Zdravim, potreboval bych pomoc s priserne pomalym PC.
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 11-03-2015
Ran by Grew (administrator) on GREW-PC on 04-04-2015 18:00:56
Running from C:\Users\Grew\Desktop
Loaded Profiles: Grew (Available profiles: Grew)
Platform: Windows Vista (TM) Home Premium Service Pack 2 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 9 (Default browser: Opera)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\ehome\ehtray.exe
(Microsoft Corporation) C:\Windows\ehome\ehmsas.exe
(Creative Technology Ltd) C:\Windows\SysWOW64\CtHelper.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Software602 a.s.) C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(Microsoft Corporation) C:\Windows\System32\mobsync.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
(Opera Software) C:\Program Files (x86)\Opera\28.0.1750.48\opera.exe
() C:\Program Files (x86)\Opera\28.0.1750.48\opera_crashreporter.exe
(Opera Software) C:\Program Files (x86)\Opera\28.0.1750.48\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\28.0.1750.48\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\28.0.1750.48\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\28.0.1750.48\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\28.0.1750.48\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\28.0.1750.48\opera.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software) C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\ng\ngservice.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\consent.exe
(Opera Software) C:\Program Files (x86)\Opera\28.0.1750.48\opera.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM-x32\...\Run: [CTxfiHlp] => CTXFIHLP.EXE
HKLM-x32\...\Run: [AsioThk32Reg] => REGSVR32.EXE /S CTASIO.DLL
HKLM-x32\...\Run: [CTHelper] => CTHELPER.EXE
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5511352 2015-03-22] (Avast Software s.r.o.)
HKU\S-1-5-21-618862783-2341095386-7452594-1000\...\Run: [ehTray.exe] => C:\Windows\ehome\ehTray.exe [138240 2008-01-19] (Microsoft Corporation)
HKU\S-1-5-21-618862783-2341095386-7452594-1000\...\Run: [Skype] => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
HKU\S-1-5-21-618862783-2341095386-7452594-1000\...\Run: [WMPNSCFG] => C:\Program Files (x86)\Windows Media Player\WMPNSCFG.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
ShellIconOverlayIdentifiers: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Grew\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Grew\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Grew\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Grew\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Grew\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Grew\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Grew\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Grew\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (Avast Software s.r.o.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKU\S-1-5-21-618862783-2341095386-7452594-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-03-22] (Avast Software s.r.o.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll [2014-10-26] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-03-22] (Avast Software s.r.o.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll [2014-10-26] (Oracle Corporation)
DPF: HKLM-x32 {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/ ... ontrol.cab
DPF: HKLM-x32 {6C269571-C6D7-4818-BCA4-32A035E8C884} http://ccfiles.creative.com/Web/softwar ... TSUEng.cab
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/f ... wflash.cab
DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} http://ccfiles.creative.com/Web/softwar ... PIDPDE.cab
DPF: HKLM-x32 {E705A591-DA3C-4228-B0D5-A356DBA42FBF} http://ccfiles.creative.com/Web/softwar ... TSUEng.cab
DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} http://ccfiles.creative.com/Web/softwar ... /CTPID.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2011-11-03] (Skype Technologies)
Winsock: Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [50176] (Společnost Microsoft)
Winsock: Catalog5-x64 02 C:\Windows\system32\napinsp.dll [62976] (Společnost Microsoft)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
FireFox:
========
FF ProfilePath: C:\Users\Grew\AppData\Roaming\Mozilla\Firefox\Profiles\hqkeykho.default
FF DefaultSearchEngine: Seznam
FF Homepage: https://www.seznam.cz/
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_134.dll [2015-04-02] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_134.dll [2015-04-02] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll [2014-10-26] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\plugin2\npjp2.dll [2014-10-26] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\4.0.60310.0\npctrl.dll [2011-03-09] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WPF,version=3.5 -> C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin-x32: @software602.cz/602XML Filler -> C:\Program Files (x86)\Software602\602XML\Filler\npfiller.dll [2012-08-06] (Software602 a.s.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-618862783-2341095386-7452594-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Grew\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-05-07] (Unity Technologies ApS)
FF SearchPlugin: C:\Users\Grew\AppData\Roaming\Mozilla\Firefox\Profiles\hqkeykho.default\searchplugins\seznam-avast.xml [2015-01-16]
FF Extension: 20-20 3D Viewer - IKEA - C:\Users\Grew\AppData\Roaming\Mozilla\Firefox\Profiles\hqkeykho.default\Extensions\2020Player_IKEA@2020Technologies.com [2015-02-23]
FF Extension: Adblock Plus - C:\Users\Grew\AppData\Roaming\Mozilla\Firefox\Profiles\hqkeykho.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-07-03]
FF HKLM-x32\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2015-01-17]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2012-03-27]
Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-03-22]
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 602XML Updater; C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe [85344 2011-10-10] (Software602 a.s.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [343336 2015-03-22] (Avast Software s.r.o.)
R3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [4030800 2015-03-22] (Avast Software)
S3 Creative ALchemy AL6 Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [79360 2012-05-10] (Creative Labs) [File not signed]
S3 Creative Audio Engine Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [79360 2012-05-16] (Creative Labs) [File not signed]
S2 CTAudSvcService; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [286720 2010-02-12] (Creative Technology Ltd) [File not signed]
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1148744 2014-09-17] (NVIDIA Corporation)
R3 hpqcxs08; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll [225280 2007-02-28] (Hewlett-Packard Co.) [File not signed]
R2 hpqddsvc; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll [131072 2007-02-28] (Hewlett-Packard Co.) [File not signed]
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [69632 2006-11-08] (Hewlett-Packard) [File not signed]
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1795912 2014-09-17] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [1903472 2014-12-27] (Electronic Arts)
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [88064 2006-11-08] (Hewlett-Packard) [File not signed]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [383544 2008-01-19] (Microsoft Corporation)
S4 SkypeUpdate; "C:\Program Files (x86)\Skype\Updater\Updater.exe" [X]
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29168 2015-03-22] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [88408 2015-03-22] (Avast Software s.r.o.)
R1 AswRdr; C:\Windows\system32\drivers\aswRdr.sys [64712 2015-03-22] (Avast Software s.r.o.)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65736 2015-03-22] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1047320 2015-03-22] (Avast Software s.r.o.)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [441728 2015-03-22] (Avast Software s.r.o.)
R1 aswTdi; C:\Windows\system32\drivers\aswTdi.sys [65224 2015-03-22] (Avast Software s.r.o.)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [268640 2015-03-22] ()
S3 CT20XUT.DLL; C:\Windows\System32\CT20XUT.DLL [252712 2007-04-10] (Creative Technology Ltd.)
S3 CTEAPSFX.DLL; C:\Windows\System32\CTEAPSFX.DLL [219432 2007-04-10] (Creative Technology Ltd)
S3 CTEDSPFX.DLL; C:\Windows\System32\CTEDSPFX.DLL [321832 2007-04-10] (Creative Technology Ltd)
S3 CTEDSPIO.DLL; C:\Windows\System32\CTEDSPIO.DLL [190248 2007-04-10] (Creative Technology Ltd)
S3 CTEDSPSY.DLL; C:\Windows\System32\CTEDSPSY.DLL [363304 2007-04-10] (Creative Technology Ltd)
S3 CTEXFIFX.DLL; C:\Windows\System32\CTEXFIFX.DLL [1571112 2007-04-10] (Creative Technology Ltd.)
S3 CTHWIUT.DLL; C:\Windows\System32\CTHWIUT.DLL [123688 2007-04-10] (Creative Technology Ltd.)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2013-02-02] (DT Soft Ltd)
R0 FltMgr; C:\Windows\System32\drivers\fltmgr.sys [275432 2009-04-11] (Společnost Microsoft)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [8192 2005-03-29] ()
R3 Ntfs; C:\Windows\System32\Drivers\Ntfs.sys [1513320 2013-03-03] (Společnost Microsoft)
S3 RivaTuner64; C:\Program Files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner64.sys [19952 2014-11-04] ()
R0 SI3132; C:\Windows\System32\DRIVERS\SI3132.sys [90664 2007-10-03] (Silicon Image, Inc)
R0 SiFilter; C:\Windows\System32\DRIVERS\SiWinAcc.sys [22056 2007-10-03] (Silicon Image, Inc)
R0 SiRemFil; C:\Windows\System32\DRIVERS\SiRemFil.sys [17448 2007-10-03] (Silicon Image, Inc)
R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [273824 2015-03-22] (Avast Software)
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Pomalé PC
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119389
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pomalé PC
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Pomalé PC
# AdwCleaner v4.200 - Log vytvooen 04/04/2015 v 18:32:31
# Aktualizováno 29/03/2015 by Xplode
# Databáze : 2015-03-29.1 [Server]
# Operaení system : Windows (TM) Vista Home Premium Service Pack 2 (x64)
# Uživatelské jméno : Grew - GREW-PC
# Spuštino z : C:\Users\Grew\Desktop\adwcleaner_4.200.exe
# Nastavení : Eištiní
***** [ Služby ] *****
***** [ Soubory / Složky ] *****
***** [ Naplánované úlohy ] *****
***** [ Zástupci ] *****
***** [ Registry ] *****
Klíe Smazáno : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
***** [ Prohlížeee ] *****
-\\ Internet Explorer v9.0.8112.16633
-\\ Mozilla Firefox v36.0.4 (x86 cs)
-\\ Opera v28.0.1750.48
*************************
AdwCleaner[R1].txt - [882 bytu] - [04/04/2015 18:31:13]
AdwCleaner[S1].txt - [807 bytu] - [04/04/2015 18:32:31]
# Aktualizováno 29/03/2015 by Xplode
# Databáze : 2015-03-29.1 [Server]
# Operaení system : Windows (TM) Vista Home Premium Service Pack 2 (x64)
# Uživatelské jméno : Grew - GREW-PC
# Spuštino z : C:\Users\Grew\Desktop\adwcleaner_4.200.exe
# Nastavení : Eištiní
***** [ Služby ] *****
***** [ Soubory / Složky ] *****
***** [ Naplánované úlohy ] *****
***** [ Zástupci ] *****
***** [ Registry ] *****
Klíe Smazáno : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
***** [ Prohlížeee ] *****
-\\ Internet Explorer v9.0.8112.16633
-\\ Mozilla Firefox v36.0.4 (x86 cs)
-\\ Opera v28.0.1750.48
*************************
AdwCleaner[R1].txt - [882 bytu] - [04/04/2015 18:31:13]
AdwCleaner[S1].txt - [807 bytu] - [04/04/2015 18:32:31]
-
Rudy
- Site Admin
- Příspěvky: 119389
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pomalé PC
Dejte nový log FRST.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Pomalé PC
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 11-03-2015
Ran by Grew (administrator) on GREW-PC on 04-04-2015 20:19:58
Running from C:\Users\Grew\Desktop
Loaded Profiles: Grew (Available profiles: Grew)
Platform: Windows Vista (TM) Home Premium Service Pack 2 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 9 (Default browser: Opera)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(Microsoft Corporation) C:\Windows\ehome\ehtray.exe
(Microsoft Corporation) C:\Windows\ehome\ehmsas.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Microsoft Corporation) C:\Windows\System32\mobsync.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Creative Technology Ltd) C:\Windows\SysWOW64\CtHelper.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
(Opera Software) C:\Program Files (x86)\Opera\28.0.1750.48\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\28.0.1750.48\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\28.0.1750.48\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\28.0.1750.48\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\28.0.1750.48\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\28.0.1750.48\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\28.0.1750.48\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\28.0.1750.48\opera.exe
() C:\Program Files (x86)\Opera\28.0.1750.48\opera_crashreporter.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Microsoft Corporation) C:\Windows\System32\consent.exe
(Microsoft Corporation) C:\Windows\System32\consent.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Oracle Corporation) C:\Program Files (x86)\Java\jre1.8.0_25\bin\keytool.exe
(Avast Software) C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\ng\ngservice.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM-x32\...\Run: [CTxfiHlp] => CTXFIHLP.EXE
HKLM-x32\...\Run: [AsioThk32Reg] => REGSVR32.EXE /S CTASIO.DLL
HKLM-x32\...\Run: [CTHelper] => CTHELPER.EXE
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5511352 2015-03-22] (Avast Software s.r.o.)
HKU\S-1-5-21-618862783-2341095386-7452594-1000\...\Run: [ehTray.exe] => C:\Windows\ehome\ehTray.exe [138240 2008-01-19] (Microsoft Corporation)
HKU\S-1-5-21-618862783-2341095386-7452594-1000\...\Run: [Skype] => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
HKU\S-1-5-21-618862783-2341095386-7452594-1000\...\Run: [WMPNSCFG] => C:\Program Files (x86)\Windows Media Player\WMPNSCFG.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
ShellIconOverlayIdentifiers: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Grew\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Grew\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Grew\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Grew\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Grew\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Grew\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Grew\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Grew\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (Avast Software s.r.o.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKU\S-1-5-21-618862783-2341095386-7452594-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-03-22] (Avast Software s.r.o.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll [2014-10-26] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-03-22] (Avast Software s.r.o.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll [2014-10-26] (Oracle Corporation)
DPF: HKLM-x32 {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/ ... ontrol.cab
DPF: HKLM-x32 {6C269571-C6D7-4818-BCA4-32A035E8C884} http://ccfiles.creative.com/Web/softwar ... TSUEng.cab
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/f ... wflash.cab
DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} http://ccfiles.creative.com/Web/softwar ... PIDPDE.cab
DPF: HKLM-x32 {E705A591-DA3C-4228-B0D5-A356DBA42FBF} http://ccfiles.creative.com/Web/softwar ... TSUEng.cab
DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} http://ccfiles.creative.com/Web/softwar ... /CTPID.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2011-11-03] (Skype Technologies)
Winsock: Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [50176] (Společnost Microsoft)
Winsock: Catalog5-x64 02 C:\Windows\system32\napinsp.dll [62976] (Společnost Microsoft)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
FireFox:
========
FF ProfilePath: C:\Users\Grew\AppData\Roaming\Mozilla\Firefox\Profiles\hqkeykho.default
FF DefaultSearchEngine: Seznam
FF Homepage: https://www.seznam.cz/
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_134.dll [2015-04-02] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_134.dll [2015-04-02] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll [2014-10-26] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\plugin2\npjp2.dll [2014-10-26] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\4.0.60310.0\npctrl.dll [2011-03-09] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WPF,version=3.5 -> C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin-x32: @software602.cz/602XML Filler -> C:\Program Files (x86)\Software602\602XML\Filler\npfiller.dll [2012-08-06] (Software602 a.s.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-618862783-2341095386-7452594-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Grew\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-05-07] (Unity Technologies ApS)
FF SearchPlugin: C:\Users\Grew\AppData\Roaming\Mozilla\Firefox\Profiles\hqkeykho.default\searchplugins\seznam-avast.xml [2015-01-16]
FF Extension: 20-20 3D Viewer - IKEA - C:\Users\Grew\AppData\Roaming\Mozilla\Firefox\Profiles\hqkeykho.default\Extensions\2020Player_IKEA@2020Technologies.com [2015-02-23]
FF Extension: Adblock Plus - C:\Users\Grew\AppData\Roaming\Mozilla\Firefox\Profiles\hqkeykho.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-07-03]
FF HKLM-x32\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2015-01-17]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2012-03-27]
Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-03-22]
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S2 602XML Updater; C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe [85344 2011-10-10] (Software602 a.s.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [343336 2015-03-22] (Avast Software s.r.o.)
