Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

prosim o kontrolu logu...zpomalení notebooku

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
ebola
Návštěvník
Návštěvník
Příspěvky: 146
Registrován: 31 kvě 2007 07:07

prosim o kontrolu logu...zpomalení notebooku

#1 Příspěvek od ebola »

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 01-03-2019
Ran by Lucinka (administrator) on HP (02-03-2019 21:59:19)
Running from C:\Users\Lucinka\Downloads
Loaded Profiles: Lucinka (Available Profiles: Lucinka)
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: "C:\Users\Lucinka\AppData\Roaming\Seznam Browser\Seznam.cz.exe"-surl="%1")
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Hewlett-Packard Company -> Hewlett-Packard) C:\Windows\System32\hpservice.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
(Microsoft Windows Hardware Compatibility Publisher -> Andrea Electronics Corporation) C:\Windows\System32\AEADISRV.EXE
(Microsoft Windows Hardware Compatibility Publisher -> LSI Corporation) C:\Program Files\LSI SoftModem\agrsmsvc.exe
(Broadcom Corporation -> Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Browser\Update\1.4.154.333\AvastBrowserCrashHandler.exe
(Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCtrl.exe
(Teruten) [File not signed] C:\Windows\System32\FsUsbExService.Exe
(Hewlett-Packard Company) [File not signed] C:\Program Files\Common Files\LightScribe\LSSrvc.exe
(PDF Complete -> PDF Complete Inc) C:\Program Files\PDF Complete\pdfsvc.exe
(PS Media s.r.o. -> PS Media s.r.o.) C:\Windows\System32\ssins.exe
(Intel Corporation -> Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
(Hewlett-Packard Company -> Hewlett-Packard) C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Crawler Group, LLC -> Crawler Group, LLC) C:\Program Files\Spyware Terminator\st_rsser.exe
(Intel Corporation -> Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
(Nokia) [File not signed] C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer.exe
(Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\VolCtrl.exe
(Microsoft Windows Hardware Compatibility Publisher -> Analog Devices, Inc.) C:\Program Files\Analog Devices\Core\smax4pnp.exe
(Crawler Group, LLC -> Crawler Group, LLC) C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe
(Crawler Group, LLC -> Crawler Group, LLC) C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Hewlett-Packard Company -> Hewlett-Packard) C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe
(Hewlett-Packard Company) [File not signed] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
(Samsung Electronics Co., Ltd.) [File not signed] C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe
(Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\Alwil Software\Avast5\AvastUI.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\Alwil Software\Avast5\aswidsagent.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Hewlett-Packard Company -> ) C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe
(Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
(Advanced Micro Devices Inc.) [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Hewlett-Packard Company) [File not signed] C:\Program Files\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(ATI Technologies Inc.) [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\msiexec.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [QlbCtrl.exe] => C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [288312 2009-07-27] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.)
HKLM\...\Run: [IAAnotif] => C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [186904 2009-08-25] (Intel Corporation -> Intel Corporation)
HKLM\...\Run: [PDF Complete] => C:\Program Files\PDF Complete\pdfsty.exe [563736 2009-06-18] (PDF Complete -> PDF Complete Inc)
HKLM\...\Run: [WirelessAssistant] => C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [498744 2009-07-23] (Hewlett-Packard Company -> Hewlett-Packard)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1545512 2009-07-30] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [StartCCC] => C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2009-08-04] (Advanced Micro Devices, Inc.) [File not signed]
HKLM\...\Run: [SoundMAX] => C:\Program Files\Analog Devices\SoundMAX\soundmax.exe [3866624 2009-05-18] (Analog Devices, Inc.) [File not signed]
HKLM\...\Run: [NeroFilterCheck] => C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [153136 2007-03-01] (Nero AG -> Nero AG)
HKLM\...\Run: [NetFxUpdate_v1.1.4322] => C:\Windows\Microsoft.NET\Framework\v1.1.4322\netfxupdate.exe [106496 2004-08-10] (Microsoft) [File not signed]
HKLM\...\Run: [NokiaMServer] => C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles
HKLM\...\Run: [NokiaMusic FastStart] => C:\Program Files\Nokia\Nokia Music\NokiaMusic.exe [2331936 2009-07-22] (Nokia -> Nokia)
HKLM\...\Run: [SoundMAXPnP] => C:\Program Files\Analog Devices\Core\smax4pnp.exe [1314816 2009-05-18] (Microsoft Windows Hardware Compatibility Publisher -> Analog Devices, Inc.)
HKLM\...\Run: [NPSStartup] => [X]
HKLM\...\Run: [SpywareTerminatorShield] => C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe [5349128 2017-03-16] (Crawler Group, LLC -> Crawler Group, LLC)
HKLM\...\Run: [SpywareTerminatorUpdater] => C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe [5585664 2017-03-16] (Crawler Group, LLC -> Crawler Group, LLC)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Alwil Software\Avast5\AvLaunch.exe [221576 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2014-12-19] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-2854377482-2471292144-1422266838-1001\...\Run: [HPADVISOR] => C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe [1668664 2009-07-16] (Hewlett-Packard Company -> Hewlett-Packard)
HKU\S-1-5-21-2854377482-2471292144-1422266838-1001\...\Run: [LightScribe Control Panel] => C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2363392 2009-06-17] (Hewlett-Packard Company) [File not signed]
HKU\S-1-5-21-2854377482-2471292144-1422266838-1001\...\Run: [IncrediMail] => C:\Program Files\IncrediMail\bin\IncMail.exe /c
HKU\S-1-5-21-2854377482-2471292144-1422266838-1001\...\Run: [AutoStartNPSAgent] => C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe [102400 2009-04-02] (Samsung Electronics Co., Ltd.) [File not signed]
HKU\S-1-5-21-2854377482-2471292144-1422266838-1001\...\Run: [Facebook Update] => C:\Users\Lucinka\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2012-07-12] (Facebook, Inc. -> Facebook Inc.)
HKU\S-1-5-21-2854377482-2471292144-1422266838-1001\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [30872168 2014-12-11] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-2854377482-2471292144-1422266838-1001\...\MountPoints2: {e32a091e-2c66-11e0-ba95-00247ef7aec9} - D:\AutoRun.exe
HKLM\Software\Microsoft\Active Setup\Installed Components: [{10880D85-AAD9-4558-ABDC-2AB1552D831F}] -> C:\Program Files\Common Files\LightScribe\LSRunOnce.exe [2009-06-17] (Hewlett-Packard Company -> Hewlett-Packard Company)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\windows\system32\cmd.exe /D /C start C:\windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> C:\Program Files\AVAST Software\Browser\Application\71.0.1037.98\Installer\chrmstp.exe [2019-01-16] (AVAST Software s.r.o. -> AVAST Software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\72.0.3626.119\Installer\chrmstp.exe [2019-02-26] (Google LLC -> Google Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{07AA0886-CC8D-4e19-A410-1C75AF686E62}] -> C:\Windows\System32\l2nacp.dll [2009-07-14] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{33c86cd6-705f-4ba1-9adb-67070b837775}] -> C:\Windows\System32\l2nacp.dll [2009-07-14] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{50968FF7-10C1-4fb3-98B0-CD654D6CB97E}] -> C:\Program Files\WIDCOMM\Bluetooth Software\\BtwCP.dll [2009-07-30] (Broadcom Corporation -> Broadcom Corporation.)
HKLM\Software\...\Authentication\Credential Provider Filters: [{edd749de-2ef1-4a80-98d1-81f20e6df58e}] -> C:\Windows\System32\l2nacp.dll [2009-07-14] (Microsoft Windows -> Microsoft Corporation)
BootExecute: autocheck autochk * C:\PROGRA~2\SPYWAR~1\st_rsdel.exe "\??\C:\ProgramData\Spyware Terminator\st_rsdel.dat"

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: 0.0.0.1 mssplus.mcafee.com
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{418BB993-84E9-4BFB-831F-6F9E0F9E5422}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{FB22F6A6-3CB5-49E5-8BD1-C7C7F538D972}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKU\S-1-5-21-2854377482-2471292144-1422266838-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=cs_CZ&c=92&bd=all&pf=cmnb
HKU\S-1-5-21-2854377482-2471292144-1422266838-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.seznam.cz/
hxxp://www.seznam.cz/
URLSearchHook: HKU\S-1-5-21-2854377482-2471292144-1422266838-1001 - (No Name) - {9CB65206-89C4-402c-BA80-02D8C59F9B1D} - C:\Program Files\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL No File
SearchScopes: HKU\S-1-5-21-2854377482-2471292144-1422266838-1001 -> {CFF4DB9B-135F-47c0-9269-B4C6572FD61A} URL = hxxp://mystart.incredimail.com/?search={searchTerms}&loc=search_box_im2_test_v2
BHO: No Name -> {5C255C8A-E604-49b4-9D64-90988571CECB} -> No File
BHO: Spyware Terminator 2015 Internet Guard -> {82A76710-4F98-4957-92BE-99648A4E2475} -> C:\Program Files\Spyware Terminator\STInternetGuard.dll [2015-07-28] (Crawler Group, LLC -> Crawler Group, LLC)
BHO: Pomocník pro přihlášení ke službě Windows Live -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-02-17] (Microsoft Corporation -> Microsoft Corporation)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-02] (Google Inc -> Google Inc.)
BHO: Skype Browser Helper -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2011-10-10] (Skype Technologies SA -> Skype Technologies S.A.)
Toolbar: HKLM - No Name - {0BF43445-2F28-4351-9252-17FE6E806AA0} - No File
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-02] (Google Inc -> Google Inc.)
Toolbar: HKU\S-1-5-21-2854377482-2471292144-1422266838-1001 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-02] (Google Inc -> Google Inc.)
Toolbar: HKU\S-1-5-21-2854377482-2471292144-1422266838-1001 -> No Name - {FE063DB9-4EC0-403E-8DD8-394C54984B2C} - No File
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8050.1202.dll [2008-12-02] (Microsoft Corporation -> Microsoft Corporation)
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8050.1202.dll [2008-12-02] (Microsoft Corporation -> Microsoft Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2011-10-10] (Skype Technologies SA -> Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Software Sarl -> Skype Technologies)

FireFox:
========
FF DefaultProfile: fs479jo3.default-1546575944067
FF ProfilePath: C:\Users\Lucinka\AppData\Roaming\Mozilla\Firefox\Profiles\fs479jo3.default-1546575944067 [2019-03-02]
FF Extension: (Avast Online Security) - C:\Users\Lucinka\AppData\Roaming\Mozilla\Firefox\Profiles\fs479jo3.default-1546575944067\Extensions\wrc@avast.com.xpi [2018-07-17]
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF32_32_0_0_142.dll [2019-02-12] (Adobe Systems Incorporated -> )
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-20] (Google Inc -> Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-20] (Google Inc -> Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-06-29] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2854377482-2471292144-1422266838-1001: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\Lucinka\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [2014-07-24] (Skype Software Sarl -> Skype Limited)

Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www.google.com
CHR StartupUrls: Default -> "hxxp://mystart.incredimail.com/"
CHR Profile: C:\Users\Lucinka\AppData\Local\Google\Chrome\User Data\Default [2019-03-02]
CHR Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\Lucinka\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2019-03-02]
CHR Extension: (Procházení pomocí kurzoru) - C:\Users\Lucinka\AppData\Local\Google\Chrome\User Data\Default\Extensions\fklpgenihifpccgiifchnihilipmbffg [2018-09-03]
CHR Extension: (Skype) - C:\Users\Lucinka\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2018-09-03]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Lucinka\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-09-03]
CHR Extension: (Chrome Media Router) - C:\Users\Lucinka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-03-02]
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\Alwil Software\Avast5\WebRep\Chrome\aswWebRepChromeSp.crx <not found>
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\Alwil Software\Avast5\WebRep\Chrome\aswWebRepChrome.crx <not found>
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2011-10-10]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AEADIFilters; C:\windows\system32\AEADISRV.EXE [90112 2008-07-15] (Microsoft Windows Hardware Compatibility Publisher -> Andrea Electronics Corporation)
R2 AgereModemAudio; C:\Program Files\LSI SoftModem\agrsmsvc.exe [14336 2009-07-27] (Microsoft Windows Hardware Compatibility Publisher -> LSI Corporation)
R2 AMD External Events Utility; C:\windows\system32\atiesrxx.exe [176128 2009-08-04] (Microsoft Windows Hardware Compatibility Publisher -> AMD)
R3 aswbIDSAgent; C:\Program Files\Alwil Software\Avast5\aswidsagent.exe [5458712 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-07-14] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [309480 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-07-14] (AVAST Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files\AVAST Software\Browser\Application\71.0.1037.98\elevation_service.exe [390552 2019-01-09] (AVAST Software s.r.o. -> AVAST Software)
R2 FsUsbExService; C:\windows\system32\FsUsbExService.Exe [233472 2009-03-31] (Teruten) [File not signed]
S2 gupdate1ca711254f1434f; C:\Program Files\Google\Update\GoogleUpdate.exe [144200 2015-09-02] (Google Inc -> Google Inc.)
R2 HP Support Assistant Service; C:\Program Files\Hewlett-Packard\HP Support Framework\hpsa_service.exe [86528 2012-09-27] (Hewlett-Packard Company) [File not signed]
R2 LightScribeService; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [73728 2009-06-17] (Hewlett-Packard Company) [File not signed]
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.163\McCHSvc.exe [235696 2015-07-31] (McAfee, Inc. -> McAfee, Inc.)
R2 pdfcDispatcher; C:\Program Files\PDF Complete\pdfsvc.exe [635416 2009-06-18] (PDF Complete -> PDF Complete Inc)
S3 ServiceLayer; C:\Program Files\Nokia\PC Connectivity Solution\ServiceLayer.exe [637952 2009-06-02] (Nokia.) [File not signed]
R2 ssinstall; C:\windows\System32\ssins.exe [4696960 2016-11-29] (PS Media s.r.o. -> PS Media s.r.o.)
R2 ST2012_Svc; C:\Program Files\Spyware Terminator\st_rsser.exe [2133768 2017-03-16] (Crawler Group, LLC -> Crawler Group, LLC)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
R2 yksvc; C:\windows\System32\yk62x86.dll [282624 2009-07-20] (Microsoft Windows Hardware Compatibility Publisher -> Marvell)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 5U876UVC; C:\windows\System32\DRIVERS\5U876.sys [118656 2009-06-30] (Microsoft Windows Hardware Compatibility Publisher -> Ricoh co.,Ltd.)
R3 Accelerometer; C:\windows\system32\DRIVERS\Accelerometer.sys [33848 2009-07-08] (Hewlett-Packard Company -> Hewlett-Packard)
R3 ADIHdAudAddService; C:\windows\System32\drivers\ADIHdAud.sys [381440 2009-05-18] (Microsoft Windows Hardware Compatibility Publisher -> Analog Devices, Inc.)
R3 AgereSoftModem; C:\windows\System32\DRIVERS\AGRSM.sys [1161664 2009-07-27] (Microsoft Windows Hardware Compatibility Publisher -> LSI Corporation)
R0 aswArDisk; C:\windows\System32\drivers\aswArDisk.sys [34488 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\windows\System32\drivers\aswArPot.sys [171128 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\windows\System32\drivers\aswbidsdriver.sys [188784 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\windows\System32\drivers\aswbidsh.sys [158096 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
R0 aswblog; C:\windows\System32\drivers\aswblog.sys [255224 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\windows\System32\drivers\aswbuniv.sys [51128 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
R1 aswHdsKe; C:\windows\System32\drivers\aswHdsKe.sys [188712 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\windows\System32\drivers\aswKbd.sys [40688 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\windows\System32\drivers\aswMonFlt.sys [139296 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\windows\System32\drivers\aswRdr2.sys [100984 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\windows\System32\drivers\aswRvrt.sys [72800 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\windows\System32\drivers\aswSnx.sys [785584 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSP; C:\windows\System32\drivers\aswSP.sys [401632 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
R2 aswStm; C:\windows\System32\drivers\aswStm.sys [162632 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\windows\System32\drivers\aswVmm.sys [310200 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
R3 atikmdag; C:\windows\System32\DRIVERS\atikmdag.sys [4994048 2009-08-04] (Microsoft Windows Hardware Compatibility Publisher -> ATI Technologies Inc.)
R3 BCM43XX; C:\windows\System32\DRIVERS\bcmwl6.sys [2506232 2009-11-25] (Broadcom Corporation -> Broadcom Corporation)
S3 btwaudio; C:\windows\System32\drivers\btwaudio.sys [86056 2009-07-01] (Broadcom Corporation -> Broadcom Corporation.)
S3 btwavdt; C:\windows\System32\DRIVERS\btwavdt.sys [108072 2009-07-01] (Broadcom Corporation -> Broadcom Corporation.)
S3 btwl2cap; C:\windows\System32\DRIVERS\btwl2cap.sys [29472 2009-04-08] (Broadcom Corporation -> Broadcom Corporation.)
S3 btwrchid; C:\windows\System32\DRIVERS\btwrchid.sys [18344 2009-07-01] (Broadcom Corporation -> Broadcom Corporation.)
U5 ewusbnet; C:\Windows\System32\Drivers\ewusbnet.sys [198656 2009-12-15] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R3 FsUsbExDisk; C:\windows\system32\FsUsbExDisk.SYS [36608 2009-03-31] () [File not signed]
R0 hpdskflt; C:\windows\System32\DRIVERS\hpdskflt.sys [25656 2009-07-08] (Hewlett-Packard Company -> Hewlett-Packard)
R3 HpqKbFiltr; C:\windows\system32\DRIVERS\HpqKbFiltr.sys [15872 2009-04-29] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Development Company, L.P.)
S3 Huawei; C:\windows\System32\DRIVERS\ewdcsc.sys [23424 2009-12-15] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Tech. Co., Ltd.)
S3 hwdatacard; C:\windows\System32\DRIVERS\ewusbmdm.sys [102912 2009-12-15] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 hwusbdev; C:\windows\System32\DRIVERS\ewusbdev.sys [101120 2009-12-15] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 k750bus; C:\windows\System32\DRIVERS\k750bus.sys [55216 2005-02-11] (Microsoft Windows Hardware Compatibility Publisher -> MCCI)
S3 MfeAVFK; C:\windows\System32\drivers\MfeAVFK.sys [79816 2009-05-16] (McAfee, Inc. -> McAfee, Inc.)
S3 MfeBOPK; C:\windows\System32\drivers\MfeBOPK.sys [35272 2009-05-16] (McAfee, Inc. -> McAfee, Inc.)
R1 mfehidk; C:\windows\System32\drivers\mfehidk.sys [214024 2009-05-16] (McAfee, Inc. -> McAfee, Inc.)
S3 MfeRKDK; C:\windows\System32\drivers\MfeRKDK.sys [34248 2009-05-16] (McAfee, Inc. -> McAfee, Inc.)
R1 mfetdik; C:\windows\System32\drivers\mfetdik.sys [55336 2009-05-16] (McAfee, Inc. -> McAfee, Inc.)
S3 nmwcd; C:\windows\System32\drivers\ccdcmb.sys [17664 2009-02-09] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S3 nmwcdc; C:\windows\System32\drivers\ccdcmbo.sys [22016 2009-02-09] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S3 pccsmcfd; C:\windows\System32\DRIVERS\pccsmcfd.sys [18816 2008-08-26] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S3 Ser2plx86; C:\windows\System32\DRIVERS\ser2pl.sys [132608 2012-07-30] (Microsoft Windows Hardware Compatibility Publisher -> Prolific Technology Inc.)
R1 sp_rsdrv2; C:\windows\system32\drivers\sp_rsdrv2.sys [32768 2011-06-21] () [File not signed]
S3 upperdev; C:\windows\System32\DRIVERS\usbser_lowerflt.sys [7808 2009-02-09] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
R3 yukonw7; C:\windows\System32\DRIVERS\yk62x86.sys [313856 2009-07-20] (Microsoft Windows Hardware Compatibility Publisher -> Marvell)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-03-02 21:57 - 2019-03-02 21:59 - 000069589 _____ C:\Users\Lucinka\Downloads\Addition.txt
2019-03-02 21:55 - 2019-03-02 22:00 - 000027953 _____ C:\Users\Lucinka\Downloads\FRST.txt
2019-03-02 21:55 - 2019-03-02 21:59 - 000000000 ____D C:\FRST
2019-03-02 21:55 - 2019-03-02 21:55 - 001793024 _____ (Farbar) C:\Users\Lucinka\Downloads\FRST (2).exe
2019-03-02 21:54 - 2019-03-02 21:55 - 001793024 _____ (Farbar) C:\Users\Lucinka\Downloads\FRST (1).exe
2019-03-02 21:51 - 2019-03-02 21:51 - 001793024 _____ (Farbar) C:\Users\Lucinka\Downloads\FRST.exe
2019-02-20 15:07 - 2019-02-27 14:07 - 000000000 ____D C:\Users\Lucinka\AppData\Roaming\Seznam Browser
2019-02-20 07:05 - 2019-02-20 07:05 - 000188712 _____ (AVAST Software) C:\windows\system32\Drivers\aswHdsKe.sys
2019-02-20 07:04 - 2019-02-20 07:04 - 000047720 _____ () C:\windows\system32\Drivers\staport.sys
2019-02-20 07:03 - 2019-02-20 07:02 - 000310664 _____ (AVAST Software) C:\windows\system32\aswBoot.exe
2019-02-19 13:09 - 2019-02-19 13:10 - 000143272 _____ C:\windows\Minidump\021919-23805-01.dmp
2019-02-12 13:07 - 2019-02-12 13:07 - 000143272 _____ C:\windows\Minidump\021219-21777-01.dmp

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-03-02 21:55 - 2009-07-14 03:37 - 000000000 ____D C:\windows\tracing
2019-03-02 21:54 - 2009-07-14 05:34 - 000023024 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2019-03-02 21:54 - 2009-07-14 05:34 - 000023024 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2019-03-02 21:51 - 2016-12-31 10:04 - 000000000 ____D C:\Users\Lucinka\AppData\LocalLow\Mozilla
2019-03-02 21:28 - 2009-11-29 17:15 - 000000000 ____D C:\Users\Lucinka\AppData\Roaming\Skype
2019-03-02 21:23 - 2018-07-14 07:51 - 000000000 ____D C:\Users\Lucinka\AppData\Local\AVAST Software
2019-03-02 21:21 - 2016-05-31 09:44 - 000065536 _____ C:\windows\system32\Ikeext.etl
2019-03-02 21:21 - 2011-10-20 11:01 - 000000968 _____ C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2854377482-2471292144-1422266838-1001Core.job
2019-03-02 21:21 - 2009-07-14 05:53 - 000000006 ____H C:\windows\Tasks\SA.DAT
2019-03-02 09:11 - 2011-10-20 11:01 - 000000990 _____ C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2854377482-2471292144-1422266838-1001UA.job
2019-02-28 08:57 - 2012-08-05 12:01 - 000000000 ____D C:\ProgramData\Spyware Terminator
2019-02-26 09:42 - 2009-11-29 17:38 - 000002170 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-02-26 09:42 - 2009-11-29 17:38 - 000002129 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-02-24 07:10 - 2009-09-20 08:18 - 000000000 ____D C:\ProgramData\PDFC
2019-02-20 07:06 - 2009-11-28 15:07 - 000401632 _____ (AVAST Software) C:\windows\system32\Drivers\aswSP.sys
2019-02-20 07:02 - 2019-01-16 14:04 - 000188784 _____ (AVAST Software) C:\windows\system32\Drivers\aswbidsdriver.sys
2019-02-20 07:02 - 2019-01-16 14:03 - 000255224 _____ (AVAST Software) C:\windows\system32\Drivers\aswblog.sys
2019-02-20 07:02 - 2019-01-16 14:03 - 000158096 _____ (AVAST Software) C:\windows\system32\Drivers\aswbidsh.sys
2019-02-20 07:02 - 2019-01-16 14:03 - 000051128 _____ (AVAST Software) C:\windows\system32\Drivers\aswbuniv.sys
2019-02-20 07:02 - 2019-01-16 14:03 - 000034488 _____ (AVAST Software) C:\windows\system32\Drivers\aswArDisk.sys
2019-02-20 07:02 - 2018-10-24 14:39 - 000040688 _____ (AVAST Software) C:\windows\system32\Drivers\aswKbd.sys
2019-02-20 07:02 - 2018-06-03 20:19 - 000171128 _____ (AVAST Software) C:\windows\system32\Drivers\aswArPot.sys
2019-02-20 07:02 - 2014-12-13 09:55 - 000162632 _____ (AVAST Software) C:\windows\system32\Drivers\aswStm.sys
2019-02-20 07:02 - 2013-05-25 16:31 - 000310200 _____ (AVAST Software) C:\windows\system32\Drivers\aswVmm.sys
2019-02-20 07:02 - 2013-05-25 16:31 - 000072800 _____ (AVAST Software) C:\windows\system32\Drivers\aswRvrt.sys
2019-02-20 07:02 - 2012-08-01 07:25 - 000100984 _____ (AVAST Software) C:\windows\system32\Drivers\aswRdr2.sys
2019-02-20 07:02 - 2012-01-03 23:17 - 000785584 _____ (AVAST Software) C:\windows\system32\Drivers\aswSnx.sys
2019-02-20 07:02 - 2009-11-28 15:07 - 000139296 _____ (AVAST Software) C:\windows\system32\Drivers\aswMonFlt.sys
2019-02-19 13:09 - 2011-09-09 22:26 - 365968686 _____ C:\windows\MEMORY.DMP
2019-02-19 13:09 - 2011-09-09 22:26 - 000000000 ____D C:\windows\Minidump
2019-02-12 18:31 - 2012-08-12 14:28 - 000842240 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerApp.exe
2019-02-12 18:31 - 2012-02-05 17:46 - 000175104 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerCPLApp.cpl
2019-02-12 18:31 - 2009-09-20 08:18 - 000000000 ____D C:\windows\system32\Macromed

==================== Files in the root of some directories =======

2018-06-03 15:18 - 2018-06-03 15:18 - 007649280 _____ () C:\Program Files\GUT362D.tmp
2018-02-12 15:54 - 2018-02-12 15:54 - 007649280 _____ () C:\Program Files\GUT928F.tmp
2011-03-16 16:24 - 2012-04-24 09:05 - 000001849 _____ () C:\Users\Lucinka\AppData\Roaming\GhostObjGAFix.xml
2009-11-25 18:34 - 2009-11-25 18:34 - 000000000 _____ () C:\Users\Lucinka\AppData\Local\AtStart.txt
2009-11-25 18:34 - 2009-11-25 18:34 - 000000000 _____ () C:\Users\Lucinka\AppData\Local\DSwitch.txt
2009-12-23 16:59 - 2009-12-23 16:59 - 000000095 _____ () C:\Users\Lucinka\AppData\Local\fusioncache.dat
2009-11-25 18:34 - 2009-11-25 18:34 - 000000000 _____ () C:\Users\Lucinka\AppData\Local\QSwitch.txt
2018-09-24 16:03 - 2018-09-24 16:03 - 000000000 _____ () C:\Users\Lucinka\AppData\Local\{84B6C474-2FFF-4C62-A43C-0B7B3012F464}
2016-06-28 05:11 - 2016-06-28 05:11 - 000000000 _____ () C:\Users\Lucinka\AppData\Local\{AD27140C-0996-42D4-B0FE-F078ADE76FA0}
2018-11-22 23:05 - 2018-11-22 23:05 - 000000000 _____ () C:\Users\Lucinka\AppData\Local\{E32DFEF3-4145-446E-BDC9-CC07E51FE517}
2018-09-24 16:03 - 2018-09-24 16:03 - 000000000 _____ () C:\Users\Lucinka\AppData\Local\{F7C8B676-2569-4715-9309-23D33FB681CD}

