a Avast my píše že nemože pracovať na zabezpečenéj DNS dakujem vopred za pomoc tu sú logy
¤¤¤ Registry : 4 ¤¤¤
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters | DhcpNameServer : 217.23.254.124 217.23.254.125 ([X][X]) -> Found
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters | DhcpNameServer : 217.23.254.124 217.23.254.125 ([X][X]) -> Found
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{5B20CE9B-DAF2-4422-8F3D-88D0C7BDC55B} | DhcpNameServer : 217.23.254.124 217.23.254.125 ([X][X]) -> Found
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{5B20CE9B-DAF2-4422-8F3D-88D0C7BDC55B} | DhcpNameServer : 217.23.254.124 217.23.254.125 ([X][X]) -> Found
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 18-07-2016
Ran by Thomas (administrator) on THOMAS-PC (20-07-2016 10:52:00)
Running from C:\Users\Thomas\Desktop
Loaded Profiles: Thomas (Available Profiles: Thomas)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Slovenčina (Slovensko)
Internet Explorer Version 8 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
() C:\Program Files (x86)\Silent Terminator\srvany.exe
(AMYD Projects) C:\Program Files (x86)\Silent Terminator\Silent Terminator.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(AMYD Projects) C:\Program Files (x86)\Silent Terminator\Silent Terminator.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Sunrise Software) C:\Program Files (x86)\Sunrise Seven\Sunrise Seven.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [StartCN] => C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe [6638472 2016-07-08] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [8900328 2016-07-20] (AVAST Software)
HKLM-x32\...\Run: [Silent Terminator] => C:\Program Files (x86)\Silent Terminator\Silent Terminator.exe [2068480 2014-07-12] (AMYD Projects)
HKU\S-1-5-21-2297602522-1921712993-1644906987-1000\...\Policies\system: [DisableTaskMgr] 1
HKU\S-1-5-21-2297602522-1921712993-1644906987-1000\...\Policies\Explorer: [TaskbarNoNotification] 1
HKU\S-1-5-21-2297602522-1921712993-1644906987-1000\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-2297602522-1921712993-1644906987-1000\...\Policies\Explorer: [NoSecurityTab] 1
HKU\S-1-5-21-2297602522-1921712993-1644906987-1000\...\Policies\Explorer: [NoWindowsUpdate] 1
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-07-20] (AVAST Software)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: 127.0.0.1 localhost
Tcpip\Parameters: [DhcpNameServer] 217.23.254.124 217.23.254.125
Tcpip\..\Interfaces\{5B20CE9B-DAF2-4422-8F3D-88D0C7BDC55B}: [DhcpNameServer] 217.23.254.124 217.23.254.125
Internet Explorer:
==================
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-07-20] (AVAST Software)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-07-20] (AVAST Software)
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-21] (Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-21] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-21] (Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-21] (Microsoft Corporation)
FireFox:
========
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-07-20] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-07-20] (Google Inc.)
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-07-20]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
Chrome:
=======
CHR DefaultSearchURL: Default -> hxxps://www.youtube.com/watch?v=TKU8hqKY3GQ
CHR Session Restore: Default -> is enabled.
