Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Prosím o kontrolu

Nemáte v tuto chvíli žádný problém s pc a chcete se jen ujistit, že je vše v pořádku?
Vložte log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
mania
Návštěvník
Návštěvník
Příspěvky: 65
Registrován: 16 říj 2015 09:14

Prosím o kontrolu

#1 Příspěvek od mania »

Dobrý večer, prosím o preventivní kontrolu.
V poslední době mě zlobí PC zejména hry do jedné se přihlasím ale už se nevidím na mapě druhá hra se jen načítá bez jakékoliv hlašky třetí co není on-line mám fuč save. Všechny jsem hrála bez problému několik měsíců. Prohlížeče se otvírají v limitu :D dle mého názoru.
Včera jsem zkoušela ještě obnovu systemů ale moc to nepomohlo. Nevím zda je to nějakým šmejdem a nebo něco odchází v PC.
Předem děkuji za kontrolu.

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 25-09-2017
Ran by LuciFafa (administrator) on LUCIFAFA-PC (25-09-2017 20:55:31)
Running from C:\Users\LuciFafa\Desktop
Loaded Profiles: LuciFafa (Available Profiles: LuciFafa)
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AMD) C:\Program Files\AMD\RAIDXpert\bin\RAIDXpertService.exe
(AMD) C:\Program Files\AMD\RAIDXpert\bin\RAIDXpert.exe
() C:\Program Files\ASUS\AXSP\1.02.00\atkexComSvc.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
() C:\Program Files\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe
(Pixart Imaging Inc) C:\Windows\System32\TiltWheelMouse.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
(Raptr, Inc) C:\Program Files\Raptr Inc\Raptr\raptr.exe
(Raptr, Inc) C:\Program Files\Raptr Inc\Raptr\raptr_im.exe
(Nexon) C:\Program Files\Nexon\Nexon Launcher\bin\nexon_client\nexon_client.exe
(Nexon) C:\Program Files\Nexon\Nexon Launcher\bin\nexon_client\nexon_client.exe
(Nexon) C:\Program Files\Nexon\Nexon Launcher\bin\nexon_client\nexon_client.exe
(Nexon) C:\Program Files\Nexon\Nexon Launcher\bin\nexon_client\nexon_client.exe
(AMD) C:\Windows\System32\WinMsgBalloonServer.exe
(AMD) C:\Windows\System32\WinMsgBalloonClient.exe
(Microsoft Corporation) C:\Windows\System32\wuauclt.exe
(AVAST Software s.r.o.) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI.exe [7519960 2015-01-28] (Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [239856 2017-09-01] (AVAST Software)
HKLM\...\Run: [Raptr] => C:\Program Files\Raptr Inc\Raptr\raptrstub.exe [58584 2017-05-30] (Raptr, Inc)
HKLM\...\Run: [NUSB3MON] => C:\Program Files\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe [97280 2012-04-11] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [MouseDriver] => C:\Windows\system32\TiltWheelMouse.exe [241152 2012-12-19] (Pixart Imaging Inc)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [587288 2017-07-21] (Oracle Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-1117677789-4214877554-3075564690-1000\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [3576664 2015-06-18] (Disc Soft Ltd)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{4950ECBA-8D72-493B-A0EB-CA9249133316}: [DhcpNameServer] 10.0.0.138

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-1117677789-4214877554-3075564690-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.seznam.cz/
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1117677789-4214877554-3075564690-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: SteadyVideoBHO Class -> {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} -> C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll [2012-02-14] (Advanced Micro Devices)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_144\bin\ssv.dll [2017-09-05] (Oracle Corporation)
BHO: ArcPluginIEBHO Class -> {84BFE29A-8139-402a-B2A4-C23AE9E1A75F} -> C:\Program Files\Arc\Plugins\ArcPluginIE.dll [2016-08-18] (Perfect World Entertainment Inc)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-09-01] (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> c:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_144\bin\jp2ssv.dll [2017-09-05] (Oracle Corporation)
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices)
Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices)

Chrome:
=======
CHR HKLM\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx <not found>
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx

FireFox:
========
FF DefaultProfile: pdbynjqe.default
FF ProfilePath: C:\Users\LuciFafa\AppData\Roaming\Mozilla\Firefox\Profiles\pdbynjqe.default [2017-09-25]
FF NewTab: Mozilla\Firefox\Profiles\pdbynjqe.default -> about:newtab
FF Homepage: Mozilla\Firefox\Profiles\pdbynjqe.default -> www.google.com
FF NetworkProxy: Mozilla\Firefox\Profiles\pdbynjqe.default -> type", 0
FF Extension: (Avast SafePrice) - C:\Users\LuciFafa\AppData\Roaming\Mozilla\Firefox\Profiles\pdbynjqe.default\Extensions\sp@avast.com.xpi [2017-09-01]
FF Extension: (Avast Online Security) - C:\Users\LuciFafa\AppData\Roaming\Mozilla\Firefox\Profiles\pdbynjqe.default\Extensions\wrc@avast.com.xpi [2017-09-01]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_27_0_0_130.dll [2017-09-12] ()
FF Plugin: @java.com/DTPlugin,version=11.144.2 -> C:\Program Files\Java\jre1.8.0_144\bin\dtplugin\npDeployJava1.dll [2017-09-05] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.144.2 -> C:\Program Files\Java\jre1.8.0_144\bin\plugin2\npjp2.dll [2017-09-05] (Oracle Corporation)
FF Plugin: @ngm.nexoneu.com/NxGame -> C:\ProgramData\NexonEU\NGM\npNxGameEU.dll [2015-09-26] (Nexon)
FF Plugin: @ogplanet.com/npOGPPlugin -> C:\Windows\system32\npOGPPlugin.dll [2009-11-19] (OGPlanet)
FF Plugin: @perfectworld.com/npArcPlayNowPlugin -> C:\Program Files\Arc\Plugins\npArcPluginFF.dll [2016-08-18] (Perfect World Entertainment Inc)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll [No File]
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll [No File]
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-08-01] (Adobe Systems Inc.)