Some files in TEMP:
====================
2015-02-01 11:37 - 2015-02-01 11:37 - 038624400 _____ (Adobe Systems Incorporated) C:\Users\Lucinka\AppData\Local\Temp\AdbeRdr11000_cs_CZ.exe
2011-01-16 13:22 - 2011-01-16 13:22 - 000005120 _____ (ALWIL Software) C:\Users\Lucinka\AppData\Local\Temp\aswV5Hlp.dll
2012-02-20 21:34 - 2012-10-02 05:30 - 000987080 _____ (McAfee, Inc.) C:\Users\Lucinka\AppData\Local\Temp\contentDATs.exe
2011-01-30 12:51 - 2009-04-02 16:07 - 000110592 ____R (Huawei Technologies Co., Ltd.) C:\Users\Lucinka\AppData\Local\Temp\DataCard_Setup.exe
2010-02-25 06:09 - 2010-02-25 06:09 - 001955784 _____ (Adobe Systems Incorporated) C:\Users\Lucinka\AppData\Local\Temp\FlashPlayerUpdate.exe
2010-08-31 19:48 - 2010-08-31 19:48 - 002826192 _____ (Adobe Systems, Inc.) C:\Users\Lucinka\AppData\Local\Temp\FlashPlayerUpdate01.exe
2009-11-29 17:38 - 2009-11-29 17:38 - 000559280 _____ () C:\Users\Lucinka\AppData\Local\Temp\GoogleChromeInstaller.exe
2009-11-29 17:15 - 2009-11-29 17:15 - 000200816 _____ (Google Inc.) C:\Users\Lucinka\AppData\Local\Temp\GoogleToolbarInstaller.exe
2009-11-25 18:28 - 2008-01-14 23:28 - 000069632 _____ (Hewlett-Packard Company) C:\Users\Lucinka\AppData\Local\Temp\HPQSi.exe
2010-04-28 18:34 - 2010-04-28 18:34 - 000001536 _____ () C:\Users\Lucinka\AppData\Local\Temp\NEventMessages.dll
2011-01-30 12:51 - 2009-03-18 11:46 - 000007168 ____R () C:\Users\Lucinka\AppData\Local\Temp\ResetDevice.exe
2012-06-27 14:34 - 2012-05-04 01:24 - 000031616 _____ (Hewlett-Packard Company) C:\Users\Lucinka\AppData\Local\Temp\Resource.exe
2010-09-17 05:49 - 2010-09-17 05:49 - 000426552 _____ (Google Inc.) C:\Users\Lucinka\AppData\Local\Temp\SearchWithGoogleUpdate.exe
2012-02-05 17:37 - 2013-01-29 18:35 - 003787456 _____ (McAfee, Inc.) C:\Users\Lucinka\AppData\Local\Temp\SecurityScan_Release.exe
2010-04-03 07:04 - 2010-04-03 07:04 - 021705696 _____ (Hewlett-Packard ) C:\Users\Lucinka\AppData\Local\Temp\sp47326.exe
2010-04-21 14:55 - 2010-04-21 14:56 - 022610224 _____ (Hewlett-Packard ) C:\Users\Lucinka\AppData\Local\Temp\sp48071.exe
2010-12-18 08:28 - 2010-12-18 08:29 - 035845112 _____ (Hewlett-Packard ) C:\Users\Lucinka\AppData\Local\Temp\sp50843.exe.exe
2012-06-27 14:32 - 2012-06-27 14:33 - 048868760 _____ (Hewlett-Packard ) C:\Users\Lucinka\AppData\Local\Temp\sp54620.exe
2013-04-14 09:42 - 2013-04-14 09:44 - 041580520 _____ (Hewlett-Packard ) C:\Users\Lucinka\AppData\Local\Temp\sp58915.exe
2014-08-18 23:00 - 2014-08-18 23:00 - 044799704 _____ (Hewlett-Packard ) C:\Users\Lucinka\AppData\Local\Temp\sp64126.exe
2015-02-01 11:36 - 2016-11-29 21:32 - 004696960 _____ (PS Media s.r.o.) C:\Users\Lucinka\AppData\Local\Temp\ssins.exe
2012-06-27 14:33 - 2013-11-04 19:15 - 000123192 _____ (Hewlett-Packard Company) C:\Users\Lucinka\AppData\Local\Temp\UninstallHPSA.exe
2010-12-18 08:29 - 2011-09-09 16:07 - 000449592 _____ (Hewlett-Packard Company) C:\Users\Lucinka\AppData\Local\Temp\UninstallHPTCA.exe
2014-06-17 14:36 - 2014-06-17 14:36 - 000000000 _____ () C:\Users\Lucinka\AppData\Local\Temp\v2tdkc0p.dll
2011-06-10 14:01 - 2011-06-10 14:01 - 000000000 _____ () C:\Users\Lucinka\AppData\Local\Temp\{AC584489-8367-46D9-B84F-39CE6B3A16C1}-chrome_installer.exe

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\windows\explorer.exe => File is digitally signed
C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\wininit.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\dnsapi.dll => File is digitally signed
C:\windows\system32\dllhost.exe => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2019-02-13 15:05

==================== End of FRST.txt ============================

Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: prosim o kontrolu logu...zpomalení notebooku

#2 Příspěvek od Conder »

Ahoj :)

:arrow: Z tohto logu vidim, ze v PC je nainstalovanych viacero bezpecnostnych programov. Odporucam (cez start -> ovladaci panel -> odinstalovat programy) odinstalovat Spyware Terminator a McAfee Security Scan, kedze je tam nainstalovany Avast Antivirus, co je plnohodnotny antivirus.

:arrow: Takisto odporucam odinstalovat programy aj ako Seznam Instalátor, Seznam Listička, Seznam Browser, a pod., ak tieto programy nepouzivas/nepotrebujes.

:arrow: Stiahni AdwCleaner: https://toolslib.net/downloads/finish/1/
  • Uloz na plochu a ukonci vsetky programy
  • Spusti AdwCleaner ako spravca
  • Odsuhlas licencne podmienky
  • Klikni na Skenovat nyni (Scan now) a pockaj na dokoncenie
  • Nechaj zaskrtnute vsetky nalezy
  • Klikni na Cisteni a opravy (Clean and Repair) a potvrd restart PC teraz
  • Po restartovani PC sa otvori AdwCleaner, klikni na Zobrazit soubor protokolu
  • Otvori sa log, jeho obsah sem skopiruj
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!

ebola
Návštěvník
Návštěvník
Příspěvky: 146
Registrován: 31 kvě 2007 07:07

Re: prosim o kontrolu logu...zpomalení notebooku

#3 Příspěvek od ebola »

ahoj .. tak jsem provedl:) vše co jsi doporučil.zde je log

# -------------------------------
# Malwarebytes AdwCleaner 7.2.7.0
# -------------------------------
# Build: 01-30-2019
# Database: 2019-02-28.3 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 03-03-2019
# Duration: 00:00:22
# OS: Windows 7 Home Premium
# Cleaned: 20
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted C:\Program Files\AskTBar
Deleted C:\Users\Lucinka\AppData\Local\VirtualStore\Program Files\AskTBar
Deleted C:\Users\Lucinka\AppData\Local\Seznam.cz

***** [ Files ] *****

Deleted C:\Windows\System32\drivers\sp_rsdrv2.sys

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted HKLM\Software\AskTBar
Deleted HKLM\Software\Classes\CLSID\{E2B98EEA-EE55-4E9B-A8C1-6E5288DF785A}
Deleted HKLM\Software\Classes\CLSID\{61F47056-E400-43D3-AF1E-AB7DFFD4C4AD}
Deleted HKLM\Software\Classes\CLSID\{3CCC052E-BDEE-408A-BEA7-90914EF2964B}
Deleted HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks|{9CB65206-89C4-402C-BA80-02D8C59F9B1D}
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9CB65206-89C4-402C-BA80-02D8C59F9B1D}
Deleted HKLM\Software\Classes\CLSID\{9CB65206-89C4-402C-BA80-02D8C59F9B1D}
Deleted HKLM\Software\Classes\CLSID\{9AFB8248-617F-460D-9366-D71CDEDA3179}
Deleted HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser|{FE063DB9-4EC0-403E-8DD8-394C54984B2C}
Deleted HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\staticimgfarm.com
Deleted HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\ak.staticimgfarm.com
Deleted HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\wlogin.icq.com
Deleted HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\icq.com
Deleted HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{CFF4DB9B-135F-47c0-9269-B4C6572FD61A}
Deleted HKCU\Software\Seznam.cz

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

Deleted http://mystart.incredimail.com/

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [3084 octets] - [03/03/2019 08:25:11]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: prosim o kontrolu logu...zpomalení notebooku

#4 Příspěvek od Conder »

:arrow: OK, teraz poprosim o obidva nove logy z FRST (FRST.txt a Addition.txt)
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!

ebola
Návštěvník
Návštěvník
Příspěvky: 146
Registrován: 31 kvě 2007 07:07

Re: prosim o kontrolu logu...zpomalení notebooku

#5 Příspěvek od ebola »

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 03-03-2019 01
Ran by Lucinka (04-03-2019 18:25:29)
Running from C:\Users\Lucinka\Downloads
Microsoft Windows 7 Home Premium Service Pack 1 (X86) (2009-11-25 17:17:12)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2854377482-2471292144-1422266838-500 - Administrator - Disabled)
ASPNET (S-1-5-21-2854377482-2471292144-1422266838-1005 - Limited - Enabled)
Guest (S-1-5-21-2854377482-2471292144-1422266838-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2854377482-2471292144-1422266838-1003 - Limited - Enabled)
Lucinka (S-1-5-21-2854377482-2471292144-1422266838-1001 - Administrator - Enabled) => C:\Users\Lucinka

