11:44 - 00000000 ____D C:\AdwCleaner
2014-01-01 11:33 - 2014-01-01 11:33 - 01233962 _____ C:\Users\Kristian\Desktop\adwcleaner.exe
2014-01-01 11:24 - 2014-01-01 11:27 - 00000000 ____D C:\Users\Kristian\{cd816e52-5e7e-420f-87ea-46a788d88674}
2013-12-31 15:21 - 2013-12-31 15:21 - 00000000 ____D C:\Users\Kristian\{23d68cc6-b384-4137-b3cc-195ae9286fad}
2013-12-31 15:19 - 2013-12-31 15:19 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2013-12-31 15:14 - 2013-12-31 15:14 - 01824000 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib.dll
2013-12-31 15:14 - 2013-12-31 15:14 - 00604928 _____ (DTS, Inc.) C:\Windows\system32\sltech32.dll
2013-12-31 15:13 - 2013-12-31 15:14 - 00218368 _____ (TODO: <Company name>) C:\Windows\system32\slprp32.dll
2013-12-31 15:13 - 2013-12-31 15:13 - 05681196 _____ C:\Windows\system32\Drivers\rtvienna.dat
2013-12-31 15:13 - 2013-12-31 15:13 - 02929048 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHDA.sys
2013-12-31 15:13 - 2013-12-31 15:13 - 02547928 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkPgExt.dll
2013-12-31 15:13 - 2013-12-31 15:13 - 01596488 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSndMgr.cpl
2013-12-31 15:13 - 2013-12-31 15:13 - 00938752 _____ (SRS Labs, Inc.) C:\Windows\system32\slcnt32.dll
2013-12-31 15:13 - 2013-12-31 15:13 - 00919600 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll
2013-12-31 15:13 - 2013-12-31 15:13 - 00823040 _____ (DTS, Inc.) C:\Windows\system32\sl3apo32.dll
2013-12-31 15:13 - 2013-12-31 15:13 - 00126680 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoInstII.dll
2013-12-31 15:12 - 2013-12-31 15:13 - 00782040 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApoApi.dll
2013-12-31 15:12 - 2013-12-31 15:12 - 41974272 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes.dat
2013-12-31 15:12 - 2013-12-31 15:12 - 00693329 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2013-12-31 15:11 - 2013-12-31 15:11 - 27369216 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnA.dll
2013-12-31 15:11 - 2013-12-31 15:11 - 05115672 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOlfx.dll
2013-12-31 15:11 - 2013-12-31 15:11 - 03629824 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnN.dll
2013-12-31 15:11 - 2013-12-31 15:11 - 01677568 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek2.dll
2013-12-31 15:11 - 2013-12-31 15:11 - 00926976 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxSpeechAPO.dll
2013-12-31 15:11 - 2013-12-31 15:11 - 00865592 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOSettingsIPC.dll
2013-12-31 15:11 - 2013-12-31 15:11 - 00852016 _____ (Sony Corporation) C:\Windows\system32\MISS_APO.dll
2013-12-31 15:11 - 2013-12-31 15:11 - 00761088 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO20.dll
2013-12-31 15:11 - 2013-12-31 15:11 - 00509184 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll
2013-12-31 15:10 - 2013-12-31 15:11 - 13881600 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek.dll
2013-12-31 15:10 - 2013-12-31 15:10 - 01935104 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ.dll
2013-12-31 15:10 - 2013-12-31 15:10 - 01097984 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO50.dll
2013-12-31 15:10 - 2013-12-31 15:10 - 00873728 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO40.dll
2013-12-31 15:10 - 2013-12-31 15:10 - 00860416 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell.dll
2013-12-31 15:10 - 2013-12-31 15:10 - 00509184 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 06176944 _____ (Dolby Laboratories) C:\Windows\system32\DDPP32A.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 02395680 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 01489072 _____ (Dolby Laboratories) C:\Windows\system32\DDPD32A.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00502584 _____ C:\Windows\system32\audioLibVc.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00426944 _____ (DTS) C:\Windows\system32\DTSU2PLFX32.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00403392 _____ (DTS) C:\Windows\system32\DTSU2PGFX32.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00346048 _____ (DTS) C:\Windows\system32\DTSU2PREC32.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00272048 _____ (Dolby Laboratories) C:\Windows\system32\DDPO32A.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00219312 _____ (Dolby Laboratories) C:\Windows\system32\DDPA32.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00188696 _____ C:\Windows\system32\AcpiServiceVnA.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00182472 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTACap.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00092584 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2013-12-31 15:03 - 2014-01-01 11:48 - 00000278 _____ C:\Windows\Tasks\Driver Booster Update.job
2013-12-31 15:03 - 2014-01-01 11:16 - 00001017 _____ C:\Users\Public\Desktop\Driver Booster.lnk
2013-12-28 19:04 - 2013-12-28 19:22 - 00000447 _____ C:\Users\Kristian\Documents\1.txt
2013-12-27 04:46 - 2013-12-27 04:46 - 00001074 _____ C:\Users\Kristian\AppData\Roaming\Microsoft\Windows\Start Menu\Uninstall Programs.lnk
2013-12-27 04:46 - 2013-12-27 04:46 - 00001050 _____ C:\Users\Public\Desktop\IObit Uninstaller.lnk
2013-12-27 04:31 - 2013-12-27 04:32 - 00000000 ____D C:\Users\Kristian\{bc3c5376-941d-42fd-ada2-9f4bbdf56756}
2013-12-27 04:18 - 2013-12-27 04:18 - 00000588 _____ C:\Users\Public\Desktop\IObit Malware Fighter.lnk
2013-12-19 18:06 - 2013-12-19 18:06 - 00000000 ____D C:\Users\Kristian\SyncFolder
2013-12-19 18:01 - 2013-12-19 18:01 - 00000806 _____ C:\Users\Public\Desktop\One-Click-Optimizer (WO2013).lnk
2013-12-19 18:01 - 2013-12-19 18:01 - 00000626 _____ C:\Users\Public\Desktop\Ashampoo WinOptimizer 2013.lnk
2013-12-19 18:01 - 2009-08-24 22:08 - 00028160 _____ (mst software GmbH, Germany) C:\Windows\system32\DfSdkBt.exe
2013-12-11 09:54 - 2013-11-15 00:13 - 12344320 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-12-11 09:54 - 2013-11-14 23:50 - 09739264 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-12-11 09:54 - 2013-11-14 23:50 - 01806848 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-12-11 09:54 - 2013-11-14 23:43 - 01105408 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-12-11 09:54 - 2013-11-14 23:42 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-12-11 09:54 - 2013-11-14 23:42 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-12-11 09:54 - 2013-11-14 23:41 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-12-11 09:54 - 2013-11-14 23:40 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-12-11 09:54 - 2013-11-14 23:38 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-12-11 09:54 - 2013-11-14 23:38 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-12-11 09:54 - 2013-11-14 23:38 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-12-11 09:54 - 2013-11-14 23:37 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-12-11 09:54 - 2013-11-14 23:36 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-12-11 09:54 - 2013-11-14 23:36 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-12-11 09:54 - 2013-11-14 23:35 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-12-11 09:54 - 2013-11-14 23:32 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-12-11 08:50 - 2013-10-30 03:13 - 01304064 _____ (Microsoft Corporation) C:\Windows\system32\WMALFXGFXDSP.dll
2013-12-11 08:50 - 2013-10-30 03:12 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\SysFxUI.dll
2013-12-11 08:50 - 2013-10-30 02:43 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2013-12-11 08:50 - 2013-10-30 01:43 - 00167936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2013-12-11 08:50 - 2013-10-30 01:35 - 02050560 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-12-11 08:50 - 2013-10-22 08:19 - 00158208 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2013-12-11 08:50 - 2013-10-11 03:08 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2013-12-11 08:50 - 2013-10-11 03:08 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2013-12-11 08:50 - 2013-10-11 03:08 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wshcon.dll
2013-12-11 08:50 - 2013-10-11 01:35 - 00155648 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2013-12-11 08:50 - 2013-10-11 01:35 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2013-12-09 17:42 - 2013-12-09 17:42 - 00000000 ____D C:\sd_old
2013-12-05 21:45 - 2013-12-05 21:45 - 00000000 ____D C:\ProgramData\Auslogics
 
==================== One Month Modified Files and Folders =======
 
2014-01-01 12:20 - 2014-01-01 12:19 - 00021538 _____ C:\Users\Kristian\Desktop\FRST.txt
2014-01-01 12:19 - 2014-01-01 12:19 - 00000000 ____D C:\FRST
2014-01-01 12:08 - 2013-08-08 10:50 - 01888859 _____ C:\Windows\WindowsUpdate.log
2014-01-01 12:08 - 2011-09-25 13:35 - 00001016 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4092986270-2831543146-3790693587-1000UA.job
2014-01-01 12:08 - 2011-09-25 13:35 - 00000964 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4092986270-2831543146-3790693587-1000Core.job
2014-01-01 11:56 - 2011-09-10 17:13 - 00640090 _____ C:\Windows\system32\perfh01D.dat
2014-01-01 11:56 - 2011-09-10 17:13 - 00131406 _____ C:\Windows\system32\perfc01D.dat
2014-01-01 11:56 - 2006-11-02 11:33 - 01505006 _____ C:\Windows\system32\PerfStringBackup.INI
2014-01-01 11:52 - 2012-04-25 20:22 - 00000438 _____ C:\Windows\system32\Drivers\etc\hosts.ics
2014-01-01 11:49 - 2013-02-06 23:44 - 00000000 ____D C:\Windows\system32\NtmsData
2014-01-01 11:48 - 2013-12-31 15:03 - 00000278 _____ C:\Windows\Tasks\Driver Booster Update.job
2014-01-01 11:48 - 2006-11-02 13:58 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2014-01-01 11:48 - 2006-11-02 13:45 - 00003648 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2014-01-01 11:48 - 2006-11-02 13:45 - 00003648 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2014-01-01 11:45 - 2013-02-26 15:22 - 00000012 _____ C:\Windows\bthservsdp.dat
2014-01-01 11:45 - 2006-11-02 13:58 - 00032590 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2014-01-01 11:44 - 2014-01-01 11:35 - 00000000 ____D C:\AdwCleaner
2014-01-01 11:43 - 2014-01-01 11:43 - 01064333 _____ (Farbar) C:\Users\Kristian\Desktop\FRST.exe
2014-01-01 11:41 - 2012-04-08 17:34 - 00000868 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-01-01 11:37 - 2014-01-01 11:37 - 00006124 _____ C:\Users\Kristian\Desktop\AdwCleaner[R0].txt
2014-01-01 11:33 - 2014-01-01 11:33 - 01233962 _____ C:\Users\Kristian\Desktop\adwcleaner.exe
2014-01-01 11:27 - 2014-01-01 11:24 - 00000000 ____D C:\Users\Kristian\{cd816e52-5e7e-420f-87ea-46a788d88674}
2014-01-01 11:24 - 2011-09-10 07:49 - 00000000 ____D C:\Users\Kristian
2014-01-01 11:16 - 2013-12-31 15:03 - 00001017 _____ C:\Users\Public\Desktop\Driver Booster.lnk
2014-01-01 11:09 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\LogFiles
2014-01-01 11:07 - 2013-01-19 16:05 - 00000308 _____ C:\Windows\Tasks\GlaryInitialize.job
2013-12-31 17:32 - 2011-09-24 14:14 - 00000000 ____D C:\Users\Kristian\AppData\Roaming\Macromedia
2013-12-31 15:21 - 2013-12-31 15:21 - 00000000 ____D C:\Users\Kristian\{23d68cc6-b384-4137-b3cc-195ae9286fad}
2013-12-31 15:19 - 2013-12-31 15:19 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2013-12-31 15:18 - 2011-09-24 12:52 - 00000000 ____D C:\Windows\system32\RTCOM
2013-12-31 15:14 - 2013-12-31 15:14 - 01824000 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib.dll
2013-12-31 15:14 - 2013-12-31 15:14 - 00604928 _____ (DTS, Inc.) C:\Windows\system32\sltech32.dll
2013-12-31 15:14 - 2013-12-31 15:13 - 00218368 _____ (TODO: <Company name>) C:\Windows\system32\slprp32.dll
2013-12-31 15:13 - 2013-12-31 15:13 - 05681196 _____ C:\Windows\system32\Drivers\rtvienna.dat
2013-12-31 15:13 - 2013-12-31 15:13 - 02929048 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHDA.sys
2013-12-31 15:13 - 2013-12-31 15:13 - 02547928 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkPgExt.dll
2013-12-31 15:13 - 2013-12-31 15:13 - 01596488 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSndMgr.cpl
2013-12-31 15:13 - 2013-12-31 15:13 - 00938752 _____ (SRS Labs, Inc.) C:\Windows\system32\slcnt32.dll
2013-12-31 15:13 - 2013-12-31 15:13 - 00919600 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll
2013-12-31 15:13 - 2013-12-31 15:13 - 00823040 _____ (DTS, Inc.) C:\Windows\system32\sl3apo32.dll
2013-12-31 15:13 - 2013-12-31 15:13 - 00126680 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoInstII.dll
2013-12-31 15:13 - 2013-12-31 15:12 - 00782040 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApoApi.dll
2013-12-31 15:12 - 2013-12-31 15:12 - 41974272 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes.dat
2013-12-31 15:12 - 2013-12-31 15:12 - 00693329 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2013-12-31 15:12 - 2013-10-11 10:26 - 02329304 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO.dll
2013-12-31 15:11 - 2013-12-31 15:11 - 27369216 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnA.dll
2013-12-31 15:11 - 2013-12-31 15:11 - 05115672 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOlfx.dll
2013-12-31 15:11 - 2013-12-31 15:11 - 03629824 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnN.dll
2013-12-31 15:11 - 2013-12-31 15:11 - 01677568 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek2.dll
2013-12-31 15:11 - 2013-12-31 15:11 - 00926976 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxSpeechAPO.dll
2013-12-31 15:11 - 2013-12-31 15:11 - 00865592 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOSettingsIPC.dll
2013-12-31 15:11 - 2013-12-31 15:11 - 00852016 _____ (Sony Corporation) C:\Windows\system32\MISS_APO.dll
2013-12-31 15:11 - 2013-12-31 15:11 - 00761088 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO20.dll
2013-12-31 15:11 - 2013-12-31 15:11 - 00509184 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll
2013-12-31 15:11 - 2013-12-31 15:10 - 13881600 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek.dll
2013-12-31 15:10 - 2013-12-31 15:10 - 01935104 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ.dll
2013-12-31 15:10 - 2013-12-31 15:10 - 01097984 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO50.dll
2013-12-31 15:10 - 2013-12-31 15:10 - 00873728 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO40.dll
2013-12-31 15:10 - 2013-12-31 15:10 - 00860416 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell.dll
2013-12-31 15:10 - 2013-12-31 15:10 - 00509184 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 06176944 _____ (Dolby Laboratories) C:\Windows\system32\DDPP32A.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 02395680 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 01489072 _____ (Dolby Laboratories) C:\Windows\system32\DDPD32A.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00502584 _____ C:\Windows\system32\audioLibVc.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00426944 _____ (DTS) C:\Windows\system32\DTSU2PLFX32.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00403392 _____ (DTS) C:\Windows\system32\DTSU2PGFX32.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00346048 _____ (DTS) C:\Windows\system32\DTSU2PREC32.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00272048 _____ (Dolby Laboratories) C:\Windows\system32\DDPO32A.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00219312 _____ (Dolby Laboratories) C:\Windows\system32\DDPA32.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00188696 _____ C:\Windows\system32\AcpiServiceVnA.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00182472 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTACap.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00092584 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2013-12-31 15:00 - 2013-11-04 14:50 - 00002030 _____ C:\Users\Public\Desktop\Advanced SystemCare 7.lnk
2013-12-31 14:52 - 2013-06-15 11:34 - 39542784 _____ C:\Windows\system32\config\components.iobit
2013-12-31 14:52 - 2013-06-15 11:34 - 36782080 _____ C:\Windows\system32\config\software.iobit
2013-12-31 14:52 - 2013-06-15 11:34 - 00270336 _____ C:\Windows\system32\config\default.iobit
2013-12-31 14:52 - 2013-06-15 11:34 - 00053248 _____ C:\Windows\system32\config\sam.iobit
2013-12-31 14:52 - 2013-06-15 11:34 - 00020480 _____ C:\Windows\system32\config\security.iobit
2013-12-28 19:22 - 2013-12-28 19:04 - 00000447 _____ C:\Users\Kristian\Documents\1.txt
2013-12-28 11:43 - 2013-11-04 14:50 - 00000000 ____D C:\ProgramData\ProductData
2013-12-27 04:46 - 2013-12-27 04:46 - 00001074 _____ C:\Users\Kristian\AppData\Roaming\Microsoft\Windows\Start Menu\Uninstall Programs.lnk
2013-12-27 04:46 - 2013-12-27 04:46 - 00001050 _____ C:\Users\Public\Desktop\IObit Uninstaller.lnk
2013-12-27 04:46 - 2011-12-09 11:49 - 00000000 ____D C:\Users\Kristian\AppData\Roaming\IObit
2013-12-27 04:32 - 2013-12-27 04:31 - 00000000 ____D C:\Users\Kristian\{bc3c5376-941d-42fd-ada2-9f4bbdf56756}
2013-12-27 04:23 - 2013-03-13 15:42 - 00000000 ____D C:\Users\Kristian\AppData\Local\Windows Live
2013-12-27 04:21 - 2012-11-15 19:04 - 00000000 ____D C:\ProgramData\IObit
2013-12-27 04:18 - 2013-12-27 04:18 - 00000588 _____ C:\Users\Public\Desktop\IObit Malware Fighter.lnk
2013-12-22 19:38 - 2013-05-30 14:31 - 00000438 _____ C:\Windows\BRWMARK.INI
2013-12-22 19:38 - 2013-05-30 14:31 - 00000034 _____ C:\Windows\system32\BD2030.DAT
2013-12-19 18:06 - 2013-12-19 18:06 - 00000000 ____D C:\Users\Kristian\SyncFolder
2013-12-19 18:01 - 2013-12-19 18:01 - 00000806 _____ C:\Users\Public\Desktop\One-Click-Optimizer (WO2013).lnk
2013-12-19 18:01 - 2013-12-19 18:01 - 00000626 _____ C:\Users\Public\Desktop\Ashampoo WinOptimizer 2013.lnk
2013-12-19 18:01 - 2013-03-05 19:40 - 00000000 ____D C:\ProgramData\Ashampoo
2013-12-18 15:32 - 2012-10-07 00:59 - 00000986 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-12-18 15:32 - 2012-10-07 00:59 - 00000982 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-12-13 15:43 - 2012-04-05 08:38 - 00001912 _____ C:\Windows\epplauncher.mif
2013-12-13 15:42 - 2012-04-05 09:17 - 00000000 ____D C:\Program Files\Microsoft Security Client
2013-12-12 09:46 - 2011-09-11 16:41 - 00091648 _____ C:\Users\Kristian\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-12-11 10:13 - 2006-11-02 13:44 - 00232112 _____ C:\Windows\system32\FNTCACHE.DAT
2013-12-11 10:00 - 2013-07-11 13:35 - 00000000 ____D C:\Windows\system32\MRT
2013-12-11 09:56 - 2006-11-02 11:24 - 88123800 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2013-12-10 10:16 - 2013-08-24 19:27 - 00000000 ____D C:\Program Files\Fighters
2013-12-09 17:42 - 2013-12-09 17:42 - 00000000 ____D C:\sd_old
2013-12-05 21:45 - 2013-12-05 21:45 - 00000000 ____D C:\ProgramData\Auslogics
2013-12-05 20:55 - 2011-11-08 14:41 - 00000848 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-12-05 20:55 - 2011-11-08 14:41 - 00000000 ____D C:\Program Files\CCleaner
2013-12-05 19:10 - 2013-01-13 10:24 - 00002107 _____ C:\Users\Kristian\Desktop\Google Chrome.lnk
2013-12-03 07:33 - 2006-11-02 11:22 - 36962304 _____ C:\Windows\system32\config\software_previous
2013-12-03 07:33 - 2006-11-02 11:22 - 26214400 _____ C:\Windows\system32\config\system_previous
2013-12-03 07:32 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\spool
2013-12-03 07:32 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\Msdtc
2013-12-03 07:32 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\registration
2013-12-03 07:28 - 2006-11-02 11:22 - 39583744 _____ C:\Windows\system32\config\components_previous
2013-12-03 07:28 - 2006-11-02 11:22 - 00053248 _____ C:\Windows\system32\config\sam_previous
2013-12-02 21:06 - 2006-11-02 11:22 - 00262144 _____ C:\Windows\system32\config\default_previous
2013-12-02 21:06 - 2006-11-02 11:22 - 00020480 _____ C:\Windows\system32\config\security_previous
 