R3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [4030800 2015-03-22] (Avast Software)
S3 Creative ALchemy AL6 Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [79360 2012-05-10] (Creative Labs) [File not signed]
S3 Creative Audio Engine Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [79360 2012-05-16] (Creative Labs) [File not signed]
S2 CTAudSvcService; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [286720 2010-02-12] (Creative Technology Ltd) [File not signed]
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1148744 2014-09-17] (NVIDIA Corporation)
R3 hpqcxs08; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll [225280 2007-02-28] (Hewlett-Packard Co.) [File not signed]
R2 hpqddsvc; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll [131072 2007-02-28] (Hewlett-Packard Co.) [File not signed]
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [69632 2006-11-08] (Hewlett-Packard) [File not signed]
S2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1795912 2014-09-17] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [1903472 2014-12-27] (Electronic Arts)
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [88064 2006-11-08] (Hewlett-Packard) [File not signed]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [383544 2008-01-19] (Microsoft Corporation)
S4 SkypeUpdate; "C:\Program Files (x86)\Skype\Updater\Updater.exe" [X]
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29168 2015-03-22] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [88408 2015-03-22] (Avast Software s.r.o.)
R1 AswRdr; C:\Windows\system32\drivers\aswRdr.sys [64712 2015-03-22] (Avast Software s.r.o.)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65736 2015-03-22] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1047320 2015-03-22] (Avast Software s.r.o.)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [441728 2015-03-22] (Avast Software s.r.o.)
R1 aswTdi; C:\Windows\system32\drivers\aswTdi.sys [65224 2015-03-22] (Avast Software s.r.o.)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [268640 2015-03-22] ()
S3 CT20XUT.DLL; C:\Windows\System32\CT20XUT.DLL [252712 2007-04-10] (Creative Technology Ltd.)
S3 CTEAPSFX.DLL; C:\Windows\System32\CTEAPSFX.DLL [219432 2007-04-10] (Creative Technology Ltd)
S3 CTEDSPFX.DLL; C:\Windows\System32\CTEDSPFX.DLL [321832 2007-04-10] (Creative Technology Ltd)
S3 CTEDSPIO.DLL; C:\Windows\System32\CTEDSPIO.DLL [190248 2007-04-10] (Creative Technology Ltd)
S3 CTEDSPSY.DLL; C:\Windows\System32\CTEDSPSY.DLL [363304 2007-04-10] (Creative Technology Ltd)
S3 CTEXFIFX.DLL; C:\Windows\System32\CTEXFIFX.DLL [1571112 2007-04-10] (Creative Technology Ltd.)
S3 CTHWIUT.DLL; C:\Windows\System32\CTHWIUT.DLL [123688 2007-04-10] (Creative Technology Ltd.)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2013-02-02] (DT Soft Ltd)
R0 FltMgr; C:\Windows\System32\drivers\fltmgr.sys [275432 2009-04-11] (Společnost Microsoft)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [8192 2005-03-29] ()
R3 Ntfs; C:\Windows\System32\Drivers\Ntfs.sys [1513320 2013-03-03] (Společnost Microsoft)
S3 RivaTuner64; C:\Program Files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner64.sys [19952 2014-11-04] ()
R0 SI3132; C:\Windows\System32\DRIVERS\SI3132.sys [90664 2007-10-03] (Silicon Image, Inc)
R0 SiFilter; C:\Windows\System32\DRIVERS\SiWinAcc.sys [22056 2007-10-03] (Silicon Image, Inc)
R0 SiRemFil; C:\Windows\System32\DRIVERS\SiRemFil.sys [17448 2007-10-03] (Silicon Image, Inc)
R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [273824 2015-03-22] (Avast Software)
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-04-04 18:30 - 2015-04-04 18:32 - 00000000 ____D () C:\AdwCleaner
2015-04-04 18:29 - 2015-04-04 18:29 - 02208768 _____ () C:\Users\Grew\Desktop\adwcleaner_4.200.exe
2015-04-04 18:00 - 2015-04-04 20:24 - 00015498 _____ () C:\Users\Grew\Desktop\FRST.txt
2015-04-04 17:59 - 2015-04-04 17:59 - 00000000 ____D () C:\Users\Grew\Desktop\FRST-OlderVersion
2015-03-29 16:11 - 2015-03-29 16:14 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2015-03-29 13:25 - 2015-03-29 13:25 - 00011519 _____ () C:\Users\Grew\Desktop\ceník dáma 1.xlsx
2015-03-22 18:58 - 2015-03-22 18:59 - 00262144 _____ () C:\Windows\Minidump\Mini032215-01.dmp
2015-03-22 04:29 - 2015-03-22 04:29 - 00364472 _____ (Avast Software s.r.o.) C:\Windows\system32\aswBoot.exe
2015-03-22 04:28 - 2015-03-22 04:28 - 00043112 _____ (Avast Software s.r.o.) C:\Windows\avastSS.scr
2015-03-22 01:11 - 2015-03-22 01:12 - 00270254 _____ () C:\Windows\msxml4-KB2758694-enu.LOG
2015-03-20 19:19 - 2015-03-20 19:19 - 00000561 _____ () C:\Windows\wmsetup.log
2015-03-20 19:19 - 2015-03-20 19:19 - 00000000 ____D () C:\Users\Grew\Documents\DeadIsland
2015-03-20 19:11 - 2015-03-20 19:12 - 00355968 _____ () C:\Users\Grew\AppData\Local\dd_vcredistMSI4623.txt
2015-03-20 19:11 - 2015-03-20 19:12 - 00011170 _____ () C:\Users\Grew\AppData\Local\dd_vcredistUI4623.txt
2015-03-20 11:53 - 2015-03-20 11:53 - 00000000 ____D () C:\Users\Grew\AppData\Roaming\602XML
2015-03-20 11:53 - 2014-08-01 12:12 - 01514480 _____ () C:\Windows\system32\602convert.dll
2015-03-20 11:53 - 2014-02-05 15:51 - 00036864 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\602localmon.dll
2015-03-20 11:53 - 2014-02-05 15:51 - 00022528 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\602localui.dll
2015-03-20 11:53 - 2011-01-18 14:49 - 04940800 _____ (NiXPS NV) C:\Windows\system32\NiXPS.dll
2015-03-20 11:51 - 2015-03-20 11:51 - 00001022 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Software602 Form Filler.lnk
2015-03-20 11:51 - 2015-03-20 11:51 - 00000000 ____D () C:\Program Files (x86)\Software602
2015-03-11 21:17 - 2015-03-11 21:17 - 00017839 _____ () C:\Users\Grew\Desktop\životopis.odt
2015-03-11 19:08 - 2015-03-11 19:08 - 00000197 _____ () C:\Windows\system32\2015-03-11-17-08-17.007-AvastVBoxSVC.exe-2776.log
2015-03-11 17:17 - 2014-10-13 03:12 - 02264064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2015-03-11 17:17 - 2014-10-13 02:56 - 03137536 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2015-03-11 12:41 - 2015-03-11 12:41 - 00000197 _____ () C:\Windows\system32\2015-03-11-10-41-34.096-AvastVBoxSVC.exe-2876.log
2015-03-11 12:08 - 2015-02-20 04:03 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2015-03-11 12:08 - 2015-02-20 02:39 - 00372224 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-03-11 12:08 - 2015-02-20 02:28 - 00296960 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2015-03-11 12:07 - 2015-02-20 03:44 - 00048128 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-03-11 12:06 - 2015-02-26 02:31 - 02792960 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-03-11 12:06 - 2015-01-29 03:35 - 00975360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2015-03-11 12:06 - 2015-01-29 03:33 - 01209856 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2015-03-11 12:06 - 2015-01-21 04:02 - 00807936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2015-03-11 12:06 - 2015-01-21 03:42 - 01040896 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2015-03-11 12:04 - 2015-02-18 04:02 - 11587584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2015-03-11 12:04 - 2015-02-18 03:42 - 12899840 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-03-11 11:55 - 2015-02-26 03:40 - 04692408 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-03-11 11:55 - 2015-01-29 03:35 - 00369664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2015-03-11 11:55 - 2015-01-29 03:33 - 00449024 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2015-03-11 11:55 - 2015-01-09 03:41 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-03-11 11:55 - 2015-01-09 02:29 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-03-11 11:54 - 2015-03-06 06:01 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-03-11 11:54 - 2015-03-06 05:35 - 00347136 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-03-11 06:08 - 2015-02-21 21:17 - 17882624 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-03-11 06:08 - 2015-02-21 21:07 - 00448512 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-03-11 06:08 - 2015-02-21 21:02 - 10931200 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-03-11 06:08 - 2015-02-21 21:00 - 02339840 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-03-11 06:08 - 2015-02-21 20:54 - 01392128 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-03-11 06:08 - 2015-02-21 20:54 - 01388032 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-03-11 06:08 - 2015-02-21 20:53 - 01494016 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-03-11 06:08 - 2015-02-21 20:52 - 00237056 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2015-03-11 06:08 - 2015-02-21 20:52 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-03-11 06:08 - 2015-02-21 20:52 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-03-11 06:08 - 2015-02-21 20:51 - 02157568 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-03-11 06:08 - 2015-02-21 20:51 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-03-11 06:08 - 2015-02-21 20:51 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-03-11 06:08 - 2015-02-21 20:51 - 00598528 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-03-11 06:08 - 2015-02-21 20:51 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-03-11 06:08 - 2015-02-21 20:51 - 00282112 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-03-11 06:08 - 2015-02-21 20:51 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2015-03-11 06:08 - 2015-02-21 20:50 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-03-11 06:08 - 2015-02-21 20:50 - 00248320 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-03-11 06:08 - 2015-02-21 20:50 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-03-11 06:08 - 2015-02-21 20:50 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2015-03-11 06:08 - 2015-02-21 19:37 - 12375040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-03-11 06:08 - 2015-02-21 19:34 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-03-11 06:08 - 2015-02-21 19:29 - 09747968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-03-11 06:08 - 2015-02-21 19:28 - 01810944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-03-11 06:08 - 2015-02-21 19:22 - 01139200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-03-11 06:08 - 2015-02-21 19:21 - 01427968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-03-11 06:08 - 2015-02-21 19:21 - 01129472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-03-11 06:08 - 2015-02-21 19:20 - 00231936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2015-03-11 06:08 - 2015-02-21 19:20 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-03-11 06:08 - 2015-02-21 19:19 - 01803264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-03-11 06:08 - 2015-02-21 19:19 - 00717824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-03-11 06:08 - 2015-02-21 19:19 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-03-11 06:08 - 2015-02-21 19:19 - 00421376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-03-11 06:08 - 2015-02-21 19:19 - 00142848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-03-11 06:08 - 2015-02-21 19:18 - 02382848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-03-11 06:08 - 2015-02-21 19:18 - 00353792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-03-11 06:08 - 2015-02-21 19:18 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-03-11 06:08 - 2015-02-21 19:18 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-03-11 06:08 - 2015-02-21 19:18 - 00041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2015-03-11 06:08 - 2015-02-21 19:18 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2015-03-11 06:08 - 2015-02-21 19:17 - 00176640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-03-11 06:07 - 2015-02-21 20:51 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2015-03-11 06:07 - 2015-02-21 19:18 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2015-03-06 13:21 - 2015-03-06 13:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Warcraft
2015-03-06 08:47 - 2015-03-29 17:49 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2015-03-06 08:47 - 2015-03-06 08:47 - 00000900 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-03-06 08:46 - 2015-03-06 08:46 - 00243504 _____ () C:\Users\Grew\Downloads\Firefox Setup Stub 36.0.1.exe
2015-03-06 08:06 - 2015-03-06 08:06 - 00000197 _____ () C:\Windows\system32\2015-03-06-06-06-25.093-AvastVBoxSVC.exe-2368.log
2015-03-05 19:02 - 2015-03-05 19:02 - 00000247 _____ () C:\Windows\system32\2015-03-05-17-02-23.080-aswFe.exe-2276.log
2015-03-05 18:46 - 2015-03-05 19:02 - 00000247 _____ () C:\Windows\system32\2015-03-05-16-46-23.033-aswFe.exe-5796.log
2015-03-05 18:46 - 2015-03-05 18:46 - 00000197 _____ () C:\Windows\system32\2015-03-05-16-46-09.073-AvastVBoxSVC.exe-1380.log
2015-03-05 09:37 - 2015-03-05 09:37 - 00000247 _____ () C:\Windows\system32\2015-03-05-07-37-04.008-aswFe.exe-5324.log
2015-03-05 09:22 - 2015-03-05 09:36 - 00000247 _____ () C:\Windows\system32\2015-03-05-07-22-29.068-aswFe.exe-6000.log
2015-03-05 09:22 - 2015-03-05 09:22 - 00000197 _____ () C:\Windows\system32\2015-03-05-07-22-18.048-AvastVBoxSVC.exe-6092.log
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-04-04 20:22 - 2006-11-02 17:27 - 01765250 _____ () C:\Windows\WindowsUpdate.log
2015-04-04 20:20 - 2015-01-19 11:14 - 00000000 ____D () C:\FRST
2015-04-04 20:00 - 2015-03-02 22:15 - 00065536 _____ () C:\Windows\system32\Ikeext.etl