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

2007 Microsoft Office system (HKLM\...\PROHYBRIDR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Adobe Flash Player 32 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 32.0.0.142 - Adobe Systems Incorporated)
Adobe Flash Player 32 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 32.0.0.142 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.12) - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.12 - Adobe Systems Incorporated)
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM\...\{90120000-0016-0405-0000-0000000FF1CE}_PROHYBRIDR_{0A1FAC46-B899-421D-B1A2-470896DC45DB}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM\...\{90120000-0018-0405-0000-0000000FF1CE}_PROHYBRIDR_{5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (HKLM\...\{90120000-001B-0405-0000-0000000FF1CE}_PROHYBRIDR_{E68DD413-B834-4923-8181-0A03B7555187}) (Version: - Microsoft)
Asistent pro přihlášení ke službě Windows Live (HKLM\...\{BD86C297-41C7-4DB5-82C4-98DE3399A2EF}) (Version: 5.000.818.6 - Microsoft Corporation)
Ask Toolbar (HKLM\...\AskTBar Uninstall) (Version: - Ask.com) <==== ATTENTION
ATI Catalyst Install Manager (HKLM\...\{8F0EDF80-31C2-FA10-DEE8-BD435A5F7D61}) (Version: 3.0.732.0 - ATI Technologies, Inc.)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 19.2.2364 - AVAST Software)
Avast Secure Browser (HKLM\...\Avast Secure Browser) (Version: 71.0.1037.98 - Autoři prohlížeče Avast Secure Browser)
Balíček ovladače systému Windows - Nokia pccsmcfd (08/22/2008 7.0.0.0) (HKLM\...\504244733D18C8F63FF584AEB290E3904E791693) (Version: 08/22/2008 7.0.0.0 - Nokia)
Broadcom 802.11 Wireless LAN Adapter (HKLM\...\Broadcom 802.11 Wireless LAN Adapter) (Version: 5.30.21.0 - Broadcom Corporation)
Call of Duty(R) 2 (HKLM\...\{D0A05794-48C2-4424-A15A-9F20FCFDD374}) (Version: 1.00.0000 - Activision) Hidden
Call of Duty(R) 2 (HKLM\...\InstallShield_{D0A05794-48C2-4424-A15A-9F20FCFDD374}) (Version: 1.00.0000 - Activision)
ccc-core-static (HKLM\...\{A657B744-4F40-6973-D177-5FD028712702}) (Version: 2009.0804.1118.18368 - ATI) Hidden
CoD 2 čeština (HKLM\...\CoD 2 čeština_is1) (Version: - #'Pan[S]al!er!)
DirectX 9 Runtime (HKLM\...\{AF9E97C1-7431-426D-A8D5-ABE40995C0B1}) (Version: 1.00.0000 - Sonic Solutions) Hidden
Disc2Phone (HKLM\...\{6E65247F-58F9-41CA-BE69-0316F7907170}) (Version: 1.3.0.106 - Sony Media Software)
Facebook Video Calling 3.1.0.521 (HKLM\...\{2091F234-EB58-4B80-8C96-8EB78C808CF7}) (Version: 3.1.521 - Skype Limited)
Farm Frenzy 2 (HKLM\...\Farm Frenzy 2) (Version: - Alawar Entertainment Inc.)
Google Drive (HKLM\...\{A8DC81F2-D365-4248-892A-FA3B5951F731}) (Version: 2.34.9392.7803 - Google, Inc.)
Google Chrome (HKLM\...\Google Chrome) (Version: 72.0.3626.119 - Google Inc.)
Google Toolbar for Internet Explorer (HKLM\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden
Google Toolbar for Internet Explorer (HKLM\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.)
Google Update Helper (HKLM\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.23 - Google Inc.) Hidden
Google Update Helper (HKLM\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
HP 3D DriveGuard (HKLM\...\{85A42FF0-F0D0-44A3-B226-C124D6E8B1D5}) (Version: 4.0.3.1 - Hewlett-Packard)
HP Advisor (HKLM\...\{B53E61D7-7C80-40DF-82D2-CF5390D6D20A}) (Version: 3.2.8946.3086 - Hewlett-Packard)
HP Common Access Service Library (HKLM\...\{87CA636B-85B8-4611-A81D-F97E71024AFD}) (Version: 3.0.28.1 - Hewlett-Packard)
HP ESU for Microsoft Windows 7 (HKLM\...\{511376F5-7E5A-4EC9-B603-193B1D425BC3}) (Version: 1.0.1.1 - Hewlett-Packard)
HP Integrated Module with Bluetooth wireless technology (HKLM\...\{9E9D49A4-1DF4-4138-B7DB-5D87A893088E}) (Version: 6.2.0.9602 - Broadcom Corporation)
HP Quick Launch Buttons (HKLM\...\{34D2AB40-150D-475D-AE32-BD23FB5EE355}) (Version: 6.50.4.2 - Hewlett-Packard)
HP QuickLook (HKLM\...\{A46717C3-16B8-45C0-BEA4-451C3215795F}) (Version: 3.0.0.17 - Hewlett-Packard)
HP Setup (HKLM\...\{D0BFE65D-C320-4FC9-88D2-B9C32FB95DA0}) (Version: 1.2.3215.3078 - Hewlett-Packard)
HP Software Setup (HKLM\...\{76AF1F61-BB44-4694-A0EA-C6830C8BEF41}) (Version: 1.0.0.15 - Hewlett-Packard)
HP Support Assistant (HKLM\...\{EE202411-2C26-49E8-9784-1BC1DBF7DE96}) (Version: 7.0.39.15 - Hewlett-Packard Company)
HP User Guides 0136 (HKLM\...\{004739E9-9BBF-4A8B-9FAC-EB7CA5B7A9D9}) (Version: 1.03.0002 - Hewlett-Packard)
HP Wallpaper (HKLM\...\{F173C2B3-296F-458C-98FF-1676A42EBA02}) (Version: 1.0.1.11 - Hewlett-Packard)
HP Webcam (HKLM\...\{1D61E881-43CD-447B-9E6B-D2C6138B2862}) (Version: 1.0 - Roxio)
HP Wireless Assistant (HKLM\...\{54CC7901-804D-4155-B353-21F0CC9112AB}) (Version: 3.50.9.1 - Hewlett-Packard)
Choice Guard (HKLM\...\{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}) (Version: 1.2.87.0 - Microsoft Corporation) Hidden
IncrediMail (HKLM\...\{18DB3375-0649-4EA3-959A-44F1ACD278BA}) (Version: 6.0.6.4501 - IncrediMail) Hidden
IncrediMail 2.0 (HKLM\...\IncrediMail) (Version: 6.0.6.4501 - IncrediMail Ltd.)
Integrated Camera Driver Installer Package Ver.1.30.110.0 (HKLM\...\{B0344B38-378B-47E0-BDCC-977785D24768}) (Version: 1.30.110.0 - BISON)
Intel® Matrix Storage Manager (HKLM\...\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}) (Version: - Intel Corporation)
Internet Explorer (HKLM\...\{8A3F7D5D-8A53-4A7C-B6DA-22DD1212EB55}) (Version: 8 - Microsoft Corporation) Hidden
K-Lite Codec Pack 5.4.0 (Standard) (HKLM\...\KLiteCodecPack_is1) (Version: 5.4.0 - )
LightScribe System Software (HKLM\...\{82EF29B1-9B60-4142-A155-0599216DD053}) (Version: 1.18.6.1 - LightScribe)
LSI HDA Modem (HKLM\...\LSI Soft Modem) (Version: 2.1.94 - LSI Corporation)
Marvell Miniport Driver (HKLM\...\Marvell Miniport Driver) (Version: 10.70.5.3 - Marvell)
Microsoft .NET Framework 1.1 (HKLM\...\Microsoft .NET Framework 1.1 (1033)) (Version: - )
Microsoft .NET Framework 1.1 Security Update (KB953297) (HKLM\...\M953297) (Version: - )
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Suite Activation Assistant (HKLM\...\{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}) (Version: 2.7 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Mozilla Firefox 65.0.2 (x86 cs) (HKLM\...\Mozilla Firefox 65.0.2 (x86 cs)) (Version: 65.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 65.0.2.6995 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Nero 7 Essentials (HKLM\...\{BC61F51E-8AF7-46B9-AF20-B33B5EE81029}) (Version: 7.03.0188 - Nero AG)
Nokia Connectivity Cable Driver (HKLM\...\{82427977-8776-4087-90CA-9F65174D3C4D}) (Version: 7.1.16.0 - Nokia)
Nokia Multimedia Common Components 2.4 (HKLM\...\{6EB6C056-02BB-453E-8448-EC90B9794180}) (Version: 2.4.190 - Nokia)
Nokia Music (HKLM\...\{DC432844-6914-4421-910C-F1B05B3A761C}) (Version: 1.3.20722 - Nokia Music)
O2 (HKLM\...\O2CZ) (Version: - O2)
OpenOffice.org 3.0 (HKLM\...\{BE8BE32F-F595-4693-9F82-1E0A5A047BB6}) (Version: 3.0.9358 - OpenOffice.org)
Opera Mail 1.0 (HKU\S-1-5-21-2854377482-2471292144-1422266838-1001\...\Opera 1.0.1040) (Version: 1.0.1040 - Opera Software ASA)
PC Connectivity Solution (HKLM\...\{0C973594-7DDF-4BD0-84ED-3517F7622037}) (Version: 9.23.3.0 - Nokia)
PDF Complete Special Edition (HKLM\...\PDF Complete) (Version: 3.5.108 - PDF Complete, Inc)
PhotoMail Maker (HKLM\...\{15382D89-6EF6-4D21-9484-B500F2B10E46}) (Version: 1.0.0.1040 - IncrediMail) Hidden
PhotoMail Maker (HKLM\...\PhotoMail) (Version: 1.0.0.1040 - IncrediMail Ltd.)
QLBCASL (HKLM\...\{F1D7AC58-554A-4A58-B784-B61558B1449A}) (Version: 6.40.17.2 - Hewlett-Packard) Hidden
Roxio Creator Business (HKLM\...\{537BF16E-7412-448C-95D8-846E85A1D817}) (Version: 10.3 - Roxio)
SAMSUNG Mobile Composite Device Software (HKLM\...\SAMSUNG Mobile Composite Device) (Version: - )
Samsung Mobile Modem Device Software (HKLM\...\Samsung Mobile Modem Device) (Version: - )
SAMSUNG Mobile Modem Driver Set (HKLM\...\SAMSUNG Mobile Modem) (Version: - )
Samsung Mobile phone USB driver Drive Software (HKLM\...\Samsung Mobile phone USB driver Drive) (Version: - )
SAMSUNG Mobile USB Modem 1.0 Software (HKLM\...\SAMSUNG Mobile USB Modem 1.0) (Version: - )
SAMSUNG Mobile USB Modem Software (HKLM\...\SAMSUNG Mobile USB Modem) (Version: - )
Samsung New PC Studio (HKLM\...\{F193FC0E-9E18-40FC-A974-509A1BDD240A}) (Version: 1.00.0000 - Samsung Electronics Co., Ltd.) Hidden
Samsung New PC Studio (HKLM\...\InstallShield_{F193FC0E-9E18-40FC-A974-509A1BDD240A}) (Version: 1.00.0000 - Samsung Electronics Co., Ltd.)
SAMSUNG USB Mobile Device Software (HKLM\...\SAMSUNG USB Mobile Device) (Version: - )
SamsungConnectivityCableDriver (HKLM\...\{7E84FAC8-C518-40F9-9807-7455301D6D25}) (Version: 6.83.6.2.1 - Samsung)
SCR3xxx Smart Card Reader (HKLM\...\{E045FAC9-0B70-4796-AD3A-7035E89CE536}) (Version: 8.35 - SCM Microsystems)
Seznam Instalátor (HKLM\...\ssinstall) (Version: - Seznam.cz)
Seznam prohlížeč (HKU\S-1-5-21-2854377482-2471292144-1422266838-1001\...\Seznam Browser) (Version: 5.1.3 - Seznam.cz a.s.)
Skype Click to Call (HKLM\...\{B6CF2967-C81E-40C0-9815-C05774FEF120}) (Version: 5.6.8442 - Skype Technologies S.A.)
Skype™ 7.0 (HKLM\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
Sonic CinePlayer Decoder Pack (HKLM\...\{8D337F77-BE7F-41A2-A7CB-D5A63FD7049B}) (Version: 4.3.0 - Sonic Solutions) Hidden
SoundMAX (HKLM\...\{F0A37341-D692-11D4-A984-009027EC0A9C}) (Version: 6.10.1.7255 - Analog Devices)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 13.2.6.2 - Synaptics Incorporated)
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
VLC media player 1.1.9 (HKLM\...\VLC media player) (Version: 1.1.9 - VideoLAN)
Winamp (HKLM\...\Winamp) (Version: 5.56 - Nullsoft, Inc)
Windows 7 Default Setting (HKLM\...\{E70E6183-F6EC-45B4-AFA4-0C3C36D4B664}) (Version: 1.0.0.6 - Hewlett-Packard)
Windows Live Essentials (HKLM\...\WinLiveSuite_Wave3) (Version: 14.0.8050.1202 - Microsoft Corporation)
Windows Live Upload Tool (HKLM\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation)
WinRAR 4.20 (32-bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
World of Tanks (HKLM\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812}_is1) (Version: - Wargaming.net)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2854377482-2471292144-1422266838-1001_Classes\CLSID\{039B2CA5-3B41-4D93-AD77-47D3293FC5CB}\InprocServer32 -> C:\Program Files\Skype\Plugin Manager\ezPMUtils.dll => No File
CustomCLSID: HKU\S-1-5-21-2854377482-2471292144-1422266838-1001_Classes\CLSID\{1FD1FE74-9E3C-4C1C-AEEB-AAB592AD770F}\localserver32 -> C:\Users\Lucinka\AppData\Local\Facebook\Update\FacebookUpdate.exe (Facebook, Inc. -> Facebook Inc.)
CustomCLSID: HKU\S-1-5-21-2854377482-2471292144-1422266838-1001_Classes\CLSID\{42481700-CF3C-4D05-8EC6-F9A1C57E8DC0}\InprocServer32 -> C:\Program Files\Skype\Plugin Manager\ezPMUtils.dll => No File
CustomCLSID: HKU\S-1-5-21-2854377482-2471292144-1422266838-1001_Classes\CLSID\{5E71E4F3-E8C7-4906-9626-973E418762B6}\InprocServer32 -> C:\Users\Lucinka\AppData\Local\Facebook\Update\1.2.205.0\goopdate.dll (Facebook, Inc. -> Facebook Inc.)
CustomCLSID: HKU\S-1-5-21-2854377482-2471292144-1422266838-1001_Classes\CLSID\{6d05bf60-3eaf-4a97-87c5-10cce505435b}\localserver32 -> C:\Users\Lucinka\AppData\Local\Temp\{9c0ba3c1-2b67-45eb-bf69-bed9658d28d2}\IDriver.NonElevated.exe (InstallShield Software Corporation) [File not signed]
CustomCLSID: HKU\S-1-5-21-2854377482-2471292144-1422266838-1001_Classes\CLSID\{8B9F5BF4-0407-4BB2-9FED-4C0372DABD00}\localserver32 -> C:\Users\Lucinka\AppData\Local\Facebook\Video\Skype\FacebookVideoCallingProxy.exe (Skype Software Sarl -> Skype Limited)
CustomCLSID: HKU\S-1-5-21-2854377482-2471292144-1422266838-1001_Classes\CLSID\{cb4c77f0-ab2a-407c-93ac-963769824b18}\localserver32 -> C:\Users\Lucinka\AppData\Local\Temp\{b3ede298-ae75-4a1c-ab7e-1b9229b77bbe}\IDriver.NonElevated.exe (InstallShield Software Corporation) [File not signed]
CustomCLSID: HKU\S-1-5-21-2854377482-2471292144-1422266838-1001_Classes\CLSID\{CBE9C57E-FFA9-4123-8354-AD360D6DD3CC}\InprocServer32 -> C:\Users\Lucinka\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Software Sarl -> Skype Limited)
CustomCLSID: HKU\S-1-5-21-2854377482-2471292144-1422266838-1001_Classes\CLSID\{D0D38C6E-BF64-4C42-840D-3E0019D9F7A6}\InprocServer32 -> C:\Program Files\Skype\Plugin Manager\ezPMUtils.dll => No File
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync32.dll [2018-04-23] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync32.dll [2018-04-23] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync32.dll [2018-04-23] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Alwil Software\Avast5\ashShell.dll [2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => -> No File
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Alwil Software\Avast5\ashShell.dll [2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [Cover Designer] -> {73FCA462-9BD5-4065-A73F-A8E5F6904EF7} => C:\Program Files\Nero\Nero 7\Nero CoverDesigner\CoverEdExtension.dll [2007-05-04] (Nero AG -> Nero AG)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu32.dll [2018-04-23] (Google Inc -> Google)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2012-06-09] (Alexander Roshal) [File not signed]
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Alwil Software\Avast5\ashShell.dll [2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu32.dll [2018-04-23] (Google Inc -> Google)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\atiacmxx.dll [2009-08-04] (Advanced Micro Devices, Inc.) [File not signed]
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Alwil Software\Avast5\ashShell.dll [2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2012-06-09] (Alexander Roshal) [File not signed]

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {039CD453-1891-49D1-8EB3-8C82B30861A1} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent => Command(1): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshConfigAndContent
Task: {039CD453-1891-49D1-8EB3-8C82B30861A1} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent => Command(2): C:\windows\system32\GWX\GWXDetector.exe [2016-03-21] (Microsoft Windows -> Microsoft Corporation)
Task: {1612C508-A342-4DC8-8638-5A7DA9C099EC} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\windows\system32\Macromed\Flash\FlashUtil32_32_0_0_142_Plugin.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {169A5766-4916-4818-988C-B6C2D6525B27} - System32\Tasks\{FACA94DC-5D48-4F33-A4AE-4BBDA3470CB8} => "C:\Program Files\Internet Explorer\iexplore.exe" hxxp://ui.skype.com/ui/0/4.1.0.179/cs/abandoninstall?source=lightinstaller&page=tsMain&installinfo=google-toolbar:notoffered;toolbarpresent,google-chrome&#058;notoffered;systemlevelpresent
Task: {200EF398-B23B-4755-A476-782E916A3B7C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HPSAObjUtilTask => C:\Program Files\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\UtilTask.exe (Hewlett-Packard Company -> Microsoft)
Task: {31DE350E-FEDD-4551-980D-3EB6CAEEBF24} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2854377482-2471292144-1422266838-1001UA => C:\Users\Lucinka\AppData\Local\Facebook\Update\FacebookUpdate.exe (Facebook, Inc. -> Facebook Inc.)
Task: {4378D972-BF2F-4785-83E5-4E9629EAEDF4} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2854377482-2471292144-1422266838-1001Core => C:\Users\Lucinka\AppData\Local\Facebook\Update\FacebookUpdate.exe (Facebook, Inc. -> Facebook Inc.)
Task: {47131F49-8407-4D3C-AF28-16F0BBE02784} - System32\Tasks\Adobe Flash Player Updater => C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {4C18EB70-96F4-49F5-A6BF-CB6CBF90B08A} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => Command(1): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshConfig
Task: {4C18EB70-96F4-49F5-A6BF-CB6CBF90B08A} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => Command(2): C:\windows\system32\GWX\GWXDetector.exe [2016-03-21] (Microsoft Windows -> Microsoft Corporation)
Task: {52783002-8C90-44BE-A33C-8B4DE2A94AFD} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {5343EAD6-EE57-486A-8FC7-90F21CCE6646} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe (AVAST Software s.r.o. -> AVAST Software) <==== ATTENTION
Task: {58ECF1B6-81B5-429F-BB02-B2261CE74030} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe (AVAST Software s.r.o. -> AVAST Software) <==== ATTENTION
Task: {7B8C2071-6E54-48F8-A6B0-6C2961E01233} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {98D2D1F7-C15D-45F4-83D0-003DD4FAD5E5} - System32\Tasks\{76873FAB-5AFA-48A0-A156-E8AF126F515D} => "c:\program files\internet explorer\iexplore.exe" hxxp://ui.skype.com/ui/0/5.8.0.158/cs/abandoninstall?page=tsBing
Task: {A3890B13-9B1B-4A6B-9DCD-285313631759} - System32\Tasks\{4384F6E4-990B-418E-A2EB-F3E3ABB26119} => "c:\program files\internet explorer\iexplore.exe" hxxp://ui.skype.com/ui/0/5.8.0.156/cs/abandoninstall?page=tsBing
Task: {AAB6D6AC-F54F-4129-8EE4-A0C64E06C2E9} - System32\Tasks\{D87D3251-D566-481F-B91C-FD473883B0EF} => "c:\program files\internet explorer\iexplore.exe" hxxp://ui.skype.com/ui/0/5.8.0.156/cs/abandoninstall?page=tsBing
Task: {BB2EC776-71C7-4EA5-A919-A255AE195604} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime => Command(1): %windir%\system32\GWX\GWXUXWorker.exe -> /ScheduleUpgradeReminderTime
Task: {BB2EC776-71C7-4EA5-A919-A255AE195604} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime => Command(2): C:\windows\system32\GWX\GWXDetector.exe [2016-03-21] (Microsoft Windows -> Microsoft Corporation)
Task: {BCEA4F74-5CA0-4703-A8D0-A1156589E6FC} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(1): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshConfig
Task: {BCEA4F74-5CA0-4703-A8D0-A1156589E6FC} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(2): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshContent
Task: {BCEA4F74-5CA0-4703-A8D0-A1156589E6FC} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(3): C:\windows\system32\GWX\GWXDetector.exe [2016-03-21] (Microsoft Windows -> Microsoft Corporation)
Task: {BEE20015-932F-4E61-9596-364544C245C8} - System32\Tasks\Avast Emergency Update => C:\Program Files\Alwil Software\Avast5\AvEmUpdate.exe (AVAST Software s.r.o. -> AVAST Software)
Task: {DD615F8C-EFB1-4185-BE9B-834C1DCD5F1E} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(1): schtasks.exe -> /Change /TN "\Adobe Flash Player NPAPI Notifier" /ENABLE
Task: {DD615F8C-EFB1-4185-BE9B-834C1DCD5F1E} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(2): schtasks.exe -> /Change /TN "\Adobe Flash Player Updater" /ENABLE
Task: {DD615F8C-EFB1-4185-BE9B-834C1DCD5F1E} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(3): schtasks.exe -> /Change /TN "\CreateChoiceProcessTask" /ENABLE
Task: {DD615F8C-EFB1-4185-BE9B-834C1DCD5F1E} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(4): schtasks.exe -> /Change /TN "\FacebookUpdateTaskUserS-1-5-21-2854377482-2471292144-1422266838-1001Core" /ENABLE
Task: {DD615F8C-EFB1-4185-BE9B-834C1DCD5F1E} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(5): schtasks.exe -> /Change /TN "\FacebookUpdateTaskUserS-1-5-21-2854377482-2471292144-1422266838-1001UA" /ENABLE
Task: {DD615F8C-EFB1-4185-BE9B-834C1DCD5F1E} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(6): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineCore" /ENABLE
Task: {DD615F8C-EFB1-4185-BE9B-834C1DCD5F1E} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(7): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineUA" /ENABLE
Task: {DD615F8C-EFB1-4185-BE9B-834C1DCD5F1E} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(8): schtasks.exe -> /Change /TN "\{4384F6E4-990B-418E-A2EB-F3E3ABB26119}" /ENABLE
Task: {DD615F8C-EFB1-4185-BE9B-834C1DCD5F1E} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(9): schtasks.exe -> /Change /TN "\{76873FAB-5AFA-48A0-A156-E8AF126F515D}" /ENABLE
Task: {DD615F8C-EFB1-4185-BE9B-834C1DCD5F1E} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(10): schtasks.exe -> /Change /TN "\{AEA7E023-B427-459F-AE98-3837702ADBBC}" /ENABLE
Task: {DD615F8C-EFB1-4185-BE9B-834C1DCD5F1E} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(11): schtasks.exe -> /Change /TN "\{D87D3251-D566-481F-B91C-FD473883B0EF}" /ENABLE
Task: {DD615F8C-EFB1-4185-BE9B-834C1DCD5F1E} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(12): schtasks.exe -> /Change /TN "\{FACA94DC-5D48-4F33-A4AE-4BBDA3470CB8}" /ENABLE
Task: {DD615F8C-EFB1-4185-BE9B-834C1DCD5F1E} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(13): schtasks.exe -> /Change /TN "\AVAST Software\Gaming mode Task Scheduler recovery" /DISABLE
Task: {E8729AFE-1B6A-4022-927F-014B05842EC5} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {F0342A28-D420-4463-ACDC-8730092804C5} - System32\Tasks\{AEA7E023-B427-459F-AE98-3837702ADBBC} => "C:\Program Files\Internet Explorer\iexplore.exe" hxxp://ui.skype.com/ui/0/4.1.0.179/cs/go/help.faq.installer?source=lightinstaller&LastError=1603
Task: {FCDD6793-2E96-44A4-AF2B-7CADE7AE1459} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe (AVAST Software s.r.o. -> AVAST Software)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2854377482-2471292144-1422266838-1001Core.job => C:\Users\Lucinka\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2854377482-2471292144-1422266838-1001UA.job => C:\Users\Lucinka\AppData\Local\Facebook\Update\FacebookUpdate.exe