CHR Profile: C:\Users\Thomas\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Disk Google) - C:\Users\Thomas\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-07-20]
CHR Extension: (YouTube) - C:\Users\Thomas\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-07-20]
CHR Extension: (Avast Online Security) - C:\Users\Thomas\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-07-20]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Thomas\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-07-20]
CHR Extension: (Gmail) - C:\Users\Thomas\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-07-20]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [197128 2016-07-20] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [223600 2016-07-20] (AVAST Software)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1514464 2016-03-10] (Malwarebytes)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1136608 2016-03-10] (Malwarebytes)
R2 SilentTerminatorServices; C:\Program Files (x86)\Silent Terminator\srvany.exe [8192 2003-04-18] () [File not signed]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2016-07-20] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [108304 2016-07-20] (AVAST Software)
R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [28312 2016-07-20] (AVAST Software)
R1 aswNetSec; C:\Windows\system32\drivers\aswNetSec.sys [572120 2016-07-20] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2016-07-20] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-07-20] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1070904 2016-07-20] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [473592 2016-07-20] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [162904 2016-07-20] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [290088 2016-07-20] (AVAST Software)
S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [27008 2016-03-10] (Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [192216 2016-07-20] (Malwarebytes)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64896 2016-03-10] (Malwarebytes Corporation)
U3 TrueSight; C:\Windows\System32\drivers\TrueSight.sys [28272 2016-07-20] ()
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-07-20 10:49 - 2016-07-20 10:52 - 00009622 _____ C:\Users\Thomas\Desktop\FRST.txt
2016-07-20 10:48 - 2016-07-20 10:52 - 00000000 ____D C:\FRST
2016-07-20 10:48 - 2016-07-20 10:48 - 02391552 _____ (Farbar) C:\Users\Thomas\Desktop\FRST64.exe
2016-07-20 10:32 - 2016-07-20 10:50 - 00004044 _____ C:\Users\Thomas\Desktop\ghdrehrtf.txt
2016-07-20 09:49 - 2016-07-20 10:36 - 00000000 ____D C:\Windows\Minidump
2016-07-20 09:49 - 2016-07-20 10:33 - 518430553 _____ C:\Windows\MEMORY.DMP
2016-07-20 09:47 - 2016-07-20 09:47 - 00001119 _____ C:\Users\Public\Desktop\Silent Terminator.lnk
2016-07-20 09:47 - 2016-07-20 09:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Silent Terminator
2016-07-20 09:47 - 2016-07-20 09:47 - 00000000 ____D C:\Program Files (x86)\Silent Terminator
2016-07-20 09:44 - 2014-07-16 16:23 - 02501345 _____ (AMYD Projects ) C:\Users\Thomas\Desktop\Silent Terminator Setup.exe
2016-07-20 09:12 - 2010-11-21 05:24 - 02872320 _____ (Microsoft Corporation) C:\Windows\explorer.exe.Back
2016-07-20 09:10 - 2016-07-20 09:10 - 00000000 _____ C:\Windows\ativpsrm.bin
2016-07-20 09:09 - 2016-07-20 09:09 - 00004224 _____ C:\Windows\System32\Tasks\AMD Updater
2016-07-20 09:09 - 2016-07-20 09:09 - 00000000 ____D C:\Users\Thomas\AppData\Local\AMD
2016-07-20 09:09 - 2016-07-20 09:09 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2016-07-20 09:09 - 2016-06-23 20:22 - 00264992 _____ C:\Windows\SysWOW64\vulkan-1.dll
2016-07-20 09:09 - 2016-06-23 20:21 - 00257824 _____ C:\Windows\system32\vulkan-1.dll
2016-07-20 09:09 - 2016-06-23 20:21 - 00110880 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2016-07-20 09:09 - 2016-06-23 20:20 - 00125216 _____ C:\Windows\system32\vulkaninfo.exe
2016-07-20 09:08 - 2016-07-20 09:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Radeon Settings
2016-07-20 09:08 - 2016-07-20 09:08 - 00000000 ____D C:\Program Files (x86)\AMD
2016-07-20 09:07 - 2016-07-20 09:07 - 00000000 ____D C:\Program Files\Common Files\ATI Technologies
2016-07-20 09:06 - 2016-07-20 09:07 - 00000000 ____D C:\ProgramData\Package Cache
2016-07-20 09:04 - 2016-07-20 09:04 - 00747578 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2016-07-20 09:02 - 2016-07-20 09:08 - 00000000 ____D C:\Program Files\AMD