2015-04-04 19:58 - 2006-11-02 17:22 - 00003664 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2015-04-04 19:58 - 2006-11-02 17:22 - 00003664 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2015-04-04 19:54 - 2006-11-02 17:42 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-04-04 17:59 - 2015-01-19 11:07 - 02095616 _____ (Farbar) C:\Users\Grew\Desktop\FRST64.exe
2015-04-04 13:51 - 2014-05-31 21:11 - 00000000 ____D () C:\Users\Grew\AppData\Local\Battle.net
2015-04-04 13:21 - 2006-11-02 15:34 - 00000000 ____D () C:\Windows\tracing
2015-04-04 12:30 - 2012-03-28 17:48 - 00003722 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{C8726770-4666-4D32-BB7A-68C8607EB9C4}
2015-04-04 12:01 - 2014-12-21 10:10 - 00000000 ____D () C:\Program Files (x86)\Battle.net
2015-04-03 16:36 - 2012-12-18 17:46 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2015-04-02 12:17 - 2012-04-04 06:41 - 00000000 ____D () C:\Users\Grew\AppData\Local\Adobe
2015-04-02 12:11 - 2012-04-25 06:25 - 00778928 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-04-02 12:11 - 2012-03-27 17:08 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-04-02 10:07 - 2012-03-27 18:13 - 00000000 ____D () C:\Users\Grew\AppData\Roaming\vlc
2015-04-01 09:58 - 2012-05-20 22:26 - 00044544 _____ () C:\Users\Grew\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-04-01 00:58 - 2007-01-09 00:10 - 00645076 _____ () C:\Windows\system32\perfh005.dat
2015-04-01 00:58 - 2007-01-09 00:10 - 00137762 _____ () C:\Windows\system32\perfc005.dat
2015-04-01 00:58 - 2006-11-02 14:46 - 01532822 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-03-31 22:51 - 2006-11-02 17:42 - 00032548 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2015-03-30 10:20 - 2015-01-18 12:03 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-03-29 15:50 - 2012-03-27 18:31 - 00023592 _____ () C:\Windows\system32\spsys.log
2015-03-22 18:58 - 2012-04-27 07:18 - 00000000 ____D () C:\Windows\Minidump
2015-03-22 18:51 - 2012-04-27 07:18 - 751985572 _____ () C:\Windows\MEMORY.DMP
2015-03-22 17:08 - 2012-03-27 17:01 - 00000000 ____D () C:\Users\Grew
2015-03-22 17:01 - 2012-03-28 00:08 - 00443480 _____ () C:\Windows\PFRO.log
2015-03-22 04:29 - 2014-05-09 10:39 - 00029168 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2015-03-22 04:29 - 2014-03-31 06:29 - 00268640 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2015-03-22 04:29 - 2014-03-31 06:29 - 00065736 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2015-03-22 04:29 - 2012-03-27 18:06 - 00441728 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswSP.sys
2015-03-22 04:29 - 2012-03-27 18:06 - 00088408 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswMonFlt.sys
2015-03-22 04:29 - 2012-03-27 18:06 - 00065224 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswTdi.sys
2015-03-22 04:28 - 2012-03-27 18:06 - 00064712 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswRdr.sys
2015-03-22 04:27 - 2012-03-27 18:06 - 01047320 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswSnx.sys
2015-03-22 01:11 - 2012-09-05 03:00 - 00000000 ____D () C:\Program Files (x86)\MSXML 4.0
2015-03-20 19:16 - 2012-03-28 08:49 - 00234101 _____ () C:\Windows\DirectX.log
2015-03-20 13:32 - 2012-03-27 18:13 - 00000000 ____D () C:\Users\Grew\Desktop\System
2015-03-18 21:48 - 2014-06-06 00:24 - 00003878 _____ () C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1399624644
2015-03-18 21:48 - 2014-05-09 10:37 - 00000000 ____D () C:\Program Files (x86)\Opera
2015-03-14 09:11 - 2015-02-13 11:55 - 00000000 ____D () C:\Users\Grew\AppData\Roaming\Dropbox
2015-03-14 08:43 - 2015-02-13 12:00 - 00000000 ___RD () C:\Users\Grew\Dropbox
2015-03-14 08:43 - 2015-02-13 11:57 - 00000000 ____D () C:\Users\Grew\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-03-11 12:36 - 2006-11-02 17:21 - 00255392 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-03-11 12:04 - 2013-08-13 23:00 - 00000000 ____D () C:\Windows\system32\MRT
2015-03-11 11:56 - 2006-11-02 14:35 - 122905848 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2015-03-07 12:28 - 2012-03-27 19:04 - 00000000 ____D () C:\Users\Grew\Desktop\Games
==================== Files in the root of some directories =======
2012-03-27 17:43 - 2015-01-16 10:52 - 0000680 _____ () C:\Users\Grew\AppData\Local\d3d9caps.dat
2012-03-27 17:01 - 2012-03-27 17:44 - 0000732 _____ () C:\Users\Grew\AppData\Local\d3d9caps64.dat
2012-05-20 22:26 - 2015-04-01 09:58 - 0044544 _____ () C:\Users\Grew\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-02-13 10:27 - 2015-02-13 10:28 - 0382780 _____ () C:\Users\Grew\AppData\Local\dd_vcredistMSI0622.txt
2015-02-13 10:31 - 2015-02-13 10:32 - 0381502 _____ () C:\Users\Grew\AppData\Local\dd_vcredistMSI0956.txt
2012-11-29 16:09 - 2012-11-29 16:09 - 0356328 _____ () C:\Users\Grew\AppData\Local\dd_vcredistMSI0C93.txt
2014-06-26 23:35 - 2014-06-26 23:36 - 0422680 _____ () C:\Users\Grew\AppData\Local\dd_vcredistMSI11DB.txt
2012-03-28 08:52 - 2012-03-28 08:53 - 0433370 _____ () C:\Users\Grew\AppData\Local\dd_vcredistMSI2947.txt
2012-12-05 17:53 - 2012-12-05 17:55 - 0453084 _____ () C:\Users\Grew\AppData\Local\dd_vcredistMSI30E5.txt
2012-12-05 17:55 - 2012-12-05 17:56 - 0462430 _____ () C:\Users\Grew\AppData\Local\dd_vcredistMSI3266.txt
2012-12-05 18:00 - 2012-12-05 18:00 - 0369892 _____ () C:\Users\Grew\AppData\Local\dd_vcredistMSI3657.txt
2012-12-05 18:00 - 2012-12-05 18:00 - 0382014 _____ () C:\Users\Grew\AppData\Local\dd_vcredistMSI366E.txt
2015-03-20 19:11 - 2015-03-20 19:12 - 0355968 _____ () C:\Users\Grew\AppData\Local\dd_vcredistMSI4623.txt
2014-03-31 06:15 - 2014-03-31 06:16 - 0428234 _____ () C:\Users\Grew\AppData\Local\dd_vcredistMSI6892.txt
2012-11-29 12:36 - 2012-11-29 12:36 - 0354470 _____ () C:\Users\Grew\AppData\Local\dd_vcredistMSI6969.txt
2015-02-13 10:27 - 2015-02-13 10:28 - 0011582 _____ () C:\Users\Grew\AppData\Local\dd_vcredistUI0622.txt
2015-02-13 10:31 - 2015-02-13 10:32 - 0011534 _____ () C:\Users\Grew\AppData\Local\dd_vcredistUI0956.txt
2012-11-29 16:09 - 2012-11-29 16:09 - 0011210 _____ () C:\Users\Grew\AppData\Local\dd_vcredistUI0C93.txt
2014-06-26 23:34 - 2014-06-26 23:36 - 0012360 _____ () C:\Users\Grew\AppData\Local\dd_vcredistUI11DB.txt
2012-03-28 08:52 - 2012-03-28 08:53 - 0011442 _____ () C:\Users\Grew\AppData\Local\dd_vcredistUI2947.txt
2012-12-05 17:53 - 2012-12-05 17:55 - 0011742 _____ () C:\Users\Grew\AppData\Local\dd_vcredistUI30E5.txt
2012-12-05 17:55 - 2012-12-05 17:56 - 0011854 _____ () C:\Users\Grew\AppData\Local\dd_vcredistUI3266.txt
2012-12-05 18:00 - 2012-12-05 18:00 - 0011502 _____ () C:\Users\Grew\AppData\Local\dd_vcredistUI3657.txt
2012-12-05 18:00 - 2012-12-05 18:00 - 0011566 _____ () C:\Users\Grew\AppData\Local\dd_vcredistUI366E.txt
2015-03-20 19:11 - 2015-03-20 19:12 - 0011170 _____ () C:\Users\Grew\AppData\Local\dd_vcredistUI4623.txt
2014-03-31 06:15 - 2014-03-31 06:16 - 0012728 _____ () C:\Users\Grew\AppData\Local\dd_vcredistUI6892.txt
2012-11-29 12:36 - 2012-11-29 12:36 - 0011138 _____ () C:\Users\Grew\AppData\Local\dd_vcredistUI6969.txt
2015-01-19 13:29 - 2015-01-19 13:29 - 0029696 _____ () C:\Users\Grew\AppData\Local\MSGBOX.EXE
2012-09-03 10:59 - 2014-12-03 11:24 - 0001760 _____ () C:\ProgramData\hpzinstall.log
Some content of TEMP:
====================
C:\Users\Grew\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpvo6qbj.dll
C:\Users\Grew\AppData\Local\Temp\Quarantine.exe
C:\Users\Grew\AppData\Local\Temp\sqlite3.dll
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-04-04 19:49
==================== End Of Log ============================
Ran by Grew (administrator) on GREW-PC on 04-04-2015 20:19:58
Running from C:\Users\Grew\Desktop
Loaded Profiles: Grew (Available profiles: Grew)
Platform: Windows Vista (TM) Home Premium Service Pack 2 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 9 (Default browser: Opera)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(Microsoft Corporation) C:\Windows\ehome\ehtray.exe
(Microsoft Corporation) C:\Windows\ehome\ehmsas.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Microsoft Corporation) C:\Windows\System32\mobsync.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Creative Technology Ltd) C:\Windows\SysWOW64\CtHelper.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
(Opera Software) C:\Program Files (x86)\Opera\28.0.1750.48\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\28.0.1750.48\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\28.0.1750.48\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\28.0.1750.48\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\28.0.1750.48\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\28.0.1750.48\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\28.0.1750.48\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\28.0.1750.48\opera.exe
() C:\Program Files (x86)\Opera\28.0.1750.48\opera_crashreporter.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Microsoft Corporation) C:\Windows\System32\consent.exe
(Microsoft Corporation) C:\Windows\System32\consent.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Oracle Corporation) C:\Program Files (x86)\Java\jre1.8.0_25\bin\keytool.exe
(Avast Software) C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\ng\ngservice.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM-x32\...\Run: [CTxfiHlp] => CTXFIHLP.EXE
HKLM-x32\...\Run: [AsioThk32Reg] => REGSVR32.EXE /S CTASIO.DLL
HKLM-x32\...\Run: [CTHelper] => CTHELPER.EXE
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5511352 2015-03-22] (Avast Software s.r.o.)
HKU\S-1-5-21-618862783-2341095386-7452594-1000\...\Run: [ehTray.exe] => C:\Windows\ehome\ehTray.exe [138240 2008-01-19] (Microsoft Corporation)
HKU\S-1-5-21-618862783-2341095386-7452594-1000\...\Run: [Skype] => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
HKU\S-1-5-21-618862783-2341095386-7452594-1000\...\Run: [WMPNSCFG] => C:\Program Files (x86)\Windows Media Player\WMPNSCFG.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
ShellIconOverlayIdentifiers: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Grew\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Grew\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Grew\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Grew\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Grew\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Grew\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Grew\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Grew\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (Avast Software s.r.o.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKU\S-1-5-21-618862783-2341095386-7452594-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-03-22] (Avast Software s.r.o.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll [2014-10-26] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-03-22] (Avast Software s.r.o.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll [2014-10-26] (Oracle Corporation)
DPF: HKLM-x32 {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/ ... ontrol.cab
DPF: HKLM-x32 {6C269571-C6D7-4818-BCA4-32A035E8C884} http://ccfiles.creative.com/Web/softwar ... TSUEng.cab
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/f ... wflash.cab
DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} http://ccfiles.creative.com/Web/softwar ... PIDPDE.cab
DPF: HKLM-x32 {E705A591-DA3C-4228-B0D5-A356DBA42FBF} http://ccfiles.creative.com/Web/softwar ... TSUEng.cab
DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} http://ccfiles.creative.com/Web/softwar ... /CTPID.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2011-11-03] (Skype Technologies)
Winsock: Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [50176] (Společnost Microsoft)
Winsock: Catalog5-x64 02 C:\Windows\system32\napinsp.dll [62976] (Společnost Microsoft)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
FireFox:
========
FF ProfilePath: C:\Users\Grew\AppData\Roaming\Mozilla\Firefox\Profiles\hqkeykho.default
FF DefaultSearchEngine: Seznam
FF Homepage: https://www.seznam.cz/
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_134.dll [2015-04-02] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_134.dll [2015-04-02] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll [2014-10-26] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\plugin2\npjp2.dll [2014-10-26] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\4.0.60310.0\npctrl.dll [2011-03-09] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WPF,version=3.5 -> C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin-x32: @software602.cz/602XML Filler -> C:\Program Files (x86)\Software602\602XML\Filler\npfiller.dll [2012-08-06] (Software602 a.s.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-618862783-2341095386-7452594-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Grew\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-05-07] (Unity Technologies ApS)
FF SearchPlugin: C:\Users\Grew\AppData\Roaming\Mozilla\Firefox\Profiles\hqkeykho.default\searchplugins\seznam-avast.xml [2015-01-16]
FF Extension: 20-20 3D Viewer - IKEA - C:\Users\Grew\AppData\Roaming\Mozilla\Firefox\Profiles\hqkeykho.default\Extensions\2020Player_IKEA@2020Technologies.com [2015-02-23]
FF Extension: Adblock Plus - C:\Users\Grew\AppData\Roaming\Mozilla\Firefox\Profiles\hqkeykho.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-07-03]
FF HKLM-x32\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2015-01-17]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2012-03-27]
Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-03-22]
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S2 602XML Updater; C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe [85344 2011-10-10] (Software602 a.s.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [343336 2015-03-22] (Avast Software s.r.o.)