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2011-07-09 12:25 - 2009-03-31 08:39 - 000233472 _____ () C:\windows\system32\FsUsbExService.Exe
2009-06-17 20:21 - 2009-06-17 20:21 - 000073728 _____ () C:\Program Files\Common Files\LightScribe\LSSrvc.exe
2009-06-17 20:21 - 2009-06-17 20:21 - 000110592 _____ () C:\Program Files\Common Files\LightScribe\LSSProxy.dll
2009-06-17 20:21 - 2009-06-17 20:21 - 000033792 ____N () C:\Program Files\Common Files\LightScribe\LSLog.dll
2016-11-15 20:13 - 2016-11-29 21:35 - 001363456 _____ () C:\windows\System32\libeay32.dll
2016-11-15 20:13 - 2016-11-29 21:35 - 000359936 _____ () C:\windows\System32\ssleay32.dll
2009-09-20 08:11 - 2009-08-07 14:24 - 000208896 _____ () C:\Program Files\Intel\Intel Matrix Storage Manager\ISDI.dll
2009-09-20 08:11 - 2009-08-07 14:30 - 000118784 _____ () C:\Program Files\Intel\Intel Matrix Storage Manager\CSY\PlugInRAID_CSY.dll
2009-09-20 08:11 - 2009-08-07 14:31 - 000073728 _____ () C:\Program Files\Intel\Intel Matrix Storage Manager\CSY\IAAMon_CSY.dll
2009-07-23 18:45 - 2009-07-23 18:45 - 000012800 _____ () C:\Program Files\Hewlett-Packard\HP Wireless Assistant\cs\HPWAMain.resources.dll
2008-11-13 22:28 - 2008-11-13 22:28 - 000005120 _____ () C:\Program Files\Hewlett-Packard\HP Wireless Assistant\Interop.HPQWMIEXLib.dll
2008-11-13 22:28 - 2008-11-13 22:28 - 000007168 _____ () C:\Program Files\Hewlett-Packard\HP Wireless Assistant\Interop.HPQTOASTERLib.dll
2009-06-30 13:12 - 2009-06-30 13:12 - 001032192 _____ () C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer.exe
2009-06-30 13:06 - 2009-06-30 13:06 - 002412544 _____ () C:\Program Files\Common Files\Nokia\MPlatform\MItemPlugins.dll
2009-06-30 13:08 - 2009-06-30 13:08 - 002723840 _____ () C:\Program Files\Common Files\Nokia\MPlatform\MDataStore.dll
2009-06-30 13:06 - 2009-06-30 13:06 - 000503808 _____ () C:\Program Files\Common Files\Nokia\MPlatform\MEvent.dll
2009-06-30 13:06 - 2009-06-30 13:06 - 000815104 _____ () C:\Program Files\Common Files\Nokia\MPlatform\MItems.dll
2009-06-30 13:07 - 2009-06-30 13:07 - 000573440 _____ () C:\Program Files\Common Files\Nokia\MPlatform\MDatastorePH.dll
2009-07-16 01:50 - 2009-07-16 01:50 - 000032768 _____ () C:\Program Files\Hewlett-Packard\HP Advisor\CommonInterfaces.dll
2009-07-16 01:50 - 2009-07-16 01:50 - 000147456 _____ () C:\Program Files\Hewlett-Packard\HP Advisor\CommonUtility.dll
2009-07-16 01:50 - 2009-07-16 01:50 - 000208896 _____ () C:\Program Files\Hewlett-Packard\HP Advisor\Microsoft.Practices.EnterpriseLibrary.Logging.dll
2009-07-16 01:51 - 2009-07-16 01:51 - 000245760 _____ () C:\Program Files\Hewlett-Packard\HP Advisor\Pillars\PCHealthSecurity\PCHealthSecurityPillar.dll
2009-07-16 01:50 - 2009-07-16 01:50 - 000032768 _____ () C:\Program Files\Hewlett-Packard\HP Advisor\Content.dll
2009-07-16 01:51 - 2009-07-16 01:51 - 000143360 _____ () C:\Program Files\Hewlett-Packard\HP Advisor\SystemStatus.dll
2009-07-16 01:51 - 2009-07-16 01:51 - 000061440 _____ () C:\Program Files\Hewlett-Packard\HP Advisor\Pillars\PCAlerts\PCAlertsPillar.dll
2009-07-16 01:51 - 2009-07-16 01:51 - 002355200 _____ () C:\Program Files\Hewlett-Packard\HP Advisor\Pillars\ECenter\ECenter.dll
2009-07-16 01:51 - 2009-07-16 01:51 - 000131072 _____ () C:\Program Files\Hewlett-Packard\HP Advisor\Pillars\ECenter\ECLibrary.dll
2009-07-16 01:50 - 2009-07-16 01:50 - 000040960 _____ () C:\Program Files\Hewlett-Packard\HP Advisor\MessagingServer.dll
2009-07-16 01:50 - 2009-07-16 01:50 - 000005632 _____ () C:\Program Files\Hewlett-Packard\HP Advisor\MessagingInterface.dll
2009-07-16 01:50 - 2009-07-16 01:50 - 000018944 _____ () C:\Program Files\Hewlett-Packard\HP Advisor\MessagingMessages.dll
2009-07-16 01:50 - 2009-07-16 01:50 - 000036864 _____ () C:\Program Files\Hewlett-Packard\HP Advisor\MessagingClients.dll
2009-07-16 01:50 - 2009-07-16 01:50 - 000028672 _____ () C:\Program Files\Hewlett-Packard\HP Advisor\Microsoft.Practices.EnterpriseLibrary.ExceptionHandling.Logging.dll
2009-07-16 01:50 - 2009-07-16 01:50 - 000007680 _____ () C:\Program Files\Hewlett-Packard\HP Advisor\RemotingClient.dll
2009-06-17 20:13 - 2009-06-17 20:13 - 002363392 _____ () C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
2009-06-17 19:40 - 2009-06-17 19:40 - 002121728 _____ () C:\Program Files\Common Files\LightScribe\QtCore4.dll
2009-06-17 19:40 - 2009-06-17 19:40 - 007745536 _____ () C:\Program Files\Common Files\LightScribe\QtGui4.dll
2009-06-17 19:40 - 2009-06-17 19:40 - 000135168 _____ () C:\Program Files\Common Files\LightScribe\plugins\imageformats\qjpeg4.dll
2009-04-02 17:05 - 2009-04-02 17:05 - 000102400 _____ () C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe
2011-06-15 20:28 - 2011-06-15 20:28 - 001093120 _____ () C:\windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\MFC80U.DLL
2009-04-23 02:38 - 2009-04-23 02:38 - 000065536 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
2009-11-26 01:03 - 2009-11-26 01:03 - 000106496 _____ () C:\windows\assembly\GAC_MSIL\MOM.Implementation\2.0.3503.18465__90ba9c70f846762e\MOM.Implementation.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000032768 _____ () C:\windows\assembly\GAC_MSIL\LOG.Foundation\2.0.3428.28296__90ba9c70f846762e\LOG.Foundation.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000036864 _____ () C:\windows\assembly\GAC_MSIL\LOG.Foundation.Private\2.0.3428.28303__90ba9c70f846762e\LOG.Foundation.Private.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000065536 _____ () C:\windows\assembly\GAC_MSIL\LOG.Foundation.Implementation\2.0.3503.18463__90ba9c70f846762e\LOG.Foundation.Implementation.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000016384 _____ () C:\windows\assembly\GAC_MSIL\MOM.Foundation\2.0.3428.28310__90ba9c70f846762e\MOM.Foundation.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000020480 _____ () C:\windows\assembly\GAC_MSIL\LOG.Foundation.Implementation.Private\2.0.3428.28310__90ba9c70f846762e\LOG.Foundation.Implementation.Private.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000019456 _____ () C:\windows\assembly\GAC_MSIL\CCC.Implementation\2.0.3503.18464__90ba9c70f846762e\CCC.Implementation.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000028672 _____ () C:\windows\assembly\GAC_MSIL\NEWAEM.Foundation\2.0.3428.28297__90ba9c70f846762e\NEWAEM.Foundation.dll
2009-04-23 02:37 - 2009-04-23 02:37 - 000065536 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
2009-11-26 01:03 - 2009-11-26 01:03 - 000094208 _____ () C:\windows\assembly\GAC_MSIL\CLI.Foundation\2.0.3428.28298__90ba9c70f846762e\CLI.Foundation.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000057344 _____ () C:\windows\assembly\GAC_MSIL\CLI.Component.SkinFactory\2.0.3503.18348__90ba9c70f846762e\CLI.Component.SkinFactory.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000028672 _____ () C:\windows\assembly\GAC_MSIL\CLI.Foundation.XManifest\2.0.3428.28354__90ba9c70f846762e\CLI.Foundation.XManifest.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000057344 _____ () C:\windows\assembly\GAC_MSIL\CLI.Component.Runtime\2.0.3503.18347__90ba9c70f846762e\CLI.Component.Runtime.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000045056 _____ () C:\windows\assembly\GAC_MSIL\CLI.Component.Runtime.Shared.Private\2.0.3428.28311__90ba9c70f846762e\CLI.Component.Runtime.Shared.Private.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000040960 _____ () C:\windows\assembly\GAC_MSIL\CLI.Foundation.Private\2.0.3428.28301__90ba9c70f846762e\CLI.Foundation.Private.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000016384 _____ () C:\windows\assembly\GAC_MSIL\CLI.Component.Runtime.Shared\2.0.3428.28303__90ba9c70f846762e\CLI.Component.Runtime.Shared.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000032768 _____ () C:\windows\assembly\GAC_MSIL\ATICCCom\2.0.0.0__90ba9c70f846762e\ATICCCom.dll
2009-05-14 00:31 - 2009-05-14 00:31 - 000057344 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ADL.Foundation.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000045056 _____ () C:\windows\assembly\GAC_MSIL\AEM.Server\2.0.3503.18345__90ba9c70f846762e\AEM.Server.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000016384 _____ () C:\windows\assembly\GAC_MSIL\AEM.Server.Shared\2.0.3428.28304__90ba9c70f846762e\AEM.Server.Shared.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000045056 _____ () C:\windows\assembly\GAC_MSIL\AEM.Plugin.Source.Kit.Server\2.0.3503.18478__90ba9c70f846762e\AEM.Plugin.Source.Kit.Server.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000016384 _____ () C:\windows\assembly\GAC_MSIL\AEM.Plugin.DPPE.Shared\2.0.3428.28327__90ba9c70f846762e\AEM.Plugin.DPPE.Shared.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000020480 _____ () C:\windows\assembly\GAC_MSIL\AEM.Plugin.Hotkeys.Shared\2.0.3428.28304__90ba9c70f846762e\AEM.Plugin.Hotkeys.Shared.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000016384 _____ () C:\windows\assembly\GAC_MSIL\AEM.Plugin.WinMessages.Shared\2.0.3428.28311__90ba9c70f846762e\AEM.Plugin.WinMessages.Shared.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000045056 _____ () C:\windows\assembly\GAC_MSIL\DEM.Graphics.I0601\2.0.2573.17685__90ba9c70f846762e\DEM.Graphics.I0601.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000016384 _____ () C:\windows\assembly\GAC_MSIL\DEM.Foundation\2.0.2573.17684__90ba9c70f846762e\DEM.Foundation.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000016384 _____ () C:\windows\assembly\GAC_MSIL\DEM.Graphics\2.0.3428.28324__90ba9c70f846762e\DEM.Graphics.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000339968 _____ () C:\windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Runtime\2.0.3503.18350__90ba9c70f846762e\CLI.Caste.Graphics.Runtime.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000098304 _____ () C:\windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Shared\2.0.3428.28305__90ba9c70f846762e\CLI.Caste.Graphics.Shared.dll
2007-10-29 23:56 - 2007-10-29 23:56 - 000016384 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0709.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000016384 _____ () C:\windows\assembly\GAC_MSIL\AEM.Plugin.GD.Shared\2.0.3428.28327__90ba9c70f846762e\AEM.Plugin.GD.Shared.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000020480 _____ () C:\windows\assembly\GAC_MSIL\AEM.Actions.CCAA.Shared\2.0.3428.28302__90ba9c70f846762e\AEM.Actions.CCAA.Shared.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000020480 _____ () C:\windows\assembly\GAC_MSIL\ResourceManagement.Foundation.Private\2.0.3428.28303__90ba9c70f846762e\ResourceManagement.Foundation.Private.dll
2008-04-04 01:29 - 2008-04-04 01:29 - 000020480 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0804.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000065536 _____ () C:\windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Runtime\2.0.3503.18419__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Runtime.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000020480 _____ () C:\windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Runtime.Shared.Private\2.0.3428.28316__90ba9c70f846762e\CLI.Caste.Graphics.Runtime.Shared.Private.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000040960 _____ () C:\windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Shared\2.0.3428.28315__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Shared.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000028672 _____ () C:\windows\assembly\GAC_MSIL\CLI.Aspect.CustomFormats.Graphics.Shared\2.0.3428.28311__90ba9c70f846762e\CLI.Aspect.CustomFormats.Graphics.Shared.dll
2009-04-22 21:13 - 2009-04-22 21:13 - 000016384 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0805.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000077824 _____ () C:\windows\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Runtime\2.0.3503.18446__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Runtime.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000016384 _____ () C:\windows\assembly\GAC_MSIL\DEM.Graphics.I0706\2.0.2743.23304__90ba9c70f846762e\DEM.Graphics.I0706.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000032768 _____ () C:\windows\assembly\GAC_MSIL\CLI.Aspect.DeviceProperty.Graphics.Shared\2.0.3428.28309__90ba9c70f846762e\CLI.Aspect.DeviceProperty.Graphics.Shared.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000065536 _____ () C:\windows\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Shared\2.0.3428.28316__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Shared.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000020480 _____ () C:\windows\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandling.Graphics.Runtime\2.0.3503.18360__90ba9c70f846762e\CLI.Aspect.HotkeysHandling.Graphics.Runtime.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000020480 _____ () C:\windows\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandling.Graphics.Shared\2.0.3428.28312__90ba9c70f846762e\CLI.Aspect.HotkeysHandling.Graphics.Shared.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000040960 _____ () C:\windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Runtime\2.0.3503.18382__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Runtime.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000028672 _____ () C:\windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Shared\2.0.3428.28313__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Shared.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000036864 _____ () C:\windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Runtime\2.0.3503.18415__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Runtime.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000024576 _____ () C:\windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Shared\2.0.3428.28314__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Shared.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000040960 _____ () C:\windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Runtime\2.0.3503.18408__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Runtime.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000053248 _____ () C:\windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Shared\2.0.3428.28314__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Shared.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000036864 _____ () C:\windows\assembly\GAC_MSIL\CLI.Aspect.DeviceProperty.Graphics.Runtime\2.0.3503.18406__90ba9c70f846762e\CLI.Aspect.DeviceProperty.Graphics.Runtime.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000032768 _____ () C:\windows\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Runtime\2.0.3503.18417__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Runtime.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000028672 _____ () C:\windows\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Shared\2.0.3428.28312__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Shared.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000061440 _____ () C:\windows\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Runtime\2.0.3503.18407__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Runtime.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000049152 _____ () C:\windows\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Shared\2.0.3428.28314__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Shared.dll
2008-01-18 20:35 - 2008-01-18 20:35 - 000016384 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0712.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000061440 _____ () C:\windows\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Runtime\2.0.3503.18426__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Runtime.dll
2008-12-30 20:04 - 2008-12-30 20:04 - 000016384 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0812.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000053248 _____ () C:\windows\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Shared\2.0.3428.28315__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Shared.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000081920 _____ () C:\windows\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Runtime\2.0.3503.18408__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Runtime.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000053248 _____ () C:\windows\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Shared\2.0.3428.28314__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Shared.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000045056 _____ () C:\windows\assembly\GAC_MSIL\CLI.Aspect.PowerPlayDPPE.Graphics.Runtime\2.0.3503.18470__90ba9c70f846762e\CLI.Aspect.PowerPlayDPPE.Graphics.Runtime.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000028672 _____ () C:\windows\assembly\GAC_MSIL\CLI.Aspect.PowerPlayDPPE.Graphics.Shared\2.0.3428.28323__90ba9c70f846762e\CLI.Aspect.PowerPlayDPPE.Graphics.Shared.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000061440 _____ () C:\windows\assembly\GAC_MSIL\APM.Server\2.0.3503.18346__90ba9c70f846762e\APM.Server.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000020480 _____ () C:\windows\assembly\GAC_MSIL\APM.Foundation\2.0.3428.28310__90ba9c70f846762e\APM.Foundation.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000007168 _____ () C:\windows\assembly\GAC_MSIL\CLI.Component.Runtime.Extension.EEU\2.0.3503.18344__90ba9c70f846762e\CLI.Component.Runtime.Extension.EEU.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000016384 _____ () C:\windows\assembly\GAC_MSIL\AEM.Plugin.REG.Shared\2.0.3428.28329__90ba9c70f846762e\AEM.Plugin.REG.Shared.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000405504 _____ () C:\windows\assembly\GAC_MSIL\CLI.Component.Wizard\2.0.3503.18368__90ba9c70f846762e\CLI.Component.Wizard.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000040960 _____ () C:\windows\assembly\GAC_MSIL\CLI.Component.Client.Shared.Private\2.0.3428.28308__90ba9c70f846762e\CLI.Component.Client.Shared.Private.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000016384 _____ () C:\windows\assembly\GAC_MSIL\AEM.Plugin.EEU.Shared\2.0.3428.28311__90ba9c70f846762e\AEM.Plugin.EEU.Shared.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000020480 _____ () C:\windows\assembly\GAC_MSIL\CLI.Component.Client.Shared\2.0.3428.28302__90ba9c70f846762e\CLI.Component.Client.Shared.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000020480 _____ () C:\windows\assembly\GAC_MSIL\CLI.Component.Wizard.Shared\2.0.3428.28308__90ba9c70f846762e\CLI.Component.Wizard.Shared.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000024576 _____ () C:\windows\assembly\GAC_MSIL\CLI.Component.Wizard.Shared.Private\2.0.3428.28311__90ba9c70f846762e\CLI.Component.Wizard.Shared.Private.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000040960 _____ () C:\windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizard\2.0.3503.18369__90ba9c70f846762e\CLI.Caste.Graphics.Wizard.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000016384 _____ () C:\windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizard.Shared\2.0.3428.28313__90ba9c70f846762e\CLI.Caste.Graphics.Wizard.Shared.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000491520 _____ () C:\windows\assembly\GAC_MSIL\CLI.Aspect.TransCode.Graphics.Wizard\2.0.3503.18471__90ba9c70f846762e\CLI.Aspect.TransCode.Graphics.Wizard.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000040960 _____ () C:\windows\assembly\GAC_MSIL\CLI.Aspect.TransCode.Graphics.Shared\2.0.3428.28324__90ba9c70f846762e\CLI.Aspect.TransCode.Graphics.Shared.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000094208 _____ () C:\windows\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Wizard\2.0.3503.18427__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Wizard.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000007168 _____ () C:\windows\assembly\GAC_MSIL\atixclib\1.0.0.0__90ba9c70f846762e\atixclib.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000409600 _____ () C:\windows\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Wizard\2.0.3503.18439__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Wizard.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000307200 _____ () C:\windows\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Wizard\2.0.3503.18383__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Wizard.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 001732608 _____ () C:\windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysManager.Graphics.Wizard\2.0.3503.18374__90ba9c70f846762e\CLI.Aspect.DisplaysManager.Graphics.Wizard.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000204800 _____ () C:\windows\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Wizard\2.0.3503.18376__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Wizard.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 001212416 _____ () C:\windows\assembly\GAC_MSIL\CLI.Component.Dashboard\2.0.3503.18356__90ba9c70f846762e\CLI.Component.Dashboard.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000024576 _____ () C:\windows\assembly\GAC_MSIL\CLI.Component.Dashboard.Shared\2.0.3428.28304__90ba9c70f846762e\CLI.Component.Dashboard.Shared.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000020480 _____ () C:\windows\assembly\GAC_MSIL\CLI.Component.Dashboard.Shared.Private\2.0.3428.28309__90ba9c70f846762e\CLI.Component.Dashboard.Shared.Private.dll
2008-12-19 00:03 - 2008-12-19 00:03 - 000020480 ____R () C:\Program Files\ATI Technologies\ATI.ACE\Branding\Branding.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000073728 _____ () C:\windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Dashboard\2.0.3503.18360__90ba9c70f846762e\CLI.Caste.Graphics.Dashboard.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000016384 _____ () C:\windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Dashboard.Shared\2.0.3428.28312__90ba9c70f846762e\CLI.Caste.Graphics.Dashboard.Shared.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000045056 _____ () C:\windows\assembly\GAC_MSIL\CLI.Aspect.Welcome.Graphics.Dashboard\2.0.3503.18472__90ba9c70f846762e\CLI.Aspect.Welcome.Graphics.Dashboard.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000196608 _____ () C:\windows\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Dashboard\2.0.3503.18376__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Dashboard.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000409600 _____ () C:\windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysManager.Graphics.Dashboard\2.0.3503.18363__90ba9c70f846762e\CLI.Aspect.DisplaysManager.Graphics.Dashboard.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000270336 _____ () C:\windows\assembly\GAC_MSIL\CLI.Aspect.CrossDisplay.Graphics.Dashboard\1.0.0.0__90ba9c70f846762e\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000094208 _____ () C:\windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Dashboard\2.0.3503.18415__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Dashboard.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000393216 _____ () C:\windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Dashboard\2.0.3503.18407__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Dashboard.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000315392 _____ () C:\windows\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Dashboard\2.0.3503.18417__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Dashboard.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000360448 _____ () C:\windows\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Dashboard\2.0.3503.18402__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Dashboard.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000331776 _____ () C:\windows\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Dashboard\2.0.3503.18426__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Dashboard.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000573440 _____ () C:\windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Dashboard\2.0.3503.18377__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Dashboard.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000782336 _____ () C:\windows\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Dashboard\2.0.3503.18409__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Dashboard.dll
2009-11-26 01:03 - 2009-11-26 01:03 - 000118784 _____ () C:\windows\assembly\GAC_MSIL\CLI.Aspect.PowerPlayDPPE.Graphics.Dashboard\2.0.3503.18471__90ba9c70f846762e\CLI.Aspect.PowerPlayDPPE.Graphics.Dashboard.dll
2012-09-27 10:55 - 2012-09-27 10:55 - 000086528 _____ () C:\Program Files\Hewlett-Packard\HP Support Framework\hpsa_service.exe