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AMD_RAIDXpert; C:\Program Files\AMD\RAIDXpert\bin\RAIDXpertService.exe [131320 2011-12-14] (AMD)
S3 ArcService; C:\Program Files\Arc\ArcService.exe [88024 2016-08-18] (Perfect World Entertainment Inc)
R2 asComSvc; C:\Program Files\ASUS\AXSP\1.02.00\atkexComSvc.exe [936728 2014-07-23] ()
R2 AsSysCtrlService; C:\Program Files\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe [1360016 2014-07-23] () [File not signed]
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [5830352 2017-09-05] (AVAST Software s.r.o.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [275208 2017-09-01] (AVAST Software)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1034584 2015-06-18] (Disc Soft Ltd)
S4 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
U4 AvastVBoxSvc; "C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe" [X]
S3 rpcapd; "%ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini" [X]

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 amdhub30; C:\Windows\System32\DRIVERS\amdhub30.sys [86752 2016-01-14] (Advanced Micro Devices, INC.)
R0 amdkmpfd; C:\Windows\System32\DRIVERS\amdkmpfd.sys [40136 2014-10-28] (Advanced Micro Devices, Inc.)
R3 amdxhc; C:\Windows\System32\DRIVERS\amdxhc.sys [179936 2016-01-14] (Advanced Micro Devices, INC.)
R0 amd_sata; C:\Windows\System32\DRIVERS\amd_sata.sys [73928 2015-03-30] (Advanced Micro Devices)
R0 amd_xata; C:\Windows\System32\DRIVERS\amd_xata.sys [36040 2015-03-30] (Advanced Micro Devices)
R1 AsIO; C:\Windows\System32\drivers\AsIO.sys [14720 2014-07-23] ()
R1 aswbidsdriver; C:\Windows\system32\drivers\aswbidsdriverx.sys [267520 2017-09-05] (AVAST Software s.r.o.)
R0 aswbidsh; C:\Windows\system32\drivers\aswbidshx.sys [157416 2017-09-05] (AVAST Software s.r.o.)
R0 aswblog; C:\Windows\system32\drivers\aswblogx.sys [276736 2017-09-05] (AVAST Software s.r.o.)
R0 aswbuniv; C:\Windows\system32\drivers\aswbunivx.sys [50384 2017-09-05] (AVAST Software s.r.o.)
S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [42856 2017-09-01] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [124952 2017-09-01] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [99568 2017-09-01] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [70864 2017-09-01] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [773800 2017-09-01] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [500136 2017-09-01] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [148232 2017-09-18] (AVAST Software)
R0 aswVmm; C:\Windows\system32\drivers\aswVmm.sys [296192 2017-09-25] (AVAST Software)
R0 BtHidBus; C:\Windows\System32\Drivers\BtHidBus.sys [19592 2009-09-24] (IVT Corporation.)
S3 btnetBUs; C:\Windows\System32\Drivers\btnetBus.sys [22528 2009-09-24] ()
R1 ccSet_NST; C:\Windows\system32\drivers\NST\7DE070B0.02A\ccSetx86.sys [127064 2013-09-27] (Symantec Corporation)
R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [25016 2015-10-14] (Disc Soft Ltd)
R0 giveio; C:\Windows\System32\giveio.sys [5248 1996-04-03] () [File not signed]
S3 IvtBtBUs; C:\Windows\System32\Drivers\IvtBtBus.sys [25480 2009-08-26] (IVT Corporation.)
S3 k750bus; C:\Windows\System32\DRIVERS\k750bus.sys [55216 2005-02-11] (MCCI)
S3 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc.)
R0 pwdrvio; C:\Windows\System32\pwdrvio.sys [15688 2013-09-30] ()
S3 pwdspio; C:\Windows\system32\pwdspio.sys [10320 2013-09-30] ()
R0 speedfan; C:\Windows\System32\speedfan.sys [24184 2012-12-29] (Almico Software)
R3 t_mouse.sys; C:\Windows\System32\DRIVERS\t_mouse.sys [5120 2012-12-19] ()
S2 AODDriver4.3; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\i386\AODDriver2.sys [X]
U5 AppMgmt; C:\Windows\system32\svchost.exe [20992 2009-07-14] (Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
S2 APXACC; system32\DRIVERS\appexDrv.sys [X]
S3 BT; system32\DRIVERS\btnetdrv.sys [X]
S3 EagleXNt; \??\C:\Windows\system32\drivers\EagleXNt.sys [X]
U4 VBoxAswDrv; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [X]
S3 VComm; system32\DRIVERS\VComm.sys [X]
S3 VcommMgr; System32\Drivers\VcommMgr.sys [X]
S3 XDva532; \??\C:\Windows\system32\XDva532.sys [X]
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-09-25 20:55 - 2017-09-25 20:55 - 000014234 _____ C:\Users\LuciFafa\Desktop\FRST.txt
2017-09-25 20:55 - 2017-09-25 20:55 - 000000000 ____D C:\FRST
2017-09-25 20:54 - 2017-09-25 20:54 - 001795584 _____ (Farbar) C:\Users\LuciFafa\Desktop\FRST.exe
2017-09-25 20:09 - 2017-09-25 20:10 - 008182736 _____ (Malwarebytes) C:\Users\LuciFafa\Desktop\adwcleaner_7.0.2.1.exe
2017-09-25 19:02 - 2017-09-01 13:14 - 000304816 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2017-09-18 11:10 - 2017-09-18 11:10 - 000000000 ____D C:\ProgramData\Orbit
2017-09-18 11:04 - 2017-09-18 11:04 - 000000860 _____ C:\Users\Public\Desktop\Far Cry 3 DX11.lnk
2017-09-18 11:04 - 2017-09-18 11:04 - 000000828 _____ C:\Users\Public\Desktop\Far Cry 3 DX9.lnk
2017-09-18 10:49 - 2015-07-23 15:14 - 000000000 ____D C:\Users\LuciFafa\Desktop\Far Cry 3
2017-09-17 19:35 - 2017-09-18 01:14 - 1946169553 _____ C:\Users\LuciFafa\Downloads\FC3.rar
2017-09-14 23:09 - 2017-09-14 23:20 - 000000000 ____D C:\Users\LuciFafa\Desktop\Nová složka (2)
2017-09-05 09:38 - 2017-09-05 09:38 - 000000000 ____D C:\Program Files\Common Files\Java
2017-09-05 09:37 - 2017-09-05 09:37 - 000000020 _____ C:\Users\LuciFafa\Desktop\Nový textový dokument (2).txt
2017-09-05 09:37 - 2017-09-05 09:37 - 000000000 ____D C:\Users\LuciFafa\AppData\Local\AVAST Software
2017-09-05 09:27 - 2017-09-05 09:27 - 000276736 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswblogx.sys
2017-09-05 09:27 - 2017-09-05 09:27 - 000267520 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsdriverx.sys
2017-09-05 09:27 - 2017-09-05 09:27 - 000157416 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidshx.sys
2017-09-05 09:27 - 2017-09-05 09:27 - 000050384 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbunivx.sys
2017-09-02 13:09 - 2017-09-02 13:09 - 231032968 _____ C:\Windows\MEMORY.DMP
2017-09-02 13:09 - 2017-09-02 13:09 - 000141448 _____ C:\Windows\Minidump\090217-11809-01.dmp