Some content of TEMP:
====================
C:\Users\Kristian\AppData\Local\Temp\Quarantine.exe
 
 
==================== Bamital & volsnap Check =================
 
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
 
 
LastRegBack: 2014-01-01 11:58
 
==================== End Of Log ============================Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 31-12-2013
Ran by Kristian (administrator) on SQUAREDATORN on 01-01-2014 12:19:18
Running from C:\Users\Kristian\Desktop
Microsoft® Windows Vista™ Home Basic  Service Pack 2 (X86) OS Language: Swedish
Internet Explorer Version 9
Boot Mode: Normal
 
==================== Processes (Whitelisted) ===================
 
(IObit) C:\Program Files\IObit\Advanced SystemCare 7\ASCService.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(IObit) D:\IObit Malware Fighter\IMFsrv.exe
(Google Inc.) D:\Program Files\Google\Gmail Notifier\gnotify.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(SPAMfighter ApS) C:\Program Files\Fighters\Tray\FightersTray.exe
(SPAMfighter ApS) C:\Program Files\Fighters\SPAMfighter\sfagent.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(IObit) C:\Program Files\IObit\Advanced SystemCare 7\Monitor.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
(Microsoft Corporation) C:\Windows\System32\CISVC.EXE
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\System32\Locator.exe
(Microsoft Corporation) C:\Windows\System32\TCPSVCS.EXE
(Microsoft Corporation) C:\Windows\System32\snmp.exe
(SPAMfighter ApS) C:\Program Files\Fighters\SPAMfighter\sfus.exe
(SPAMfighter ApS) C:\Program Files\Fighters\FighterSuiteService.exe
(Microsoft Corporation) C:\Windows\System32\UI0Detect.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Windows\System32\iashost.exe
(IObit) D:\IObit Malware Fighter\IMF.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Microsoft Corporation) C:\Windows\System32\vds.exe
(Microsoft Corporation) C:\Windows\System32\conime.exe
 
==================== Registry (Whitelisted) ==================
 
HKLM\...\Run: [{0228e555-4f9c-4e35-a3ec-b109a192b4c2}] - D:\Program Files\Google\Gmail Notifier\gnotify.exe [479232 2005-07-15] (Google Inc.)
HKLM\...\Run: [synTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1348904 2008-08-14] (Synaptics, Inc.)
HKLM\...\Run: [CommonToolkitTray] - C:\Program Files\Fighters\Tray\FightersTray.exe [1681952 2013-10-29] (SPAMfighter ApS)
HKLM\...\Run: [sfagent] - C:\Program Files\Fighters\SPAMfighter\sfagent.exe [1069600 2013-10-30] (SPAMfighter ApS)
HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [12017368 2013-12-31] (Realtek Semiconductor)
HKLM\...\Run: [iObit Malware Fighter] - D:\IObit Malware Fighter\IMF.exe [1573184 2013-12-13] (IObit)
HKCU\...\Run: [WMPNSCFG] - C:\Program Files\Windows Media Player\wmpnscfg.exe [202240 2008-01-19] (Microsoft Corporation)
HKCU\...\Policies\Explorer\Run: [sidebar] - C:\Program Files\Windows Sidebar\sidebar.exe [1233920 2009-04-11] ( (Microsoft Corporation))
HKU\Default\...\Run: [WindowsWelcomeCenter] - rundll32.exe oobefldr.dll,ShowWelcomeCenter
HKU\Default User\...\Run: [WindowsWelcomeCenter] - rundll32.exe oobefldr.dll,ShowWelcomeCenter
IFEO\cmm.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\diskanalysis.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\dupefinder.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\eff.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\encryptexe.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\fileencrypt.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\filesplitter.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\gsd.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\gtbsetup.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\gubar.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\iehelper.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\initialize.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\Integrator.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\IObitCommunities.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\joinexe.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\junkcleaner.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\memdefrag.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\NewUpdater.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\oneclickoptimizer.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\procmgr.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\regdefrag.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\regrepair.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\SDInit.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\shortcutsfixer.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\shredder.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\SmartDefrag.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\startup.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\sysinfo.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\TracksEraser.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\undelete.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\webupdate.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\winstd.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
Startup: C:\Users\Kristian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\StartupFaster ()
 
==================== Internet (Whitelisted) ====================
 
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://se.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x2D5AF0F447EACC01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = sv
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://se.search.yahoo.com/?type=800236&fr=spigot-yhp-ie
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://search.certified-toolbar.com?si=41460&bs=true&tid=2938&q={searchTerms}
SearchScopes: HKCU - {559CE0E7-8137-4F91-8A02-4C76C5D1DAF6} URL = 
SearchScopes: HKCU - {7A32C2E3-984F-4D9A-B303-4FF545950486} URL = 
BHO: ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll (IObit)
BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO: Advanced SystemCare Browser Protection - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\Program Files\IObit\Surfing Protection\BrowerProtect\ASCPlugin_Protection.dll (IObit)
BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: Freemake.YoutubeButton - {e9e8eb35-ff77-455d-b677-91e5e4fc06c2} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
 
FireFox:
========
FF ProfilePath: C:\Users\Kristian\AppData\Roaming\Mozilla\Firefox\Profiles\e1dcuci1.Kristian
FF DefaultSearchEngine: Yahoo
FF Homepage: hxxp://se.search.yahoo.com/?type=800236&fr=spigot-yhp-ff
FF Keyword.URL: hxxp://se.search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&ilc=12&type=800236&p=
FF Keyword.URL: hxxp://se.search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&ilc=12&type=198484&p=
FF SelectedSearchEngine: Yahoo
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.4 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Kristian\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Kristian\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF SearchPlugin: C:\Users\Kristian\AppData\Roaming\Mozilla\Firefox\Profiles\e1dcuci1.Kristian\searchplugins\yahoo_ff.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\allaannonser-sv-SE.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\prisjakt-sv-SE.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\tyda-sv-SE.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\wikipedia-sv-SE.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-sv-SE.xml
FF Extension: Ads Removal - C:\Users\Kristian\AppData\Roaming\Mozilla\Firefox\Profiles\e1dcuci1.Kristian\Extensions\adsremoval@adsremoval.net
FF Extension: Advanced SystemCare Surfing Protection - C:\Users\Kristian\AppData\Roaming\Mozilla\Firefox\Profiles\e1dcuci1.Kristian\Extensions\ascsurfingprotection@iobit.com
FF Extension: AD Block - C:\Users\Kristian\AppData\Roaming\Mozilla\Firefox\Profiles\e1dcuci1.Kristian\Extensions\searchads@instair.net
FF Extension: Start Page - C:\Users\Kristian\AppData\Roaming\Mozilla\Firefox\Profiles\e1dcuci1.Kristian\Extensions\{58d2a791-6199-482f-a9aa-9b725ec61362}
FF Extension: Click to call with Skype - C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF HKLM\...\Firefox\Extensions: [fmdownloader@gmail.com] - D:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Firefox\fmdownloader@gmail.com\
FF Extension: Freemake Video Downloader Plugin - D:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Firefox\fmdownloader@gmail.com\
FF HKLM\...\Firefox\Extensions: [ytfmdownloader@gmail.com] - D:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Firefox\ytfmdownloader@gmail.com\
FF Extension: Freemake Youtube Download Button - D:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Firefox\ytfmdownloader@gmail.com\
FF HKLM\...\Firefox\Extensions: [fmconverter@gmail.com] - D:\Program Files\Freemake\Freemake Video Converter\BrowserPlugin\Firefox\
FF Extension: Freemake Video Converter Plugin - D:\Program Files\Freemake\Freemake Video Converter\BrowserPlugin\Firefox\
 
Chrome: 
=======
CHR HomePage: hxxp://www.rednote.se/
CHR RestoreOnStartup: "hxxp://se.search.yahoo.com/?type=800236&fr=spigot-yhp-ch"
CHR DefaultNewTabURL: 
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\Kristian\AppData\Local\Google\Chrome\Application\31.0.1650.63\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Kristian\AppData\Local\Google\Chrome\Application\31.0.1650.63\pdf.dll ()
CHR Plugin: (Shockwave Flash) - C:\Users\Kristian\AppData\Local\Google\Chrome\Application\31.0.1650.63\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\system32\Macromed\Flash\NPSWF32_11_3_300_262.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Microsoft\u00ae Windows Media Player Firefox Plugin) - C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll (Microsoft Corporation)
CHR Plugin: (Windows Genuine Advantage) - C:\Program Files\Mozilla Firefox\plugins\npLegitCheckPlugin.dll (Microsoft Corporation)
CHR Plugin: (2007 Microsoft Office system) - C:\Program Files\Mozilla Firefox\plugins\NPOFF12.DLL (Microsoft Corporation)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll (Apple Inc.)
CHR Plugin: (Java Platform SE 6 U33) - C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll No File
CHR Plugin: (Java Deployment Toolkit 6.0.330.3) - C:\Windows\system32\npdeployJava1.dll No File
CHR Plugin: (Silverlight Plug-In) - C:\Program Files\Microsoft Silverlight\5.0.61118.0\npctrl.dll No File
CHR Plugin: (Google Update) - C:\Users\Kristian\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File
CHR Plugin: (Windows Presentation Foundation) - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR Plugin: (VLC Web Plugin) - D:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
CHR Extension: (YouTube) - C:\Users\Kristian\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\Kristian\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Advanced SystemCare Surfing Protection) - C:\Users\Kristian\AppData\Local\Google\Chrome\User Data\Default\Extensions\nfengeggddojhakldhlpjdlddgkkjkdd\1.0.0_1
CHR Extension: (Google Wallet) - C:\Users\Kristian\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_0
CHR Extension: (Gmail) - C:\Users\Kristian\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1
CHR HKLM\...\Chrome\Extension: [bpegkgagfojjbcpkihigfmkojdmmimdf] - D:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Chrome\Freemake.Plugin.Chrome.crx
CHR HKLM\...\Chrome\Extension: [ehgldbbpchgpcfagfpfjgoomddhccfgh] - D:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Chrome\ChromeYoutubePlugin.crx
CHR HKLM\...\Chrome\Extension: [jbolfgndggfhhpbnkgnpjkfhinclbigj] - D:\Program Files\Freemake\Freemake Video Converter\BrowserPlugin\Chrome\Freemake.Plugin.Chrome.crx
CHR HKLM\...\Chrome\Extension: [nfengeggddojhakldhlpjdlddgkkjkdd] - C:\Program Files\IObit\Surfing Protection\BrowerProtect\ASC_GhromePlugin.crx
CHR StartMenuInternet: Google Chrome - C:\Users\Kristian\AppData\Local\Google\Chrome\Application\chrome.exe
 
========================== Services (Whitelisted) =================
 
R2 AdvancedSystemCareService7; C:\Program Files\IObit\Advanced SystemCare 7\ASCService.exe [881440 2013-12-09] (IObit)
R2 HFGService; C:\Windows\System32\HFGService.dll [419224 2010-02-05] (CSR, plc)
R2 IMFservice; D:\IObit Malware Fighter\IMFsrv.exe [341824 2013-11-11] (IObit)
R2 iprip; C:\Windows\System32\iprip.dll [29696 2006-11-02] (Microsoft Corporation)
S2 LiveUpdateSvc; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2151200 2013-12-03] (IObit)
S4 MBAMScheduler; D:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
S4 MBAMService; D:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [22208 2013-10-23] (Microsoft Corporation)
R3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [280288 2013-10-23] (Microsoft Corporation)
R2 SPAMfighter Update Service; C:\Program Files\Fighters\SPAMfighter\sfus.exe [216608 2013-10-30] (SPAMfighter ApS)
R2 Suite Service; C:\Program Files\Fighters\FighterSuiteService.exe [1281568 2013-10-29] (SPAMfighter ApS)
S4 SecureUpdateSvc; C:\Program Files\Secure Speed Dial\IE\SecureUpdate.exe [x]
 