R3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [4030800 2015-03-22] (Avast Software)
S3 Creative ALchemy AL6 Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [79360 2012-05-10] (Creative Labs) [File not signed]
S3 Creative Audio Engine Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [79360 2012-05-16] (Creative Labs) [File not signed]
S2 CTAudSvcService; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [286720 2010-02-12] (Creative Technology Ltd) [File not signed]
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1148744 2014-09-17] (NVIDIA Corporation)
R3 hpqcxs08; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll [225280 2007-02-28] (Hewlett-Packard Co.) [File not signed]
R2 hpqddsvc; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll [131072 2007-02-28] (Hewlett-Packard Co.) [File not signed]
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [69632 2006-11-08] (Hewlett-Packard) [File not signed]
S2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1795912 2014-09-17] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [1903472 2014-12-27] (Electronic Arts)
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [88064 2006-11-08] (Hewlett-Packard) [File not signed]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [383544 2008-01-19] (Microsoft Corporation)
S4 SkypeUpdate; "C:\Program Files (x86)\Skype\Updater\Updater.exe" [X]
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29168 2015-03-22] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [88408 2015-03-22] (Avast Software s.r.o.)
R1 AswRdr; C:\Windows\system32\drivers\aswRdr.sys [64712 2015-03-22] (Avast Software s.r.o.)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65736 2015-03-22] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1047320 2015-03-22] (Avast Software s.r.o.)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [441728 2015-03-22] (Avast Software s.r.o.)
R1 aswTdi; C:\Windows\system32\drivers\aswTdi.sys [65224 2015-03-22] (Avast Software s.r.o.)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [268640 2015-03-22] ()
S3 CT20XUT.DLL; C:\Windows\System32\CT20XUT.DLL [252712 2007-04-10] (Creative Technology Ltd.)
S3 CTEAPSFX.DLL; C:\Windows\System32\CTEAPSFX.DLL [219432 2007-04-10] (Creative Technology Ltd)
S3 CTEDSPFX.DLL; C:\Windows\System32\CTEDSPFX.DLL [321832 2007-04-10] (Creative Technology Ltd)
S3 CTEDSPIO.DLL; C:\Windows\System32\CTEDSPIO.DLL [190248 2007-04-10] (Creative Technology Ltd)
S3 CTEDSPSY.DLL; C:\Windows\System32\CTEDSPSY.DLL [363304 2007-04-10] (Creative Technology Ltd)
S3 CTEXFIFX.DLL; C:\Windows\System32\CTEXFIFX.DLL [1571112 2007-04-10] (Creative Technology Ltd.)
S3 CTHWIUT.DLL; C:\Windows\System32\CTHWIUT.DLL [123688 2007-04-10] (Creative Technology Ltd.)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2013-02-02] (DT Soft Ltd)
R0 FltMgr; C:\Windows\System32\drivers\fltmgr.sys [275432 2009-04-11] (Společnost Microsoft)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [8192 2005-03-29] ()
R3 Ntfs; C:\Windows\System32\Drivers\Ntfs.sys [1513320 2013-03-03] (Společnost Microsoft)
S3 RivaTuner64; C:\Program Files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner64.sys [19952 2014-11-04] ()
R0 SI3132; C:\Windows\System32\DRIVERS\SI3132.sys [90664 2007-10-03] (Silicon Image, Inc)
R0 SiFilter; C:\Windows\System32\DRIVERS\SiWinAcc.sys [22056 2007-10-03] (Silicon Image, Inc)
R0 SiRemFil; C:\Windows\System32\DRIVERS\SiRemFil.sys [17448 2007-10-03] (Silicon Image, Inc)
R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [273824 2015-03-22] (Avast Software)
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-04-04 18:30 - 2015-04-04 18:32 - 00000000 ____D () C:\AdwCleaner
2015-04-04 18:29 - 2015-04-04 18:29 - 02208768 _____ () C:\Users\Grew\Desktop\adwcleaner_4.200.exe
2015-04-04 18:00 - 2015-04-04 20:24 - 00015498 _____ () C:\Users\Grew\Desktop\FRST.txt
2015-04-04 17:59 - 2015-04-04 17:59 - 00000000 ____D () C:\Users\Grew\Desktop\FRST-OlderVersion
2015-03-29 16:11 - 2015-03-29 16:14 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2015-03-29 13:25 - 2015-03-29 13:25 - 00011519 _____ () C:\Users\Grew\Desktop\ceník dáma 1.xlsx
2015-03-22 18:58 - 2015-03-22 18:59 - 00262144 _____ () C:\Windows\Minidump\Mini032215-01.dmp
2015-03-22 04:29 - 2015-03-22 04:29 - 00364472 _____ (Avast Software s.r.o.) C:\Windows\system32\aswBoot.exe
2015-03-22 04:28 - 2015-03-22 04:28 - 00043112 _____ (Avast Software s.r.o.) C:\Windows\avastSS.scr
2015-03-22 01:11 - 2015-03-22 01:12 - 00270254 _____ () C:\Windows\msxml4-KB2758694-enu.LOG
2015-03-20 19:19 - 2015-03-20 19:19 - 00000561 _____ () C:\Windows\wmsetup.log
2015-03-20 19:19 - 2015-03-20 19:19 - 00000000 ____D () C:\Users\Grew\Documents\DeadIsland
2015-03-20 19:11 - 2015-03-20 19:12 - 00355968 _____ () C:\Users\Grew\AppData\Local\dd_vcredistMSI4623.txt
2015-03-20 19:11 - 2015-03-20 19:12 - 00011170 _____ () C:\Users\Grew\AppData\Local\dd_vcredistUI4623.txt
2015-03-20 11:53 - 2015-03-20 11:53 - 00000000 ____D () C:\Users\Grew\AppData\Roaming\602XML
2015-03-20 11:53 - 2014-08-01 12:12 - 01514480 _____ () C:\Windows\system32\602convert.dll
2015-03-20 11:53 - 2014-02-05 15:51 - 00036864 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\602localmon.dll
2015-03-20 11:53 - 2014-02-05 15:51 - 00022528 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\602localui.dll
2015-03-20 11:53 - 2011-01-18 14:49 - 04940800 _____ (NiXPS NV) C:\Windows\system32\NiXPS.dll
2015-03-20 11:51 - 2015-03-20 11:51 - 00001022 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Software602 Form Filler.lnk
2015-03-20 11:51 - 2015-03-20 11:51 - 00000000 ____D () C:\Program Files (x86)\Software602
2015-03-11 21:17 - 2015-03-11 21:17 - 00017839 _____ () C:\Users\Grew\Desktop\životopis.odt
2015-03-11 19:08 - 2015-03-11 19:08 - 00000197 _____ () C:\Windows\system32\2015-03-11-17-08-17.007-AvastVBoxSVC.exe-2776.log
2015-03-11 17:17 - 2014-10-13 03:12 - 02264064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2015-03-11 17:17 - 2014-10-13 02:56 - 03137536 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2015-03-11 12:41 - 2015-03-11 12:41 - 00000197 _____ () C:\Windows\system32\2015-03-11-10-41-34.096-AvastVBoxSVC.exe-2876.log
2015-03-11 12:08 - 2015-02-20 04:03 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2015-03-11 12:08 - 2015-02-20 02:39 - 00372224 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-03-11 12:08 - 2015-02-20 02:28 - 00296960 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2015-03-11 12:07 - 2015-02-20 03:44 - 00048128 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-03-11 12:06 - 2015-02-26 02:31 - 02792960 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-03-11 12:06 - 2015-01-29 03:35 - 00975360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2015-03-11 12:06 - 2015-01-29 03:33 - 01209856 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2015-03-11 12:06 - 2015-01-21 04:02 - 00807936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2015-03-11 12:06 - 2015-01-21 03:42 - 01040896 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2015-03-11 12:04 - 2015-02-18 04:02 - 11587584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2015-03-11 12:04 - 2015-02-18 03:42 - 12899840 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-03-11 11:55 - 2015-02-26 03:40 - 04692408 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-03-11 11:55 - 2015-01-29 03:35 - 00369664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2015-03-11 11:55 - 2015-01-29 03:33 - 00449024 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2015-03-11 11:55 - 2015-01-09 03:41 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-03-11 11:55 - 2015-01-09 02:29 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-03-11 11:54 - 2015-03-06 06:01 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-03-11 11:54 - 2015-03-06 05:35 - 00347136 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-03-11 06:08 - 2015-02-21 21:17 - 17882624 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-03-11 06:08 - 2015-02-21 21:07 - 00448512 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-03-11 06:08 - 2015-02-21 21:02 - 10931200 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-03-11 06:08 - 2015-02-21 21:00 - 02339840 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-03-11 06:08 - 2015-02-21 20:54 - 01392128 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-03-11 06:08 - 2015-02-21 20:54 - 01388032 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-03-11 06:08 - 2015-02-21 20:53 - 01494016 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-03-11 06:08 - 2015-02-21 20:52 - 00237056 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2015-03-11 06:08 - 2015-02-21 20:52 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-03-11 06:08 - 2015-02-21 20:52 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-03-11 06:08 - 2015-02-21 20:51 - 02157568 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-03-11 06:08 - 2015-02-21 20:51 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-03-11 06:08 - 2015-02-21 20:51 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-03-11 06:08 - 2015-02-21 20:51 - 00598528 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-03-11 06:08 - 2015-02-21 20:51 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-03-11 06:08 - 2015-02-21 20:51 - 00282112 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-03-11 06:08 - 2015-02-21 20:51 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2015-03-11 06:08 - 2015-02-21 20:50 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-03-11 06:08 - 2015-02-21 20:50 - 00248320 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-03-11 06:08 - 2015-02-21 20:50 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-03-11 06:08 - 2015-02-21 20:50 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2015-03-11 06:08 - 2015-02-21 19:37 - 12375040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-03-11 06:08 - 2015-02-21 19:34 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-03-11 06:08 - 2015-02-21 19:29 - 09747968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-03-11 06:08 - 2015-02-21 19:28 - 01810944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-03-11 06:08 - 2015-02-21 19:22 - 01139200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-03-11 06:08 - 2015-02-21 19:21 - 01427968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-03-11 06:08 - 2015-02-21 19:21 - 01129472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-03-11 06:08 - 2015-02-21 19:20 - 00231936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2015-03-11 06:08 - 2015-02-21 19:20 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-03-11 06:08 - 2015-02-21 19:19 - 01803264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-03-11 06:08 - 2015-02-21 19:19 - 00717824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-03-11 06:08 - 2015-02-21 19:19 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-03-11 06:08 - 2015-02-21 19:19 - 00421376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-03-11 06:08 - 2015-02-21 19:19 - 00142848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-03-11 06:08 - 2015-02-21 19:18 - 02382848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-03-11 06:08 - 2015-02-21 19:18 - 00353792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-03-11 06:08 - 2015-02-21 19:18 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-03-11 06:08 - 2015-02-21 19:18 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-03-11 06:08 - 2015-02-21 19:18 - 00041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2015-03-11 06:08 - 2015-02-21 19:18 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2015-03-11 06:08 - 2015-02-21 19:17 - 00176640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-03-11 06:07 - 2015-02-21 20:51 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2015-03-11 06:07 - 2015-02-21 19:18 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2015-03-06 13:21 - 2015-03-06 13:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Warcraft