2016-07-20 08:59 - 2016-07-20 08:59 - 00000000 ____D C:\Windows\System32\Tasks\AVAST Software
2016-07-20 08:59 - 2016-07-20 08:59 - 00000000 ____D C:\Program Files\Common Files\AV
2016-07-20 08:56 - 2016-07-20 08:02 - 00000000 ____D C:\Windows\Panther
2016-07-20 08:50 - 2016-07-20 08:50 - 00000000 ____D C:\Users\Thomas\AppData\Local\CEF
2016-07-20 08:49 - 2016-07-20 10:01 - 00004180 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2016-07-20 08:49 - 2016-07-20 08:59 - 00473592 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2016-07-20 08:49 - 2016-07-20 08:49 - 00390984 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2016-07-20 08:49 - 2016-07-20 08:49 - 00290088 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2016-07-20 08:49 - 2016-07-20 08:49 - 00162904 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2016-07-20 08:49 - 2016-07-20 08:49 - 00108304 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2016-07-20 08:49 - 2016-07-20 08:49 - 00103064 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2016-07-20 08:49 - 2016-07-20 08:49 - 00074544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2016-07-20 08:49 - 2016-07-20 08:49 - 00037656 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2016-07-20 08:49 - 2016-07-20 08:49 - 00001922 _____ C:\Users\Public\Desktop\Avast Internet Security.lnk
2016-07-20 08:49 - 2016-07-20 08:49 - 00000000 ____D C:\Users\Thomas\AppData\Roaming\AVAST Software
2016-07-20 08:49 - 2016-07-20 08:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2016-07-20 08:49 - 2016-07-20 08:48 - 01070904 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2016-07-20 08:49 - 2016-07-20 08:48 - 00992960 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2016-07-20 08:49 - 2016-07-20 08:48 - 00921280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2016-07-20 08:49 - 2016-07-20 08:48 - 00572120 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetSec.sys
2016-07-20 08:48 - 2016-07-20 08:48 - 00053208 _____ (AVAST Software) C:\Windows\avastSS.scr
2016-07-20 08:48 - 2016-07-20 08:48 - 00028312 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetNd6.sys
2016-07-20 08:48 - 2016-07-20 08:48 - 00000000 ____D C:\ProgramData\AVAST Software
2016-07-20 08:48 - 2016-07-20 08:48 - 00000000 ____D C:\Program Files\AVAST Software
2016-07-20 08:47 - 2016-07-20 08:47 - 00000000 ____D C:\Users\Thomas\AppData\Roaming\WinRAR
2016-07-20 08:46 - 2016-07-20 08:46 - 00000000 ____D C:\Users\Thomas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-07-20 08:46 - 2016-07-20 08:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-07-20 08:46 - 2016-07-20 08:46 - 00000000 ____D C:\Program Files\WinRAR
2016-07-20 08:45 - 2016-07-20 08:45 - 00003741 _____ C:\Users\Thomas\Documents\Avast.rar
2016-07-20 08:37 - 2016-07-20 09:57 - 00028272 _____ C:\Windows\system32\Drivers\TrueSight.sys
2016-07-20 08:37 - 2016-07-20 08:37 - 00000858 _____ C:\Users\Public\Desktop\RogueKiller.lnk
2016-07-20 08:37 - 2016-07-20 08:37 - 00000000 ____D C:\ProgramData\RogueKiller
2016-07-20 08:37 - 2016-07-20 08:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller
2016-07-20 08:37 - 2016-07-20 08:37 - 00000000 ____D C:\Program Files\RogueKiller
2016-07-20 08:27 - 2016-07-20 10:34 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-07-20 08:26 - 2016-07-20 08:26 - 00001106 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-07-20 08:26 - 2016-07-20 08:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2016-07-20 08:26 - 2016-07-20 08:26 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-07-20 08:26 - 2016-07-20 08:26 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-07-20 08:26 - 2016-03-10 14:09 - 00064896 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2016-07-20 08:26 - 2016-03-10 14:08 - 00140672 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2016-07-20 08:26 - 2016-03-10 14:08 - 00027008 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2016-07-20 08:25 - 2016-07-20 09:31 - 00000000 ____D C:\Program Files (x86)\Sunrise Seven
2016-07-20 08:25 - 2016-07-20 08:25 - 00000997 _____ C:\Users\Public\Desktop\Sunrise Seven.lnk
2016-07-20 08:25 - 2016-07-20 08:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sunrise Seven
2016-07-20 08:24 - 2016-07-20 08:24 - 02475359 _____ C:\Users\Thomas\Downloads\Silent_Terminator.zip
2016-07-20 08:23 - 2016-07-20 08:23 - 02668752 _____ (Sunrise Software ) C:\Users\Thomas\Downloads\Sunrise_Seven_1.1.build.54.signed.exe