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:04 - 2019-03-03 03:28 - 000000830 _____ C:\windows\system32\drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files\Nokia\PC Connectivity Solution\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;c:\Program Files\Common Files\Roxio Shared\DLLShared\;c:\Program Files\Common Files\Roxio Shared\10.0\DLLShared\;C:\Program Files\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\Broadcom\Broadcom 802.11\Driver
HKU\S-1-5-21-2854377482-2471292144-1422266838-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Lucinka\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{566519FF-4B73-4C9E-AD5B-ACB7248411B9}] => (Allow) C:\Program Files\McAfee\Managed VirusScan\Agent\myAgtSvc.exe No File
FirewallRules: [{D22BC587-08D0-402F-894B-DA7B5992FCED}] => (Allow) C:\Program Files\McAfee\Managed VirusScan\Agent\myAgtSvc.exe No File
FirewallRules: [{2200C4A4-8FF8-4059-8366-601490595384}] => (Allow) C:\Program Files\Windows Live\Messenger\wlcsdk.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{D9F69308-61E3-461F-920F-4EBBA7B6FA1E}] => (Allow) C:\Program Files\Windows Live\Messenger\msnmsgr.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{87CA75B7-C908-4BD7-8662-C90E217FFFCE}] => (Allow) svchost.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [TCP Query User{DF8EC254-0FD9-45EE-A115-7377029806CD}C:\program files\internet explorer\iexplore.exe] => (Block) C:\program files\internet explorer\iexplore.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{B3B27024-CA14-4D00-9C93-628FDEE24792}C:\program files\internet explorer\iexplore.exe] => (Block) C:\program files\internet explorer\iexplore.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{716A89E4-A787-47FE-830E-34F4CF5275D6}] => (Allow) C:\Program Files\IncrediMail\Bin\ImpCnt.exe No File
FirewallRules: [{207BFAB1-CF9F-4B5E-BC20-A80A4A325E3E}] => (Allow) C:\Program Files\IncrediMail\Bin\ImpCnt.exe No File
FirewallRules: [{877EF1C7-1256-42F2-8D93-0F8549357FA1}] => (Allow) C:\Program Files\IncrediMail\Bin\ImApp.exe No File
FirewallRules: [{CF0F99DC-BAC3-4FF2-A664-7867BF9A2C02}] => (Allow) C:\Program Files\IncrediMail\Bin\ImApp.exe No File
FirewallRules: [{47A496BD-1231-4A6A-BCC0-73FD909140A2}] => (Allow) C:\Program Files\IncrediMail\Bin\IncMail.exe No File
FirewallRules: [{5DAF3831-0905-43A6-9BA7-CA75D9CC54C6}] => (Allow) C:\Program Files\IncrediMail\Bin\IncMail.exe No File
FirewallRules: [{92575574-84AF-4BC7-94C4-F225FEC01D10}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [TCP Query User{0D06BFFB-3B68-46F8-8746-34905EBDDCC7}C:\program files\activision\call of duty 2\cod2mp_s.exe] => (Block) C:\program files\activision\call of duty 2\cod2mp_s.exe () [File not signed]
FirewallRules: [UDP Query User{156DB762-EEC4-4CA9-BCFE-8161A9EE5A6C}C:\program files\activision\call of duty 2\cod2mp_s.exe] => (Block) C:\program files\activision\call of duty 2\cod2mp_s.exe () [File not signed]
FirewallRules: [{D4122FAE-4D4F-488F-94F7-4F587E15468F}] => (Allow) C:\Program Files\Samsung\Samsung New PC Studio\npsasvr.exe (PeeringPortal) [File not signed]
FirewallRules: [{9B9D42E3-CE4F-4D20-A07E-8AA61099D452}] => (Allow) C:\Program Files\Samsung\Samsung New PC Studio\npsasvr.exe (PeeringPortal) [File not signed]
FirewallRules: [{D952952B-6888-4AF0-9DF7-2255232ACE53}] => (Allow) C:\Program Files\Samsung\Samsung New PC Studio\npsvsvr.exe (PeeringPortal) [File not signed]
FirewallRules: [{C01D2F8B-57F0-443B-9026-68D9D435683A}] => (Allow) C:\Program Files\Samsung\Samsung New PC Studio\npsvsvr.exe (PeeringPortal) [File not signed]
FirewallRules: [TCP Query User{41BBC1B4-5499-452C-ADCC-3DFE41B89D97}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe (Wargaming.net LLP -> Wargaming.net) [File not signed]
FirewallRules: [UDP Query User{D925AD4E-99DD-432B-A120-C5E6B2FF883E}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe (Wargaming.net LLP -> Wargaming.net) [File not signed]
FirewallRules: [TCP Query User{2C0BF016-970E-4D6D-8E0E-2A3F9D3B0C74}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe (Wargaming.net LLP -> Wargaming.net) [File not signed]
FirewallRules: [UDP Query User{C08E3304-BBA7-411C-8DEA-03FF77A9F4D3}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe (Wargaming.net LLP -> Wargaming.net) [File not signed]
FirewallRules: [TCP Query User{9A5FFC81-1A33-464F-9364-CDB5805EAF4C}C:\program files\spyware terminator\spywareterminatorupdate.exe] => (Block) C:\program files\spyware terminator\spywareterminatorupdate.exe No File
FirewallRules: [UDP Query User{F0F3D4CD-B44D-4CD0-B96E-9A8A06A67B5D}C:\program files\spyware terminator\spywareterminatorupdate.exe] => (Block) C:\program files\spyware terminator\spywareterminatorupdate.exe No File
FirewallRules: [{D993058E-F709-4E5C-AB9F-452A41DF5283}] => (Allow) C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{20B16543-003C-4A28-A53B-F47F277B0F32}] => (Allow) C:\Users\Lucinka\AppData\Local\Facebook\Video\Skype\FacebookVideoCalling.exe (Skype Software Sarl -> Skype Limited)
FirewallRules: [{FF64AD89-D9BF-4F24-87C5-4AF71A0702E3}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{B17E5615-DF0A-46EE-BD55-7B8FD9D2225C}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{96146453-1C50-4E2F-A976-3007CC38BA5B}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{9EBDEF64-4527-4C14-AE83-ED10B19EE9FA}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{1F897AA5-5F98-41D4-B11A-61AD4C473C63}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{20DAC6AB-C526-4909-AF23-1D1037E58559}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{8879EB9E-DD0B-41CB-AD18-0C38FE721699}] => (Allow) C:\Program Files\Alwil Software\Avast5\AvEmUpdate.exe (AVAST Software s.r.o. -> AVAST Software)
FirewallRules: [{DDFC7135-73C7-42E4-A52B-87DDC5C862A3}] => (Allow) C:\Program Files\Alwil Software\Avast5\AvEmUpdate.exe (AVAST Software s.r.o. -> AVAST Software)
FirewallRules: [{FE195D1D-6287-4457-86AA-6B18A4D4B062}] => (Allow) C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe (AVAST Software s.r.o. -> AVAST Software)
FirewallRules: [{87FAEDF3-8D2F-4C4D-9D62-A29B153CB77C}] => (Allow) C:\Program Files\Alwil Software\Avast5\AvEmUpdate.exe (AVAST Software s.r.o. -> AVAST Software)
FirewallRules: [{0CC856AE-6BD6-4CB8-A204-2CA1F19B6412}] => (Allow) C:\Program Files\Alwil Software\Avast5\AvEmUpdate.exe (AVAST Software s.r.o. -> AVAST Software)
FirewallRules: [{E982C0E9-4C42-4DDD-8172-8EB952043B78}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.)