2015-03-06 08:47 - 2015-03-29 17:49 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2015-03-06 08:47 - 2015-03-06 08:47 - 00000900 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-03-06 08:46 - 2015-03-06 08:46 - 00243504 _____ () C:\Users\Grew\Downloads\Firefox Setup Stub 36.0.1.exe
2015-03-06 08:06 - 2015-03-06 08:06 - 00000197 _____ () C:\Windows\system32\2015-03-06-06-06-25.093-AvastVBoxSVC.exe-2368.log
2015-03-05 19:02 - 2015-03-05 19:02 - 00000247 _____ () C:\Windows\system32\2015-03-05-17-02-23.080-aswFe.exe-2276.log
2015-03-05 18:46 - 2015-03-05 19:02 - 00000247 _____ () C:\Windows\system32\2015-03-05-16-46-23.033-aswFe.exe-5796.log
2015-03-05 18:46 - 2015-03-05 18:46 - 00000197 _____ () C:\Windows\system32\2015-03-05-16-46-09.073-AvastVBoxSVC.exe-1380.log
2015-03-05 09:37 - 2015-03-05 09:37 - 00000247 _____ () C:\Windows\system32\2015-03-05-07-37-04.008-aswFe.exe-5324.log
2015-03-05 09:22 - 2015-03-05 09:36 - 00000247 _____ () C:\Windows\system32\2015-03-05-07-22-29.068-aswFe.exe-6000.log
2015-03-05 09:22 - 2015-03-05 09:22 - 00000197 _____ () C:\Windows\system32\2015-03-05-07-22-18.048-AvastVBoxSVC.exe-6092.log
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-04-04 20:22 - 2006-11-02 17:27 - 01765250 _____ () C:\Windows\WindowsUpdate.log
2015-04-04 20:20 - 2015-01-19 11:14 - 00000000 ____D () C:\FRST
2015-04-04 20:00 - 2015-03-02 22:15 - 00065536 _____ () C:\Windows\system32\Ikeext.etl
2015-04-04 19:58 - 2006-11-02 17:22 - 00003664 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2015-04-04 19:58 - 2006-11-02 17:22 - 00003664 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2015-04-04 19:54 - 2006-11-02 17:42 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-04-04 17:59 - 2015-01-19 11:07 - 02095616 _____ (Farbar) C:\Users\Grew\Desktop\FRST64.exe
2015-04-04 13:51 - 2014-05-31 21:11 - 00000000 ____D () C:\Users\Grew\AppData\Local\Battle.net
2015-04-04 13:21 - 2006-11-02 15:34 - 00000000 ____D () C:\Windows\tracing
2015-04-04 12:30 - 2012-03-28 17:48 - 00003722 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{C8726770-4666-4D32-BB7A-68C8607EB9C4}
2015-04-04 12:01 - 2014-12-21 10:10 - 00000000 ____D () C:\Program Files (x86)\Battle.net
2015-04-03 16:36 - 2012-12-18 17:46 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2015-04-02 12:17 - 2012-04-04 06:41 - 00000000 ____D () C:\Users\Grew\AppData\Local\Adobe
2015-04-02 12:11 - 2012-04-25 06:25 - 00778928 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-04-02 12:11 - 2012-03-27 17:08 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-04-02 10:07 - 2012-03-27 18:13 - 00000000 ____D () C:\Users\Grew\AppData\Roaming\vlc
2015-04-01 09:58 - 2012-05-20 22:26 - 00044544 _____ () C:\Users\Grew\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-04-01 00:58 - 2007-01-09 00:10 - 00645076 _____ () C:\Windows\system32\perfh005.dat
2015-04-01 00:58 - 2007-01-09 00:10 - 00137762 _____ () C:\Windows\system32\perfc005.dat
2015-04-01 00:58 - 2006-11-02 14:46 - 01532822 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-03-31 22:51 - 2006-11-02 17:42 - 00032548 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2015-03-30 10:20 - 2015-01-18 12:03 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-03-29 15:50 - 2012-03-27 18:31 - 00023592 _____ () C:\Windows\system32\spsys.log
2015-03-22 18:58 - 2012-04-27 07:18 - 00000000 ____D () C:\Windows\Minidump
2015-03-22 18:51 - 2012-04-27 07:18 - 751985572 _____ () C:\Windows\MEMORY.DMP
2015-03-22 17:08 - 2012-03-27 17:01 - 00000000 ____D () C:\Users\Grew
2015-03-22 17:01 - 2012-03-28 00:08 - 00443480 _____ () C:\Windows\PFRO.log
2015-03-22 04:29 - 2014-05-09 10:39 - 00029168 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2015-03-22 04:29 - 2014-03-31 06:29 - 00268640 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2015-03-22 04:29 - 2014-03-31 06:29 - 00065736 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2015-03-22 04:29 - 2012-03-27 18:06 - 00441728 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswSP.sys
2015-03-22 04:29 - 2012-03-27 18:06 - 00088408 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswMonFlt.sys
2015-03-22 04:29 - 2012-03-27 18:06 - 00065224 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswTdi.sys
2015-03-22 04:28 - 2012-03-27 18:06 - 00064712 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswRdr.sys
2015-03-22 04:27 - 2012-03-27 18:06 - 01047320 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswSnx.sys
2015-03-22 01:11 - 2012-09-05 03:00 - 00000000 ____D () C:\Program Files (x86)\MSXML 4.0
2015-03-20 19:16 - 2012-03-28 08:49 - 00234101 _____ () C:\Windows\DirectX.log
2015-03-20 13:32 - 2012-03-27 18:13 - 00000000 ____D () C:\Users\Grew\Desktop\System
2015-03-18 21:48 - 2014-06-06 00:24 - 00003878 _____ () C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1399624644
2015-03-18 21:48 - 2014-05-09 10:37 - 00000000 ____D () C:\Program Files (x86)\Opera
2015-03-14 09:11 - 2015-02-13 11:55 - 00000000 ____D () C:\Users\Grew\AppData\Roaming\Dropbox
2015-03-14 08:43 - 2015-02-13 12:00 - 00000000 ___RD () C:\Users\Grew\Dropbox
2015-03-14 08:43 - 2015-02-13 11:57 - 00000000 ____D () C:\Users\Grew\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-03-11 12:36 - 2006-11-02 17:21 - 00255392 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-03-11 12:04 - 2013-08-13 23:00 - 00000000 ____D () C:\Windows\system32\MRT
2015-03-11 11:56 - 2006-11-02 14:35 - 122905848 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2015-03-07 12:28 - 2012-03-27 19:04 - 00000000 ____D () C:\Users\Grew\Desktop\Games
==================== Files in the root of some directories =======
2012-03-27 17:43 - 2015-01-16 10:52 - 0000680 _____ () C:\Users\Grew\AppData\Local\d3d9caps.dat
2012-03-27 17:01 - 2012-03-27 17:44 - 0000732 _____ () C:\Users\Grew\AppData\Local\d3d9caps64.dat
2012-05-20 22:26 - 2015-04-01 09:58 - 0044544 _____ () C:\Users\Grew\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-02-13 10:27 - 2015-02-13 10:28 - 0382780 _____ () C:\Users\Grew\AppData\Local\dd_vcredistMSI0622.txt
2015-02-13 10:31 - 2015-02-13 10:32 - 0381502 _____ () C:\Users\Grew\AppData\Local\dd_vcredistMSI0956.txt
2012-11-29 16:09 - 2012-11-29 16:09 - 0356328 _____ () C:\Users\Grew\AppData\Local\dd_vcredistMSI0C93.txt
2014-06-26 23:35 - 2014-06-26 23:36 - 0422680 _____ () C:\Users\Grew\AppData\Local\dd_vcredistMSI11DB.txt
2012-03-28 08:52 - 2012-03-28 08:53 - 0433370 _____ () C:\Users\Grew\AppData\Local\dd_vcredistMSI2947.txt
2012-12-05 17:53 - 2012-12-05 17:55 - 0453084 _____ () C:\Users\Grew\AppData\Local\dd_vcredistMSI30E5.txt
2012-12-05 17:55 - 2012-12-05 17:56 - 0462430 _____ () C:\Users\Grew\AppData\Local\dd_vcredistMSI3266.txt
2012-12-05 18:00 - 2012-12-05 18:00 - 0369892 _____ () C:\Users\Grew\AppData\Local\dd_vcredistMSI3657.txt
2012-12-05 18:00 - 2012-12-05 18:00 - 0382014 _____ () C:\Users\Grew\AppData\Local\dd_vcredistMSI366E.txt
2015-03-20 19:11 - 2015-03-20 19:12 - 0355968 _____ () C:\Users\Grew\AppData\Local\dd_vcredistMSI4623.txt
2014-03-31 06:15 - 2014-03-31 06:16 - 0428234 _____ () C:\Users\Grew\AppData\Local\dd_vcredistMSI6892.txt
2012-11-29 12:36 - 2012-11-29 12:36 - 0354470 _____ () C:\Users\Grew\AppData\Local\dd_vcredistMSI6969.txt
2015-02-13 10:27 - 2015-02-13 10:28 - 0011582 _____ () C:\Users\Grew\AppData\Local\dd_vcredistUI0622.txt
2015-02-13 10:31 - 2015-02-13 10:32 - 0011534 _____ () C:\Users\Grew\AppData\Local\dd_vcredistUI0956.txt
2012-11-29 16:09 - 2012-11-29 16:09 - 0011210 _____ () C:\Users\Grew\AppData\Local\dd_vcredistUI0C93.txt
2014-06-26 23:34 - 2014-06-26 23:36 - 0012360 _____ () C:\Users\Grew\AppData\Local\dd_vcredistUI11DB.txt
2012-03-28 08:52 - 2012-03-28 08:53 - 0011442 _____ () C:\Users\Grew\AppData\Local\dd_vcredistUI2947.txt
2012-12-05 17:53 - 2012-12-05 17:55 - 0011742 _____ () C:\Users\Grew\AppData\Local\dd_vcredistUI30E5.txt
2012-12-05 17:55 - 2012-12-05 17:56 - 0011854 _____ () C:\Users\Grew\AppData\Local\dd_vcredistUI3266.txt
2012-12-05 18:00 - 2012-12-05 18:00 - 0011502 _____ () C:\Users\Grew\AppData\Local\dd_vcredistUI3657.txt
2012-12-05 18:00 - 2012-12-05 18:00 - 0011566 _____ () C:\Users\Grew\AppData\Local\dd_vcredistUI366E.txt
2015-03-20 19:11 - 2015-03-20 19:12 - 0011170 _____ () C:\Users\Grew\AppData\Local\dd_vcredistUI4623.txt
2014-03-31 06:15 - 2014-03-31 06:16 - 0012728 _____ () C:\Users\Grew\AppData\Local\dd_vcredistUI6892.txt
2012-11-29 12:36 - 2012-11-29 12:36 - 0011138 _____ () C:\Users\Grew\AppData\Local\dd_vcredistUI6969.txt
2015-01-19 13:29 - 2015-01-19 13:29 - 0029696 _____ () C:\Users\Grew\AppData\Local\MSGBOX.EXE
2012-09-03 10:59 - 2014-12-03 11:24 - 0001760 _____ () C:\ProgramData\hpzinstall.log
Some content of TEMP:
====================
C:\Users\Grew\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpvo6qbj.dll
C:\Users\Grew\AppData\Local\Temp\Quarantine.exe
C:\Users\Grew\AppData\Local\Temp\sqlite3.dll
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-04-04 19:49
==================== End Of Log ============================
-
Rudy
- Site Admin
- Příspěvky: 119389
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pomalé PC
Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
C:\Users\Grew\AppData\Local\Temp
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Pomalé PC
Jeste mi vyjel tendle addition, ale nez sem ho sem stacil dal, zamrznulo PC
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11-03-2015
Ran by Grew at 2015-04-04 20:27:55
Running from C:\Users\Grew\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: avast! Antivirus (Disabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
64 Bit HP CIO Components Installer (Version: 1.0.0 - Hewlett-Packard) Hidden
Adobe Flash Player 13 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 13.0.0.214 - Adobe Systems Incorporated)
Adobe Flash Player 17 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 17.0.0.134 - Adobe Systems Incorporated)
Adobe Reader X (10.1.13) - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AA1000000001}) (Version: 10.1.13 - Adobe Systems Incorporated)
AIO_CDA_ProductContext (x32 Version: 82.0.233.000 - Hewlett-Packard) Hidden
AIO_CDA_Software (x32 Version: 82.0.233.000 - Hewlett-Packard) Hidden
AIO_CDA_ToolboxIni64 (Version: 82.0.233.000 - Hewlett-Packard) Hidden
AIO_Scan (x32 Version: 82.0.173.000 - Hewlett-Packard) Hidden
Aktualizace NVIDIA 16.13.42 (Version: 16.13.42 - NVIDIA Corporation) Hidden
Avast Free Antivirus (HKLM-x32\...\avast) (Version: 10.2.2214 - AVAST Software)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
BufferChm (x32 Version: 82.0.173.000 - Hewlett-Packard) Hidden
C3100 (x32 Version: 82.0.233.000 - Hewlett-Packard) Hidden
c3100_Help (x32 Version: 82.0.233.000 - Hewlett-Packard) Hidden
Copy (x32 Version: 82.0.188.000 - Hewlett-Packard) Hidden
Creative ALchemy (HKLM-x32\...\ALchemy) (Version: 1.41 - Creative Technology Limited)
Creative Audio Console (HKLM-x32\...\AudioCS) (Version: 1.33 - Creative Technology Limited)
Creative MediaSource 5 (HKLM-x32\...\{BEEFC4F8-2909-48B3-AFAA-55D3533FDEDD}) (Version: 5.26 - Creative Technology Limited)
Creative Software AutoUpdate (HKLM-x32\...\Creative Software AutoUpdate) (Version: 1.40 - Creative Technology Limited)
Creative WaveStudio 7 (HKLM-x32\...\WaveStudio 7) (Version: 7.12 - Creative Technology Limited)
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.46.1.0328 - DT Soft Ltd)
Dead Island (HKLM-x32\...\Steam App 91310) (Version: - Techland)
Defraggler (HKLM\...\Defraggler) (Version: 2.18 - Piriform)
Destinations (x32 Version: 82.0.173.000 - Hewlett-Packard) Hidden
DeviceManagementQFolder (x32 Version: 1.00.0000 - Hewlett-Packard) Hidden
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
DocProc (x32 Version: 8.1.0.0 - Hewlett-Packard) Hidden
DocProcQFolder (x32 Version: 1.00.0000 - Hewlett-Packard) Hidden
Dropbox (HKU\S-1-5-21-618862783-2341095386-7452594-1000\...\Dropbox) (Version: 3.2.9 - Dropbox, Inc.)