==================== Drivers (Whitelisted) ====================
 
R1 avgtp; C:\Windows\system32\drivers\avgtpx86.sys [37664 2013-11-22] (AVG Technologies)
S3 BthAudioHF; C:\Windows\System32\DRIVERS\BthAudioHF.sys [48024 2010-02-05] (CSR, plc)
S3 BthAvrcp; C:\Windows\System32\DRIVERS\BthAvrcp.sys [28048 2010-02-05] (CSR, plc)
S3 csr_a2dp; C:\Windows\System32\drivers\bthav.sys [66952 2010-02-05] (CSR, plc)
S4 FileMonitor; D:\IObit Malware Fighter\Drivers\wlh_x86\FileMonitor.sys [21480 2013-03-23] (IObit)
S4 JRAID; C:\Windows\system32\drivers\jraid.sys [48256 2007-06-13] (JMicron Technology Corp.)
S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [22856 2013-04-04] (Malwarebytes Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [214696 2013-09-27] (Microsoft Corporation)
R1 MpKsl11399ac5; C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{EF4B1B95-63A5-4375-A08B-6BEBAACA8046}\MpKsl11399ac5.sys [40392 2014-01-01] (Microsoft Corporation)
S3 NPF; C:\Windows\System32\drivers\NPF.sys [35088 2011-02-11] (CACE Technologies, Inc.)
S3 s0017bus; C:\Windows\System32\DRIVERS\s0017bus.sys [86824 2008-10-21] (MCCI Corporation)
S3 s0017mdfl; C:\Windows\System32\DRIVERS\s0017mdfl.sys [15016 2008-10-21] (MCCI Corporation)
S3 s0017mdm; C:\Windows\System32\DRIVERS\s0017mdm.sys [114600 2008-10-21] (MCCI Corporation)
S3 s0017mgmt; C:\Windows\System32\DRIVERS\s0017mgmt.sys [108328 2008-10-21] (MCCI Corporation)
S3 s0017nd5; C:\Windows\System32\DRIVERS\s0017nd5.sys [26024 2008-10-21] (MCCI Corporation)
S3 s0017obex; C:\Windows\System32\DRIVERS\s0017obex.sys [104616 2008-10-21] (MCCI Corporation)
S3 s0017unic; C:\Windows\System32\DRIVERS\s0017unic.sys [109736 2008-10-21] (MCCI Corporation)
R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [15672 2013-05-22] ()
S3 UrlFilter; D:\IObit Malware Fighter\drivers\wlh_x86\UrlFilter.sys [20944 2013-11-19] (IObit.com)
S4 blbdrive; \SystemRoot\system32\drivers\blbdrive.sys [x]
U3 DfSdkS; 
S3 IpInIp; system32\DRIVERS\ipinip.sys [x]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [x]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [x]
S3 RegFilter; \??\C:\Program Files\IObit\IObit Malware Fighter\drivers\wlh_x86\regfilter.sys [x]
S3 USBAAPL; System32\Drivers\usbaapl.sys [x]
 
==================== NetSvcs (Whitelisted) ===================
 
 
==================== One Month Created Files and Folders ========
 
2014-01-01 12:19 - 2014-01-01 12:20 - 00021538 _____ C:\Users\Kristian\Desktop\FRST.txt
2014-01-01 12:19 - 2014-01-01 12:19 - 00000000 ____D C:\FRST
2014-01-01 11:43 - 2014-01-01 11:43 - 01064333 _____ (Farbar) C:\Users\Kristian\Desktop\FRST.exe
2014-01-01 11:37 - 2014-01-01 11:37 - 00006124 _____ C:\Users\Kristian\Desktop\AdwCleaner[R0].txt
2014-01-01 11:35 - 2014-01-01 11:44 - 00000000 ____D C:\AdwCleaner
2014-01-01 11:33 - 2014-01-01 11:33 - 01233962 _____ C:\Users\Kristian\Desktop\adwcleaner.exe
2014-01-01 11:24 - 2014-01-01 11:27 - 00000000 ____D C:\Users\Kristian\{cd816e52-5e7e-420f-87ea-46a788d88674}
2013-12-31 15:21 - 2013-12-31 15:21 - 00000000 ____D C:\Users\Kristian\{23d68cc6-b384-4137-b3cc-195ae9286fad}
2013-12-31 15:19 - 2013-12-31 15:19 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2013-12-31 15:14 - 2013-12-31 15:14 - 01824000 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib.dll
2013-12-31 15:14 - 2013-12-31 15:14 - 00604928 _____ (DTS, Inc.) C:\Windows\system32\sltech32.dll
2013-12-31 15:13 - 2013-12-31 15:14 - 00218368 _____ (TODO: <Company name>) C:\Windows\system32\slprp32.dll
2013-12-31 15:13 - 2013-12-31 15:13 - 05681196 _____ C:\Windows\system32\Drivers\rtvienna.dat
2013-12-31 15:13 - 2013-12-31 15:13 - 02929048 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHDA.sys
2013-12-31 15:13 - 2013-12-31 15:13 - 02547928 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkPgExt.dll
2013-12-31 15:13 - 2013-12-31 15:13 - 01596488 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSndMgr.cpl
2013-12-31 15:13 - 2013-12-31 15:13 - 00938752 _____ (SRS Labs, Inc.) C:\Windows\system32\slcnt32.dll
2013-12-31 15:13 - 2013-12-31 15:13 - 00919600 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll
2013-12-31 15:13 - 2013-12-31 15:13 - 00823040 _____ (DTS, Inc.) C:\Windows\system32\sl3apo32.dll
2013-12-31 15:13 - 2013-12-31 15:13 - 00126680 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoInstII.dll
2013-12-31 15:12 - 2013-12-31 15:13 - 00782040 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApoApi.dll
2013-12-31 15:12 - 2013-12-31 15:12 - 41974272 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes.dat
2013-12-31 15:12 - 2013-12-31 15:12 - 00693329 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2013-12-31 15:11 - 2013-12-31 15:11 - 27369216 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnA.dll
2013-12-31 15:11 - 2013-12-31 15:11 - 05115672 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOlfx.dll
2013-12-31 15:11 - 2013-12-31 15:11 - 03629824 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnN.dll
2013-12-31 15:11 - 2013-12-31 15:11 - 01677568 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek2.dll
2013-12-31 15:11 - 2013-12-31 15:11 - 00926976 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxSpeechAPO.dll
2013-12-31 15:11 - 2013-12-31 15:11 - 00865592 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOSettingsIPC.dll
2013-12-31 15:11 - 2013-12-31 15:11 - 00852016 _____ (Sony Corporation) C:\Windows\system32\MISS_APO.dll
2013-12-31 15:11 - 2013-12-31 15:11 - 00761088 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO20.dll
2013-12-31 15:11 - 2013-12-31 15:11 - 00509184 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll
2013-12-31 15:10 - 2013-12-31 15:11 - 13881600 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek.dll
2013-12-31 15:10 - 2013-12-31 15:10 - 01935104 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ.dll
2013-12-31 15:10 - 2013-12-31 15:10 - 01097984 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO50.dll
2013-12-31 15:10 - 2013-12-31 15:10 - 00873728 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO40.dll
2013-12-31 15:10 - 2013-12-31 15:10 - 00860416 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell.dll
2013-12-31 15:10 - 2013-12-31 15:10 - 00509184 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 06176944 _____ (Dolby Laboratories) C:\Windows\system32\DDPP32A.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 02395680 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 01489072 _____ (Dolby Laboratories) C:\Windows\system32\DDPD32A.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00502584 _____ C:\Windows\system32\audioLibVc.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00426944 _____ (DTS) C:\Windows\system32\DTSU2PLFX32.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00403392 _____ (DTS) C:\Windows\system32\DTSU2PGFX32.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00346048 _____ (DTS) C:\Windows\system32\DTSU2PREC32.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00272048 _____ (Dolby Laboratories) C:\Windows\system32\DDPO32A.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00219312 _____ (Dolby Laboratories) C:\Windows\system32\DDPA32.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00188696 _____ C:\Windows\system32\AcpiServiceVnA.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00182472 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTACap.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00092584 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2013-12-31 15:03 - 2014-01-01 11:48 - 00000278 _____ C:\Windows\Tasks\Driver Booster Update.job
2013-12-31 15:03 - 2014-01-01 11:16 - 00001017 _____ C:\Users\Public\Desktop\Driver Booster.lnk
2013-12-28 19:04 - 2013-12-28 19:22 - 00000447 _____ C:\Users\Kristian\Documents\1.txt
2013-12-27 04:46 - 2013-12-27 04:46 - 00001074 _____ C:\Users\Kristian\AppData\Roaming\Microsoft\Windows\Start Menu\Uninstall Programs.lnk
2013-12-27 04:46 - 2013-12-27 04:46 - 00001050 _____ C:\Users\Public\Desktop\IObit Uninstaller.lnk
2013-12-27 04:31 - 2013-12-27 04:32 - 00000000 ____D C:\Users\Kristian\{bc3c5376-941d-42fd-ada2-9f4bbdf56756}
2013-12-27 04:18 - 2013-12-27 04:18 - 00000588 _____ C:\Users\Public\Desktop\IObit Malware Fighter.lnk
2013-12-19 18:06 - 2013-12-19 18:06 - 00000000 ____D C:\Users\Kristian\SyncFolder
2013-12-19 18:01 - 2013-12-19 18:01 - 00000806 _____ C:\Users\Public\Desktop\One-Click-Optimizer (WO2013).lnk
2013-12-19 18:01 - 2013-12-19 18:01 - 00000626 _____ C:\Users\Public\Desktop\Ashampoo WinOptimizer 2013.lnk
2013-12-19 18:01 - 2009-08-24 22:08 - 00028160 _____ (mst software GmbH, Germany) C:\Windows\system32\DfSdkBt.exe
2013-12-11 09:54 - 2013-11-15 00:13 - 12344320 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-12-11 09:54 - 2013-11-14 23:50 - 09739264 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-12-11 09:54 - 2013-11-14 23:50 - 01806848 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-12-11 09:54 - 2013-11-14 23:43 - 01105408 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-12-11 09:54 - 2013-11-14 23:42 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-12-11 09:54 - 2013-11-14 23:42 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-12-11 09:54 - 2013-11-14 23:41 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-12-11 09:54 - 2013-11-14 23:40 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-12-11 09:54 - 2013-11-14 23:38 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-12-11 09:54 - 2013-11-14 23:38 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-12-11 09:54 - 2013-11-14 23:38 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-12-11 09:54 - 2013-11-14 23:37 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-12-11 09:54 - 2013-11-14 23:36 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-12-11 09:54 - 2013-11-14 23:36 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-12-11 09:54 - 2013-11-14 23:35 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-12-11 09:54 - 2013-11-14 23:32 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-12-11 08:50 - 2013-10-30 03:13 - 01304064 _____ (Microsoft Corporation) C:\Windows\system32\WMALFXGFXDSP.dll
2013-12-11 08:50 - 2013-10-30 03:12 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\SysFxUI.dll
2013-12-11 08:50 - 2013-10-30 02:43 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2013-12-11 08:50 - 2013-10-30 01:43 - 00167936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2013-12-11 08:50 - 2013-10-30 01:35 - 02050560 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-12-11 08:50 - 2013-10-22 08:19 - 00158208 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2013-12-11 08:50 - 2013-10-11 03:08 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2013-12-11 08:50 - 2013-10-11 03:08 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2013-12-11 08:50 - 2013-10-11 03:08 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wshcon.dll
2013-12-11 08:50 - 2013-10-11 01:35 - 00155648 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2013-12-11 08:50 - 2013-10-11 01:35 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2013-12-09 17:42 - 2013-12-09 17:42 - 00000000 ____D C:\sd_old
2013-12-05 21:45 - 2013-12-05 21:45 - 00000000 ____D C:\ProgramData\Auslogics
 