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-09-25 20:48 - 2016-11-18 16:12 - 000000000 ____D C:\Users\LuciFafa\AppData\LocalLow\Mozilla
2017-09-25 20:34 - 2009-07-14 06:34 - 000014016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-09-25 20:34 - 2009-07-14 06:34 - 000014016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-09-25 20:27 - 2015-12-04 10:05 - 000000000 ____D C:\Users\LuciFafa\AppData\Roaming\Raptr
2017-09-25 20:26 - 2015-09-25 12:42 - 000065536 _____ C:\Windows\system32\spu_storage.bin
2017-09-25 20:26 - 2009-07-14 10:44 - 000000000 ____D C:\Windows\DigitalLocker
2017-09-25 20:26 - 2009-07-14 06:53 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2017-09-25 20:21 - 2015-10-04 14:50 - 000000000 ____D C:\Program Files\trend micro
2017-09-25 20:17 - 2015-10-15 07:46 - 000170200 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2017-09-25 20:13 - 2017-03-01 18:55 - 000000000 ____D C:\AdwCleaner
2017-09-25 19:02 - 2015-12-04 16:17 - 000001963 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2017-09-25 19:02 - 2015-10-22 07:43 - 000296192 _____ (AVAST Software) C:\Windows\system32\Drivers\aswvmm.sys
2017-09-25 19:02 - 2015-09-26 08:15 - 000000000 ____D C:\Program Files\CCleaner
2017-09-25 19:00 - 2015-09-25 12:29 - 000000000 ____D C:\Users\LuciFafa
2017-09-25 18:59 - 2009-07-14 04:37 - 000000000 ____D C:\Windows\registration
2017-09-25 18:59 - 2009-07-14 04:37 - 000000000 ____D C:\Windows\inf
2017-09-24 18:45 - 2015-10-16 14:05 - 000000000 ____D C:\Users\LuciFafa\AppData\Local\CrashDumps
2017-09-18 17:14 - 2015-10-22 07:43 - 000148232 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2017-09-18 11:10 - 2016-06-05 14:21 - 000000000 ____D C:\Users\LuciFafa\AppData\Local\PunkBuster
2017-09-18 11:10 - 2015-10-15 16:49 - 000000000 ____D C:\Users\LuciFafa\Documents\My Games
2017-09-18 11:04 - 2016-02-11 22:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hry
2017-09-18 10:53 - 2015-11-24 19:32 - 000000000 ____D C:\HRY
2017-09-18 10:52 - 2015-10-14 22:06 - 000000000 ____D C:\Users\LuciFafa\AppData\Roaming\DAEMON Tools Lite
2017-09-14 23:20 - 2017-04-19 13:30 - 000000000 ____D C:\Users\LuciFafa\Desktop\Nová složka
2017-09-14 10:11 - 2015-09-29 19:05 - 000000000 ____D C:\Users\LuciFafa\AppData\Roaming\vlc
2017-09-12 14:50 - 2015-09-29 18:01 - 000803328 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2017-09-12 14:50 - 2015-09-29 18:01 - 000144896 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2017-09-12 14:50 - 2015-09-29 18:01 - 000000000 ____D C:\Windows\system32\Macromed
2017-09-10 15:31 - 2015-09-29 17:33 - 000000000 ____D C:\Users\LuciFafa\AppData\Local\ElevatedDiagnostics
2017-09-07 12:35 - 2009-07-14 06:53 - 000032600 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2017-09-05 09:38 - 2015-10-05 14:38 - 000095808 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2017-09-05 09:38 - 2015-10-05 14:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2017-09-05 09:38 - 2015-10-05 14:38 - 000000000 ____D C:\Program Files\Java
2017-09-02 13:09 - 2015-10-03 09:34 - 000000000 ____D C:\Windows\Minidump
2017-09-01 13:14 - 2015-10-22 07:43 - 000773800 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2017-09-01 13:14 - 2015-10-22 07:43 - 000500136 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2017-09-01 13:14 - 2015-10-22 07:43 - 000124952 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2017-09-01 13:14 - 2015-10-22 07:43 - 000099568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2017-09-01 13:14 - 2015-10-22 07:43 - 000070864 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2017-09-01 13:14 - 2015-10-22 07:43 - 000042856 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2017-08-30 19:22 - 2015-10-29 10:01 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-08-27 14:53 - 2016-11-18 14:29 - 000000000 ____D C:\Program Files\Mozilla Firefox
2017-08-27 14:53 - 2015-09-26 08:21 - 000000000 ____D C:\Program Files\Mozilla Maintenance Service