eSupportQFolder (x32 Version: 1.00.0000 - Hewlett-Packard) Hidden
Fax (x32 Version: 82.0.188.000 - Hewlett-Packard) Hidden
Game Dev Tycoon (HKLM-x32\...\Steam App 239820) (Version: - Greenheart Games)
HD Tune 2.55 (HKLM-x32\...\HD Tune_is1) (Version: - EFD Software)
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment)
HP Imaging Device Functions 8.0 (HKLM\...\HP Imaging Device Functions) (Version: 8.0 - HP)
HP OCR Software 8.0 (HKLM\...\HPOCR) (Version: 8.0 - HP)
HP Photosmart Essential (HKLM-x32\...\{EB21A812-671B-4D08-B974-2A347F0D8F70}) (Version: 1.12.0.46 - HP)
HP Photosmart.All-In-One Driver Software 8.0 .A (HKLM\...\{282E5AB2-8E47-4571-B6FA-6B512555B557}) (Version: 8.0 - HP)
HP Solution Center 8.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 8.0 - HP)
HP Update (HKLM-x32\...\{8C6027FD-53DC-446D-BB75-CACD7028A134}) (Version: 4.000.005.006 - Hewlett-Packard)
HPProductAssistant (x32 Version: 82.0.173.000 - Hewlett-Packard) Hidden
HPSSupply (HKLM-x32\...\{EB75DE50-5754-4F6F-875D-126EDF8E4CB3}) (Version: 2.1.3.0000 - Název společnosti:)
Java 8 Update 25 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218025F0}) (Version: 8.0.250 - Oracle Corporation)
Mafia II (HKLM-x32\...\Steam App 50130) (Version: - 2K Czech)
Malwarebytes Anti-Malware verze 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
Microsoft .NET Framework 3.5 SP1 – jazyková sada – CSY (HKLM\...\Microsoft .NET Framework 3.5 Language Pack SP1 - csy) (Version: - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 4.0.60310.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Mozilla Firefox 36.0.4 (x86 cs) (HKLM-x32\...\Mozilla Firefox 36.0.4 (x86 cs)) (Version: 36.0.4 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 36.0.1 - Mozilla)
MSXML 4.0 SP2 (KB927978) (HKLM-x32\...\{37477865-A3F1-4772-AD43-AAFC6BCFF99F}) (Version: 4.20.9841.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: - )
NVIDIA GeForce Experience 2.1.2 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.1.2 - NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 337.88 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 337.88 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 337.88 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 337.88 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
Omerta - City of Gangsters (HKLM-x32\...\GOGPACKOMERTA_is1) (Version: 2.0.0.4 - GOG.com)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
OpenOffice 4.1.1 (HKLM-x32\...\{C560D6E7-E40A-435D-8B71-62CBCF1701B2}) (Version: 4.11.9775 - Apache Software Foundation)
Opera Stable 28.0.1750.48 (HKLM-x32\...\Opera 28.0.1750.48) (Version: 28.0.1750.48 - Opera Software ASA)
Origin (HKLM-x32\...\Origin) (Version: 9.5.1.571 - Electronic Arts, Inc.)
Ovládací panel NVIDIA 337.88 (Version: 337.88 - NVIDIA Corporation) Hidden
Poradce pro upgrade na systém Windows 7 (HKLM-x32\...\{C3A13A35-63AC-427a-92E6-960C1D01FABB}) (Version: 2.0.5000.0 - Microsoft Corporation)
RAGE (HKLM-x32\...\Steam App 9200) (Version: - id Software)
RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition (HKLM-x32\...\RivaTuner) (Version: v2.24 MSI Master Overclocking Arena 2009 edition - Alexey Nicolaychuk)
Scan (x32 Version: 8.1.0.0 - Hewlett-Packard) Hidden
SHIELD Wireless Controller Driver (Version: 16.13.42 - NVIDIA Corporation) Hidden
Skype™ 6.0 (HKLM-x32\...\{EA17F4FC-FDBF-4CF8-A529-2D983132D053}) (Version: 6.0.126 - Skype Technologies S.A.)
Software602 Form Filler (HKLM-x32\...\{F8F79FE0-64EA-439C-A6AE-B1946A178F24}) (Version: 4.55 - Software602 a.s.)
SolutionCenter (x32 Version: 82.0.188.000 - Hewlett-Packard) Hidden
StarCraft II (HKLM-x32\...\StarCraft II) (Version: - Blizzard Entertainment)
Status (x32 Version: 82.0.173.000 - Hewlett-Packard) Hidden
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
Toolbox (x32 Version: 82.0.173.000 - Hewlett-Packard) Hidden
TrayApp (x32 Version: 82.0.188.000 - Hewlett-Packard) Hidden
Unity Web Player (HKU\S-1-5-21-618862783-2341095386-7452594-1000\...\UnityWebPlayer) (Version: - Unity Technologies ApS)
UnloadSupport (x32 Version: 1.00.0000 - Hewlett-Packard) Hidden
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN)
War Thunder Launcher 1.0.1.361 (HKLM-x32\...\{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1) (Version: - Gaijin Entertainment)
WebReg (x32 Version: 82.0.173.000 - Hewlett-Packard) Hidden
WinRAR 4.10 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 4.10.0 - win.rar GmbH)
World of Tanks v.0.7.1.1 (HKLM-x32\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812}_is1) (Version: - Wargaming.net)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
CustomCLSID: HKU\S-1-5-21-618862783-2341095386-7452594-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Grew\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-618862783-2341095386-7452594-1000_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Grew\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-618862783-2341095386-7452594-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Grew\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-618862783-2341095386-7452594-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Grew\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-618862783-2341095386-7452594-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Grew\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-618862783-2341095386-7452594-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Grew\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-618862783-2341095386-7452594-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Grew\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-618862783-2341095386-7452594-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Grew\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-618862783-2341095386-7452594-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Grew\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-618862783-2341095386-7452594-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Grew\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
==================== Restore Points =========================
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2006-11-02 14:34 - 2015-01-19 13:31 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
Task: {04F91EEA-CB7A-408D-BEEB-202EC3EE3493} - System32\Tasks\{2DCFD8EF-90ED-4D84-BDAA-4F09AC472842} => Iexplore.exe http://ui.skype.com/ui/0/6.0.0.126/cs/a ... age=tsBing
Task: {14D34DA7-D8B4-4454-840E-84FAD5873F9D} - System32\Tasks\{17849023-AC72-4BDD-8A66-99CD837BDF71} => pcalua.exe -a "C:\ProgramData\Battle.net\Agent\Blizzard Uninstaller.exe" -c --lang=enGB --uid=s2_engb --displayname="StarCraft II"
Task: {36F5250F-A308-4597-BA1E-A4E9BB9C3E15} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\VistaSP1CEIP => C:\Windows\servicing\vsp1ceip.exe [2008-01-19] (Microsoft Corporation)
Task: {57F5D384-7A28-4561-A607-6D0EDDFF4D00} - System32\Tasks\avastBCLRestartS-1-5-21-618862783-2341095386-7452594-1000 => Firefox.exe
Task: {98CDE987-99DC-4D0E-92CE-18276FE00DF6} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-03-22] (Avast Software s.r.o.)
Task: {A58BAC56-CA8F-4CD9-9FA1-5B28673214F6} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19] (Adobe Systems Incorporated)
Task: {BDBC923C-E274-4094-840B-A124021DD590} - System32\Tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask => C:\Windows\system32\RAServer.exe [2008-01-19] (Společnost Microsoft)
Task: {C9BFB051-AAD8-4867-8377-80C03F6B7432} - System32\Tasks\Opera scheduled Autoupdate 1399624644 => C:\Program Files (x86)\Opera\launcher.exe [2015-03-16] (Opera Software)
==================== Loaded Modules (whitelisted) ==============
2012-04-04 07:06 - 2012-01-09 19:44 - 00193536 _____ () C:\Program Files (x86)\WinRAR\rarext64.dll
2015-03-18 21:48 - 2015-03-18 21:48 - 00484472 _____ () C:\Program Files (x86)\Opera\28.0.1750.48\opera_crashreporter.exe
2015-03-14 08:47 - 2015-03-22 04:28 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2015-03-22 04:28 - 2015-03-22 04:28 - 00104400 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-03-22 04:28 - 2015-03-22 04:28 - 00081728 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2015-03-18 21:48 - 2015-03-18 21:48 - 09625720 _____ () C:\Program Files (x86)\Opera\28.0.1750.48\pdf.dll
2015-04-02 12:11 - 2015-04-02 12:11 - 16858288 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_134.dll
2015-04-04 13:22 - 2015-04-04 13:22 - 02923520 _____ () C:\Program Files\AVAST Software\Avast\defs\15040400\algo.dll
2015-04-04 20:24 - 2015-04-04 20:24 - 02923520 _____ () C:\Program Files\AVAST Software\Avast\defs\15040401\algo.dll
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== EXE Association (whitelisted) ===============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-618862783-2341095386-7452594-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Grew\AppData\Roaming\Microsoft\Windows Photo Gallery\Tapeta galerie Windows Fotogalerie.jpg
DNS Servers: 192.168.0.1
==================== MSCONFIG/TASK MANAGER disabled items ==
(Currently there is no automatic fix for this section.)
==================== Accounts: =============================
Administrator (S-1-5-21-618862783-2341095386-7452594-500 - Administrator - Disabled)
Grew (S-1-5-21-618862783-2341095386-7452594-1000 - Administrator - Enabled) => C:\Users\Grew
Guest (S-1-5-21-618862783-2341095386-7452594-501 - Limited - Disabled)
==================== Faulty Device Manager Devices =============
Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
Name: RTL8187_Wireless
Description: RTL8187_Wireless
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
Name: Vstupní zařízení pro sběrnici PCI
Description: Vstupní zařízení pro sběrnici PCI
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Event log errors: =========================
Application errors:
==================
Error: (04/03/2015 11:22:23 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Chybující aplikace mcupdate.EXE, verze 6.0.6002.18005, časové razítko 0x49e03158, chybující modul KERNEL32.dll, verze 6.0.6002.19034, časové razítko 0x52f30e80, kód výjimky 0xe0434f4d, posun chyby 0x000000000001674d,
ID procesu 0x888, čas spuštění aplikace 0xmcupdate.EXE0.
Error: (04/03/2015 11:22:23 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Chybující aplikace mcupdate.EXE, verze 6.0.6002.18005, časové razítko 0x49e03158, chybující modul KERNEL32.dll, verze 6.0.6002.19034, časové razítko 0x52f30e80, kód výjimky 0xe0434f4d, posun chyby 0x000000000001674d,
ID procesu 0x1350, čas spuštění aplikace 0xmcupdate.EXE0.
Error: (04/03/2015 03:39:19 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Položka <C:\USERS\GREW\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\HQKEYKHO.DEFAULT\SAFEBROWSING-TO_DELETE> v mapě algoritmu hash nebyla aktualizována.
Kontext: aplikace , katalog SystemIndex
Podrobnosti:
Zařízení připojené k systému nefunguje. (0x8007001f)
Error: (04/03/2015 03:39:19 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Položka <C:\USERS\GREW\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\HQKEYKHO.DEFAULT\SAFEBROWSING> v mapě algoritmu hash nebyla aktualizována.
Kontext: aplikace , katalog SystemIndex
Podrobnosti:
Zařízení připojené k systému nefunguje. (0x8007001f)
Error: (04/03/2015 03:39:19 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Položka <C:\USERS\GREW\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\HQKEYKHO.DEFAULT\SAFEBROWSING> v mapě algoritmu hash nebyla aktualizována.
Kontext: aplikace , katalog SystemIndex
Podrobnosti:
Zařízení připojené k systému nefunguje. (0x8007001f)
Error: (04/03/2015 02:57:44 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Položka <C:\USERS\GREW\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\HQKEYKHO.DEFAULT\SAFEBROWSING-BACKUP> v mapě algoritmu hash nebyla aktualizována.
Kontext: aplikace , katalog SystemIndex
Podrobnosti:
Zařízení připojené k systému nefunguje. (0x8007001f)
Error: (04/03/2015 10:14:54 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program firefox.exe verze 36.0.4.5557 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Oznámení a řešení problémů.
ID procesu: aa0
Čas zahájení: 01d06da76e5fa44c
Čas ukončení: 2225
Error: (04/03/2015 02:37:34 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Chybující aplikace FlashPlayerPlugin_17_0_0_134.exe, verze 17.0.0.134, časové razítko 0x54f649d2, chybující modul unknown, verze 0.0.0.0, časové razítko 0x00000000, kód výjimky 0xc0000005, posun chyby 0x00000000,
ID procesu 0x84c, čas spuštění aplikace 0xFlashPlayerPlugin_17_0_0_134.exe0.
Error: (04/02/2015 09:45:40 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Chybující aplikace mcupdate.EXE, verze 6.0.6002.18005, časové razítko 0x49e03158, chybující modul KERNEL32.dll, verze 6.0.6002.19034, časové razítko 0x52f30e80, kód výjimky 0xe0434f4d, posun chyby 0x000000000001674d,
ID procesu 0x1394, čas spuštění aplikace 0xmcupdate.EXE0.
Error: (04/02/2015 11:04:00 AM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Položka <C:\USERS\GREW\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\HQKEYKHO.DEFAULT\SAFEBROWSING-TO_DELETE> v mapě algoritmu hash nebyla aktualizována.