==================== One Month Modified Files and Folders =======
 
2014-01-01 12:20 - 2014-01-01 12:19 - 00021538 _____ C:\Users\Kristian\Desktop\FRST.txt
2014-01-01 12:19 - 2014-01-01 12:19 - 00000000 ____D C:\FRST
2014-01-01 12:08 - 2013-08-08 10:50 - 01888859 _____ C:\Windows\WindowsUpdate.log
2014-01-01 12:08 - 2011-09-25 13:35 - 00001016 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4092986270-2831543146-3790693587-1000UA.job
2014-01-01 12:08 - 2011-09-25 13:35 - 00000964 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4092986270-2831543146-3790693587-1000Core.job
2014-01-01 11:56 - 2011-09-10 17:13 - 00640090 _____ C:\Windows\system32\perfh01D.dat
2014-01-01 11:56 - 2011-09-10 17:13 - 00131406 _____ C:\Windows\system32\perfc01D.dat
2014-01-01 11:56 - 2006-11-02 11:33 - 01505006 _____ C:\Windows\system32\PerfStringBackup.INI
2014-01-01 11:52 - 2012-04-25 20:22 - 00000438 _____ C:\Windows\system32\Drivers\etc\hosts.ics
2014-01-01 11:49 - 2013-02-06 23:44 - 00000000 ____D C:\Windows\system32\NtmsData
2014-01-01 11:48 - 2013-12-31 15:03 - 00000278 _____ C:\Windows\Tasks\Driver Booster Update.job
2014-01-01 11:48 - 2006-11-02 13:58 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2014-01-01 11:48 - 2006-11-02 13:45 - 00003648 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2014-01-01 11:48 - 2006-11-02 13:45 - 00003648 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2014-01-01 11:45 - 2013-02-26 15:22 - 00000012 _____ C:\Windows\bthservsdp.dat
2014-01-01 11:45 - 2006-11-02 13:58 - 00032590 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2014-01-01 11:44 - 2014-01-01 11:35 - 00000000 ____D C:\AdwCleaner
2014-01-01 11:43 - 2014-01-01 11:43 - 01064333 _____ (Farbar) C:\Users\Kristian\Desktop\FRST.exe
2014-01-01 11:41 - 2012-04-08 17:34 - 00000868 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-01-01 11:37 - 2014-01-01 11:37 - 00006124 _____ C:\Users\Kristian\Desktop\AdwCleaner[R0].txt
2014-01-01 11:33 - 2014-01-01 11:33 - 01233962 _____ C:\Users\Kristian\Desktop\adwcleaner.exe
2014-01-01 11:27 - 2014-01-01 11:24 - 00000000 ____D C:\Users\Kristian\{cd816e52-5e7e-420f-87ea-46a788d88674}
2014-01-01 11:24 - 2011-09-10 07:49 - 00000000 ____D C:\Users\Kristian
2014-01-01 11:16 - 2013-12-31 15:03 - 00001017 _____ C:\Users\Public\Desktop\Driver Booster.lnk
2014-01-01 11:09 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\LogFiles
2014-01-01 11:07 - 2013-01-19 16:05 - 00000308 _____ C:\Windows\Tasks\GlaryInitialize.job
2013-12-31 17:32 - 2011-09-24 14:14 - 00000000 ____D C:\Users\Kristian\AppData\Roaming\Macromedia
2013-12-31 15:21 - 2013-12-31 15:21 - 00000000 ____D C:\Users\Kristian\{23d68cc6-b384-4137-b3cc-195ae9286fad}
2013-12-31 15:19 - 2013-12-31 15:19 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2013-12-31 15:18 - 2011-09-24 12:52 - 00000000 ____D C:\Windows\system32\RTCOM
2013-12-31 15:14 - 2013-12-31 15:14 - 01824000 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib.dll
2013-12-31 15:14 - 2013-12-31 15:14 - 00604928 _____ (DTS, Inc.) C:\Windows\system32\sltech32.dll
2013-12-31 15:14 - 2013-12-31 15:13 - 00218368 _____ (TODO: <Company name>) C:\Windows\system32\slprp32.dll
2013-12-31 15:13 - 2013-12-31 15:13 - 05681196 _____ C:\Windows\system32\Drivers\rtvienna.dat
2013-12-31 15:13 - 2013-12-31 15:13 - 02929048 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHDA.sys
2013-12-31 15:13 - 2013-12-31 15:13 - 02547928 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkPgExt.dll
2013-12-31 15:13 - 2013-12-31 15:13 - 01596488 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSndMgr.cpl
2013-12-31 15:13 - 2013-12-31 15:13 - 00938752 _____ (SRS Labs, Inc.) C:\Windows\system32\slcnt32.dll
2013-12-31 15:13 - 2013-12-31 15:13 - 00919600 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll
2013-12-31 15:13 - 2013-12-31 15:13 - 00823040 _____ (DTS, Inc.) C:\Windows\system32\sl3apo32.dll
2013-12-31 15:13 - 2013-12-31 15:13 - 00126680 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoInstII.dll
2013-12-31 15:13 - 2013-12-31 15:12 - 00782040 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApoApi.dll
2013-12-31 15:12 - 2013-12-31 15:12 - 41974272 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes.dat
2013-12-31 15:12 - 2013-12-31 15:12 - 00693329 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2013-12-31 15:12 - 2013-10-11 10:26 - 02329304 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO.dll
2013-12-31 15:11 - 2013-12-31 15:11 - 27369216 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnA.dll
2013-12-31 15:11 - 2013-12-31 15:11 - 05115672 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOlfx.dll
2013-12-31 15:11 - 2013-12-31 15:11 - 03629824 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnN.dll
2013-12-31 15:11 - 2013-12-31 15:11 - 01677568 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek2.dll
2013-12-31 15:11 - 2013-12-31 15:11 - 00926976 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxSpeechAPO.dll
2013-12-31 15:11 - 2013-12-31 15:11 - 00865592 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOSettingsIPC.dll
2013-12-31 15:11 - 2013-12-31 15:11 - 00852016 _____ (Sony Corporation) C:\Windows\system32\MISS_APO.dll
2013-12-31 15:11 - 2013-12-31 15:11 - 00761088 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO20.dll
2013-12-31 15:11 - 2013-12-31 15:11 - 00509184 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll
2013-12-31 15:11 - 2013-12-31 15:10 - 13881600 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek.dll
2013-12-31 15:10 - 2013-12-31 15:10 - 01935104 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ.dll
2013-12-31 15:10 - 2013-12-31 15:10 - 01097984 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO50.dll
2013-12-31 15:10 - 2013-12-31 15:10 - 00873728 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO40.dll
2013-12-31 15:10 - 2013-12-31 15:10 - 00860416 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell.dll
2013-12-31 15:10 - 2013-12-31 15:10 - 00509184 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 06176944 _____ (Dolby Laboratories) C:\Windows\system32\DDPP32A.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 02395680 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 01489072 _____ (Dolby Laboratories) C:\Windows\system32\DDPD32A.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00502584 _____ C:\Windows\system32\audioLibVc.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00426944 _____ (DTS) C:\Windows\system32\DTSU2PLFX32.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00403392 _____ (DTS) C:\Windows\system32\DTSU2PGFX32.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00346048 _____ (DTS) C:\Windows\system32\DTSU2PREC32.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00272048 _____ (Dolby Laboratories) C:\Windows\system32\DDPO32A.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00219312 _____ (Dolby Laboratories) C:\Windows\system32\DDPA32.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00188696 _____ C:\Windows\system32\AcpiServiceVnA.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00182472 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTACap.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00092584 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2013-12-31 15:00 - 2013-11-04 14:50 - 00002030 _____ C:\Users\Public\Desktop\Advanced SystemCare 7.lnk
2013-12-31 14:52 - 2013-06-15 11:34 - 39542784 _____ C:\Windows\system32\config\components.iobit
2013-12-31 14:52 - 2013-06-15 11:34 - 36782080 _____ C:\Windows\system32\config\software.iobit
2013-12-31 14:52 - 2013-06-15 11:34 - 00270336 _____ C:\Windows\system32\config\default.iobit
2013-12-31 14:52 - 2013-06-15 11:34 - 00053248 _____ C:\Windows\system32\config\sam.iobit
2013-12-31 14:52 - 2013-06-15 11:34 - 00020480 _____ C:\Windows\system32\config\security.iobit
2013-12-28 19:22 - 2013-12-28 19:04 - 00000447 _____ C:\Users\Kristian\Documents\1.txt
2013-12-28 11:43 - 2013-11-04 14:50 - 00000000 ____D C:\ProgramData\ProductData
2013-12-27 04:46 - 2013-12-27 04:46 - 00001074 _____ C:\Users\Kristian\AppData\Roaming\Microsoft\Windows\Start Menu\Uninstall Programs.lnk
2013-12-27 04:46 - 2013-12-27 04:46 - 00001050 _____ C:\Users\Public\Desktop\IObit Uninstaller.lnk
2013-12-27 04:46 - 2011-12-09 11:49 - 00000000 ____D C:\Users\Kristian\AppData\Roaming\IObit
2013-12-27 04:32 - 2013-12-27 04:31 - 00000000 ____D C:\Users\Kristian\{bc3c5376-941d-42fd-ada2-9f4bbdf56756}
2013-12-27 04:23 - 2013-03-13 15:42 - 00000000 ____D C:\Users\Kristian\AppData\Local\Windows Live
2013-12-27 04:21 - 2012-11-15 19:04 - 00000000 ____D C:\ProgramData\IObit
2013-12-27 04:18 - 2013-12-27 04:18 - 00000588 _____ C:\Users\Public\Desktop\IObit Malware Fighter.lnk
2013-12-22 19:38 - 2013-05-30 14:31 - 00000438 _____ C:\Windows\BRWMARK.INI
2013-12-22 19:38 - 2013-05-30 14:31 - 00000034 _____ C:\Windows\system32\BD2030.DAT
2013-12-19 18:06 - 2013-12-19 18:06 - 00000000 ____D C:\Users\Kristian\SyncFolder
2013-12-19 18:01 - 2013-12-19 18:01 - 00000806 _____ C:\Users\Public\Desktop\One-Click-Optimizer (WO2013).lnk
2013-12-19 18:01 - 2013-12-19 18:01 - 00000626 _____ C:\Users\Public\Desktop\Ashampoo WinOptimizer 2013.lnk
2013-12-19 18:01 - 2013-03-05 19:40 - 00000000 ____D C:\ProgramData\Ashampoo
2013-12-18 15:32 - 2012-10-07 00:59 - 00000986 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-12-18 15:32 - 2012-10-07 00:59 - 00000982 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-12-13 15:43 - 2012-04-05 08:38 - 00001912 _____ C:\Windows\epplauncher.mif
2013-12-13 15:42 - 2012-04-05 09:17 - 00000000 ____D C:\Program Files\Microsoft Security Client
2013-12-12 09:46 - 2011-09-11 16:41 - 00091648 _____ C:\Users\Kristian\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-12-11 10:13 - 2006-11-02 13:44 - 00232112 _____ C:\Windows\system32\FNTCACHE.DAT
2013-12-11 10:00 - 2013-07-11 13:35 - 00000000 ____D C:\Windows\system32\MRT
2013-12-11 09:56 - 2006-11-02 11:24 - 88123800 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2013-12-10 10:16 - 2013-08-24 19:27 - 00000000 ____D C:\Program Files\Fighters
2013-12-09 17:42 - 2013-12-09 17:42 - 00000000 ____D C:\sd_old
2013-12-05 21:45 - 2013-12-05 21:45 - 00000000 ____D C:\ProgramData\Auslogics
2013-12-05 20:55 - 2011-11-08 14:41 - 00000848 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-12-05 20:55 - 2011-11-08 14:41 - 00000000 ____D C:\Program Files\CCleaner
2013-12-05 19:10 - 2013-01-13 10:24 - 00002107 _____ C:\Users\Kristian\Desktop\Google Chrome.lnk
2013-12-03 07:33 - 2006-11-02 11:22 - 36962304 _____ C:\Windows\system32\config\software_previous
2013-12-03 07:33 - 2006-11-02 11:22 - 26214400 _____ C:\Windows\system32\config\system_previous
2013-12-03 07:32 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\spool
2013-12-03 07:32 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\Msdtc
2013-12-03 07:32 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\registration
2013-12-03 07:28 - 2006-11-02 11:22 - 39583744 _____ C:\Windows\system32\config\components_previous
2013-12-03 07:28 - 2006-11-02 11:22 - 00053248 _____ C:\Windows\system32\config\sam_previous
2013-12-02 21:06 - 2006-11-02 11:22 - 00262144 _____ C:\Windows\system32\config\default_previous
2013-12-02 21:06 - 2006-11-02 11:22 - 00020480 _____ C:\Windows\system32\config\security_previous
 
Some content of TEMP:
====================
C:\Users\Kristian\AppData\Local\Temp\Quarantine.exe
 
 
==================== Bamital & volsnap Check =================
 
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
 
 
LastRegBack: 2014-01-01 11:58
 
==================== End Of Log ============================
Länk till inlägg
Dela på andra webbplatser

Tack detsamma! :)

 

Jag ser inget du behöver i AdwCleaner-loggen. Ser du något som du vill ha kvar?

 

Om inte:

 

Stäng alla program, inklusive webbläsare.

Dubbelklicka på AdwCleaner för att starta programmet.

 

Klicka på [/b]Scan[/b]-knappen.

Vänta tills sökningen är klar.

 

Klicka på Clean-knappen.

Tryck på OK.

Tryck på OK fler gånger om det kommer upp meddelanden.

 

Datorn kommer att startas om.

En rapport kommer upp, kopiera innehållet och klistra in i ditt svar.

Om rapporten inte kommer upp, så finns den även som C:\AdwCleaner[s0].txt

 

Försvann yahoo?

Om inte behöver jag se FRST-loggen.

Yahoo försvann,

men nu när jag startade om webbläsaren så kom den tillbaks

Suck, suck

Länk till inlägg
Dela på andra webbplatser

Lägg hit en FRST-logg som är skapad efter att AdwCleaner rensade så tittar jag på den sent i kväll.

Här kommer den senaste från FRST:

Jag får fortfarande yahoo när jag startar webbläsaren

---------------------------------------------------------------

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 31-12-2013
Ran by Kristian (administrator) on SQUAREDATORN on 01-01-2014 12:50:07
Running from C:\Users\Kristian\Desktop
Microsoft® Windows Vista™ Home Basic  Service Pack 2 (X86) OS Language: Swedish
Internet Explorer Version 9
Boot Mode: Normal
 
==================== Processes (Whitelisted) ===================
 
(IObit) C:\Program Files\IObit\Advanced SystemCare 7\ASCService.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(IObit) D:\IObit Malware Fighter\IMFsrv.exe
(IObit) C:\Program Files\IObit\Advanced SystemCare 7\Monitor.exe
(Google Inc.) D:\Program Files\Google\Gmail Notifier\gnotify.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(SPAMfighter ApS) C:\Program Files\Fighters\Tray\FightersTray.exe
(SPAMfighter ApS) C:\Program Files\Fighters\SPAMfighter\sfagent.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
(Microsoft Corporation) C:\Windows\System32\CISVC.EXE
(Microsoft Corporation) C:\Windows\System32\dfsr.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\System32\Locator.exe
(Microsoft Corporation) C:\Windows\System32\TCPSVCS.EXE
(Microsoft Corporation) C:\Windows\System32\snmp.exe
(SPAMfighter ApS) C:\Program Files\Fighters\SPAMfighter\sfus.exe
(Microsoft Corporation) C:\Windows\System32\UI0Detect.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(IObit) D:\IObit Malware Fighter\IMF.exe
(Microsoft Corporation) C:\Windows\System32\iashost.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) \\?\C:\Windows\system32\wbem\WMIADAP.EXE
 
==================== Registry (Whitelisted) ==================
 
HKLM\...\Run: [{0228e555-4f9c-4e35-a3ec-b109a192b4c2}] - D:\Program Files\Google\Gmail Notifier\gnotify.exe [479232 2005-07-15] (Google Inc.)
HKLM\...\Run: [synTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1348904 2008-08-14] (Synaptics, Inc.)
HKLM\...\Run: [CommonToolkitTray] - C:\Program Files\Fighters\Tray\FightersTray.exe [1681952 2013-10-29] (SPAMfighter ApS)
HKLM\...\Run: [sfagent] - C:\Program Files\Fighters\SPAMfighter\sfagent.exe [1069600 2013-10-30] (SPAMfighter ApS)
HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [12017368 2013-12-31] (Realtek Semiconductor)
HKLM\...\Run: [iObit Malware Fighter] - D:\IObit Malware Fighter\IMF.exe [1573184 2013-12-13] (IObit)
HKCU\...\Run: [WMPNSCFG] - C:\Program Files\Windows Media Player\wmpnscfg.exe [202240 2008-01-19] (Microsoft Corporation)
HKCU\...\Policies\Explorer\Run: [sidebar] - C:\Program Files\Windows Sidebar\sidebar.exe [1233920 2009-04-11] ( (Microsoft Corporation))
HKU\Default\...\Run: [WindowsWelcomeCenter] - rundll32.exe oobefldr.dll,ShowWelcomeCenter
HKU\Default User\...\Run: [WindowsWelcomeCenter] - rundll32.exe oobefldr.dll,ShowWelcomeCenter
IFEO\cmm.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\diskanalysis.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\dupefinder.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\eff.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\encryptexe.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\fileencrypt.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\filesplitter.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\gsd.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\gtbsetup.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\gubar.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\iehelper.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\initialize.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\Integrator.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\IObitCommunities.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\joinexe.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\junkcleaner.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\memdefrag.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\NewUpdater.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\oneclickoptimizer.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\procmgr.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\regdefrag.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\regrepair.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\SDInit.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\shortcutsfixer.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\shredder.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\SmartDefrag.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\startup.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\sysinfo.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\TracksEraser.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\undelete.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\webupdate.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
IFEO\winstd.exe: [Debugger] C:\Program Files\IObit\Advanced SystemCare 7\AutoReactivator.exe
Startup: C:\Users\Kristian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\StartupFaster ()
 
==================== Internet (Whitelisted) ====================
 
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://se.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x2D5AF0F447EACC01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = sv
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://se.search.yahoo.com/?type=800236&fr=spigot-yhp-ie
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://search.certified-toolbar.com?si=41460&bs=true&tid=2938&q={searchTerms}
SearchScopes: HKCU - {559CE0E7-8137-4F91-8A02-4C76C5D1DAF6} URL = 
SearchScopes: HKCU - {7A32C2E3-984F-4D9A-B303-4FF545950486} URL = 
BHO: ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll (IObit)
BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO: Advanced SystemCare Browser Protection - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\Program Files\IObit\Surfing Protection\BrowerProtect\ASCPlugin_Protection.dll (IObit)
BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: Freemake.YoutubeButton - {e9e8eb35-ff77-455d-b677-91e5e4fc06c2} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
 
FireFox:
========
FF ProfilePath: C:\Users\Kristian\AppData\Roaming\Mozilla\Firefox\Profiles\e1dcuci1.Kristian
FF DefaultSearchEngine: Yahoo
FF Homepage: hxxp://se.search.yahoo.com/?type=800236&fr=spigot-yhp-ff
FF Keyword.URL: hxxp://se.search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&ilc=12&type=800236&p=
FF Keyword.URL: hxxp://se.search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&ilc=12&type=198484&p=
FF SelectedSearchEngine: Yahoo
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.4 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Kristian\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Kristian\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF SearchPlugin: C:\Users\Kristian\AppData\Roaming\Mozilla\Firefox\Profiles\e1dcuci1.Kristian\searchplugins\yahoo_ff.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\allaannonser-sv-SE.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\prisjakt-sv-SE.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\tyda-sv-SE.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\wikipedia-sv-SE.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-sv-SE.xml
FF Extension: Ads Removal - C:\Users\Kristian\AppData\Roaming\Mozilla\Firefox\Profiles\e1dcuci1.Kristian\Extensions\adsremoval@adsremoval.net
FF Extension: Advanced SystemCare Surfing Protection - C:\Users\Kristian\AppData\Roaming\Mozilla\Firefox\Profiles\e1dcuci1.Kristian\Extensions\ascsurfingprotection@iobit.com
FF Extension: AD Block - C:\Users\Kristian\AppData\Roaming\Mozilla\Firefox\Profiles\e1dcuci1.Kristian\Extensions\searchads@instair.net
FF Extension: Start Page - C:\Users\Kristian\AppData\Roaming\Mozilla\Firefox\Profiles\e1dcuci1.Kristian\Extensions\{58d2a791-6199-482f-a9aa-9b725ec61362}
FF Extension: Click to call with Skype - C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF HKLM\...\Firefox\Extensions: [fmdownloader@gmail.com] - D:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Firefox\fmdownloader@gmail.com\
FF Extension: Freemake Video Downloader Plugin - D:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Firefox\fmdownloader@gmail.com\
FF HKLM\...\Firefox\Extensions: [ytfmdownloader@gmail.com] - D:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Firefox\ytfmdownloader@gmail.com\
FF Extension: Freemake Youtube Download Button - D:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Firefox\ytfmdownloader@gmail.com\
FF HKLM\...\Firefox\Extensions: [fmconverter@gmail.com] - D:\Program Files\Freemake\Freemake Video Converter\BrowserPlugin\Firefox\
FF Extension: Freemake Video Converter Plugin - D:\Program Files\Freemake\Freemake Video Converter\BrowserPlugin\Firefox\
 