==================== Files in the root of some directories =======

2016-06-03 15:03 - 2016-06-03 15:03 - 000000603 _____ () C:\Program Files\Blacklight Retribution_enUpdaterLog.txt
2015-11-30 22:42 - 2014-05-24 21:09 - 000603763 ___SH () C:\Users\LuciFafa\AppData\Roaming\libcurl-4.dll
2015-11-18 19:29 - 2014-05-26 20:16 - 000626176 ___SH (The cURL library, http://curl.haxx.se/) C:\Users\LuciFafa\AppData\Roaming\libcurl.dll
2015-11-18 19:29 - 2014-05-26 20:16 - 001704448 ___SH (The OpenSSL Project, http://www.openssl.org/) C:\Users\LuciFafa\AppData\Roaming\libeay32.dll
2015-11-18 19:29 - 2014-05-26 20:16 - 000112142 ___SH () C:\Users\LuciFafa\AppData\Roaming\libgcc_s_dw2-1.dll
2015-11-18 19:29 - 2014-05-26 20:16 - 000279955 ___SH () C:\Users\LuciFafa\AppData\Roaming\libidn-11.dll
2015-11-18 19:29 - 2014-05-26 20:16 - 000148760 ___SH () C:\Users\LuciFafa\AppData\Roaming\libpdcurses.dll
2015-11-18 19:29 - 2014-05-04 11:16 - 000207360 ___SH (CodePlex Community) C:\Users\LuciFafa\AppData\Roaming\Microsoft.Win32.TaskScheduler.dll
2015-11-18 19:29 - 2013-08-11 15:41 - 000044032 ___SH (NirSoft) C:\Users\LuciFafa\AppData\Roaming\nircmd.exe
2015-11-20 10:48 - 2015-11-20 10:48 - 000000000 _____ () C:\Users\LuciFafa\AppData\Roaming\OCL5994.tmp
2015-11-20 10:48 - 2015-11-20 10:48 - 000000000 _____ () C:\Users\LuciFafa\AppData\Roaming\OCL5C91.tmp
2015-11-20 15:46 - 2015-11-20 15:46 - 000000000 _____ () C:\Users\LuciFafa\AppData\Roaming\OCL6160.tmp
2015-11-21 13:32 - 2015-11-21 13:32 - 000000000 _____ () C:\Users\LuciFafa\AppData\Roaming\OCL6640.tmp
2015-11-22 09:23 - 2015-11-22 09:23 - 000000000 _____ () C:\Users\LuciFafa\AppData\Roaming\OCLA2C3.tmp
2016-06-03 15:01 - 2016-06-03 15:01 - 000138056 _____ () C:\Users\LuciFafa\AppData\Roaming\PnkBstrK.sys
2015-11-30 22:42 - 2014-05-24 21:09 - 000042496 ___SH (Open Source Software community project) C:\Users\LuciFafa\AppData\Roaming\pthreadGC2-w64.dll
2015-11-18 19:29 - 2014-05-26 20:16 - 000119704 ___SH (Open Source Software community LGPL) C:\Users\LuciFafa\AppData\Roaming\pthreadGC2.dll
2015-11-18 19:29 - 2014-05-26 20:16 - 000364544 ___SH (The OpenSSL Project, http://www.openssl.org/) C:\Users\LuciFafa\AppData\Roaming\ssleay32.dll
2015-11-20 10:48 - 2015-11-20 10:48 - 002497372 _____ () C:\Users\LuciFafa\AppData\Roaming\x11modSpectreglg2tc5568w256l4.bin
2015-11-18 19:29 - 2014-05-26 20:16 - 000113166 ___SH () C:\Users\LuciFafa\AppData\Roaming\zlib1.dll
2015-12-26 21:23 - 2015-12-26 21:23 - 000000037 ___SH () C:\Users\LuciFafa\AppData\Local\20986331705021ca58edc424.96250074
2015-09-28 10:38 - 2017-08-08 10:06 - 000007611 _____ () C:\Users\LuciFafa\AppData\Local\Resmon.ResmonCfg
2015-09-25 22:02 - 2015-09-25 22:02 - 000000000 ____H () C:\ProgramData\DP45977C.lfl
2016-06-15 14:19 - 2016-06-15 14:19 - 000000016 _____ () C:\ProgramData\mntemp

Some files in TEMP:
====================
2017-09-14 23:40 - 2017-09-17 18:31 - 000000016 _____ () C:\Users\LuciFafa\AppData\Local\temp\28c770c8d58d854e2d83f9d8688f1165.dll
2017-08-23 21:48 - 2017-09-20 17:23 - 000000000 _____ () C:\Users\LuciFafa\AppData\Local\temp\6a246669c4722113966d0cbd29442eb9.dll
2017-08-23 21:48 - 2017-09-20 13:09 - 000000088 _____ () C:\Users\LuciFafa\AppData\Local\temp\866707930acc4b07a278ffb66fef43ea.dll
2017-09-14 23:40 - 2017-09-17 19:19 - 000000000 _____ () C:\Users\LuciFafa\AppData\Local\temp\ed6e8e8c4b588010c8f64663407c6196.dll

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2017-09-20 13:00

==================== End of FRST.txt ============================

mania
Návštěvník
Návštěvník
Příspěvky: 65
Registrován: 16 říj 2015 09:14

Re: Prosím o kontrolu

#2 Příspěvek od mania »

# AdwCleaner 7.0.2.1 - Logfile created on Mon Sep 25 18:11:25 2017
# Updated on 2017/29/08 by Malwarebytes
# Database: 09-23-2017.2
# Running on Windows 7 Home Premium (X86)
# Mode: scan
# Support: https://www.malwarebytes.com/support

***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

PUP.Optional.Legacy, C:\Windows\System32\drivers\sp_rsdrv2.sys


***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

No malicious registry entries found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries.

*************************

C:/AdwCleaner/AdwCleaner[C0].txt - [1350 B] - [2017/8/1 11:18:39]
C:/AdwCleaner/AdwCleaner[S0].txt - [1393 B] - [2017/3/1 16:57:12]
C:/AdwCleaner/AdwCleaner[S1].txt - [1466 B] - [2017/5/19 18:48:30]
C:/AdwCleaner/AdwCleaner[S2].txt - [1541 B] - [2017/6/5 11:5:59]
C:/AdwCleaner/AdwCleaner[S3].txt - [1193 B] - [2017/8/1 11:17:54]
C:/AdwCleaner/AdwCleaner[S4].txt - [1287 B] - [2017/8/23 11:1:37]


########## EOF - C:\AdwCleaner\AdwCleaner[S5].tx

mania
Návštěvník
Návštěvník
Příspěvky: 65
Registrován: 16 říj 2015 09:14

Re: Prosím o kontrolu

#3 Příspěvek od mania »