Kontext: aplikace , katalog SystemIndex
Podrobnosti:
Zařízení připojené k systému nefunguje. (0x8007001f)
System errors:
=============
Error: (04/04/2015 08:16:13 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Windows Update
Error: (04/04/2015 08:12:22 PM) (Source: Microsoft-Windows-Eventlog) (EventID: 23) (User: NT AUTHORITY)
Description: 121Application
Error: (04/04/2015 08:02:42 PM) (Source: Microsoft-Windows-Eventlog) (EventID: 23) (User: NT AUTHORITY)
Description: 121Application
Error: (04/04/2015 08:02:28 PM) (Source: Microsoft-Windows-Kernel-General) (EventID: 6) (User: NT AUTHORITY)
Description: 0xc000014d36\SystemRoot\System32\Config\SOFTWARE
Error: (04/04/2015 07:54:36 PM) (Source: Microsoft-Windows-Eventlog) (EventID: 23) (User: NT AUTHORITY)
Description: 121Application
Error: (04/04/2015 08:12:45 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba KTMRM pro koordinátor DTC
Error: (04/04/2015 08:08:39 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba inteligentního přenosu na pozadí
Error: (04/04/2015 09:19:44 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: 30000SENS
Error: (04/03/2015 11:02:27 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: 30000SENS
Error: (04/03/2015 05:51:15 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {DCAB0989-1301-4319-BE5F-ADE89F88581C}
Microsoft Office Sessions:
=========================
Error: (04/03/2015 11:22:23 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: mcupdate.EXE6.0.6002.1800549e03158KERNEL32.dll6.0.6002.1903452f30e80e0434f4d000000000001674d88801d06e52f05b0b57
Error: (04/03/2015 11:22:23 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: mcupdate.EXE6.0.6002.1800549e03158KERNEL32.dll6.0.6002.1903452f30e80e0434f4d000000000001674d135001d06e52ef0c166f
Error: (04/03/2015 03:39:19 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Kontext: aplikace , katalog SystemIndex
Podrobnosti:
Zařízení připojené k systému nefunguje. (0x8007001f)
C:\USERS\GREW\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\HQKEYKHO.DEFAULT\SAFEBROWSING-TO_DELETE
Error: (04/03/2015 03:39:19 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Kontext: aplikace , katalog SystemIndex
Podrobnosti:
Zařízení připojené k systému nefunguje. (0x8007001f)
C:\USERS\GREW\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\HQKEYKHO.DEFAULT\SAFEBROWSING
Error: (04/03/2015 03:39:19 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Kontext: aplikace , katalog SystemIndex
Podrobnosti:
Zařízení připojené k systému nefunguje. (0x8007001f)
C:\USERS\GREW\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\HQKEYKHO.DEFAULT\SAFEBROWSING
Error: (04/03/2015 02:57:44 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Kontext: aplikace , katalog SystemIndex
Podrobnosti:
Zařízení připojené k systému nefunguje. (0x8007001f)
C:\USERS\GREW\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\HQKEYKHO.DEFAULT\SAFEBROWSING-BACKUP
Error: (04/03/2015 10:14:54 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: firefox.exe36.0.4.5557aa001d06da76e5fa44c2225
Error: (04/03/2015 02:37:34 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: FlashPlayerPlugin_17_0_0_134.exe17.0.0.13454f649d2unknown0.0.0.000000000c00000050000000084c01d06da5a2b0c516
Error: (04/02/2015 09:45:40 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: mcupdate.EXE6.0.6002.1800549e03158KERNEL32.dll6.0.6002.1903452f30e80e0434f4d000000000001674d139401d06d7cdf161787
Error: (04/02/2015 11:04:00 AM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Kontext: aplikace , katalog SystemIndex
Podrobnosti:
Zařízení připojené k systému nefunguje. (0x8007001f)
C:\USERS\GREW\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\HQKEYKHO.DEFAULT\SAFEBROWSING-TO_DELETE
CodeIntegrity Errors:
===================================
Date: 2015-03-30 11:11:15.945
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-03-30 11:11:15.671
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-03-30 11:11:15.397
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-03-30 11:11:15.126
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-03-30 11:11:14.613
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-03-30 11:11:14.342
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-03-30 11:11:14.067
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-03-30 11:11:13.786
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-03-28 18:06:18.087
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-03-28 18:06:17.816
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.
==================== Memory info ===========================
Processor: AMD Athlon(tm) 64 X2 Dual Core Processor 5600+
Percentage of memory in use: 29%
Total physical RAM: 6141.56 MB
Available physical RAM: 4310.57 MB
Total Pagefile: 12399.14 MB
Available Pagefile: 10575.67 MB
Total Virtual: 8192 MB
Available Virtual: 8191.85 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:73.73 GB) (Free:10.06 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: () (Fixed) (Total:109.86 GB) (Free:5.21 GB) NTFS
Drive e: () (Fixed) (Total:114.5 GB) (Free:45.08 GB) NTFS
Drive g: (EVW3226) (CDROM) (Total:0.08 GB) (Free:0 GB) CDFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 298.1 GB) (Disk ID: D5471307)
Partition 1: (Active) - (Size=73.7 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=109.9 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=114.5 GB) - (Type=07 NTFS)
==================== End Of Log ============================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11-03-2015
Ran by Grew at 2015-04-04 20:27:55
Running from C:\Users\Grew\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: avast! Antivirus (Disabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
64 Bit HP CIO Components Installer (Version: 1.0.0 - Hewlett-Packard) Hidden
Adobe Flash Player 13 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 13.0.0.214 - Adobe Systems Incorporated)
Adobe Flash Player 17 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 17.0.0.134 - Adobe Systems Incorporated)
Adobe Reader X (10.1.13) - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AA1000000001}) (Version: 10.1.13 - Adobe Systems Incorporated)
AIO_CDA_ProductContext (x32 Version: 82.0.233.000 - Hewlett-Packard) Hidden
AIO_CDA_Software (x32 Version: 82.0.233.000 - Hewlett-Packard) Hidden
AIO_CDA_ToolboxIni64 (Version: 82.0.233.000 - Hewlett-Packard) Hidden
AIO_Scan (x32 Version: 82.0.173.000 - Hewlett-Packard) Hidden
Aktualizace NVIDIA 16.13.42 (Version: 16.13.42 - NVIDIA Corporation) Hidden
Avast Free Antivirus (HKLM-x32\...\avast) (Version: 10.2.2214 - AVAST Software)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
BufferChm (x32 Version: 82.0.173.000 - Hewlett-Packard) Hidden
C3100 (x32 Version: 82.0.233.000 - Hewlett-Packard) Hidden
c3100_Help (x32 Version: 82.0.233.000 - Hewlett-Packard) Hidden
Copy (x32 Version: 82.0.188.000 - Hewlett-Packard) Hidden
Creative ALchemy (HKLM-x32\...\ALchemy) (Version: 1.41 - Creative Technology Limited)
Creative Audio Console (HKLM-x32\...\AudioCS) (Version: 1.33 - Creative Technology Limited)
Creative MediaSource 5 (HKLM-x32\...\{BEEFC4F8-2909-48B3-AFAA-55D3533FDEDD}) (Version: 5.26 - Creative Technology Limited)
Creative Software AutoUpdate (HKLM-x32\...\Creative Software AutoUpdate) (Version: 1.40 - Creative Technology Limited)
Creative WaveStudio 7 (HKLM-x32\...\WaveStudio 7) (Version: 7.12 - Creative Technology Limited)
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.46.1.0328 - DT Soft Ltd)
Dead Island (HKLM-x32\...\Steam App 91310) (Version: - Techland)
Defraggler (HKLM\...\Defraggler) (Version: 2.18 - Piriform)
Destinations (x32 Version: 82.0.173.000 - Hewlett-Packard) Hidden
DeviceManagementQFolder (x32 Version: 1.00.0000 - Hewlett-Packard) Hidden
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
DocProc (x32 Version: 8.1.0.0 - Hewlett-Packard) Hidden
DocProcQFolder (x32 Version: 1.00.0000 - Hewlett-Packard) Hidden
Dropbox (HKU\S-1-5-21-618862783-2341095386-7452594-1000\...\Dropbox) (Version: 3.2.9 - Dropbox, Inc.)
eSupportQFolder (x32 Version: 1.00.0000 - Hewlett-Packard) Hidden
Fax (x32 Version: 82.0.188.000 - Hewlett-Packard) Hidden
Game Dev Tycoon (HKLM-x32\...\Steam App 239820) (Version: - Greenheart Games)
HD Tune 2.55 (HKLM-x32\...\HD Tune_is1) (Version: - EFD Software)
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment)
HP Imaging Device Functions 8.0 (HKLM\...\HP Imaging Device Functions) (Version: 8.0 - HP)
HP OCR Software 8.0 (HKLM\...\HPOCR) (Version: 8.0 - HP)
HP Photosmart Essential (HKLM-x32\...\{EB21A812-671B-4D08-B974-2A347F0D8F70}) (Version: 1.12.0.46 - HP)
HP Photosmart.All-In-One Driver Software 8.0 .A (HKLM\...\{282E5AB2-8E47-4571-B6FA-6B512555B557}) (Version: 8.0 - HP)
HP Solution Center 8.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 8.0 - HP)
HP Update (HKLM-x32\...\{8C6027FD-53DC-446D-BB75-CACD7028A134}) (Version: 4.000.005.006 - Hewlett-Packard)
HPProductAssistant (x32 Version: 82.0.173.000 - Hewlett-Packard) Hidden
HPSSupply (HKLM-x32\...\{EB75DE50-5754-4F6F-875D-126EDF8E4CB3}) (Version: 2.1.3.0000 - Název společnosti:)
Java 8 Update 25 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218025F0}) (Version: 8.0.250 - Oracle Corporation)
Mafia II (HKLM-x32\...\Steam App 50130) (Version: - 2K Czech)
Malwarebytes Anti-Malware verze 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
Microsoft .NET Framework 3.5 SP1 – jazyková sada – CSY (HKLM\...\Microsoft .NET Framework 3.5 Language Pack SP1 - csy) (Version: - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 4.0.60310.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Mozilla Firefox 36.0.4 (x86 cs) (HKLM-x32\...\Mozilla Firefox 36.0.4 (x86 cs)) (Version: 36.0.4 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 36.0.1 - Mozilla)
MSXML 4.0 SP2 (KB927978) (HKLM-x32\...\{37477865-A3F1-4772-AD43-AAFC6BCFF99F}) (Version: 4.20.9841.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: - )
NVIDIA GeForce Experience 2.1.2 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.1.2 - NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 337.88 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 337.88 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 337.88 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 337.88 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
Omerta - City of Gangsters (HKLM-x32\...\GOGPACKOMERTA_is1) (Version: 2.0.0.4 - GOG.com)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
OpenOffice 4.1.1 (HKLM-x32\...\{C560D6E7-E40A-435D-8B71-62CBCF1701B2}) (Version: 4.11.9775 - Apache Software Foundation)
Opera Stable 28.0.1750.48 (HKLM-x32\...\Opera 28.0.1750.48) (Version: 28.0.1750.48 - Opera Software ASA)
Origin (HKLM-x32\...\Origin) (Version: 9.5.1.571 - Electronic Arts, Inc.)
Ovládací panel NVIDIA 337.88 (Version: 337.88 - NVIDIA Corporation) Hidden
Poradce pro upgrade na systém Windows 7 (HKLM-x32\...\{C3A13A35-63AC-427a-92E6-960C1D01FABB}) (Version: 2.0.5000.0 - Microsoft Corporation)
RAGE (HKLM-x32\...\Steam App 9200) (Version: - id Software)
RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition (HKLM-x32\...\RivaTuner) (Version: v2.24 MSI Master Overclocking Arena 2009 edition - Alexey Nicolaychuk)
Scan (x32 Version: 8.1.0.0 - Hewlett-Packard) Hidden
SHIELD Wireless Controller Driver (Version: 16.13.42 - NVIDIA Corporation) Hidden
Skype™ 6.0 (HKLM-x32\...\{EA17F4FC-FDBF-4CF8-A529-2D983132D053}) (Version: 6.0.126 - Skype Technologies S.A.)
Software602 Form Filler (HKLM-x32\...\{F8F79FE0-64EA-439C-A6AE-B1946A178F24}) (Version: 4.55 - Software602 a.s.)
SolutionCenter (x32 Version: 82.0.188.000 - Hewlett-Packard) Hidden
StarCraft II (HKLM-x32\...\StarCraft II) (Version: - Blizzard Entertainment)
Status (x32 Version: 82.0.173.000 - Hewlett-Packard) Hidden
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
Toolbox (x32 Version: 82.0.173.000 - Hewlett-Packard) Hidden
TrayApp (x32 Version: 82.0.188.000 - Hewlett-Packard) Hidden
Unity Web Player (HKU\S-1-5-21-618862783-2341095386-7452594-1000\...\UnityWebPlayer) (Version: - Unity Technologies ApS)
UnloadSupport (x32 Version: 1.00.0000 - Hewlett-Packard) Hidden
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN)
War Thunder Launcher 1.0.1.361 (HKLM-x32\...\{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1) (Version: - Gaijin Entertainment)
WebReg (x32 Version: 82.0.173.000 - Hewlett-Packard) Hidden
WinRAR 4.10 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 4.10.0 - win.rar GmbH)
World of Tanks v.0.7.1.1 (HKLM-x32\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812}_is1) (Version: - Wargaming.net)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
CustomCLSID: HKU\S-1-5-21-618862783-2341095386-7452594-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Grew\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-618862783-2341095386-7452594-1000_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Grew\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-618862783-2341095386-7452594-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Grew\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-618862783-2341095386-7452594-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Grew\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-618862783-2341095386-7452594-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Grew\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-618862783-2341095386-7452594-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Grew\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-618862783-2341095386-7452594-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Grew\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-618862783-2341095386-7452594-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Grew\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-618862783-2341095386-7452594-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Grew\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-618862783-2341095386-7452594-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Grew\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
==================== Restore Points =========================
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2006-11-02 14:34 - 2015-01-19 13:31 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
Task: {04F91EEA-CB7A-408D-BEEB-202EC3EE3493} - System32\Tasks\{2DCFD8EF-90ED-4D84-BDAA-4F09AC472842} => Iexplore.exe http://ui.skype.com/ui/0/6.0.0.126/cs/a ... age=tsBing
Task: {14D34DA7-D8B4-4454-840E-84FAD5873F9D} - System32\Tasks\{17849023-AC72-4BDD-8A66-99CD837BDF71} => pcalua.exe -a "C:\ProgramData\Battle.net\Agent\Blizzard Uninstaller.exe" -c --lang=enGB --uid=s2_engb --displayname="StarCraft II"
Task: {36F5250F-A308-4597-BA1E-A4E9BB9C3E15} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\VistaSP1CEIP => C:\Windows\servicing\vsp1ceip.exe [2008-01-19] (Microsoft Corporation)
Task: {57F5D384-7A28-4561-A607-6D0EDDFF4D00} - System32\Tasks\avastBCLRestartS-1-5-21-618862783-2341095386-7452594-1000 => Firefox.exe
Task: {98CDE987-99DC-4D0E-92CE-18276FE00DF6} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-03-22] (Avast Software s.r.o.)