Chrome: 
=======
CHR HomePage: hxxp://www.rednote.se/
CHR RestoreOnStartup: "hxxp://se.search.yahoo.com/?type=800236&fr=spigot-yhp-ch"
CHR DefaultSearchKeyword: yahoo.com search
CHR DefaultSearchProvider: Yahoo
CHR DefaultNewTabURL: 
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\Kristian\AppData\Local\Google\Chrome\Application\31.0.1650.63\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Kristian\AppData\Local\Google\Chrome\Application\31.0.1650.63\pdf.dll ()
CHR Plugin: (Shockwave Flash) - C:\Users\Kristian\AppData\Local\Google\Chrome\Application\31.0.1650.63\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\system32\Macromed\Flash\NPSWF32_11_3_300_262.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Microsoft\u00AE Windows Media Player Firefox Plugin) - C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll (Microsoft Corporation)
CHR Plugin: (Windows Genuine Advantage) - C:\Program Files\Mozilla Firefox\plugins\npLegitCheckPlugin.dll (Microsoft Corporation)
CHR Plugin: (2007 Microsoft Office system) - C:\Program Files\Mozilla Firefox\plugins\NPOFF12.DLL (Microsoft Corporation)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll (Apple Inc.)
CHR Plugin: (Java Platform SE 6 U33) - C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll No File
CHR Plugin: (Java Deployment Toolkit 6.0.330.3) - C:\Windows\system32\npdeployJava1.dll No File
CHR Plugin: (Silverlight Plug-In) - C:\Program Files\Microsoft Silverlight\5.0.61118.0\npctrl.dll No File
CHR Plugin: (Google Update) - C:\Users\Kristian\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File
CHR Plugin: (Windows Presentation Foundation) - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR Plugin: (VLC Web Plugin) - D:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
CHR Extension: (YouTube) - C:\Users\Kristian\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\Kristian\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: ( "name":"Advanced SystemCare Surfing Protection",) - C:\Users\Kristian\AppData\Local\Google\Chrome\User Data\Default\Extensions\nfengeggddojhakldhlpjdlddgkkjkdd\1.0.0_0
CHR Extension: (Google Wallet) - C:\Users\Kristian\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_0
CHR Extension: (Gmail) - C:\Users\Kristian\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1
CHR HKLM\...\Chrome\Extension: [bpegkgagfojjbcpkihigfmkojdmmimdf] - D:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Chrome\Freemake.Plugin.Chrome.crx
CHR HKLM\...\Chrome\Extension: [ehgldbbpchgpcfagfpfjgoomddhccfgh] - D:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Chrome\ChromeYoutubePlugin.crx
CHR HKLM\...\Chrome\Extension: [jbolfgndggfhhpbnkgnpjkfhinclbigj] - D:\Program Files\Freemake\Freemake Video Converter\BrowserPlugin\Chrome\Freemake.Plugin.Chrome.crx
CHR HKLM\...\Chrome\Extension: [nfengeggddojhakldhlpjdlddgkkjkdd] - C:\Program Files\IObit\Surfing Protection\BrowerProtect\ASC_GhromePlugin.crx
CHR StartMenuInternet: Google Chrome - C:\Users\Kristian\AppData\Local\Google\Chrome\Application\chrome.exe
 
========================== Services (Whitelisted) =================
 
R2 AdvancedSystemCareService7; C:\Program Files\IObit\Advanced SystemCare 7\ASCService.exe [881440 2013-12-09] (IObit)
R2 HFGService; C:\Windows\System32\HFGService.dll [419224 2010-02-05] (CSR, plc)
R2 IMFservice; D:\IObit Malware Fighter\IMFsrv.exe [341824 2013-11-11] (IObit)
R2 iprip; C:\Windows\System32\iprip.dll [29696 2006-11-02] (Microsoft Corporation)
S2 LiveUpdateSvc; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2151200 2013-12-03] (IObit)
S4 MBAMScheduler; D:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
S4 MBAMService; D:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [22208 2013-10-23] (Microsoft Corporation)
R3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [280288 2013-10-23] (Microsoft Corporation)
R2 SPAMfighter Update Service; C:\Program Files\Fighters\SPAMfighter\sfus.exe [216608 2013-10-30] (SPAMfighter ApS)
S2 Suite Service; C:\Program Files\Fighters\FighterSuiteService.exe [1281568 2013-10-29] (SPAMfighter ApS)
S4 SecureUpdateSvc; C:\Program Files\Secure Speed Dial\IE\SecureUpdate.exe [x]
 
==================== Drivers (Whitelisted) ====================
 
R1 avgtp; C:\Windows\system32\drivers\avgtpx86.sys [37664 2013-11-22] (AVG Technologies)
S3 BthAudioHF; C:\Windows\System32\DRIVERS\BthAudioHF.sys [48024 2010-02-05] (CSR, plc)
S3 BthAvrcp; C:\Windows\System32\DRIVERS\BthAvrcp.sys [28048 2010-02-05] (CSR, plc)
S3 csr_a2dp; C:\Windows\System32\drivers\bthav.sys [66952 2010-02-05] (CSR, plc)
S4 FileMonitor; D:\IObit Malware Fighter\Drivers\wlh_x86\FileMonitor.sys [21480 2013-03-23] (IObit)
S4 JRAID; C:\Windows\system32\drivers\jraid.sys [48256 2007-06-13] (JMicron Technology Corp.)
S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [22856 2013-04-04] (Malwarebytes Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [214696 2013-09-27] (Microsoft Corporation)
R1 MpKsl86bda3ea; C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{EF4B1B95-63A5-4375-A08B-6BEBAACA8046}\MpKsl86bda3ea.sys [40392 2014-01-01] (Microsoft Corporation)
S3 NPF; C:\Windows\System32\drivers\NPF.sys [35088 2011-02-11] (CACE Technologies, Inc.)
S3 s0017bus; C:\Windows\System32\DRIVERS\s0017bus.sys [86824 2008-10-21] (MCCI Corporation)
S3 s0017mdfl; C:\Windows\System32\DRIVERS\s0017mdfl.sys [15016 2008-10-21] (MCCI Corporation)
S3 s0017mdm; C:\Windows\System32\DRIVERS\s0017mdm.sys [114600 2008-10-21] (MCCI Corporation)
S3 s0017mgmt; C:\Windows\System32\DRIVERS\s0017mgmt.sys [108328 2008-10-21] (MCCI Corporation)
S3 s0017nd5; C:\Windows\System32\DRIVERS\s0017nd5.sys [26024 2008-10-21] (MCCI Corporation)
S3 s0017obex; C:\Windows\System32\DRIVERS\s0017obex.sys [104616 2008-10-21] (MCCI Corporation)
S3 s0017unic; C:\Windows\System32\DRIVERS\s0017unic.sys [109736 2008-10-21] (MCCI Corporation)
R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [15672 2013-05-22] ()
S3 UrlFilter; D:\IObit Malware Fighter\drivers\wlh_x86\UrlFilter.sys [20944 2013-11-19] (IObit.com)
S4 blbdrive; \SystemRoot\system32\drivers\blbdrive.sys [x]
U3 DfSdkS; 
S3 IpInIp; system32\DRIVERS\ipinip.sys [x]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [x]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [x]
S3 RegFilter; \??\C:\Program Files\IObit\IObit Malware Fighter\drivers\wlh_x86\regfilter.sys [x]
S3 USBAAPL; System32\Drivers\usbaapl.sys [x]
 
==================== NetSvcs (Whitelisted) ===================
 
 
==================== One Month Created Files and Folders ========
 
2014-01-01 12:50 - 2014-01-01 12:51 - 00021516 _____ C:\Users\Kristian\Desktop\FRST.txt
2014-01-01 12:46 - 2014-01-01 12:46 - 00001351 _____ C:\Users\Kristian\Desktop\AdwCleaner[R0] 2.txt
2014-01-01 12:21 - 2014-01-01 12:23 - 00029061 _____ C:\Users\Kristian\Desktop\Addition.txt
2014-01-01 12:19 - 2014-01-01 12:19 - 00000000 ____D C:\FRST
2014-01-01 11:43 - 2014-01-01 11:43 - 01064333 _____ (Farbar) C:\Users\Kristian\Desktop\FRST.exe
2014-01-01 11:37 - 2014-01-01 11:37 - 00006124 _____ C:\Users\Kristian\Desktop\AdwCleaner[R0] 1.txt
2014-01-01 11:35 - 2014-01-01 12:41 - 00000000 ____D C:\AdwCleaner
2014-01-01 11:33 - 2014-01-01 11:33 - 01233962 _____ C:\Users\Kristian\Desktop\adwcleaner.exe
2014-01-01 11:24 - 2014-01-01 11:27 - 00000000 ____D C:\Users\Kristian\{cd816e52-5e7e-420f-87ea-46a788d88674}
2013-12-31 15:21 - 2013-12-31 15:21 - 00000000 ____D C:\Users\Kristian\{23d68cc6-b384-4137-b3cc-195ae9286fad}
2013-12-31 15:19 - 2013-12-31 15:19 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2013-12-31 15:14 - 2013-12-31 15:14 - 01824000 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib.dll
2013-12-31 15:14 - 2013-12-31 15:14 - 00604928 _____ (DTS, Inc.) C:\Windows\system32\sltech32.dll
2013-12-31 15:13 - 2013-12-31 15:14 - 00218368 _____ (TODO: <Company name>) C:\Windows\system32\slprp32.dll
2013-12-31 15:13 - 2013-12-31 15:13 - 05681196 _____ C:\Windows\system32\Drivers\rtvienna.dat
2013-12-31 15:13 - 2013-12-31 15:13 - 02929048 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHDA.sys
2013-12-31 15:13 - 2013-12-31 15:13 - 02547928 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkPgExt.dll
2013-12-31 15:13 - 2013-12-31 15:13 - 01596488 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSndMgr.cpl
2013-12-31 15:13 - 2013-12-31 15:13 - 00938752 _____ (SRS Labs, Inc.) C:\Windows\system32\slcnt32.dll
2013-12-31 15:13 - 2013-12-31 15:13 - 00919600 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll
2013-12-31 15:13 - 2013-12-31 15:13 - 00823040 _____ (DTS, Inc.) C:\Windows\system32\sl3apo32.dll
2013-12-31 15:13 - 2013-12-31 15:13 - 00126680 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoInstII.dll
2013-12-31 15:12 - 2013-12-31 15:13 - 00782040 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApoApi.dll
2013-12-31 15:12 - 2013-12-31 15:12 - 41974272 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes.dat
2013-12-31 15:12 - 2013-12-31 15:12 - 00693329 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2013-12-31 15:11 - 2013-12-31 15:11 - 27369216 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnA.dll
2013-12-31 15:11 - 2013-12-31 15:11 - 05115672 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOlfx.dll
2013-12-31 15:11 - 2013-12-31 15:11 - 03629824 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnN.dll
2013-12-31 15:11 - 2013-12-31 15:11 - 01677568 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek2.dll
2013-12-31 15:11 - 2013-12-31 15:11 - 00926976 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxSpeechAPO.dll
2013-12-31 15:11 - 2013-12-31 15:11 - 00865592 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOSettingsIPC.dll
2013-12-31 15:11 - 2013-12-31 15:11 - 00852016 _____ (Sony Corporation) C:\Windows\system32\MISS_APO.dll
2013-12-31 15:11 - 2013-12-31 15:11 - 00761088 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO20.dll
2013-12-31 15:11 - 2013-12-31 15:11 - 00509184 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll
2013-12-31 15:10 - 2013-12-31 15:11 - 13881600 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek.dll
2013-12-31 15:10 - 2013-12-31 15:10 - 01935104 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ.dll
2013-12-31 15:10 - 2013-12-31 15:10 - 01097984 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO50.dll
2013-12-31 15:10 - 2013-12-31 15:10 - 00873728 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO40.dll
2013-12-31 15:10 - 2013-12-31 15:10 - 00860416 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell.dll
2013-12-31 15:10 - 2013-12-31 15:10 - 00509184 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 06176944 _____ (Dolby Laboratories) C:\Windows\system32\DDPP32A.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 02395680 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 01489072 _____ (Dolby Laboratories) C:\Windows\system32\DDPD32A.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00502584 _____ C:\Windows\system32\audioLibVc.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00426944 _____ (DTS) C:\Windows\system32\DTSU2PLFX32.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00403392 _____ (DTS) C:\Windows\system32\DTSU2PGFX32.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00346048 _____ (DTS) C:\Windows\system32\DTSU2PREC32.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00272048 _____ (Dolby Laboratories) C:\Windows\system32\DDPO32A.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00219312 _____ (Dolby Laboratories) C:\Windows\system32\DDPA32.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00188696 _____ C:\Windows\system32\AcpiServiceVnA.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00182472 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTACap.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00092584 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2013-12-31 15:03 - 2014-01-01 12:44 - 00000278 _____ C:\Windows\Tasks\Driver Booster Update.job
2013-12-31 15:03 - 2014-01-01 11:16 - 00001017 _____ C:\Users\Public\Desktop\Driver Booster.lnk
2013-12-28 19:04 - 2013-12-28 19:22 - 00000447 _____ C:\Users\Kristian\Documents\1.txt
2013-12-27 04:46 - 2013-12-27 04:46 - 00001074 _____ C:\Users\Kristian\AppData\Roaming\Microsoft\Windows\Start Menu\Uninstall Programs.lnk
2013-12-27 04:46 - 2013-12-27 04:46 - 00001050 _____ C:\Users\Public\Desktop\IObit Uninstaller.lnk
2013-12-27 04:31 - 2013-12-27 04:32 - 00000000 ____D C:\Users\Kristian\{bc3c5376-941d-42fd-ada2-9f4bbdf56756}
2013-12-27 04:18 - 2013-12-27 04:18 - 00000588 _____ C:\Users\Public\Desktop\IObit Malware Fighter.lnk
2013-12-19 18:06 - 2013-12-19 18:06 - 00000000 ____D C:\Users\Kristian\SyncFolder
2013-12-19 18:01 - 2013-12-19 18:01 - 00000806 _____ C:\Users\Public\Desktop\One-Click-Optimizer (WO2013).lnk
2013-12-19 18:01 - 2013-12-19 18:01 - 00000626 _____ C:\Users\Public\Desktop\Ashampoo WinOptimizer 2013.lnk
2013-12-19 18:01 - 2009-08-24 22:08 - 00028160 _____ (mst software GmbH, Germany) C:\Windows\system32\DfSdkBt.exe
2013-12-11 09:54 - 2013-11-15 00:13 - 12344320 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-12-11 09:54 - 2013-11-14 23:50 - 09739264 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-12-11 09:54 - 2013-11-14 23:50 - 01806848 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-12-11 09:54 - 2013-11-14 23:43 - 01105408 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-12-11 09:54 - 2013-11-14 23:42 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-12-11 09:54 - 2013-11-14 23:42 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-12-11 09:54 - 2013-11-14 23:41 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-12-11 09:54 - 2013-11-14 23:40 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-12-11 09:54 - 2013-11-14 23:38 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-12-11 09:54 - 2013-11-14 23:38 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-12-11 09:54 - 2013-11-14 23:38 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-12-11 09:54 - 2013-11-14 23:37 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-12-11 09:54 - 2013-11-14 23:36 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-12-11 09:54 - 2013-11-14 23:36 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-12-11 09:54 - 2013-11-14 23:35 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-12-11 09:54 - 2013-11-14 23:32 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-12-11 08:50 - 2013-10-30 03:13 - 01304064 _____ (Microsoft Corporation) C:\Windows\system32\WMALFXGFXDSP.dll
2013-12-11 08:50 - 2013-10-30 03:12 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\SysFxUI.dll
2013-12-11 08:50 - 2013-10-30 02:43 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2013-12-11 08:50 - 2013-10-30 01:43 - 00167936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2013-12-11 08:50 - 2013-10-30 01:35 - 02050560 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-12-11 08:50 - 2013-10-22 08:19 - 00158208 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2013-12-11 08:50 - 2013-10-11 03:08 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2013-12-11 08:50 - 2013-10-11 03:08 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2013-12-11 08:50 - 2013-10-11 03:08 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wshcon.dll
2013-12-11 08:50 - 2013-10-11 01:35 - 00155648 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2013-12-11 08:50 - 2013-10-11 01:35 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2013-12-09 17:42 - 2013-12-09 17:42 - 00000000 ____D C:\sd_old
2013-12-05 21:45 - 2013-12-05 21:45 - 00000000 ____D C:\ProgramData\Auslogics
 