2016-07-20 08:23 - 2016-07-20 08:23 - 00002283 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-07-20 08:23 - 2016-07-20 08:23 - 00002271 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-07-20 08:23 - 2016-07-20 08:23 - 00000000 ____D C:\Users\Thomas\AppData\Local\Google
2016-07-20 08:22 - 2016-07-20 10:34 - 00000932 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-07-20 08:22 - 2016-07-20 10:27 - 00000936 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-07-20 08:22 - 2016-07-20 08:22 - 52553304 _____ (Google Inc.) C:\Users\Thomas\Desktop\ChromeStandaloneSetup64.exe
2016-07-20 08:22 - 2016-07-20 08:22 - 00003932 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-07-20 08:22 - 2016-07-20 08:22 - 00003680 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2016-07-20 08:22 - 2016-07-20 08:22 - 00000000 ____D C:\Program Files (x86)\Google
2016-07-20 08:10 - 2016-07-20 10:42 - 00058750 _____ C:\Windows\system32\perfh01B.dat
2016-07-20 08:10 - 2016-07-20 10:42 - 00022048 _____ C:\Windows\system32\perfc01B.dat
2016-07-20 08:03 - 2016-07-20 08:03 - 00057560 _____ C:\Users\Thomas\AppData\Local\GDIPFONTCACHEV1.DAT
2016-07-20 08:02 - 2016-07-20 08:02 - 00001447 _____ C:\Users\Thomas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2016-07-20 08:02 - 2016-07-20 08:02 - 00001413 _____ C:\Users\Thomas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
2016-07-20 08:02 - 2016-07-20 08:02 - 00000020 ___SH C:\Users\Thomas\ntuser.ini
2016-07-20 08:02 - 2016-07-20 08:02 - 00000000 ____D C:\Users\Thomas\AppData\Local\VirtualStore
2016-07-20 08:02 - 2016-07-20 08:02 - 00000000 ____D C:\Users\Thomas
2016-07-20 08:02 - 2010-11-21 17:10 - 00000000 ____D C:\Users\Thomas\AppData\Roaming\Media Center Programs
2016-07-20 07:59 - 2016-07-20 07:59 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2016-07-08 21:37 - 2016-07-08 21:37 - 00141280 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdave64.dll
2016-07-08 21:37 - 2016-07-08 21:37 - 00122704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdave32.dll
2016-07-08 21:36 - 2016-07-08 21:36 - 10707032 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atidxx64.dll
2016-07-08 21:36 - 2016-07-08 21:36 - 08888016 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atidxx32.dll
2016-07-08 21:36 - 2016-07-08 21:36 - 01515312 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx64.dll
2016-07-08 21:36 - 2016-07-08 21:36 - 01245416 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\aticfx32.dll
2016-07-08 21:36 - 2016-07-08 21:36 - 00166488 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiuxp64.dll
2016-07-08 21:36 - 2016-07-08 21:36 - 00150544 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9p64.dll
2016-07-08 21:36 - 2016-07-08 21:36 - 00141280 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdhcp64.dll
2016-07-08 21:36 - 2016-07-08 21:36 - 00137136 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiuxpag.dll
2016-07-08 21:36 - 2016-07-08 21:36 - 00125288 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdhcp32.dll
2016-07-08 21:36 - 2016-07-08 21:36 - 00123776 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiu9pag.dll
2016-07-08 21:36 - 2016-07-08 21:36 - 00109856 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll
2016-07-08 21:36 - 2016-07-08 21:36 - 00109856 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll
2016-07-08 21:36 - 2016-07-08 21:36 - 00092328 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll
2016-07-08 21:36 - 2016-07-08 21:36 - 00092328 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll
2016-07-08 21:35 - 2016-07-08 21:35 - 09798560 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd6a.dll
2016-07-08 21:35 - 2016-07-08 21:35 - 08865344 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdva.dll
2016-07-08 21:35 - 2016-07-08 21:35 - 08577456 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd64.dll
2016-07-08 21:35 - 2016-07-08 21:35 - 07000520 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdag.dll
2016-07-08 21:33 - 2016-07-08 21:33 - 00305032 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdacpksd.sys
2016-07-08 21:29 - 2016-07-08 21:29 - 27004928 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmdag.sys
2016-07-08 21:23 - 2016-07-08 21:23 - 48616960 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl64.dll
2016-07-08 21:23 - 2016-07-08 21:23 - 00252928 _____ C:\Windows\system32\clinfo.exe
2016-07-08 21:22 - 2016-07-08 21:22 - 38099456 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl.dll
2016-07-08 21:21 - 2016-07-08 21:21 - 08815104 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdvlk64.dll