Logfile of random's system information tool 1.10 (written by random/random)
Run by LuciFafa at 2017-09-25 20:21:48
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 648 GB (68%) free of 954 GB
Total RAM: 3030 MB (58% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:21:51, on 25.9.2017
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18698)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskhost.exe
C:\Program Files\Realtek\Audio\HDA\RtkNGUI.exe
C:\Program Files\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe
C:\Windows\System32\TiltWheelMouse.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
C:\PROGRA~1\RAPTRI~1\Raptr\raptr.exe
C:\PROGRA~1\RAPTRI~1\Raptr\raptr_im.exe
C:\Program Files\Nexon\Nexon Launcher\bin\nexon_client\nexon_client.exe
C:\Program Files\Nexon\Nexon Launcher\bin\nexon_client\nexon_client.exe
C:\Program Files\Nexon\Nexon Launcher\bin\nexon_client\nexon_client.exe
C:\Program Files\Nexon\Nexon Launcher\bin\nexon_client\nexon_client.exe
C:\Program Files\Malwarebytes Anti-Malware\mbam.exe
C:\Windows\system32\wuauclt.exe
C:\Users\LuciFafa\Desktop\RSIT.exe
C:\Windows\system32\DllHost.exe
C:\Program Files\trend micro\LuciFafa.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
O2 - BHO: AMD SteadyVideo BHO - {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_144\bin\ssv.dll
O2 - BHO: ArcPluginIEBHO - {84BFE29A-8139-402a-B2A4-C23AE9E1A75F} - C:\Program Files\Arc\Plugins\ArcPluginIE.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - c:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_144\bin\jp2ssv.dll
O4 - HKLM\..\Run: [RTHDVCPL] "C:\Program Files\Realtek\Audio\HDA\RtkNGUI.exe" -s
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvLaunch.exe" /gui
O4 - HKLM\..\Run: [Raptr] "C:\Program Files\Raptr Inc\Raptr\raptrstub.exe" --startup
O4 - HKLM\..\Run: [NUSB3MON] "C:\Program Files\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe"
O4 - HKLM\..\Run: [MouseDriver] TiltWheelMouse.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
O4 - HKUS\S-1-5-21-1117677789-4214877554-3075564690-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\Run: [DAEMON Tools Lite Automount] "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun (User '?')
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/pub/s ... wflash.cab
O18 - Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll
O18 - Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe
O23 - Service: AMD RAIDXpert (AMD_RAIDXpert) - AMD - C:\Program Files\AMD\RAIDXpert\bin\RAIDXpertService.exe
O23 - Service: Arc Service (ArcService) - Perfect World Entertainment Inc - C:\Program Files\Arc\ArcService.exe
O23 - Service: ASUS Com Service (asComSvc) - Unknown owner - C:\Program Files\ASUS\AXSP\1.02.00\atkexComSvc.exe
O23 - Service: ASUS System Control Service (AsSysCtrlService) - Unknown owner - C:\Program Files\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe
O23 - Service: aswbIDSAgent - AVAST Software s.r.o. - C:\Program Files\AVAST Software\Avast\aswidsagent.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Riverbed Technology, Inc. - C:\Program Files\WinPcap\rpcapd.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe

--
End of file - 5567 bytes

=========Mozilla firefox=========

ProfilePath - C:\Users\LuciFafa\AppData\Roaming\Mozilla\Firefox\Profiles\pdbynjqe.default

prefs.js - "browser.startup.homepage" - "www.google.com"

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 27.0.0.130 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_27_0_0_130.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.144.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_144\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.144.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_144\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@ngm.nexoneu.com/NxGame]
"Description"=Nexon Game Controller
"Path"=C:\ProgramData\NexonEU\NGM\npNxGameEU.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@ogplanet.com/npOGPPlugin]
"Description"=OGPlanet Game Plugin
"Path"=C:\Windows\system32\npOGPPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@perfectworld.com/npArcPlayNowPlugin]
"Description"=Arc PlayNow plugin for Mozilla browsers
"Path"=C:\Program Files\Arc\Plugins\npArcPluginFF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.2]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.4]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.6]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll


======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6C680BAE-655C-4E3D-8FC4-E6A520C3D928}]
SteadyVideoBHO Class - C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll [2012-02-14 69760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_144\bin\ssv.dll [2017-09-05 473664]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{84BFE29A-8139-402a-B2A4-C23AE9E1A75F}]
ArcPluginIEBHO Class - C:\Program Files\Arc\Plugins\ArcPluginIE.dll [2016-08-18 120792]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-09-01 800976]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - c:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 403840]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_144\bin\jp2ssv.dll [2017-09-05 187968]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI.exe [2015-01-28 7519960]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2017-09-01 239856]
"Raptr"=C:\Program Files\Raptr Inc\Raptr\raptrstub.exe [2017-05-30 58584]
"NUSB3MON"=C:\Program Files\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe [2012-04-11 97280]
"MouseDriver"=C:\Windows\system32\TiltWheelMouse.exe [2012-12-19 241152]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2017-07-21 587288]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite Automount"=C:\Program Files\DAEMON Tools Lite\DTAgent.exe [2015-06-18 3576664]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ProductUpdater]
C:\Program Files\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe []

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Nexon\Combat Arms EU\CombatArms.exe"="C:\Nexon\Combat Arms EU\CombatArms.exe:*Enabled:CombatArms.exe"
"C:\Nexon\Combat Arms EU\Engine.exe"="C:\Nexon\Combat Arms EU\Engine.exe:*Enabled:Engine.exe"
"C:\Nexon\Library\CombatArmsBeta\appdata\CombatArms.exe"="C:\Nexon\Library\CombatArmsBeta\appdata\CombatArms.exe:*:Enabled:CombatArms.exe"
"C:\Nexon\Library\CombatArmsBeta\appdata\Engine.exe"="C:\Nexon\Library\CombatArmsBeta\appdata\Engine.exe:*:Enabled:Engine.exe"
"C:\Nexon\Library\CombatArmsBeta\appdata\NMService.exe"="C:\Nexon\Library\CombatArmsBeta\appdata\NMService.exe:*:Enabled:NMService.exe"
"C:\Nexon\Library\combatarms\appdata\CombatArms.exe"="C:\Nexon\Library\combatarms\appdata\CombatArms.exe:*:Enabled:CombatArms.exe"
"C:\Nexon\Library\combatarms\appdata\Engine.exe"="C:\Nexon\Library\combatarms\appdata\Engine.exe:*:Enabled:Engine.exe"
"C:\Nexon\Library\combatarms\appdata\NMService.exe"="C:\Nexon\Library\combatarms\appdata\NMService.exe:*:Enabled:NMService.exe"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"C:\Nexon\Combat Arms EU\CombatArms.exe"="C:\Nexon\Combat Arms EU\CombatArms.exe:*Enabled:CombatArms.exe"
"C:\Nexon\Combat Arms EU\Engine.exe"="C:\Nexon\Combat Arms EU\Engine.exe:*Enabled:Engine.exe"
"C:\Nexon\Library\CombatArmsBeta\appdata\CombatArms.exe"="C:\Nexon\Library\CombatArmsBeta\appdata\CombatArms.exe:*:Enabled:CombatArms.exe"
"C:\Nexon\Library\CombatArmsBeta\appdata\Engine.exe"="C:\Nexon\Library\CombatArmsBeta\appdata\Engine.exe:*:Enabled:Engine.exe"
"C:\Nexon\Library\CombatArmsBeta\appdata\NMService.exe"="C:\Nexon\Library\CombatArmsBeta\appdata\NMService.exe:*:Enabled:NMService.exe"
"C:\Nexon\Library\combatarms\appdata\CombatArms.exe"="C:\Nexon\Library\combatarms\appdata\CombatArms.exe:*:Enabled:CombatArms.exe"
"C:\Nexon\Library\combatarms\appdata\Engine.exe"="C:\Nexon\Library\combatarms\appdata\Engine.exe:*:Enabled:Engine.exe"
"C:\Nexon\Library\combatarms\appdata\NMService.exe"="C:\Nexon\Library\combatarms\appdata\NMService.exe:*:Enabled:NMService.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.FMVC"=fmcodec.dll
"msacm.l3codecp"=l3codecp.acm
"msacm.lameacm"=LameACM.acm
"vidc.x264"=x264vfw.dll
"vidc.XVID"=xvidvfw.dll
"vidc.mjpg"=pvmjpg30.dll
"vidc.mpeg"=bdmpegv.dll
"msacm.bdmpeg"=bdmpega.acm
"vidc.mjpx"=bdmjpeg.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 month======

2017-09-25 19:02:06 ----A---- C:\Windows\system32\aswBoot.exe
2017-09-18 11:10:06 ----D---- C:\ProgramData\Orbit
2017-09-05 09:38:54 ----D---- C:\Program Files\Common Files\Java
2017-09-05 09:27:48 ----A---- C:\Windows\system32\drivers\aswbunivx.sys
2017-09-05 09:27:48 ----A---- C:\Windows\system32\drivers\aswblogx.sys
2017-09-05 09:27:48 ----A---- C:\Windows\system32\drivers\aswbidshx.sys
2017-09-05 09:27:48 ----A---- C:\Windows\system32\drivers\aswbidsdriverx.sys

======List of files/folders modified in the last 1 month======

2017-09-25 20:21:51 ----D---- C:\Windows\Prefetch
2017-09-25 20:21:50 ----D---- C:\Program Files\trend micro
2017-09-25 20:14:09 ----D---- C:\Users\LuciFafa\AppData\Roaming\Raptr
2017-09-25 20:14:08 ----D---- C:\Windows\Temp
2017-09-25 20:13:25 ----D---- C:\Windows\system32\config
2017-09-25 20:13:18 ----D---- C:\AdwCleaner
2017-09-25 20:13:14 ----D---- C:\Windows\system32\drivers
2017-09-25 19:02:35 ----D---- C:\Program Files\CCleaner
2017-09-25 19:02:29 ----D---- C:\Windows\system32\Tasks
2017-09-25 19:02:06 ----D---- C:\Windows\System32
2017-09-25 19:00:24 ----D---- C:\Windows\Tasks
2017-09-25 19:00:24 ----D---- C:\Windows\system32\wfp
2017-09-25 19:00:22 ----D---- C:\Windows\system32\wbem
2017-09-25 19:00:22 ----D---- C:\Windows
2017-09-25 18:59:50 ----D---- C:\Windows\system32\DriverStore
2017-09-25 18:59:50 ----D---- C:\Windows\system32\catroot2
2017-09-25 18:59:49 ----D---- C:\Windows\system32\drivers\etc
2017-09-25 18:59:49 ----D---- C:\Windows\inf
2017-09-25 18:59:42 ----D---- C:\Windows\registration
2017-09-25 18:57:05 ----SHD---- C:\System Volume Information
2017-09-21 11:01:45 ----D---- C:\ProgramData
2017-09-18 11:04:36 ----SHD---- C:\Windows\Installer
2017-09-18 11:04:35 ----SHD---- C:\Config.Msi
2017-09-18 10:53:17 ----D---- C:\HRY
2017-09-18 10:52:14 ----D---- C:\Users\LuciFafa\AppData\Roaming\DAEMON Tools Lite
2017-09-14 10:11:06 ----D---- C:\Users\LuciFafa\AppData\Roaming\vlc
2017-09-12 14:50:14 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2017-09-12 14:50:11 ----D---- C:\Windows\system32\Macromed
2017-09-05 09:38:54 ----D---- C:\Program Files\Common Files
2017-09-05 09:38:27 ----A---- C:\Windows\system32\WindowsAccessBridge.dll
2017-09-05 09:38:03 ----D---- C:\Program Files\Java
2017-09-02 13:09:36 ----D---- C:\Windows\Minidump
2017-08-27 14:53:19 ----D---- C:\Program Files\Mozilla Maintenance Service
2017-08-27 14:53:19 ----D---- C:\Program Files\Mozilla Firefox