==================== One Month Modified Files and Folders =======
 
2014-01-01 12:55 - 2014-01-01 12:50 - 00021516 _____ C:\Users\Kristian\Desktop\FRST.txt
2014-01-01 12:54 - 2013-08-08 10:50 - 01899805 _____ C:\Windows\WindowsUpdate.log
2014-01-01 12:52 - 2011-09-10 17:13 - 00640090 _____ C:\Windows\system32\perfh01D.dat
2014-01-01 12:52 - 2011-09-10 17:13 - 00131406 _____ C:\Windows\system32\perfc01D.dat
2014-01-01 12:52 - 2006-11-02 11:33 - 01505006 _____ C:\Windows\system32\PerfStringBackup.INI
2014-01-01 12:49 - 2012-04-25 20:22 - 00000440 _____ C:\Windows\system32\Drivers\etc\hosts.ics
2014-01-01 12:47 - 2006-11-02 13:45 - 00003648 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2014-01-01 12:47 - 2006-11-02 13:45 - 00003648 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2014-01-01 12:46 - 2014-01-01 12:46 - 00001351 _____ C:\Users\Kristian\Desktop\AdwCleaner[R0] 2.txt
2014-01-01 12:45 - 2013-02-06 23:44 - 00000000 ____D C:\Windows\system32\NtmsData
2014-01-01 12:44 - 2013-12-31 15:03 - 00000278 _____ C:\Windows\Tasks\Driver Booster Update.job
2014-01-01 12:44 - 2006-11-02 13:58 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2014-01-01 12:42 - 2013-02-26 15:22 - 00000012 _____ C:\Windows\bthservsdp.dat
2014-01-01 12:42 - 2006-11-02 13:58 - 00032590 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2014-01-01 12:41 - 2014-01-01 11:35 - 00000000 ____D C:\AdwCleaner
2014-01-01 12:41 - 2012-04-08 17:34 - 00000868 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-01-01 12:23 - 2014-01-01 12:21 - 00029061 _____ C:\Users\Kristian\Desktop\Addition.txt
2014-01-01 12:19 - 2014-01-01 12:19 - 00000000 ____D C:\FRST
2014-01-01 12:08 - 2011-09-25 13:35 - 00001016 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4092986270-2831543146-3790693587-1000UA.job
2014-01-01 12:08 - 2011-09-25 13:35 - 00000964 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4092986270-2831543146-3790693587-1000Core.job
2014-01-01 11:43 - 2014-01-01 11:43 - 01064333 _____ (Farbar) C:\Users\Kristian\Desktop\FRST.exe
2014-01-01 11:37 - 2014-01-01 11:37 - 00006124 _____ C:\Users\Kristian\Desktop\AdwCleaner[R0] 1.txt
2014-01-01 11:33 - 2014-01-01 11:33 - 01233962 _____ C:\Users\Kristian\Desktop\adwcleaner.exe
2014-01-01 11:27 - 2014-01-01 11:24 - 00000000 ____D C:\Users\Kristian\{cd816e52-5e7e-420f-87ea-46a788d88674}
2014-01-01 11:24 - 2011-09-10 07:49 - 00000000 ____D C:\Users\Kristian
2014-01-01 11:16 - 2013-12-31 15:03 - 00001017 _____ C:\Users\Public\Desktop\Driver Booster.lnk
2014-01-01 11:09 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\LogFiles
2014-01-01 11:07 - 2013-01-19 16:05 - 00000308 _____ C:\Windows\Tasks\GlaryInitialize.job
2013-12-31 17:32 - 2011-09-24 14:14 - 00000000 ____D C:\Users\Kristian\AppData\Roaming\Macromedia
2013-12-31 15:21 - 2013-12-31 15:21 - 00000000 ____D C:\Users\Kristian\{23d68cc6-b384-4137-b3cc-195ae9286fad}
2013-12-31 15:19 - 2013-12-31 15:19 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2013-12-31 15:18 - 2011-09-24 12:52 - 00000000 ____D C:\Windows\system32\RTCOM
2013-12-31 15:14 - 2013-12-31 15:14 - 01824000 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib.dll
2013-12-31 15:14 - 2013-12-31 15:14 - 00604928 _____ (DTS, Inc.) C:\Windows\system32\sltech32.dll
2013-12-31 15:14 - 2013-12-31 15:13 - 00218368 _____ (TODO: <Company name>) C:\Windows\system32\slprp32.dll
2013-12-31 15:13 - 2013-12-31 15:13 - 05681196 _____ C:\Windows\system32\Drivers\rtvienna.dat
2013-12-31 15:13 - 2013-12-31 15:13 - 02929048 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHDA.sys
2013-12-31 15:13 - 2013-12-31 15:13 - 02547928 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkPgExt.dll
2013-12-31 15:13 - 2013-12-31 15:13 - 01596488 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSndMgr.cpl
2013-12-31 15:13 - 2013-12-31 15:13 - 00938752 _____ (SRS Labs, Inc.) C:\Windows\system32\slcnt32.dll
2013-12-31 15:13 - 2013-12-31 15:13 - 00919600 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll
2013-12-31 15:13 - 2013-12-31 15:13 - 00823040 _____ (DTS, Inc.) C:\Windows\system32\sl3apo32.dll
2013-12-31 15:13 - 2013-12-31 15:13 - 00126680 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoInstII.dll
2013-12-31 15:13 - 2013-12-31 15:12 - 00782040 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApoApi.dll
2013-12-31 15:12 - 2013-12-31 15:12 - 41974272 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes.dat
2013-12-31 15:12 - 2013-12-31 15:12 - 00693329 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2013-12-31 15:12 - 2013-10-11 10:26 - 02329304 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO.dll
2013-12-31 15:11 - 2013-12-31 15:11 - 27369216 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnA.dll
2013-12-31 15:11 - 2013-12-31 15:11 - 05115672 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOlfx.dll
2013-12-31 15:11 - 2013-12-31 15:11 - 03629824 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnN.dll
2013-12-31 15:11 - 2013-12-31 15:11 - 01677568 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek2.dll
2013-12-31 15:11 - 2013-12-31 15:11 - 00926976 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxSpeechAPO.dll
2013-12-31 15:11 - 2013-12-31 15:11 - 00865592 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOSettingsIPC.dll
2013-12-31 15:11 - 2013-12-31 15:11 - 00852016 _____ (Sony Corporation) C:\Windows\system32\MISS_APO.dll
2013-12-31 15:11 - 2013-12-31 15:11 - 00761088 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO20.dll
2013-12-31 15:11 - 2013-12-31 15:11 - 00509184 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll
2013-12-31 15:11 - 2013-12-31 15:10 - 13881600 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek.dll
2013-12-31 15:10 - 2013-12-31 15:10 - 01935104 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ.dll
2013-12-31 15:10 - 2013-12-31 15:10 - 01097984 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO50.dll
2013-12-31 15:10 - 2013-12-31 15:10 - 00873728 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO40.dll
2013-12-31 15:10 - 2013-12-31 15:10 - 00860416 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell.dll
2013-12-31 15:10 - 2013-12-31 15:10 - 00509184 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 06176944 _____ (Dolby Laboratories) C:\Windows\system32\DDPP32A.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 02395680 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 01489072 _____ (Dolby Laboratories) C:\Windows\system32\DDPD32A.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00502584 _____ C:\Windows\system32\audioLibVc.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00426944 _____ (DTS) C:\Windows\system32\DTSU2PLFX32.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00403392 _____ (DTS) C:\Windows\system32\DTSU2PGFX32.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00346048 _____ (DTS) C:\Windows\system32\DTSU2PREC32.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00272048 _____ (Dolby Laboratories) C:\Windows\system32\DDPO32A.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00219312 _____ (Dolby Laboratories) C:\Windows\system32\DDPA32.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00188696 _____ C:\Windows\system32\AcpiServiceVnA.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00182472 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTACap.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00092584 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2013-12-31 15:00 - 2013-11-04 14:50 - 00002030 _____ C:\Users\Public\Desktop\Advanced SystemCare 7.lnk
2013-12-31 14:52 - 2013-06-15 11:34 - 39542784 _____ C:\Windows\system32\config\components.iobit
2013-12-31 14:52 - 2013-06-15 11:34 - 36782080 _____ C:\Windows\system32\config\software.iobit
2013-12-31 14:52 - 2013-06-15 11:34 - 00270336 _____ C:\Windows\system32\config\default.iobit
2013-12-31 14:52 - 2013-06-15 11:34 - 00053248 _____ C:\Windows\system32\config\sam.iobit
2013-12-31 14:52 - 2013-06-15 11:34 - 00020480 _____ C:\Windows\system32\config\security.iobit
2013-12-28 19:22 - 2013-12-28 19:04 - 00000447 _____ C:\Users\Kristian\Documents\1.txt
2013-12-28 11:43 - 2013-11-04 14:50 - 00000000 ____D C:\ProgramData\ProductData
2013-12-27 04:46 - 2013-12-27 04:46 - 00001074 _____ C:\Users\Kristian\AppData\Roaming\Microsoft\Windows\Start Menu\Uninstall Programs.lnk
2013-12-27 04:46 - 2013-12-27 04:46 - 00001050 _____ C:\Users\Public\Desktop\IObit Uninstaller.lnk
2013-12-27 04:46 - 2011-12-09 11:49 - 00000000 ____D C:\Users\Kristian\AppData\Roaming\IObit
2013-12-27 04:32 - 2013-12-27 04:31 - 00000000 ____D C:\Users\Kristian\{bc3c5376-941d-42fd-ada2-9f4bbdf56756}
2013-12-27 04:23 - 2013-03-13 15:42 - 00000000 ____D C:\Users\Kristian\AppData\Local\Windows Live
2013-12-27 04:21 - 2012-11-15 19:04 - 00000000 ____D C:\ProgramData\IObit
2013-12-27 04:18 - 2013-12-27 04:18 - 00000588 _____ C:\Users\Public\Desktop\IObit Malware Fighter.lnk
2013-12-22 19:38 - 2013-05-30 14:31 - 00000438 _____ C:\Windows\BRWMARK.INI
2013-12-22 19:38 - 2013-05-30 14:31 - 00000034 _____ C:\Windows\system32\BD2030.DAT
2013-12-19 18:06 - 2013-12-19 18:06 - 00000000 ____D C:\Users\Kristian\SyncFolder
2013-12-19 18:01 - 2013-12-19 18:01 - 00000806 _____ C:\Users\Public\Desktop\One-Click-Optimizer (WO2013).lnk
2013-12-19 18:01 - 2013-12-19 18:01 - 00000626 _____ C:\Users\Public\Desktop\Ashampoo WinOptimizer 2013.lnk
2013-12-19 18:01 - 2013-03-05 19:40 - 00000000 ____D C:\ProgramData\Ashampoo
2013-12-18 15:32 - 2012-10-07 00:59 - 00000986 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-12-18 15:32 - 2012-10-07 00:59 - 00000982 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-12-13 15:43 - 2012-04-05 08:38 - 00001912 _____ C:\Windows\epplauncher.mif
2013-12-13 15:42 - 2012-04-05 09:17 - 00000000 ____D C:\Program Files\Microsoft Security Client
2013-12-12 09:46 - 2011-09-11 16:41 - 00091648 _____ C:\Users\Kristian\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-12-11 10:13 - 2006-11-02 13:44 - 00232112 _____ C:\Windows\system32\FNTCACHE.DAT
2013-12-11 10:00 - 2013-07-11 13:35 - 00000000 ____D C:\Windows\system32\MRT
2013-12-11 09:56 - 2006-11-02 11:24 - 88123800 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2013-12-10 10:16 - 2013-08-24 19:27 - 00000000 ____D C:\Program Files\Fighters
2013-12-09 17:42 - 2013-12-09 17:42 - 00000000 ____D C:\sd_old
2013-12-05 21:45 - 2013-12-05 21:45 - 00000000 ____D C:\ProgramData\Auslogics
2013-12-05 20:55 - 2011-11-08 14:41 - 00000848 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-12-05 20:55 - 2011-11-08 14:41 - 00000000 ____D C:\Program Files\CCleaner
2013-12-05 19:10 - 2013-01-13 10:24 - 00002107 _____ C:\Users\Kristian\Desktop\Google Chrome.lnk
2013-12-03 07:33 - 2006-11-02 11:22 - 36962304 _____ C:\Windows\system32\config\software_previous
2013-12-03 07:33 - 2006-11-02 11:22 - 26214400 _____ C:\Windows\system32\config\system_previous
2013-12-03 07:32 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\spool
2013-12-03 07:32 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\Msdtc
2013-12-03 07:32 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\registration
2013-12-03 07:28 - 2006-11-02 11:22 - 39583744 _____ C:\Windows\system32\config\components_previous
2013-12-03 07:28 - 2006-11-02 11:22 - 00053248 _____ C:\Windows\system32\config\sam_previous
2013-12-02 21:06 - 2006-11-02 11:22 - 00262144 _____ C:\Windows\system32\config\default_previous
2013-12-02 21:06 - 2006-11-02 11:22 - 00020480 _____ C:\Windows\system32\config\security_previous
 
Some content of TEMP:
====================
C:\Users\Kristian\AppData\Local\Temp\Quarantine.exe
 
 
==================== Bamital & volsnap Check =================
 
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
 
 
LastRegBack: 2014-01-01 12:55
 
==================== End Of Log ============================
Länk till inlägg
Dela på andra webbplatser

Advanced SystemCare Browser Protection är det nog som ställer till det för det ska se till att det inte går att ändra inställningar i webbläsarna från ett program. Jag föreslår att du avinstallerar programmet, startar om datorn, kör AdwCleaner och låter den ta bort det den hittar samt slutligen startar om datorn och kollar webbläsarna.

Länk till inlägg
Dela på andra webbplatser
Postad (redigerade)

Advanced SystemCare Browser Protection är det nog som ställer till det för det ska se till att det inte går att ändra inställningar i webbläsarna från ett program. Jag föreslår att du avinstallerar programmet, startar om datorn, kör AdwCleaner och låter den ta bort det den hittar samt slutligen startar om datorn och kollar webbläsarna.

Hej Cecilia

Nu har jag avinstallerat allt som har med  Advanced System att göra och scannat med 

AdwCleaner igen och renat, men den dj-la sökmotorn yahoo kommer fortfarande först

fram.

Jag hittar inte varför den gör så.   :angry:  :(  :angry:  suck

Jag lägger med den senaste scanningen.

Hoppas du hittar något (som jag inte gör)

-------------------------------------------------------------------

# AdwCleaner v3.016 - Report created 02/01/2014 at 10:45:15
# Updated 23/12/2013 by Xplode
# Operating System : Windows Vista Home Basic Service Pack 2 (32 bits)
# Username : Kristian - SQUAREDATORN
# Running from : C:\Users\Kristian\Desktop\adwcleaner.exe
# Option : Scan
 
***** [ Services ] *****
***** [ Files / Folders ] *****
File Found : C:\Windows\System32\Tasks\ProtectedSearch
***** [ Shortcuts ] *****
***** [ Registry ] *****
***** [ Browsers ] *****
-\\ Internet Explorer v9.0.8112.16526
-\\ Mozilla Firefox v25.0.1 (sv-SE)
[ File : C:\Users\Kristian\AppData\Roaming\Mozilla\Firefox\Profiles\e1dcuci1.Kristian\prefs.js ]
[ File : C:\Users\Kristian\AppData\Roaming\Mozilla\Firefox\Profiles\e1uhbxfw.default\prefs.js ]
[ File : C:\Users\Kristian\AppData\Roaming\Mozilla\Firefox\Profiles\zxstjh0r.default\prefs.js ]
-\\ Google Chrome v
[ File : C:\Users\Kristian\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R6].txt - [1028 octets] - [02/01/2014 10:45:15]
########## EOF - C:\AdwCleaner\AdwCleaner[R6].txt - [1088 octets] ##########
Redigerad av reso
Länk till inlägg
Dela på andra webbplatser

Återuppstår denna fil om du låter AdwCleaner fixa den?

File Found : C:\Windows\System32\Tasks\ProtectedSearch
 
Lägg hit en ny FRST-logg så får vi se vad som syns numera i den.
Länk till inlägg
Dela på andra webbplatser

 

Återuppstår denna fil om du låter AdwCleaner fixa den?

File Found : C:\Windows\System32\Tasks\ProtectedSearch
 
Lägg hit en ny FRST-logg så får vi se vad som syns numera i den.