2016-07-08 21:21 - 2016-07-08 21:21 - 00096256 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2016-07-08 21:21 - 2016-07-08 21:21 - 00087040 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2016-07-08 21:19 - 2016-07-08 21:19 - 27433472 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl12cl64.dll
2016-07-08 21:19 - 2016-07-08 21:19 - 21600768 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl12cl.dll
2016-07-08 21:17 - 2016-07-08 21:17 - 07072768 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdvlk32.dll
2016-07-08 21:03 - 2016-07-08 21:03 - 30219776 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atio6axx.dll
2016-07-08 21:02 - 2016-07-08 21:02 - 06965248 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmantle64.dll
2016-07-08 21:02 - 2016-07-08 21:02 - 00732160 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdlvr64.dll
2016-07-08 21:02 - 2016-07-08 21:02 - 00607744 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdlvr32.dll
2016-07-08 21:02 - 2016-07-08 21:02 - 00142336 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantle64.dll
2016-07-08 21:02 - 2016-07-08 21:02 - 00117760 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantle32.dll
2016-07-08 21:00 - 2016-07-08 21:00 - 00865280 _____ (AMD) C:\Windows\system32\coinst_16.20.dll
2016-07-08 20:59 - 2016-07-08 20:59 - 00720192 _____ C:\Windows\SysWOW64\atiapfxx.blb
2016-07-08 20:59 - 2016-07-08 20:59 - 00720192 _____ C:\Windows\system32\atiapfxx.blb
2016-07-08 20:58 - 2016-07-08 20:58 - 15711744 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd64.dll
2016-07-08 20:58 - 2016-07-08 20:58 - 05643776 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmantle32.dll
2016-07-08 20:58 - 2016-07-08 20:58 - 00385536 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe
2016-07-08 20:58 - 2016-07-08 20:58 - 00062464 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt64.dll
2016-07-08 20:58 - 2016-07-08 20:58 - 00055808 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl64.dll
2016-07-08 20:58 - 2016-07-08 20:58 - 00052224 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalrt.dll
2016-07-08 20:58 - 2016-07-08 20:58 - 00049152 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalcl.dll
2016-07-08 20:57 - 2016-07-08 20:57 - 14302720 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticaldd.dll
2016-07-08 20:57 - 2016-07-08 20:57 - 00050688 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmmcl6.dll
2016-07-08 20:57 - 2016-07-08 20:57 - 00038400 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmmcl.dll
2016-07-08 20:55 - 2016-07-08 20:55 - 24836096 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atioglxx.dll
2016-07-08 20:55 - 2016-07-08 20:55 - 00113152 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantleaxl64.dll
2016-07-08 20:55 - 2016-07-08 20:55 - 00092160 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantleaxl32.dll
2016-07-08 20:54 - 2016-07-08 20:54 - 03437632 _____ C:\Windows\system32\atiumd6a.cap
2016-07-08 20:53 - 2016-07-08 20:53 - 00204952 _____ C:\Windows\SysWOW64\ativvsvl.dat
2016-07-08 20:53 - 2016-07-08 20:53 - 00204952 _____ C:\Windows\system32\ativvsvl.dat
2016-07-08 20:53 - 2016-07-08 20:53 - 00157144 _____ C:\Windows\SysWOW64\ativvsva.dat
2016-07-08 20:53 - 2016-07-08 20:53 - 00157144 _____ C:\Windows\system32\ativvsva.dat
2016-07-08 20:52 - 2016-07-08 20:52 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll
2016-07-08 20:52 - 2016-07-08 20:52 - 00274432 _____ C:\Windows\system32\dgtrayicon.exe
2016-07-08 20:52 - 2016-07-08 20:52 - 00258560 _____ C:\Windows\system32\GameManager64.dll
2016-07-08 20:52 - 2016-07-08 20:52 - 00223744 _____ C:\Windows\SysWOW64\GameManager32.dll
2016-07-08 20:52 - 2016-07-08 20:52 - 00212480 _____ C:\Windows\system32\atieah64.exe
2016-07-08 20:52 - 2016-07-08 20:52 - 00190464 _____ C:\Windows\SysWOW64\atieah32.exe
2016-07-08 20:51 - 2016-07-08 20:51 - 00588288 _____ (AMD) C:\Windows\system32\atieclxx.exe
2016-07-08 20:51 - 2016-07-08 20:51 - 00306688 _____ (AMD) C:\Windows\system32\atiesrxx.exe
2016-07-08 20:51 - 2016-07-08 20:51 - 00270336 _____ (AMD) C:\Windows\system32\atitmm64.dll
2016-07-08 20:51 - 2016-07-08 20:51 - 00230912 _____ C:\Windows\system32\amdgfxinfo64.dll
2016-07-08 20:51 - 2016-07-08 20:51 - 00202752 _____ C:\Windows\SysWOW64\amdgfxinfo32.dll
2016-07-08 20:51 - 2016-07-08 20:51 - 00093696 _____ (AMD) C:\Windows\system32\atimuixx.dll