Task: {A58BAC56-CA8F-4CD9-9FA1-5B28673214F6} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19] (Adobe Systems Incorporated)
Task: {BDBC923C-E274-4094-840B-A124021DD590} - System32\Tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask => C:\Windows\system32\RAServer.exe [2008-01-19] (Společnost Microsoft)
Task: {C9BFB051-AAD8-4867-8377-80C03F6B7432} - System32\Tasks\Opera scheduled Autoupdate 1399624644 => C:\Program Files (x86)\Opera\launcher.exe [2015-03-16] (Opera Software)
==================== Loaded Modules (whitelisted) ==============
2012-04-04 07:06 - 2012-01-09 19:44 - 00193536 _____ () C:\Program Files (x86)\WinRAR\rarext64.dll
2015-03-18 21:48 - 2015-03-18 21:48 - 00484472 _____ () C:\Program Files (x86)\Opera\28.0.1750.48\opera_crashreporter.exe
2015-03-14 08:47 - 2015-03-22 04:28 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2015-03-22 04:28 - 2015-03-22 04:28 - 00104400 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-03-22 04:28 - 2015-03-22 04:28 - 00081728 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2015-03-18 21:48 - 2015-03-18 21:48 - 09625720 _____ () C:\Program Files (x86)\Opera\28.0.1750.48\pdf.dll
2015-04-02 12:11 - 2015-04-02 12:11 - 16858288 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_134.dll
2015-04-04 13:22 - 2015-04-04 13:22 - 02923520 _____ () C:\Program Files\AVAST Software\Avast\defs\15040400\algo.dll
2015-04-04 20:24 - 2015-04-04 20:24 - 02923520 _____ () C:\Program Files\AVAST Software\Avast\defs\15040401\algo.dll
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== EXE Association (whitelisted) ===============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-618862783-2341095386-7452594-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Grew\AppData\Roaming\Microsoft\Windows Photo Gallery\Tapeta galerie Windows Fotogalerie.jpg
DNS Servers: 192.168.0.1
==================== MSCONFIG/TASK MANAGER disabled items ==
(Currently there is no automatic fix for this section.)
==================== Accounts: =============================
Administrator (S-1-5-21-618862783-2341095386-7452594-500 - Administrator - Disabled)
Grew (S-1-5-21-618862783-2341095386-7452594-1000 - Administrator - Enabled) => C:\Users\Grew
Guest (S-1-5-21-618862783-2341095386-7452594-501 - Limited - Disabled)
==================== Faulty Device Manager Devices =============
Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
Name: RTL8187_Wireless
Description: RTL8187_Wireless
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
Name: Vstupní zařízení pro sběrnici PCI
Description: Vstupní zařízení pro sběrnici PCI
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Event log errors: =========================
Application errors:
==================
Error: (04/03/2015 11:22:23 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Chybující aplikace mcupdate.EXE, verze 6.0.6002.18005, časové razítko 0x49e03158, chybující modul KERNEL32.dll, verze 6.0.6002.19034, časové razítko 0x52f30e80, kód výjimky 0xe0434f4d, posun chyby 0x000000000001674d,
ID procesu 0x888, čas spuštění aplikace 0xmcupdate.EXE0.
Error: (04/03/2015 11:22:23 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Chybující aplikace mcupdate.EXE, verze 6.0.6002.18005, časové razítko 0x49e03158, chybující modul KERNEL32.dll, verze 6.0.6002.19034, časové razítko 0x52f30e80, kód výjimky 0xe0434f4d, posun chyby 0x000000000001674d,
ID procesu 0x1350, čas spuštění aplikace 0xmcupdate.EXE0.
Error: (04/03/2015 03:39:19 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Položka <C:\USERS\GREW\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\HQKEYKHO.DEFAULT\SAFEBROWSING-TO_DELETE> v mapě algoritmu hash nebyla aktualizována.
Kontext: aplikace , katalog SystemIndex
Podrobnosti:
Zařízení připojené k systému nefunguje. (0x8007001f)
Error: (04/03/2015 03:39:19 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Položka <C:\USERS\GREW\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\HQKEYKHO.DEFAULT\SAFEBROWSING> v mapě algoritmu hash nebyla aktualizována.
Kontext: aplikace , katalog SystemIndex
Podrobnosti:
Zařízení připojené k systému nefunguje. (0x8007001f)
Error: (04/03/2015 03:39:19 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Položka <C:\USERS\GREW\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\HQKEYKHO.DEFAULT\SAFEBROWSING> v mapě algoritmu hash nebyla aktualizována.
Kontext: aplikace , katalog SystemIndex
Podrobnosti:
Zařízení připojené k systému nefunguje. (0x8007001f)
Error: (04/03/2015 02:57:44 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Položka <C:\USERS\GREW\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\HQKEYKHO.DEFAULT\SAFEBROWSING-BACKUP> v mapě algoritmu hash nebyla aktualizována.
Kontext: aplikace , katalog SystemIndex
Podrobnosti:
Zařízení připojené k systému nefunguje. (0x8007001f)
Error: (04/03/2015 10:14:54 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program firefox.exe verze 36.0.4.5557 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Oznámení a řešení problémů.
ID procesu: aa0
Čas zahájení: 01d06da76e5fa44c
Čas ukončení: 2225
Error: (04/03/2015 02:37:34 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Chybující aplikace FlashPlayerPlugin_17_0_0_134.exe, verze 17.0.0.134, časové razítko 0x54f649d2, chybující modul unknown, verze 0.0.0.0, časové razítko 0x00000000, kód výjimky 0xc0000005, posun chyby 0x00000000,
ID procesu 0x84c, čas spuštění aplikace 0xFlashPlayerPlugin_17_0_0_134.exe0.
Error: (04/02/2015 09:45:40 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Chybující aplikace mcupdate.EXE, verze 6.0.6002.18005, časové razítko 0x49e03158, chybující modul KERNEL32.dll, verze 6.0.6002.19034, časové razítko 0x52f30e80, kód výjimky 0xe0434f4d, posun chyby 0x000000000001674d,
ID procesu 0x1394, čas spuštění aplikace 0xmcupdate.EXE0.
Error: (04/02/2015 11:04:00 AM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Položka <C:\USERS\GREW\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\HQKEYKHO.DEFAULT\SAFEBROWSING-TO_DELETE> v mapě algoritmu hash nebyla aktualizována.
Kontext: aplikace , katalog SystemIndex
Podrobnosti:
Zařízení připojené k systému nefunguje. (0x8007001f)
System errors:
=============
Error: (04/04/2015 08:16:13 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Windows Update
Error: (04/04/2015 08:12:22 PM) (Source: Microsoft-Windows-Eventlog) (EventID: 23) (User: NT AUTHORITY)
Description: 121Application
Error: (04/04/2015 08:02:42 PM) (Source: Microsoft-Windows-Eventlog) (EventID: 23) (User: NT AUTHORITY)
Description: 121Application
Error: (04/04/2015 08:02:28 PM) (Source: Microsoft-Windows-Kernel-General) (EventID: 6) (User: NT AUTHORITY)
Description: 0xc000014d36\SystemRoot\System32\Config\SOFTWARE
Error: (04/04/2015 07:54:36 PM) (Source: Microsoft-Windows-Eventlog) (EventID: 23) (User: NT AUTHORITY)
Description: 121Application
Error: (04/04/2015 08:12:45 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba KTMRM pro koordinátor DTC
Error: (04/04/2015 08:08:39 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba inteligentního přenosu na pozadí
Error: (04/04/2015 09:19:44 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: 30000SENS
Error: (04/03/2015 11:02:27 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: 30000SENS
Error: (04/03/2015 05:51:15 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {DCAB0989-1301-4319-BE5F-ADE89F88581C}
Microsoft Office Sessions:
=========================
Error: (04/03/2015 11:22:23 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: mcupdate.EXE6.0.6002.1800549e03158KERNEL32.dll6.0.6002.1903452f30e80e0434f4d000000000001674d88801d06e52f05b0b57
Error: (04/03/2015 11:22:23 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: mcupdate.EXE6.0.6002.1800549e03158KERNEL32.dll6.0.6002.1903452f30e80e0434f4d000000000001674d135001d06e52ef0c166f
Error: (04/03/2015 03:39:19 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Kontext: aplikace , katalog SystemIndex
Podrobnosti:
Zařízení připojené k systému nefunguje. (0x8007001f)
C:\USERS\GREW\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\HQKEYKHO.DEFAULT\SAFEBROWSING-TO_DELETE
Error: (04/03/2015 03:39:19 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Kontext: aplikace , katalog SystemIndex
Podrobnosti:
Zařízení připojené k systému nefunguje. (0x8007001f)
C:\USERS\GREW\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\HQKEYKHO.DEFAULT\SAFEBROWSING
Error: (04/03/2015 03:39:19 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Kontext: aplikace , katalog SystemIndex
Podrobnosti:
Zařízení připojené k systému nefunguje. (0x8007001f)
C:\USERS\GREW\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\HQKEYKHO.DEFAULT\SAFEBROWSING
Error: (04/03/2015 02:57:44 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Kontext: aplikace , katalog SystemIndex
Podrobnosti:
Zařízení připojené k systému nefunguje. (0x8007001f)
C:\USERS\GREW\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\HQKEYKHO.DEFAULT\SAFEBROWSING-BACKUP
Error: (04/03/2015 10:14:54 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: firefox.exe36.0.4.5557aa001d06da76e5fa44c2225
Error: (04/03/2015 02:37:34 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: FlashPlayerPlugin_17_0_0_134.exe17.0.0.13454f649d2unknown0.0.0.000000000c00000050000000084c01d06da5a2b0c516
Error: (04/02/2015 09:45:40 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: mcupdate.EXE6.0.6002.1800549e03158KERNEL32.dll6.0.6002.1903452f30e80e0434f4d000000000001674d139401d06d7cdf161787
Error: (04/02/2015 11:04:00 AM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Kontext: aplikace , katalog SystemIndex
Podrobnosti:
Zařízení připojené k systému nefunguje. (0x8007001f)
C:\USERS\GREW\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\HQKEYKHO.DEFAULT\SAFEBROWSING-TO_DELETE
CodeIntegrity Errors:
===================================
Date: 2015-03-30 11:11:15.945
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-03-30 11:11:15.671
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-03-30 11:11:15.397
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-03-30 11:11:15.126
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-03-30 11:11:14.613
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-03-30 11:11:14.342
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-03-30 11:11:14.067
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-03-30 11:11:13.786
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-03-28 18:06:18.087
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-03-28 18:06:17.816
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.
==================== Memory info ===========================
Processor: AMD Athlon(tm) 64 X2 Dual Core Processor 5600+
Percentage of memory in use: 29%
Total physical RAM: 6141.56 MB
Available physical RAM: 4310.57 MB
Total Pagefile: 12399.14 MB
Available Pagefile: 10575.67 MB
Total Virtual: 8192 MB
Available Virtual: 8191.85 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:73.73 GB) (Free:10.06 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: () (Fixed) (Total:109.86 GB) (Free:5.21 GB) NTFS
Drive e: () (Fixed) (Total:114.5 GB) (Free:45.08 GB) NTFS
Drive g: (EVW3226) (CDROM) (Total:0.08 GB) (Free:0 GB) CDFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 298.1 GB) (Disk ID: D5471307)
Partition 1: (Active) - (Size=73.7 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=109.9 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=114.5 GB) - (Type=07 NTFS)
==================== End Of Log ============================
-
Rudy
- Site Admin
- Příspěvky: 119389
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pomalé PC
Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Pomalé PC
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 11-03-2015
Ran by Grew at 2015-04-04 21:47:24 Run:2
Running from C:\Users\Grew\Desktop
Loaded Profiles: Grew (Available profiles: Grew)
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
Start
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
C:\Users\Grew\AppData\Local\Temp
End
*****************
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
"C:\Users\Grew\AppData\Local\Temp" directory move:
Could not move "C:\Users\Grew\AppData\Local\Temp" directory. => Scheduled to move on reboot.
=> Result of Scheduled Files to move (Boot Mode: Normal) (Date&Time: 2015-04-04 22:23:01)<=
C:\Users\Grew\AppData\Local\Temp => Moved successfully.
==== End of Fixlog 22:26:15 ====
Ran by Grew at 2015-04-04 21:47:24 Run:2
Running from C:\Users\Grew\Desktop
Loaded Profiles: Grew (Available profiles: Grew)
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
Start
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
C:\Users\Grew\AppData\Local\Temp
End
*****************
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
"C:\Users\Grew\AppData\Local\Temp" directory move:
Could not move "C:\Users\Grew\AppData\Local\Temp" directory. => Scheduled to move on reboot.
=> Result of Scheduled Files to move (Boot Mode: Normal) (Date&Time: 2015-04-04 22:23:01)<=
C:\Users\Grew\AppData\Local\Temp => Moved successfully.
==== End of Fixlog 22:26:15 ====
Re: Pomalé PC
Trochu lepsi, ale furt zadna hitparada 
-
Rudy
- Site Admin
- Příspěvky: 119389
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pomalé PC
Udělejte kompletní sken MBAM: http://www.malwarebytes.org/mbam.php a dejte log. Předem nic nemažte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Pomalé PC
nic nenasel
-
Rudy
- Site Admin
- Příspěvky: 119389
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pomalé PC
Po stránce malware je v pořádku. Co jste instaloval těsně před tím, než se problém objevil?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Pomalé PC
Posledni dobou sem nic neinstaloval, krome aktualizace adobe flash, ale obcas mi tady nekdo klikne na spam v emailu.
-
Rudy
- Site Admin
- Příspěvky: 119389
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pomalé PC
Zkuste defragmentovat disk.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?