 

Ok Mam´  here it comes     :)

---------------------------------------------

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 01-01-2014 01
Ran by Kristian (administrator) on SQUAREDATORN on 02-01-2014 10:54:31
Running from C:\Users\Kristian\Desktop
Microsoft® Windows Vista™ Home Basic  Service Pack 2 (X86) OS Language: Swedish
Internet Explorer Version 9
Boot Mode: Normal
 
==================== Processes (Whitelisted) ===================
 
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(Google Inc.) D:\Program Files\Google\Gmail Notifier\gnotify.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(SPAMfighter ApS) C:\Program Files\Fighters\Tray\FightersTray.exe
(SPAMfighter ApS) C:\Program Files\Fighters\SPAMfighter\sfagent.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Corporation) C:\Windows\System32\CISVC.EXE
(Microsoft Corporation) C:\Windows\System32\dfsr.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
(Microsoft Corporation) C:\Windows\System32\Locator.exe
(Microsoft Corporation) C:\Windows\System32\TCPSVCS.EXE
(Microsoft Corporation) C:\Windows\System32\snmp.exe
(SPAMfighter ApS) C:\Program Files\Fighters\SPAMfighter\sfus.exe
(SPAMfighter ApS) C:\Program Files\Fighters\FighterSuiteService.exe
(Microsoft Corporation) C:\Windows\System32\UI0Detect.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Windows\System32\iashost.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MpCmdRun.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
 
==================== Registry (Whitelisted) ==================
 
HKLM\...\Run: [{0228e555-4f9c-4e35-a3ec-b109a192b4c2}] - D:\Program Files\Google\Gmail Notifier\gnotify.exe [479232 2005-07-15] (Google Inc.)
HKLM\...\Run: [synTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1348904 2008-08-14] (Synaptics, Inc.)
HKLM\...\Run: [CommonToolkitTray] - C:\Program Files\Fighters\Tray\FightersTray.exe [1681952 2013-10-29] (SPAMfighter ApS)
HKLM\...\Run: [sfagent] - C:\Program Files\Fighters\SPAMfighter\sfagent.exe [1069600 2013-10-30] (SPAMfighter ApS)
HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [12017368 2013-12-31] (Realtek Semiconductor)
HKCU\...\Policies\Explorer\Run: [sidebar] - C:\Program Files\Windows Sidebar\sidebar.exe [1233920 2009-04-11] ( (Microsoft Corporation))
HKU\Default\...\Run: [WindowsWelcomeCenter] - rundll32.exe oobefldr.dll,ShowWelcomeCenter
HKU\Default User\...\Run: [WindowsWelcomeCenter] - rundll32.exe oobefldr.dll,ShowWelcomeCenter
Startup: C:\Users\Kristian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\StartupFaster ()
 
==================== Internet (Whitelisted) ====================
 
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://se.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x2D5AF0F447EACC01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = sv
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://se.search.yahoo.com/?type=800236&fr=spigot-yhp-ie
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://search.certified-toolbar.com?si=41460&bs=true&tid=2938&q={searchTerms}
SearchScopes: HKCU - {559CE0E7-8137-4F91-8A02-4C76C5D1DAF6} URL = 
SearchScopes: HKCU - {7A32C2E3-984F-4D9A-B303-4FF545950486} URL = 
BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: Freemake.YoutubeButton - {e9e8eb35-ff77-455d-b677-91e5e4fc06c2} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
 
FireFox:
========
FF ProfilePath: C:\Users\Kristian\AppData\Roaming\Mozilla\Firefox\Profiles\e1dcuci1.Kristian
FF DefaultSearchEngine: Yahoo
FF Homepage: hxxp://se.search.yahoo.com/?type=800236&fr=spigot-yhp-ff
FF Keyword.URL: hxxp://se.search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&ilc=12&type=800236&p=
FF Keyword.URL: hxxp://se.search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&ilc=12&type=198484&p=
FF SelectedSearchEngine: Yahoo
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.4 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Kristian\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Kristian\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF SearchPlugin: C:\Users\Kristian\AppData\Roaming\Mozilla\Firefox\Profiles\e1dcuci1.Kristian\searchplugins\yahoo_ff.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\allaannonser-sv-SE.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\prisjakt-sv-SE.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\tyda-sv-SE.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\wikipedia-sv-SE.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-sv-SE.xml
FF Extension: Ads Removal - C:\Users\Kristian\AppData\Roaming\Mozilla\Firefox\Profiles\e1dcuci1.Kristian\Extensions\adsremoval@adsremoval.net
FF Extension: AD Block - C:\Users\Kristian\AppData\Roaming\Mozilla\Firefox\Profiles\e1dcuci1.Kristian\Extensions\searchads@instair.net
FF Extension: Start Page - C:\Users\Kristian\AppData\Roaming\Mozilla\Firefox\Profiles\e1dcuci1.Kristian\Extensions\{58d2a791-6199-482f-a9aa-9b725ec61362}
FF Extension: Click to call with Skype - C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF HKLM\...\Firefox\Extensions: [fmdownloader@gmail.com] - D:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Firefox\fmdownloader@gmail.com\
FF Extension: Freemake Video Downloader Plugin - D:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Firefox\fmdownloader@gmail.com\
FF HKLM\...\Firefox\Extensions: [ytfmdownloader@gmail.com] - D:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Firefox\ytfmdownloader@gmail.com\
FF Extension: Freemake Youtube Download Button - D:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Firefox\ytfmdownloader@gmail.com\
FF HKLM\...\Firefox\Extensions: [fmconverter@gmail.com] - D:\Program Files\Freemake\Freemake Video Converter\BrowserPlugin\Firefox\
FF Extension: Freemake Video Converter Plugin - D:\Program Files\Freemake\Freemake Video Converter\BrowserPlugin\Firefox\
 
Chrome: 
=======
CHR HomePage: hxxp://www.rednote.se/
CHR RestoreOnStartup: "hxxp://se.search.yahoo.com/?type=800236&fr=spigot-yhp-ch"
CHR DefaultSearchKeyword: yahoo.com search
CHR DefaultSearchProvider: Yahoo
CHR DefaultNewTabURL: 
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\Kristian\AppData\Local\Google\Chrome\Application\31.0.1650.63\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Kristian\AppData\Local\Google\Chrome\Application\31.0.1650.63\pdf.dll ()
CHR Plugin: (Shockwave Flash) - C:\Users\Kristian\AppData\Local\Google\Chrome\Application\31.0.1650.63\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\system32\Macromed\Flash\NPSWF32_11_3_300_262.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Microsoft\u00AE Windows Media Player Firefox Plugin) - C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll (Microsoft Corporation)
CHR Plugin: (Windows Genuine Advantage) - C:\Program Files\Mozilla Firefox\plugins\npLegitCheckPlugin.dll (Microsoft Corporation)
CHR Plugin: (2007 Microsoft Office system) - C:\Program Files\Mozilla Firefox\plugins\NPOFF12.DLL (Microsoft Corporation)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll (Apple Inc.)
CHR Plugin: (Java Platform SE 6 U33) - C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll No File
CHR Plugin: (Java Deployment Toolkit 6.0.330.3) - C:\Windows\system32\npdeployJava1.dll No File
CHR Plugin: (Silverlight Plug-In) - C:\Program Files\Microsoft Silverlight\5.0.61118.0\npctrl.dll No File
CHR Plugin: (Google Update) - C:\Users\Kristian\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File
CHR Plugin: (Windows Presentation Foundation) - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR Plugin: (VLC Web Plugin) - D:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
CHR Extension: (YouTube) - C:\Users\Kristian\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\Kristian\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Google Wallet) - C:\Users\Kristian\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_0
CHR Extension: (Gmail) - C:\Users\Kristian\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1
CHR HKLM\...\Chrome\Extension: [bpegkgagfojjbcpkihigfmkojdmmimdf] - D:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Chrome\Freemake.Plugin.Chrome.crx
CHR HKLM\...\Chrome\Extension: [ehgldbbpchgpcfagfpfjgoomddhccfgh] - D:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Chrome\ChromeYoutubePlugin.crx
CHR HKLM\...\Chrome\Extension: [jbolfgndggfhhpbnkgnpjkfhinclbigj] - D:\Program Files\Freemake\Freemake Video Converter\BrowserPlugin\Chrome\Freemake.Plugin.Chrome.crx
CHR StartMenuInternet: Google Chrome - C:\Users\Kristian\AppData\Local\Google\Chrome\Application\chrome.exe
 
========================== Services (Whitelisted) =================
 
R2 HFGService; C:\Windows\System32\HFGService.dll [419224 2010-02-05] (CSR, plc)
R2 iprip; C:\Windows\System32\iprip.dll [29696 2006-11-02] (Microsoft Corporation)
S2 LiveUpdateSvc; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2151200 2013-12-03] (IObit)
S4 MBAMScheduler; D:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
S4 MBAMService; D:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [22208 2013-10-23] (Microsoft Corporation)
R3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [280288 2013-10-23] (Microsoft Corporation)
R2 SPAMfighter Update Service; C:\Program Files\Fighters\SPAMfighter\sfus.exe [216608 2013-10-30] (SPAMfighter ApS)
R2 Suite Service; C:\Program Files\Fighters\FighterSuiteService.exe [1281568 2013-10-29] (SPAMfighter ApS)
 
==================== Drivers (Whitelisted) ====================
 
R1 avgtp; C:\Windows\system32\drivers\avgtpx86.sys [37664 2013-11-22] (AVG Technologies)
S3 BthAudioHF; C:\Windows\System32\DRIVERS\BthAudioHF.sys [48024 2010-02-05] (CSR, plc)
S3 BthAvrcp; C:\Windows\System32\DRIVERS\BthAvrcp.sys [28048 2010-02-05] (CSR, plc)
S3 csr_a2dp; C:\Windows\System32\drivers\bthav.sys [66952 2010-02-05] (CSR, plc)
S4 JRAID; C:\Windows\system32\drivers\jraid.sys [48256 2007-06-13] (JMicron Technology Corp.)
S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [22856 2013-04-04] (Malwarebytes Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [214696 2013-09-27] (Microsoft Corporation)
R1 MpKsl6e824fe4; C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{E32517A5-08F9-4D71-8D0E-1D2191FBA0D1}\MpKsl6e824fe4.sys [40392 2014-01-02] (Microsoft Corporation)
S3 NPF; C:\Windows\System32\drivers\NPF.sys [35088 2011-02-11] (CACE Technologies, Inc.)
S3 s0017bus; C:\Windows\System32\DRIVERS\s0017bus.sys [86824 2008-10-21] (MCCI Corporation)
S3 s0017mdfl; C:\Windows\System32\DRIVERS\s0017mdfl.sys [15016 2008-10-21] (MCCI Corporation)
S3 s0017mdm; C:\Windows\System32\DRIVERS\s0017mdm.sys [114600 2008-10-21] (MCCI Corporation)
S3 s0017mgmt; C:\Windows\System32\DRIVERS\s0017mgmt.sys [108328 2008-10-21] (MCCI Corporation)
S3 s0017nd5; C:\Windows\System32\DRIVERS\s0017nd5.sys [26024 2008-10-21] (MCCI Corporation)
S3 s0017obex; C:\Windows\System32\DRIVERS\s0017obex.sys [104616 2008-10-21] (MCCI Corporation)
S3 s0017unic; C:\Windows\System32\DRIVERS\s0017unic.sys [109736 2008-10-21] (MCCI Corporation)
R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [15672 2013-05-22] ()
S4 blbdrive; \SystemRoot\system32\drivers\blbdrive.sys [x]
U3 DfSdkS; 
S3 IpInIp; system32\DRIVERS\ipinip.sys [x]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [x]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [x]
S3 USBAAPL; System32\Drivers\usbaapl.sys [x]
 
==================== NetSvcs (Whitelisted) ===================
 
 
==================== One Month Created Files and Folders ========
 
2014-01-02 10:54 - 2014-01-02 10:54 - 00016708 _____ C:\Users\Kristian\Desktop\FRST.txt
2014-01-02 10:54 - 2014-01-02 10:54 - 00000000 ____D C:\Users\Kristian\Desktop\FRST-OlderVersion
2014-01-02 08:55 - 2014-01-02 08:55 - 00000000 ____D C:\Windows\Tasks\ImCleanDisabled
2014-01-02 08:30 - 2014-01-02 08:30 - 00001770 _____ C:\Users\Kristian\Desktop\AdwCleaner[s4].txt
2014-01-01 12:19 - 2014-01-02 10:54 - 00000000 ____D C:\FRST
2014-01-01 11:43 - 2014-01-02 10:54 - 01064481 _____ (Farbar) C:\Users\Kristian\Desktop\FRST.exe
2014-01-01 11:35 - 2014-01-02 10:46 - 00000000 ____D C:\AdwCleaner
2014-01-01 11:33 - 2014-01-01 11:33 - 01233962 _____ C:\Users\Kristian\Desktop\adwcleaner.exe
2014-01-01 11:24 - 2014-01-01 11:27 - 00000000 ____D C:\Users\Kristian\{cd816e52-5e7e-420f-87ea-46a788d88674}
2013-12-31 15:21 - 2013-12-31 15:21 - 00000000 ____D C:\Users\Kristian\{23d68cc6-b384-4137-b3cc-195ae9286fad}
2013-12-31 15:19 - 2013-12-31 15:19 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2013-12-31 15:14 - 2013-12-31 15:14 - 01824000 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib.dll
2013-12-31 15:14 - 2013-12-31 15:14 - 00604928 _____ (DTS, Inc.) C:\Windows\system32\sltech32.dll
2013-12-31 15:13 - 2013-12-31 15:14 - 00218368 _____ (TODO: <Company name>) C:\Windows\system32\slprp32.dll
2013-12-31 15:13 - 2013-12-31 15:13 - 05681196 _____ C:\Windows\system32\Drivers\rtvienna.dat
2013-12-31 15:13 - 2013-12-31 15:13 - 02929048 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHDA.sys
2013-12-31 15:13 - 2013-12-31 15:13 - 02547928 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkPgExt.dll
2013-12-31 15:13 - 2013-12-31 15:13 - 01596488 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSndMgr.cpl
2013-12-31 15:13 - 2013-12-31 15:13 - 00938752 _____ (SRS Labs, Inc.) C:\Windows\system32\slcnt32.dll
2013-12-31 15:13 - 2013-12-31 15:13 - 00919600 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll
2013-12-31 15:13 - 2013-12-31 15:13 - 00823040 _____ (DTS, Inc.) C:\Windows\system32\sl3apo32.dll
2013-12-31 15:13 - 2013-12-31 15:13 - 00126680 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoInstII.dll
2013-12-31 15:12 - 2013-12-31 15:13 - 00782040 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApoApi.dll
2013-12-31 15:12 - 2013-12-31 15:12 - 41974272 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes.dat
2013-12-31 15:12 - 2013-12-31 15:12 - 00693329 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2013-12-31 15:11 - 2013-12-31 15:11 - 27369216 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnA.dll
2013-12-31 15:11 - 2013-12-31 15:11 - 05115672 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOlfx.dll
2013-12-31 15:11 - 2013-12-31 15:11 - 03629824 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnN.dll
2013-12-31 15:11 - 2013-12-31 15:11 - 01677568 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek2.dll
2013-12-31 15:11 - 2013-12-31 15:11 - 00926976 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxSpeechAPO.dll
2013-12-31 15:11 - 2013-12-31 15:11 - 00865592 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOSettingsIPC.dll
2013-12-31 15:11 - 2013-12-31 15:11 - 00852016 _____ (Sony Corporation) C:\Windows\system32\MISS_APO.dll
2013-12-31 15:11 - 2013-12-31 15:11 - 00761088 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO20.dll
2013-12-31 15:11 - 2013-12-31 15:11 - 00509184 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll
2013-12-31 15:10 - 2013-12-31 15:11 - 13881600 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek.dll
2013-12-31 15:10 - 2013-12-31 15:10 - 01935104 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ.dll
2013-12-31 15:10 - 2013-12-31 15:10 - 01097984 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO50.dll
2013-12-31 15:10 - 2013-12-31 15:10 - 00873728 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO40.dll
2013-12-31 15:10 - 2013-12-31 15:10 - 00860416 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell.dll
2013-12-31 15:10 - 2013-12-31 15:10 - 00509184 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 06176944 _____ (Dolby Laboratories) C:\Windows\system32\DDPP32A.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 02395680 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 01489072 _____ (Dolby Laboratories) C:\Windows\system32\DDPD32A.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00502584 _____ C:\Windows\system32\audioLibVc.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00426944 _____ (DTS) C:\Windows\system32\DTSU2PLFX32.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00403392 _____ (DTS) C:\Windows\system32\DTSU2PGFX32.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00346048 _____ (DTS) C:\Windows\system32\DTSU2PREC32.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00272048 _____ (Dolby Laboratories) C:\Windows\system32\DDPO32A.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00219312 _____ (Dolby Laboratories) C:\Windows\system32\DDPA32.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00188696 _____ C:\Windows\system32\AcpiServiceVnA.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00182472 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTACap.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00092584 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2013-12-28 19:04 - 2013-12-28 19:22 - 00000447 _____ C:\Users\Kristian\Documents\1.txt
2013-12-27 04:31 - 2013-12-27 04:32 - 00000000 ____D C:\Users\Kristian\{bc3c5376-941d-42fd-ada2-9f4bbdf56756}
2013-12-19 18:06 - 2013-12-19 18:06 - 00000000 ____D C:\Users\Kristian\SyncFolder
2013-12-19 18:01 - 2013-12-19 18:01 - 00000806 _____ C:\Users\Public\Desktop\One-Click-Optimizer (WO2013).lnk
2013-12-19 18:01 - 2013-12-19 18:01 - 00000626 _____ C:\Users\Public\Desktop\Ashampoo WinOptimizer 2013.lnk
2013-12-19 18:01 - 2009-08-24 22:08 - 00028160 _____ (mst software GmbH, Germany) C:\Windows\system32\DfSdkBt.exe
2013-12-11 09:54 - 2013-11-15 00:13 - 12344320 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-12-11 09:54 - 2013-11-14 23:50 - 09739264 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-12-11 09:54 - 2013-11-14 23:50 - 01806848 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-12-11 09:54 - 2013-11-14 23:43 - 01105408 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-12-11 09:54 - 2013-11-14 23:42 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-12-11 09:54 - 2013-11-14 23:42 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-12-11 09:54 - 2013-11-14 23:41 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-12-11 09:54 - 2013-11-14 23:40 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-12-11 09:54 - 2013-11-14 23:38 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-12-11 09:54 - 2013-11-14 23:38 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-12-11 09:54 - 2013-11-14 23:38 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-12-11 09:54 - 2013-11-14 23:37 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-12-11 09:54 - 2013-11-14 23:36 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-12-11 09:54 - 2013-11-14 23:36 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-12-11 09:54 - 2013-11-14 23:35 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-12-11 09:54 - 2013-11-14 23:32 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-12-11 08:50 - 2013-10-30 03:13 - 01304064 _____ (Microsoft Corporation) C:\Windows\system32\WMALFXGFXDSP.dll
2013-12-11 08:50 - 2013-10-30 03:12 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\SysFxUI.dll
2013-12-11 08:50 - 2013-10-30 02:43 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2013-12-11 08:50 - 2013-10-30 01:43 - 00167936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2013-12-11 08:50 - 2013-10-30 01:35 - 02050560 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-12-11 08:50 - 2013-10-22 08:19 - 00158208 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2013-12-11 08:50 - 2013-10-11 03:08 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2013-12-11 08:50 - 2013-10-11 03:08 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2013-12-11 08:50 - 2013-10-11 03:08 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wshcon.dll
2013-12-11 08:50 - 2013-10-11 01:35 - 00155648 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2013-12-11 08:50 - 2013-10-11 01:35 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2013-12-09 17:42 - 2013-12-09 17:42 - 00000000 ____D C:\sd_old
2013-12-05 21:45 - 2013-12-05 21:45 - 00000000 ____D C:\ProgramData\Auslogics
 