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 amd_sata;amd_sata; C:\Windows\system32\DRIVERS\amd_sata.sys [2015-03-30 73928]
R0 amd_xata;amd_xata; C:\Windows\system32\DRIVERS\amd_xata.sys [2015-03-30 36040]
R0 amdkmpfd;AMD PCI Root Bus Lower Filter; C:\Windows\system32\DRIVERS\amdkmpfd.sys [2014-10-28 40136]
R0 aswbidsh;aswbidsh; C:\Windows\system32\drivers\aswbidshx.sys [2017-09-05 157416]
R0 aswblog;aswblog; C:\Windows\system32\drivers\aswblogx.sys [2017-09-05 276736]
R0 aswbuniv;aswbuniv; C:\Windows\system32\drivers\aswbunivx.sys [2017-09-05 50384]
R0 aswRvrt;aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [2017-09-01 70864]
R0 aswVmm;aswVmm; C:\Windows\system32\drivers\aswVmm.sys [2017-09-25 296192]
R0 BtHidBus;Bluetooth HID Bus Service; C:\Windows\System32\Drivers\BtHidBus.sys [2009-09-24 19592]
R0 giveio;giveio; C:\Windows\system32\giveio.sys [1996-04-03 5248]
R0 pwdrvio;pwdrvio; C:\Windows\system32\pwdrvio.sys [2013-09-30 15688]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 speedfan;speedfan; C:\Windows\system32\speedfan.sys [2012-12-29 24184]
R1 AsIO;AsIO; C:\Windows\system32\drivers\AsIO.sys [2014-07-23 14720]
R1 aswbidsdriver;aswbidsdriver; C:\Windows\system32\drivers\aswbidsdriverx.sys [2017-09-05 267520]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2017-09-01 99568]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2017-09-01 773800]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2017-09-01 500136]
R1 ccSet_NST;Norton Identity Safe Settings Manager; C:\Windows\system32\drivers\NST\7DE070B0.02A\ccSetx86.sys [2013-09-27 127064]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2017-09-01 124952]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2017-09-18 148232]
R3 amdhub30;AMD USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\amdhub30.sys [2016-01-14 86752]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2016-12-23 26178440]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2016-12-23 405384]
R3 amdxhc;AMD USB 3.0 Host Controller Driver; C:\Windows\system32\DRIVERS\amdxhc.sys [2016-01-14 179936]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW73.sys [2016-03-30 78848]
R3 dtlitescsibus;DAEMON Tools Lite Virtual SCSI Bus; C:\Windows\system32\DRIVERS\dtlitescsibus.sys [2015-10-14 25016]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2015-02-03 3473624]
R3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [2017-09-25 170200]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt86win7.sys [2015-01-15 723160]
R3 seehcri;Sony Ericsson seehcri Device Driver; C:\Windows\system32\DRIVERS\seehcri.sys [2015-12-14 27632]
R3 t_mouse.sys;HID-compliand device; C:\Windows\system32\DRIVERS\t_mouse.sys [2012-12-19 5120]
R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys [2014-02-16 48352]
S2 AODDriver4.3;AODDriver4.3; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\i386\AODDriver2.sys []
S2 APXACC;AppEx Networks Accelerator LWF; C:\Windows\system32\DRIVERS\appexDrv.sys []
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 aswHwid;aswHwid; C:\Windows\system32\drivers\aswHwid.sys [2017-09-01 42856]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 78336]
S3 BT;Bluetooth PAN Network Adapter; C:\Windows\system32\DRIVERS\btnetdrv.sys []
S3 btnetBUs;Bluetooth PAN Bus Service; C:\Windows\System32\Drivers\btnetBus.sys [2009-09-24 22528]
S3 EagleXNt;EagleXNt; \??\C:\Windows\system32\drivers\EagleXNt.sys []
S3 IvtBtBUs;IVT Bluetooth Bus Service; C:\Windows\System32\Drivers\IvtBtBus.sys [2009-08-26 25480]
S3 k750bus;Sony Ericsson 750 driver (WDM); C:\Windows\system32\DRIVERS\k750bus.sys [2005-02-11 55216]
S3 NPF;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2013-03-01 36600]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 pwdspio;pwdspio; \??\C:\Windows\system32\pwdspio.sys [2013-09-30 10320]
S3 sisagp;Filtr SIS sběrnice AGP; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 36352]
S3 VComm;Virtual Serial port driver; C:\Windows\system32\DRIVERS\VComm.sys []
S3 VcommMgr;Bluetooth VComm Manager Service; C:\Windows\System32\Drivers\VcommMgr.sys []
S3 viaagp;Filtr VIA sběrnice AGP; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 XDva532;XDva532; \??\C:\Windows\system32\XDva532.sys []
S3 xhunter1;xhunter1; \??\C:\Windows\xhunter1.sys []
S4 VBoxAswDrv;VBoxAsw Support Driver; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2017-07-19 83032]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2016-12-23 255880]
R2 AMD_RAIDXpert;AMD RAIDXpert; C:\Program Files\AMD\RAIDXpert\bin\RAIDXpertService.exe [2011-12-14 131320]
R2 asComSvc;ASUS Com Service; C:\Program Files\ASUS\AXSP\1.02.00\atkexComSvc.exe [2014-07-23 936728]
R2 AsSysCtrlService;ASUS System Control Service; C:\Program Files\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe [2014-07-23 1360016]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2017-09-01 275208]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 wlidsvc;Windows Live ID Sign-in Assistant; c:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-08-18 1529728]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [2017-09-05 5830352]
R3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [2015-06-18 1034584]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2017-03-26 105096]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2017-09-12 272384]
S3 ArcService;Arc Service; C:\Program Files\Arc\ArcService.exe [2016-08-18 88024]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2017-05-14 104960]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2017-08-27 175568]
S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Program Files\WinPcap\rpcapd.exe [2013-03-01 118520]
S3 Steam Client Service;Steam Client Service; C:\Program Files\Common Files\Steam\SteamService.exe [2016-04-30 835664]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2017-03-26 45688]
S4 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe []
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2017-03-26 135800]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2017-03-26 135800]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2017-03-26 135800]

-----------------EOF-----------------

Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15193
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: Prosím o kontrolu

#4 Příspěvek od JaRon »

ahoj,
neviem, ci je to este aktualne :???:
ak ano:
Tvorba fixlistu pro FRST
•Spustte poznamkovy blok (Start-spustit-notepad)
•Zkopirujte skript >>

Kód: Vybrat vše

Start
S2 AODDriver4.3; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\i386\AODDriver2.sys [X]
U5 AppMgmt; C:\Windows\system32\svchost.exe [20992 2009-07-14] (Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
S2 APXACC; system32\DRIVERS\appexDrv.sys [X]
S3 BT; system32\DRIVERS\btnetdrv.sys [X]
S3 EagleXNt; \??\C:\Windows\system32\drivers\EagleXNt.sys [X]
U4 VBoxAswDrv; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [X]
S3 VComm; system32\DRIVERS\VComm.sys [X]
S3 VcommMgr; System32\Drivers\VcommMgr.sys [X]
S3 XDva532; \??\C:\Windows\system32\XDva532.sys [X]
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]
2015-11-20 10:48 - 2015-11-20 10:48 - 000000000 _____ () C:\Users\LuciFafa\AppData\Roaming\OCL5994.tmp
2015-11-20 10:48 - 2015-11-20 10:48 - 000000000 _____ () C:\Users\LuciFafa\AppData\Roaming\OCL5C91.tmp
2015-11-20 15:46 - 2015-11-20 15:46 - 000000000 _____ () C:\Users\LuciFafa\AppData\Roaming\OCL6160.tmp
2015-11-21 13:32 - 2015-11-21 13:32 - 000000000 _____ () C:\Users\LuciFafa\AppData\Roaming\OCL6640.tmp
2015-11-22 09:23 - 2015-11-22 09:23 - 000000000 _____ () C:\Users\LuciFafa\AppData\Roaming\OCLA2C3.tmp