==================== Restore Points =========================

04-02-2019 08:27:58 Windows Zálohování
11-02-2019 06:32:54 Windows Zálohování
18-02-2019 07:15:36 Windows Zálohování
25-02-2019 07:33:24 Windows Zálohování
03-03-2019 19:58:31 Windows Zálohování

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (03/04/2019 05:57:06 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (03/04/2019 04:57:07 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (03/04/2019 03:57:06 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (03/04/2019 02:57:06 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (03/04/2019 01:57:06 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (03/04/2019 12:57:06 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (03/04/2019 11:57:06 AM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (03/04/2019 10:57:06 AM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.


System errors:
=============
Error: (03/03/2019 07:58:12 PM) (Source: atikmdag) (EventID: 10261) (User: )
Description: Display is not active

Error: (03/03/2019 05:16:42 PM) (Source: atikmdag) (EventID: 10261) (User: )
Description: Display is not active

Error: (03/03/2019 04:16:00 PM) (Source: atikmdag) (EventID: 10261) (User: )
Description: Display is not active

Error: (03/03/2019 03:22:56 PM) (Source: atikmdag) (EventID: 10261) (User: )
Description: Display is not active

Error: (03/03/2019 01:08:13 PM) (Source: atikmdag) (EventID: 10261) (User: )
Description: Display is not active

Error: (03/03/2019 12:36:34 PM) (Source: atikmdag) (EventID: 10261) (User: )
Description: Display is not active

Error: (03/03/2019 10:59:56 AM) (Source: atikmdag) (EventID: 10261) (User: )
Description: Display is not active

Error: (03/03/2019 10:28:00 AM) (Source: atikmdag) (EventID: 10261) (User: )
Description: Display is not active


Windows Defender:
===================================
Date: 2012-08-31 10:56:14.799
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání:{0255CCCF-2F3D-4829-8ED4-8E86EAF6F912}
Typ prohledávání:Antispywarový program
Parametry prohledávání:Rychlé prohledávání
Uživatel:NT AUTHORITY\NETWORK SERVICE

Date: 2016-03-22 18:14:17.060
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci.
Nová verze podpisu:
Předchozí verze podpisu:1.213.7574.0
Zdroj aktualizace:Složka aktualizace podpisů
Typ podpisu:Antispywarový program
Typ aktualizace:Úplné
Uživatel:NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu:1.1.12400.0
Kód chyby:0x80070002
Popis chyby:Systém nemůže nalézt uvedený soubor.

Date: 2016-03-22 18:14:17.060
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci modulu
Nová verze modulu:
Předchozí verze modulu:1.1.12400.0
Zdroj aktualizace:Složka aktualizace podpisů
Uživatel:NT AUTHORITY\SYSTEM
Kód chyby:0x80070002
Popis chyby:Systém nemůže nalézt uvedený soubor.

Date: 2016-03-22 15:26:30.648
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci.
Nová verze podpisu:
Předchozí verze podpisu:1.213.7574.0
Zdroj aktualizace:Složka aktualizace podpisů
Typ podpisu:Antispywarový program
Typ aktualizace:Úplné
Uživatel:NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu:1.1.12400.0
Kód chyby:0x80070002
Popis chyby:Systém nemůže nalézt uvedený soubor.

Date: 2016-03-22 15:26:30.648
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci modulu
Nová verze modulu:
Předchozí verze modulu:1.1.12400.0
Zdroj aktualizace:Složka aktualizace podpisů
Uživatel:NT AUTHORITY\SYSTEM
Kód chyby:0x80070002
Popis chyby:Systém nemůže nalézt uvedený soubor.

Date: 2015-11-28 10:42:10.269
Description:
Prohledávání Windows Defender zjistilo chybu při pokusu o načtení podpisů a pokusí se o obnovení sady podpisů, jejichž správnost je potvrzena.
Podpisy, které se měly načíst:Aktuální
Kód chyby:0x80070002
Popis chyby:Systém nemůže nalézt uvedený soubor.
Verze podpisu:0.0.0.0
Verze modulu:0.0.0.0

==================== Memory info ===========================

Processor: Intel(R) Core(TM)2 Duo CPU T5870 @ 2.00GHz
Percentage of memory in use: 76%
Total physical RAM: 3066.27 MB
Available physical RAM: 705.34 MB
Total Virtual: 6130.85 MB
Available Virtual: 3554.38 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:280.8 GB) (Free:190.83 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive e: (HP_TOOLS) (Fixed) (Total:1.99 GB) (Free:1.92 GB) FAT32

\\?\Volume{962523f1-da1e-11de-84e6-806e6f6e6963}\ (SYSTEM) (Fixed) (Total:0.29 GB) (Free:0.25 GB) NTFS
\\?\Volume{962523f3-da1e-11de-84e6-806e6f6e6963}\ (HP_RECOVERY) (Fixed) (Total:15 GB) (Free:8 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 298.1 GB) (Disk ID: DCB86D34)
Partition 1: (Active) - (Size=300 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=280.8 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=15 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=2 GB) - (Type=0C)

==================== End of Addition.txt ============================

ebola
Návštěvník
Návštěvník
Příspěvky: 146
Registrován: 31 kvě 2007 07:07

Re: prosim o kontrolu logu...zpomalení notebooku

#6 Příspěvek od ebola »

# -------------------------------
# Malwarebytes AdwCleaner 7.2.7.0
# -------------------------------
# Build: 01-30-2019
# Database: 2019-03-04.2 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 03-04-2019
# Duration: 00:00:17
# OS: Windows 7 Home Premium
# Scanned: 31858
# Detected: 0


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

No malicious registry entries found.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.


AdwCleaner[S00].txt - [3084 octets] - [03/03/2019 08:25:11]
AdwCleaner[C00].txt - [2902 octets] - [03/03/2019 08:26:09]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S01].txt ##########

Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: prosim o kontrolu logu...zpomalení notebooku

#7 Příspěvek od Conder »

:arrow: Z FRST je potrebne poslat obidva logy (FRST.txt aj Addition.txt). V prispevku mas iba Addition.txt. Log z AdwCleaneru uz naopak netreba (kedze s nim sme uz preskenovali a precistili PC na zaciatku).
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!

ebola
Návštěvník
Návštěvník
Příspěvky: 146
Registrován: 31 kvě 2007 07:07

Re: prosim o kontrolu logu...zpomalení notebooku

#8 Příspěvek od ebola »

zdravim...nějak sem to pomotal :)

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 03-03-2019 01
Ran by Lucinka (administrator) on HP (04-03-2019 18:24:15)
Running from C:\Users\Lucinka\Downloads
Loaded Profiles: Lucinka (Available Profiles: Lucinka)
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: "C:\Users\Lucinka\AppData\Roaming\Seznam Browser\Seznam.cz.exe"-surl="%1")
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Hewlett-Packard Company -> Hewlett-Packard) C:\Windows\System32\hpservice.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
(Microsoft Windows Hardware Compatibility Publisher -> Andrea Electronics Corporation) C:\Windows\System32\AEADISRV.EXE
(Microsoft Windows Hardware Compatibility Publisher -> LSI Corporation) C:\Program Files\LSI SoftModem\agrsmsvc.exe
(Broadcom Corporation -> Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Teruten) [File not signed] C:\Windows\System32\FsUsbExService.Exe
(Hewlett-Packard Company) [File not signed] C:\Program Files\Common Files\LightScribe\LSSrvc.exe
(PDF Complete -> PDF Complete Inc) C:\Program Files\PDF Complete\pdfsvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Browser\Update\1.4.154.333\AvastBrowserCrashHandler.exe
(PS Media s.r.o. -> PS Media s.r.o.) C:\Windows\System32\ssins.exe
(Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCtrl.exe
(Intel Corporation -> Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
(Intel Corporation -> Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
(Hewlett-Packard Company -> Hewlett-Packard) C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\VolCtrl.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Nokia) [File not signed] C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer.exe
(Microsoft Windows Hardware Compatibility Publisher -> Analog Devices, Inc.) C:\Program Files\Analog Devices\Core\smax4pnp.exe
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Hewlett-Packard Company -> Hewlett-Packard) C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe
(Hewlett-Packard Company) [File not signed] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
(Samsung Electronics Co., Ltd.) [File not signed] C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe
(Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\Alwil Software\Avast5\aswidsagent.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\Alwil Software\Avast5\AvastUI.exe
(Advanced Micro Devices Inc.) [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(ATI Technologies Inc.) [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Hewlett-Packard Company -> ) C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe
(Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
(Hewlett-Packard Company) [File not signed] C:\Program Files\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [QlbCtrl.exe] => C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [288312 2009-07-27] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.)
HKLM\...\Run: [IAAnotif] => C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [186904 2009-08-25] (Intel Corporation -> Intel Corporation)
HKLM\...\Run: [PDF Complete] => C:\Program Files\PDF Complete\pdfsty.exe [563736 2009-06-18] (PDF Complete -> PDF Complete Inc)
HKLM\...\Run: [WirelessAssistant] => C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [498744 2009-07-23] (Hewlett-Packard Company -> Hewlett-Packard)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1545512 2009-07-30] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [StartCCC] => C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2009-08-04] (Advanced Micro Devices, Inc.) [File not signed]
HKLM\...\Run: [SoundMAX] => C:\Program Files\Analog Devices\SoundMAX\soundmax.exe [3866624 2009-05-18] (Analog Devices, Inc.) [File not signed]
HKLM\...\Run: [NeroFilterCheck] => C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [153136 2007-03-01] (Nero AG -> Nero AG)
HKLM\...\Run: [NetFxUpdate_v1.1.4322] => C:\Windows\Microsoft.NET\Framework\v1.1.4322\netfxupdate.exe [106496 2004-08-10] (Microsoft) [File not signed]
HKLM\...\Run: [NokiaMServer] => C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles
HKLM\...\Run: [NokiaMusic FastStart] => C:\Program Files\Nokia\Nokia Music\NokiaMusic.exe [2331936 2009-07-22] (Nokia -> Nokia)
HKLM\...\Run: [SoundMAXPnP] => C:\Program Files\Analog Devices\Core\smax4pnp.exe [1314816 2009-05-18] (Microsoft Windows Hardware Compatibility Publisher -> Analog Devices, Inc.)
HKLM\...\Run: [NPSStartup] => [X]
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Alwil Software\Avast5\AvLaunch.exe [221576 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2014-12-19] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-2854377482-2471292144-1422266838-1001\...\Run: [HPADVISOR] => C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe [1668664 2009-07-16] (Hewlett-Packard Company -> Hewlett-Packard)
HKU\S-1-5-21-2854377482-2471292144-1422266838-1001\...\Run: [LightScribe Control Panel] => C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2363392 2009-06-17] (Hewlett-Packard Company) [File not signed]
HKU\S-1-5-21-2854377482-2471292144-1422266838-1001\...\Run: [IncrediMail] => C:\Program Files\IncrediMail\bin\IncMail.exe /c
HKU\S-1-5-21-2854377482-2471292144-1422266838-1001\...\Run: [AutoStartNPSAgent] => C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe [102400 2009-04-02] (Samsung Electronics Co., Ltd.) [File not signed]
HKU\S-1-5-21-2854377482-2471292144-1422266838-1001\...\Run: [Facebook Update] => C:\Users\Lucinka\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2012-07-12] (Facebook, Inc. -> Facebook Inc.)
HKU\S-1-5-21-2854377482-2471292144-1422266838-1001\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [30872168 2014-12-11] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-2854377482-2471292144-1422266838-1001\...\MountPoints2: {e32a091e-2c66-11e0-ba95-00247ef7aec9} - D:\AutoRun.exe
HKLM\Software\Microsoft\Active Setup\Installed Components: [{10880D85-AAD9-4558-ABDC-2AB1552D831F}] -> C:\Program Files\Common Files\LightScribe\LSRunOnce.exe [2009-06-17] (Hewlett-Packard Company -> Hewlett-Packard Company)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\windows\system32\cmd.exe /D /C start C:\windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> C:\Program Files\AVAST Software\Browser\Application\71.0.1037.98\Installer\chrmstp.exe [2019-01-16] (AVAST Software s.r.o. -> AVAST Software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\72.0.3626.119\Installer\chrmstp.exe [2019-02-26] (Google LLC -> Google Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{07AA0886-CC8D-4e19-A410-1C75AF686E62}] -> C:\Windows\System32\l2nacp.dll [2009-07-14] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{33c86cd6-705f-4ba1-9adb-67070b837775}] -> C:\Windows\System32\l2nacp.dll [2009-07-14] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{50968FF7-10C1-4fb3-98B0-CD654D6CB97E}] -> C:\Program Files\WIDCOMM\Bluetooth Software\\BtwCP.dll [2009-07-30] (Broadcom Corporation -> Broadcom Corporation.)
HKLM\Software\...\Authentication\Credential Provider Filters: [{edd749de-2ef1-4a80-98d1-81f20e6df58e}] -> C:\Windows\System32\l2nacp.dll [2009-07-14] (Microsoft Windows -> Microsoft Corporation)
BootExecute: autocheck autochk * C:\PROGRA~2\SPYWAR~1\st_rsdel.exe "\??\C:\ProgramData\Spyware Terminator\st_rsdel.dat"