==================== One Month Modified Files and Folders =======
 
2014-01-02 10:55 - 2014-01-02 10:54 - 00016708 _____ C:\Users\Kristian\Desktop\FRST.txt
2014-01-02 10:54 - 2014-01-02 10:54 - 00000000 ____D C:\Users\Kristian\Desktop\FRST-OlderVersion
2014-01-02 10:54 - 2014-01-01 12:19 - 00000000 ____D C:\FRST
2014-01-02 10:54 - 2014-01-01 11:43 - 01064481 _____ (Farbar) C:\Users\Kristian\Desktop\FRST.exe
2014-01-02 10:53 - 2012-04-25 20:22 - 00000436 _____ C:\Windows\system32\Drivers\etc\hosts.ics
2014-01-02 10:51 - 2006-11-02 13:45 - 00003648 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2014-01-02 10:51 - 2006-11-02 13:45 - 00003648 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2014-01-02 10:50 - 2013-02-06 23:44 - 00000000 ____D C:\Windows\system32\NtmsData
2014-01-02 10:50 - 2012-10-07 00:59 - 00000982 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-02 10:49 - 2013-01-19 16:05 - 00000308 _____ C:\Windows\Tasks\GlaryInitialize.job
2014-01-02 10:49 - 2006-11-02 13:58 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2014-01-02 10:46 - 2014-01-01 11:35 - 00000000 ____D C:\AdwCleaner
2014-01-02 10:46 - 2013-08-08 10:50 - 02054875 _____ C:\Windows\WindowsUpdate.log
2014-01-02 10:46 - 2013-02-26 15:22 - 00000012 _____ C:\Windows\bthservsdp.dat
2014-01-02 10:46 - 2006-11-02 13:58 - 00032590 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2014-01-02 10:45 - 2011-09-10 17:13 - 00678152 _____ C:\Windows\system32\perfh01D.dat
2014-01-02 10:45 - 2011-09-10 17:13 - 00150114 _____ C:\Windows\system32\perfc01D.dat
2014-01-02 10:45 - 2006-11-02 11:33 - 01618886 _____ C:\Windows\system32\PerfStringBackup.INI
2014-01-02 10:41 - 2012-04-08 17:34 - 00000868 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-01-02 09:21 - 2012-10-07 00:59 - 00000986 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-02 09:11 - 2012-12-18 18:33 - 00000000 ____D C:\Program Files\IObit
2014-01-02 09:09 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\Microsoft.NET
2014-01-02 09:08 - 2011-09-25 13:35 - 00001016 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4092986270-2831543146-3790693587-1000UA.job
2014-01-02 08:55 - 2014-01-02 08:55 - 00000000 ____D C:\Windows\Tasks\ImCleanDisabled
2014-01-02 08:30 - 2014-01-02 08:30 - 00001770 _____ C:\Users\Kristian\Desktop\AdwCleaner[s4].txt
2014-01-01 19:57 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\LogFiles
2014-01-01 13:53 - 2013-06-15 11:34 - 39542784 _____ C:\Windows\system32\config\components.iobit
2014-01-01 13:53 - 2013-06-15 11:34 - 36782080 _____ C:\Windows\system32\config\software.iobit
2014-01-01 13:53 - 2013-06-15 11:34 - 00270336 _____ C:\Windows\system32\config\default.iobit
2014-01-01 13:53 - 2013-06-15 11:34 - 00053248 _____ C:\Windows\system32\config\sam.iobit
2014-01-01 13:53 - 2013-06-15 11:34 - 00020480 _____ C:\Windows\system32\config\security.iobit
2014-01-01 13:53 - 2011-09-10 07:49 - 00000000 ____D C:\Users\Kristian
2014-01-01 13:31 - 2011-11-08 14:41 - 00000848 _____ C:\Users\Public\Desktop\CCleaner.lnk
2014-01-01 13:31 - 2011-11-08 14:41 - 00000000 ____D C:\Program Files\CCleaner
2014-01-01 12:08 - 2011-09-25 13:35 - 00000964 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4092986270-2831543146-3790693587-1000Core.job
2014-01-01 11:33 - 2014-01-01 11:33 - 01233962 _____ C:\Users\Kristian\Desktop\adwcleaner.exe
2014-01-01 11:27 - 2014-01-01 11:24 - 00000000 ____D C:\Users\Kristian\{cd816e52-5e7e-420f-87ea-46a788d88674}
2013-12-31 17:32 - 2011-09-24 14:14 - 00000000 ____D C:\Users\Kristian\AppData\Roaming\Macromedia
2013-12-31 15:21 - 2013-12-31 15:21 - 00000000 ____D C:\Users\Kristian\{23d68cc6-b384-4137-b3cc-195ae9286fad}
2013-12-31 15:19 - 2013-12-31 15:19 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2013-12-31 15:18 - 2011-09-24 12:52 - 00000000 ____D C:\Windows\system32\RTCOM
2013-12-31 15:14 - 2013-12-31 15:14 - 01824000 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib.dll
2013-12-31 15:14 - 2013-12-31 15:14 - 00604928 _____ (DTS, Inc.) C:\Windows\system32\sltech32.dll
2013-12-31 15:14 - 2013-12-31 15:13 - 00218368 _____ (TODO: <Company name>) C:\Windows\system32\slprp32.dll
2013-12-31 15:13 - 2013-12-31 15:13 - 05681196 _____ C:\Windows\system32\Drivers\rtvienna.dat
2013-12-31 15:13 - 2013-12-31 15:13 - 02929048 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHDA.sys
2013-12-31 15:13 - 2013-12-31 15:13 - 02547928 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkPgExt.dll
2013-12-31 15:13 - 2013-12-31 15:13 - 01596488 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSndMgr.cpl
2013-12-31 15:13 - 2013-12-31 15:13 - 00938752 _____ (SRS Labs, Inc.) C:\Windows\system32\slcnt32.dll
2013-12-31 15:13 - 2013-12-31 15:13 - 00919600 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll
2013-12-31 15:13 - 2013-12-31 15:13 - 00823040 _____ (DTS, Inc.) C:\Windows\system32\sl3apo32.dll
2013-12-31 15:13 - 2013-12-31 15:13 - 00126680 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoInstII.dll
2013-12-31 15:13 - 2013-12-31 15:12 - 00782040 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApoApi.dll
2013-12-31 15:12 - 2013-12-31 15:12 - 41974272 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes.dat
2013-12-31 15:12 - 2013-12-31 15:12 - 00693329 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2013-12-31 15:12 - 2013-10-11 10:26 - 02329304 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO.dll
2013-12-31 15:11 - 2013-12-31 15:11 - 27369216 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnA.dll
2013-12-31 15:11 - 2013-12-31 15:11 - 05115672 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOlfx.dll
2013-12-31 15:11 - 2013-12-31 15:11 - 03629824 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnN.dll
2013-12-31 15:11 - 2013-12-31 15:11 - 01677568 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek2.dll
2013-12-31 15:11 - 2013-12-31 15:11 - 00926976 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxSpeechAPO.dll
2013-12-31 15:11 - 2013-12-31 15:11 - 00865592 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOSettingsIPC.dll
2013-12-31 15:11 - 2013-12-31 15:11 - 00852016 _____ (Sony Corporation) C:\Windows\system32\MISS_APO.dll
2013-12-31 15:11 - 2013-12-31 15:11 - 00761088 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO20.dll
2013-12-31 15:11 - 2013-12-31 15:11 - 00509184 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll
2013-12-31 15:11 - 2013-12-31 15:10 - 13881600 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek.dll
2013-12-31 15:10 - 2013-12-31 15:10 - 01935104 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ.dll
2013-12-31 15:10 - 2013-12-31 15:10 - 01097984 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO50.dll
2013-12-31 15:10 - 2013-12-31 15:10 - 00873728 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO40.dll
2013-12-31 15:10 - 2013-12-31 15:10 - 00860416 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell.dll
2013-12-31 15:10 - 2013-12-31 15:10 - 00509184 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 06176944 _____ (Dolby Laboratories) C:\Windows\system32\DDPP32A.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 02395680 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 01489072 _____ (Dolby Laboratories) C:\Windows\system32\DDPD32A.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00502584 _____ C:\Windows\system32\audioLibVc.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00426944 _____ (DTS) C:\Windows\system32\DTSU2PLFX32.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00403392 _____ (DTS) C:\Windows\system32\DTSU2PGFX32.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00346048 _____ (DTS) C:\Windows\system32\DTSU2PREC32.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00272048 _____ (Dolby Laboratories) C:\Windows\system32\DDPO32A.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00219312 _____ (Dolby Laboratories) C:\Windows\system32\DDPA32.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00188696 _____ C:\Windows\system32\AcpiServiceVnA.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00182472 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTACap.dll
2013-12-31 15:09 - 2013-12-31 15:09 - 00092584 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2013-12-28 19:22 - 2013-12-28 19:04 - 00000447 _____ C:\Users\Kristian\Documents\1.txt
2013-12-28 11:43 - 2013-11-04 14:50 - 00000000 ____D C:\ProgramData\ProductData
2013-12-27 04:46 - 2011-12-09 11:49 - 00000000 ____D C:\Users\Kristian\AppData\Roaming\IObit
2013-12-27 04:32 - 2013-12-27 04:31 - 00000000 ____D C:\Users\Kristian\{bc3c5376-941d-42fd-ada2-9f4bbdf56756}
2013-12-27 04:23 - 2013-03-13 15:42 - 00000000 ____D C:\Users\Kristian\AppData\Local\Windows Live
2013-12-27 04:21 - 2012-11-15 19:04 - 00000000 ____D C:\ProgramData\IObit
2013-12-22 19:38 - 2013-05-30 14:31 - 00000438 _____ C:\Windows\BRWMARK.INI
2013-12-22 19:38 - 2013-05-30 14:31 - 00000034 _____ C:\Windows\system32\BD2030.DAT
2013-12-19 18:06 - 2013-12-19 18:06 - 00000000 ____D C:\Users\Kristian\SyncFolder
2013-12-19 18:01 - 2013-12-19 18:01 - 00000806 _____ C:\Users\Public\Desktop\One-Click-Optimizer (WO2013).lnk
2013-12-19 18:01 - 2013-12-19 18:01 - 00000626 _____ C:\Users\Public\Desktop\Ashampoo WinOptimizer 2013.lnk
2013-12-19 18:01 - 2013-03-05 19:40 - 00000000 ____D C:\ProgramData\Ashampoo
2013-12-13 15:43 - 2012-04-05 08:38 - 00001912 _____ C:\Windows\epplauncher.mif
2013-12-13 15:42 - 2012-04-05 09:17 - 00000000 ____D C:\Program Files\Microsoft Security Client
2013-12-12 09:46 - 2011-09-11 16:41 - 00091648 _____ C:\Users\Kristian\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-12-11 10:13 - 2006-11-02 13:44 - 00232112 _____ C:\Windows\system32\FNTCACHE.DAT
2013-12-11 10:00 - 2013-07-11 13:35 - 00000000 ____D C:\Windows\system32\MRT
2013-12-11 09:56 - 2006-11-02 11:24 - 88123800 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2013-12-10 10:16 - 2013-08-24 19:27 - 00000000 ____D C:\Program Files\Fighters
2013-12-09 17:42 - 2013-12-09 17:42 - 00000000 ____D C:\sd_old
2013-12-05 21:45 - 2013-12-05 21:45 - 00000000 ____D C:\ProgramData\Auslogics
2013-12-05 19:10 - 2013-01-13 10:24 - 00002107 _____ C:\Users\Kristian\Desktop\Google Chrome.lnk
2013-12-03 07:33 - 2006-11-02 11:22 - 36962304 _____ C:\Windows\system32\config\software_previous
2013-12-03 07:33 - 2006-11-02 11:22 - 26214400 _____ C:\Windows\system32\config\system_previous
2013-12-03 07:32 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\spool
2013-12-03 07:32 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\Msdtc
2013-12-03 07:32 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\registration
2013-12-03 07:28 - 2006-11-02 11:22 - 39583744 _____ C:\Windows\system32\config\components_previous
2013-12-03 07:28 - 2006-11-02 11:22 - 00053248 _____ C:\Windows\system32\config\sam_previous
 
Some content of TEMP:
====================
C:\Users\Kristian\AppData\Local\Temp\Quarantine.exe
 
 
==================== Bamital & volsnap Check =================
 
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
 
 
LastRegBack: 2014-01-02 09:22
 
==================== End Of Log ============================
Länk till inlägg
Dela på andra webbplatser

Nu verkar Yahoo ha försvunnit,  när jag har avinstallerat allt från   iobit.com

Jag skall ta ner ett program därifrån igen ,  

Advanced Systemcare  som jag hade haft länge utan prblem

och se om yahoo kommer tillbaks.

 

Rapport kommer.

Tack så länge Mrs C. för all hjälp

 

Kristian

Länk till inlägg
Dela på andra webbplatser

Håller tummarna :thumbsup:

Du har väl kollat alla tre webbläsarna?

 

1. Stäng alla program, inklusive webbläsare.
Dubbelklicka på AdwCleaner för att starta programmet.
Klicka på Uninstall-knappen.

2. Ladda ner avinstallationsprogrammet OTC till Skrivbordet. http://oldtimer.geekstogo.com/OTC.exe
Dubbelklicka på filen för att starta programmet.
Tryck på knappen CleanUp! och FRST kommer att avinstalleras efter en omstart av datorn. Ta bort eventuella loggar.

3. Förbättra skyddet i datorn, se mina Råd för en säkrare dator: http://ceciliasec.wordpress.com/rad/
Det är mycket viktigt att hålla alla småprogram i datorn uppdaterade, gamla versioner av t ex Flash, Java och Adobe Reader innehåller kända säkerhetshål, vilka kan användas av en webbsida för att infektera datorn. I din dator verkar det finnas någon gammal Java. Jag tycker att Secunias program (länk på min webbsida) är en bra hjälp för att kontrollera hur det står till med säkerhetshål i datorn och ange vad som behöver åtgärdas.

Länk till inlägg
Dela på andra webbplatser

Håller tummarna :thumbsup:

Du har väl kollat alla tre webbläsarna?

 

1. Stäng alla program, inklusive webbläsare.

Dubbelklicka på AdwCleaner för att starta programmet.

Klicka på Uninstall-knappen.

 

2. Ladda ner avinstallationsprogrammet OTC till Skrivbordet. http://oldtimer.geekstogo.com/OTC.exe

Dubbelklicka på filen för att starta programmet.

Tryck på knappen CleanUp! och FRST kommer att avinstalleras efter en omstart av datorn. Ta bort eventuella loggar.

 

3. Förbättra skyddet i datorn, se mina Råd för en säkrare dator: http://ceciliasec.wordpress.com/rad/

Det är mycket viktigt att hålla alla småprogram i datorn uppdaterade, gamla versioner av t ex Flash, Java och Adobe Reader innehåller kända säkerhetshål, vilka kan användas av en webbsida för att infektera datorn. I din dator verkar det finnas någon gammal Java. Jag tycker att Secunias program (länk på min webbsida) är en bra hjälp för att kontrollera hur det står till med säkerhetshål i datorn och ange vad som behöver åtgärdas.

Tack Cecillia

Det verkar som din hjälp med länkar och allt du har rekomenderat funkar bra.

Jag installerade SuperAntiSpyware från din sida.

Och det hittade mycket som jag kunde deleta.

Din sida är genialisk för dummisar som mej.

Därför skall du vara uppmärksam och titta i din

snailmail box dom närmaste dagarna efter helgen.

Det är något på väg.

Hoppas din snailmailadress som jag fick tidigare är kvar.

 

Kram

Kristian Äng

Länk till inlägg
Dela på andra webbplatser

Skapa ett konto eller logga in för att kommentera

Du måste vara medlem för att kunna kommentera

Skapa ett konto

Skapa ett nytt konto på vårt forum. Det är lätt!

Registrera ett nytt konto

Logga in

Redan medlem? Logga in här.

Logga in nu


×
×
  • Skapa nytt...