EmptyTemp:
Reboot:
End
•Ulozte vytvoreny TXT jako fixlist.txt
•Presunte vytvoreny fixlist vedle FRST

:arrow: Spustte znovu FRST.exe
•Kliknete na Fix
•Probehne oprava a vytvori log Fixlog.txt

:arrow: Restart PC a dejte mi sem fixlog.txt
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum
https://platba.viry.cz/payment/

mania
Návštěvník
Návštěvník
Příspěvky: 65
Registrován: 16 říj 2015 09:14

Re: Prosím o kontrolu

#5 Příspěvek od mania »

Dobrý den
ještě to aktuální jen sem si říkala zda nemám něco špatně že odpoved nepřichází :D některé hry jsem přeinstalova a prozatím to běželo takže jsem nějak neprudila a nic se neděje. Tu je textak
Fix result of Farbar Recovery Scan Tool (x86) Version: 03-10-2017 01
Ran by LuciFafa (05-10-2017 14:55:10) Run:1
Running from C:\Users\LuciFafa\Desktop
Loaded Profiles: LuciFafa (Available Profiles: LuciFafa)
Boot Mode: Normal

==============================================

fixlist content:
*****************
Start
S2 AODDriver4.3; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\i386\AODDriver2.sys [X]
U5 AppMgmt; C:\Windows\system32\svchost.exe [20992 2009-07-14] (Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
S2 APXACC; system32\DRIVERS\appexDrv.sys [X]
S3 BT; system32\DRIVERS\btnetdrv.sys [X]
S3 EagleXNt; \??\C:\Windows\system32\drivers\EagleXNt.sys [X]
U4 VBoxAswDrv; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [X]
S3 VComm; system32\DRIVERS\VComm.sys [X]
S3 VcommMgr; System32\Drivers\VcommMgr.sys [X]
S3 XDva532; \??\C:\Windows\system32\XDva532.sys [X]
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]
2015-11-20 10:48 - 2015-11-20 10:48 - 000000000 _____ () C:\Users\LuciFafa\AppData\Roaming\OCL5994.tmp
2015-11-20 10:48 - 2015-11-20 10:48 - 000000000 _____ () C:\Users\LuciFafa\AppData\Roaming\OCL5C91.tmp
2015-11-20 15:46 - 2015-11-20 15:46 - 000000000 _____ () C:\Users\LuciFafa\AppData\Roaming\OCL6160.tmp
2015-11-21 13:32 - 2015-11-21 13:32 - 000000000 _____ () C:\Users\LuciFafa\AppData\Roaming\OCL6640.tmp
2015-11-22 09:23 - 2015-11-22 09:23 - 000000000 _____ () C:\Users\LuciFafa\AppData\Roaming\OCLA2C3.tmp


EmptyTemp:
Reboot:
End
*****************

HKLM\System\CurrentControlSet\Services\AODDriver4.3 => key removed successfully.
AODDriver4.3 => service removed successfully.
HKLM\System\CurrentControlSet\Services\AppMgmt => key removed successfully.
AppMgmt => service removed successfully.
HKLM\System\CurrentControlSet\Services\APXACC => key removed successfully.
APXACC => service removed successfully.
HKLM\System\CurrentControlSet\Services\BT => key removed successfully.
BT => service removed successfully.
HKLM\System\CurrentControlSet\Services\EagleXNt => key removed successfully.
EagleXNt => service removed successfully.
VBoxAswDrv => service not found.
HKLM\System\CurrentControlSet\Services\VComm => key removed successfully.
VComm => service removed successfully.
HKLM\System\CurrentControlSet\Services\VcommMgr => key removed successfully.
VcommMgr => service removed successfully.
HKLM\System\CurrentControlSet\Services\XDva532 => key removed successfully.
XDva532 => service removed successfully.
HKLM\System\CurrentControlSet\Services\xhunter1 => key removed successfully.
xhunter1 => service removed successfully.
C:\Users\LuciFafa\AppData\Roaming\OCL5994.tmp => moved successfully
C:\Users\LuciFafa\AppData\Roaming\OCL5C91.tmp => moved successfully
C:\Users\LuciFafa\AppData\Roaming\OCL6160.tmp => moved successfully
C:\Users\LuciFafa\AppData\Roaming\OCL6640.tmp => moved successfully
C:\Users\LuciFafa\AppData\Roaming\OCLA2C3.tmp => moved successfully

=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 5563483 B
Java, Flash, Steam htmlcache => 65118823 B
Windows/system/drivers => 6562497 B
Edge => 0 B
Chrome => 0 B
Firefox => 327138142 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 0 B
LocalService => 0 B
NetworkService => 640 B
LuciFafa => 192926864 B

RecycleBin => 0 B
EmptyTemp: => 577.6 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 14:55:25 ====

Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15193
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: Prosím o kontrolu

#6 Příspěvek od JaRon »

nikto neodpovedal protoze si dala 3 prispevky a vypadalo to ako s odpovedou :James008:
nasiel som to nahodne, PC by mal byt v poriadku
su problemy :???:
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum
https://platba.viry.cz/payment/

mania
Návštěvník
Návštěvník
Příspěvky: 65
Registrován: 16 říj 2015 09:14

Re: Prosím o kontrolu

#7 Příspěvek od mania »

Tak to se omlouvám má chyba :oops: . Jinak vše běží v normálu. Děkuji za pomoc. :closed:

Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15193
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: Prosím o kontrolu

#8 Příspěvek od JaRon »

Za malo :)
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum
https://platba.viry.cz/payment/

Zamčeno