2016-07-08 20:50 - 2016-07-08 20:50 - 03471376 _____ C:\Windows\SysWOW64\atiumdva.cap
2016-07-08 20:47 - 2016-07-08 20:47 - 01309184 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll
2016-07-08 20:47 - 2016-07-08 20:47 - 00976384 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll
2016-07-08 20:47 - 2016-07-08 20:47 - 00976384 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxx.dll
2016-07-08 20:47 - 2016-07-08 20:47 - 00185344 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll
2016-07-08 20:47 - 2016-07-08 20:47 - 00159232 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
2016-07-08 20:47 - 2016-07-08 20:47 - 00119808 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atisamu64.dll
2016-07-08 20:47 - 2016-07-08 20:47 - 00106496 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6pxx.dll
2016-07-08 20:47 - 2016-07-08 20:47 - 00101376 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atisamu32.dll
2016-07-08 20:47 - 2016-07-08 20:47 - 00091136 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiglpxx.dll
2016-07-08 20:47 - 2016-07-08 20:47 - 00091136 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiglpxx.dll
2016-07-08 20:47 - 2016-07-08 20:47 - 00043520 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\ati2erec.dll
2016-07-08 20:46 - 2016-07-08 20:46 - 00498176 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
2016-07-08 20:44 - 2016-07-08 20:44 - 00251392 _____ C:\Windows\system32\hsa-thunk64.dll
2016-07-08 20:44 - 2016-07-08 20:44 - 00217088 _____ C:\Windows\SysWOW64\hsa-thunk.dll
2016-06-23 20:22 - 2016-06-23 20:22 - 00264992 _____ C:\Windows\SysWOW64\vulkan-1-1-0-17-0.dll
2016-06-23 20:21 - 2016-06-23 20:21 - 00257824 _____ C:\Windows\system32\vulkan-1-1-0-17-0.dll
2016-06-23 20:21 - 2016-06-23 20:21 - 00110880 _____ C:\Windows\SysWOW64\vulkaninfo-1-1-0-17-0.exe
2016-06-23 20:20 - 2016-06-23 20:20 - 00125216 _____ C:\Windows\system32\vulkaninfo-1-1-0-17-0.exe
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-07-20 10:42 - 2009-07-14 07:13 - 00802250 _____ C:\Windows\system32\PerfStringBackup.INI
2016-07-20 10:42 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf
2016-07-20 10:33 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-07-20 09:31 - 2010-11-21 05:24 - 02872320 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2016-07-20 09:30 - 2010-11-21 05:24 - 02872320 _____ (Microsoft Corporation) C:\Windows\explorer_.exe.Back.4.57673453240503
2016-07-20 09:23 - 2009-07-14 06:45 - 00016640 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-07-20 09:23 - 2009-07-14 06:45 - 00016640 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-07-20 08:56 - 2009-07-14 07:32 - 00028672 _____ C:\Windows\system32\config\BCD-Template
2016-07-20 08:29 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\oobe
2016-07-20 08:08 - 2009-07-14 07:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-07-20 08:08 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\DVD Maker
2016-07-20 08:08 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\spool
2016-07-20 08:08 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2016-07-20 08:01 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2016-07-20 08:00 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\sysprep
2016-07-20 07:57 - 2009-07-14 06:45 - 00274736 _____ C:\Windows\system32\FNTCACHE.DAT
Some files in TEMP:
====================
C:\Users\Thomas\AppData\Local\Temp\dllnt_dump.dll
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe
[2010-11-21 05:24] - [2016-07-20 09:31] - 2872320 ____A (Microsoft Corporation) BC03306673C6A99FA5C5FF85F6F744B1
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
ATTENTION: ==> Could not access BCD.
LastRegBack: 2016-07-20 07:57
==================== End of FRST.txt ============================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 18-07-2016
Ran by Thomas (2016-07-20 10:52:19)
Running from C:\Users\Thomas\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2016-07-20 06:02:15)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-2297602522-1921712993-1644906987-500 - Administrator - Disabled)
Guest (S-1-5-21-2297602522-1921712993-1644906987-501 - Limited - Disabled)
Thomas (S-1-5-21-2297602522-1921712993-1644906987-1000 - Administrator - Enabled) => C:\Users\Thomas
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: avast! Antivirus (Enabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
AMD Install Manager (HKLM\...\AMD Catalyst Install Manager) (Version: 9.0.000.4 - Advanced Micro Devices, Inc.)
Avast Internet Security (HKLM-x32\...\Avast) (Version: 12.1.2272 - AVAST Software)
Catalyst Control Center Next Localization BR (Version: 2016.0708.1511.25486 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (Version: 2016.0708.1511.25486 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (Version: 2016.0708.1511.25486 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (Version: 2016.0708.1511.25486 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (Version: 2016.0708.1511.25486 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (Version: 2016.0708.1511.25486 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (Version: 2016.0708.1511.25486 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (Version: 2016.0708.1511.25486 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (Version: 2016.0708.1511.25486 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (Version: 2016.0708.1511.25486 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (Version: 2016.0708.1511.25486 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (Version: 2016.0708.1511.25486 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (Version: 2016.0708.1511.25486 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (Version: 2016.0708.1511.25486 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (Version: 2016.0708.1511.25486 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (Version: 2016.0708.1511.25486 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (Version: 2016.0708.1511.25486 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (Version: 2016.0708.1511.25486 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (Version: 2016.0708.1511.25486 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (Version: 2016.0708.1511.25486 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (Version: 2016.0708.1511.25486 - Advanced Micro Devices, Inc.) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 51.0.2704.106 - Spoločnosť Google Inc.)
Google Update Helper (x32 Version: 1.3.30.3 - Google Inc.) Hidden
Malwarebytes Anti-Malware verzia 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Microsoft .NET Framework 4.5 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
RogueKiller verze 12 (HKLM\...\8B3D7924-ED89-486B-8322-E8594065D5CB_is1) (Version: 12 - Adlice Software)
Sunrise Seven 1.1.54 (HKLM-x32\...\{AB0DBC9A-422A-4888-A8E5-A32EC1779E68}_is1) (Version: - Sunrise Software)
Uninstall Silent Terminator (HKLM-x32\...\{22977085-25AD-42A7-B1EF-8444C94CB4B8}_is1) (Version: 1.3 - AMYD Projects)
Vulkan Run Time Libraries 1.0.17.0 (HKLM\...\VulkanRT1.0.17.0) (Version: 1.0.17.0 - LunarG, Inc.)
WinRAR 5.31 (64-bitová verzia) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {3D3E4E9C-4532-401E-9194-4EBF03AEB764} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-07-20] (Google Inc.)
Task: {7B6E2189-3FED-4B9F-8DEA-106E632CABBB} - System32\Tasks\AMD Updater => C:\Program Files\AMD\CIM\\Bin64\InstallManagerApp.exe [2016-07-08] (Advanced Micro Devices, Inc.)
Task: {CAD59034-7DC0-4A87-B769-C9D540421100} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-07-20] (AVAST Software)
Task: {D52E2107-FE26-46C8-8FCB-F34CAFD1876C} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2016-07-20] (AVAST Software)
Task: {D582D506-8D7C-4ABD-83AB-8A7D8F423FB9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-07-20] (Google Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Shortcuts =============================
(The entries could be listed to be restored or removed.)
==================== Loaded Modules (Whitelisted) ==============
2016-07-20 09:47 - 2003-04-18 17:06 - 00008192 _____ () C:\Program Files (x86)\Silent Terminator\srvany.exe
2015-06-25 17:34 - 2015-06-25 17:34 - 00014336 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2015-06-25 17:37 - 2015-06-25 17:37 - 00739840 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2015-06-25 17:35 - 2015-06-25 17:35 - 00014336 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2015-06-25 17:38 - 2015-06-25 17:38 - 00071168 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2015-06-25 16:53 - 2015-06-25 16:53 - 00011776 _____ () C:\Program Files\AMD\CNext\CNext\libEGL.dll
2015-06-25 16:51 - 2015-06-25 16:51 - 02013696 _____ () C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2016-07-20 08:23 - 2016-06-23 15:26 - 02336584 _____ () C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.106\libglesv2.dll
2016-07-20 08:23 - 2016-06-23 15:25 - 00107336 _____ () C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.106\libegl.dll
2016-07-20 08:48 - 2016-07-20 08:48 - 00146232 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-07-20 08:49 - 2016-07-20 08:49 - 03000832 _____ () C:\Program Files\AVAST Software\Avast\defs\16071901\algo.dll
2016-07-20 08:48 - 2016-07-20 08:48 - 00479288 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2016-07-20 08:48 - 2016-07-20 08:48 - 48936448 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 04:34 - 2016-07-20 09:57 - 00000768 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-2297602522-1921712993-1644906987-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Thomas\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 217.23.254.124 - 217.23.254.125
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 1) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(Currently there is no automatic fix for this section.)
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{2A83E06F-98E9-49CF-BCBF-FDDCD44F181A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Restore Points =========================
Check "winmgmt" service or repair WMI.
==================== Faulty Device Manager Devices =============
Could not list Devices. Check "winmgmt" service or repair WMI.
==================== Event log errors: =========================
Application errors:
==================
Error: (07/20/2016 10:34:02 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (07/20/2016 10:33:52 AM) (Source: ATIeRecord) (EventID: 16388) (User: )
Description: ATI EEU Client event error
Error: (07/20/2016 10:10:06 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (07/20/2016 09:52:40 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (07/20/2016 09:52:33 AM) (Source: ATIeRecord) (EventID: 16388) (User: )
Description: ATI EEU Client event error
Error: (07/20/2016 09:49:40 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (07/20/2016 09:49:30 AM) (Source: ATIeRecord) (EventID: 16388) (User: )
Description: ATI EEU Client event error
Error: (07/20/2016 09:32:13 AM) (Source: ATIeRecord) (EventID: 16387) (User: )
Description: ATI EEU Service event error
Error: (07/20/2016 09:27:05 AM) (Source: ATIeRecord) (EventID: 16387) (User: )
Description: ATI EEU Service event error
Error: (07/20/2016 09:25:06 AM) (Source: ATIeRecord) (EventID: 16387) (User: )
Description: ATI EEU Service event error
System errors:
=============
Error: (07/20/2016 10:38:24 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: {73E709EA-5D93-4B2E-BBB0-99B7938DA9E4}
Error: (07/20/2016 10:35:12 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: {1F87137D-0E7C-44D5-8C73-4EFFB68962F2}
Error: (07/20/2016 10:33:52 AM) (Source: BugCheck) (EventID: 1001) (User: )
Description: 0x000000f4 (0x0000000000000003, 0xfffffa8009004060, 0xfffffa8009004340, 0xfffff80002d90db0)C:\Windows\MEMORY.DMP072016-16676-01
Error: (07/20/2016 10:33:51 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 10:32:18 on 20. 7. 2016 was unexpected.
Error: (07/20/2016 10:10:43 AM) (Source: DCOM) (EventID: 10000) (User: )
Description: C:\Windows\system32\wbem\wmiprvse.exe -secured -Embedding5{1F87137D-0E7C-44D5-8C73-4EFFB68962F2}
Error: (07/20/2016 10:10:38 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: {1F87137D-0E7C-44D5-8C73-4EFFB68962F2}
Error: (07/20/2016 09:52:34 AM) (Source: BugCheck) (EventID: 1001) (User: )
Description: 0x000000f4 (0x0000000000000003, 0xfffffa8008ef2b30, 0xfffffa8008ef2e10, 0xfffff80002da2db0)C:\Windows\MEMORY.DMP072016-16504-01
Error: (07/20/2016 09:52:33 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 9:50:16 on 20. 7. 2016 was unexpected.
Error: (07/20/2016 09:49:45 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Spustenie služby Sieťový vstupno-výstupný ovládač staršej verzie na podporu zariadení TDI, od ktorej závisí služba DNS Client, zlyhalo kvôli nasledujúcej chybe:
%%577 = Systém Windows nemôže overiť digitálny podpis pre tento súbor. Pri poslednej zmene hardvérovej alebo softvérovej konfigurácie sa mohol nainštalovať súbor, ktorý je nesprávne podpísaný alebo poškodený, alebo to môže byť škodlivý softvér z neznámeho zdroja.
Error: (07/20/2016 09:49:45 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Spustenie služby Sieťový vstupno-výstupný ovládač staršej verzie na podporu zariadení TDI zlyhalo kvôli nasledujúcej chybe:
%%577 = Systém Windows nemôže overiť digitálny podpis pre tento súbor. Pri poslednej zmene hardvérovej alebo softvérovej konfigurácie sa mohol nainštalovať súbor, ktorý je nesprávne podpísaný alebo poškodený, alebo to môže byť škodlivý softvér z neznámeho zdroja.
==================== Memory info ===========================
Processor: AMD Phenom(tm) II X4 945 Processor
Percentage of memory in use: 30%
Total physical RAM: 8191.11 MB
Available physical RAM: 5695.71 MB
Total Virtual: 16380.43 MB
Available Virtual: 13330.02 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:117.19 GB) (Free:91.35 GB) NTFS
Drive d: () (Fixed) (Total:348.47 GB) (Free:347.94 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 4D154D14)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=117.2 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=348.5 GB) - (Type=07 NTFS)
==================== End of Addition.txt ============================