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{418BB993-84E9-4BFB-831F-6F9E0F9E5422}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{FB22F6A6-3CB5-49E5-8BD1-C7C7F538D972}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKU\S-1-5-21-2854377482-2471292144-1422266838-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=cs_CZ&c=92&bd=all&pf=cmnb
HKU\S-1-5-21-2854377482-2471292144-1422266838-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.seznam.cz/
hxxp://www.seznam.cz/
BHO: No Name -> {5C255C8A-E604-49b4-9D64-90988571CECB} -> No File
BHO: Pomocník pro přihlášení ke službě Windows Live -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-02-17] (Microsoft Corporation -> Microsoft Corporation)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-02] (Google Inc -> Google Inc.)
BHO: Skype Browser Helper -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2011-10-10] (Skype Technologies SA -> Skype Technologies S.A.)
Toolbar: HKLM - No Name - {0BF43445-2F28-4351-9252-17FE6E806AA0} - No File
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-02] (Google Inc -> Google Inc.)
Toolbar: HKU\S-1-5-21-2854377482-2471292144-1422266838-1001 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-02] (Google Inc -> Google Inc.)
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8050.1202.dll [2008-12-02] (Microsoft Corporation -> Microsoft Corporation)
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8050.1202.dll [2008-12-02] (Microsoft Corporation -> Microsoft Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2011-10-10] (Skype Technologies SA -> Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Software Sarl -> Skype Technologies)

FireFox:
========
FF DefaultProfile: fs479jo3.default-1546575944067
FF ProfilePath: C:\Users\Lucinka\AppData\Roaming\Mozilla\Firefox\Profiles\fs479jo3.default-1546575944067 [2019-03-03]
FF Extension: (Avast Online Security) - C:\Users\Lucinka\AppData\Roaming\Mozilla\Firefox\Profiles\fs479jo3.default-1546575944067\Extensions\wrc@avast.com.xpi [2019-03-02]
FF Extension: (Telemetry coverage) - C:\Users\Lucinka\AppData\Roaming\Mozilla\Firefox\Profiles\fs479jo3.default-1546575944067\features\{772a7e08-f103-4218-b979-3a49682d7757}\telemetry-coverage-bug1487578@mozilla.org.xpi [2019-03-02] [Legacy]
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF32_32_0_0_142.dll [2019-02-12] (Adobe Systems Incorporated -> )
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-20] (Google Inc -> Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-20] (Google Inc -> Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-06-29] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2854377482-2471292144-1422266838-1001: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\Lucinka\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [2014-07-24] (Skype Software Sarl -> Skype Limited)

Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www.google.com
CHR StartupUrls: Default -> "hxxps://www.google.com/"
CHR Profile: C:\Users\Lucinka\AppData\Local\Google\Chrome\User Data\Default [2019-03-04]
CHR Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\Lucinka\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2019-03-02]
CHR Extension: (Procházení pomocí kurzoru) - C:\Users\Lucinka\AppData\Local\Google\Chrome\User Data\Default\Extensions\fklpgenihifpccgiifchnihilipmbffg [2018-09-03]
CHR Extension: (Skype) - C:\Users\Lucinka\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2018-09-03]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Lucinka\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-09-03]
CHR Extension: (Chrome Media Router) - C:\Users\Lucinka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-03-02]
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\Alwil Software\Avast5\WebRep\Chrome\aswWebRepChromeSp.crx <not found>
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\Alwil Software\Avast5\WebRep\Chrome\aswWebRepChrome.crx <not found>
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2011-10-10]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AEADIFilters; C:\windows\system32\AEADISRV.EXE [90112 2008-07-15] (Microsoft Windows Hardware Compatibility Publisher -> Andrea Electronics Corporation)
R2 AgereModemAudio; C:\Program Files\LSI SoftModem\agrsmsvc.exe [14336 2009-07-27] (Microsoft Windows Hardware Compatibility Publisher -> LSI Corporation)
R2 AMD External Events Utility; C:\windows\system32\atiesrxx.exe [176128 2009-08-04] (Microsoft Windows Hardware Compatibility Publisher -> AMD)
R3 aswbIDSAgent; C:\Program Files\Alwil Software\Avast5\aswidsagent.exe [5458712 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-07-14] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [309480 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-07-14] (AVAST Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files\AVAST Software\Browser\Application\71.0.1037.98\elevation_service.exe [390552 2019-01-09] (AVAST Software s.r.o. -> AVAST Software)
R2 FsUsbExService; C:\windows\system32\FsUsbExService.Exe [233472 2009-03-31] (Teruten) [File not signed]
S2 gupdate1ca711254f1434f; C:\Program Files\Google\Update\GoogleUpdate.exe [144200 2015-09-02] (Google Inc -> Google Inc.)
R2 HP Support Assistant Service; C:\Program Files\Hewlett-Packard\HP Support Framework\hpsa_service.exe [86528 2012-09-27] (Hewlett-Packard Company) [File not signed]
R2 LightScribeService; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [73728 2009-06-17] (Hewlett-Packard Company) [File not signed]
R2 pdfcDispatcher; C:\Program Files\PDF Complete\pdfsvc.exe [635416 2009-06-18] (PDF Complete -> PDF Complete Inc)
S3 ServiceLayer; C:\Program Files\Nokia\PC Connectivity Solution\ServiceLayer.exe [637952 2009-06-02] (Nokia.) [File not signed]
R2 ssinstall; C:\windows\System32\ssins.exe [4696960 2016-11-29] (PS Media s.r.o. -> PS Media s.r.o.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
R2 yksvc; C:\windows\System32\yk62x86.dll [282624 2009-07-20] (Microsoft Windows Hardware Compatibility Publisher -> Marvell)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 5U876UVC; C:\windows\System32\DRIVERS\5U876.sys [118656 2009-06-30] (Microsoft Windows Hardware Compatibility Publisher -> Ricoh co.,Ltd.)
R3 Accelerometer; C:\windows\system32\DRIVERS\Accelerometer.sys [33848 2009-07-08] (Hewlett-Packard Company -> Hewlett-Packard)
R3 ADIHdAudAddService; C:\windows\System32\drivers\ADIHdAud.sys [381440 2009-05-18] (Microsoft Windows Hardware Compatibility Publisher -> Analog Devices, Inc.)
R3 AgereSoftModem; C:\windows\System32\DRIVERS\AGRSM.sys [1161664 2009-07-27] (Microsoft Windows Hardware Compatibility Publisher -> LSI Corporation)
R0 aswArDisk; C:\windows\System32\drivers\aswArDisk.sys [34488 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\windows\System32\drivers\aswArPot.sys [171128 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\windows\System32\drivers\aswbidsdriver.sys [188784 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\windows\System32\drivers\aswbidsh.sys [158096 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
R0 aswblog; C:\windows\System32\drivers\aswblog.sys [255224 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\windows\System32\drivers\aswbuniv.sys [51128 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
R1 aswHdsKe; C:\windows\System32\drivers\aswHdsKe.sys [188712 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\windows\System32\drivers\aswKbd.sys [40688 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\windows\System32\drivers\aswMonFlt.sys [139296 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\windows\System32\drivers\aswRdr2.sys [100984 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\windows\System32\drivers\aswRvrt.sys [72800 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\windows\System32\drivers\aswSnx.sys [785584 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSP; C:\windows\System32\drivers\aswSP.sys [401632 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
R2 aswStm; C:\windows\System32\drivers\aswStm.sys [162632 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\windows\System32\drivers\aswVmm.sys [310200 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
R3 atikmdag; C:\windows\System32\DRIVERS\atikmdag.sys [4994048 2009-08-04] (Microsoft Windows Hardware Compatibility Publisher -> ATI Technologies Inc.)
R3 BCM43XX; C:\windows\System32\DRIVERS\bcmwl6.sys [2506232 2009-11-25] (Broadcom Corporation -> Broadcom Corporation)
S3 btwaudio; C:\windows\System32\drivers\btwaudio.sys [86056 2009-07-01] (Broadcom Corporation -> Broadcom Corporation.)
S3 btwavdt; C:\windows\System32\DRIVERS\btwavdt.sys [108072 2009-07-01] (Broadcom Corporation -> Broadcom Corporation.)
S3 btwl2cap; C:\windows\System32\DRIVERS\btwl2cap.sys [29472 2009-04-08] (Broadcom Corporation -> Broadcom Corporation.)
S3 btwrchid; C:\windows\System32\DRIVERS\btwrchid.sys [18344 2009-07-01] (Broadcom Corporation -> Broadcom Corporation.)
U5 ewusbnet; C:\Windows\System32\Drivers\ewusbnet.sys [198656 2009-12-15] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R3 FsUsbExDisk; C:\windows\system32\FsUsbExDisk.SYS [36608 2009-03-31] () [File not signed]
R0 hpdskflt; C:\windows\System32\DRIVERS\hpdskflt.sys [25656 2009-07-08] (Hewlett-Packard Company -> Hewlett-Packard)
R3 HpqKbFiltr; C:\windows\system32\DRIVERS\HpqKbFiltr.sys [15872 2009-04-29] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Development Company, L.P.)
S3 Huawei; C:\windows\System32\DRIVERS\ewdcsc.sys [23424 2009-12-15] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Tech. Co., Ltd.)
S3 hwdatacard; C:\windows\System32\DRIVERS\ewusbmdm.sys [102912 2009-12-15] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 hwusbdev; C:\windows\System32\DRIVERS\ewusbdev.sys [101120 2009-12-15] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 k750bus; C:\windows\System32\DRIVERS\k750bus.sys [55216 2005-02-11] (Microsoft Windows Hardware Compatibility Publisher -> MCCI)
S3 MfeAVFK; C:\windows\System32\drivers\MfeAVFK.sys [79816 2009-05-16] (McAfee, Inc. -> McAfee, Inc.)
S3 MfeBOPK; C:\windows\System32\drivers\MfeBOPK.sys [35272 2009-05-16] (McAfee, Inc. -> McAfee, Inc.)
R1 mfehidk; C:\windows\System32\drivers\mfehidk.sys [214024 2009-05-16] (McAfee, Inc. -> McAfee, Inc.)
S3 MfeRKDK; C:\windows\System32\drivers\MfeRKDK.sys [34248 2009-05-16] (McAfee, Inc. -> McAfee, Inc.)
R1 mfetdik; C:\windows\System32\drivers\mfetdik.sys [55336 2009-05-16] (McAfee, Inc. -> McAfee, Inc.)
S3 nmwcd; C:\windows\System32\drivers\ccdcmb.sys [17664 2009-02-09] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S3 nmwcdc; C:\windows\System32\drivers\ccdcmbo.sys [22016 2009-02-09] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S3 pccsmcfd; C:\windows\System32\DRIVERS\pccsmcfd.sys [18816 2008-08-26] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S3 Ser2plx86; C:\windows\System32\DRIVERS\ser2pl.sys [132608 2012-07-30] (Microsoft Windows Hardware Compatibility Publisher -> Prolific Technology Inc.)
S3 upperdev; C:\windows\System32\DRIVERS\usbser_lowerflt.sys [7808 2009-02-09] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
R3 yukonw7; C:\windows\System32\DRIVERS\yk62x86.sys [313856 2009-07-20] (Microsoft Windows Hardware Compatibility Publisher -> Marvell)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-03-04 18:23 - 2019-03-04 18:23 - 007316688 _____ (Malwarebytes) C:\Users\Lucinka\Downloads\adwcleaner_7.2.7.0 (1).exe
2019-03-04 18:23 - 2019-03-04 18:23 - 000000000 ____D C:\Users\Lucinka\Downloads\FRST-OlderVersion
2019-03-03 08:24 - 2019-03-03 08:25 - 000000000 ____D C:\AdwCleaner
2019-03-03 08:23 - 2019-03-03 08:23 - 007316688 _____ (Malwarebytes) C:\Users\Lucinka\Downloads\adwcleaner_7.2.7.0.exe
2019-03-02 21:57 - 2019-03-02 22:31 - 000069589 _____ C:\Users\Lucinka\Downloads\Addition.txt
2019-03-02 21:55 - 2019-03-04 18:25 - 000025560 _____ C:\Users\Lucinka\Downloads\FRST.txt
2019-03-02 21:55 - 2019-03-04 18:24 - 000000000 ____D C:\FRST
2019-03-02 21:51 - 2019-03-04 18:23 - 001793024 _____ (Farbar) C:\Users\Lucinka\Downloads\FRST.exe
2019-02-20 15:07 - 2019-02-27 14:07 - 000000000 ____D C:\Users\Lucinka\AppData\Roaming\Seznam Browser
2019-02-20 07:05 - 2019-02-20 07:05 - 000188712 _____ (AVAST Software) C:\windows\system32\Drivers\aswHdsKe.sys
2019-02-20 07:04 - 2019-02-20 07:04 - 000047720 _____ () C:\windows\system32\Drivers\staport.sys
2019-02-20 07:03 - 2019-02-20 07:02 - 000310664 _____ (AVAST Software) C:\windows\system32\aswBoot.exe
2019-02-19 13:09 - 2019-02-19 13:10 - 000143272 _____ C:\windows\Minidump\021919-23805-01.dmp
2019-02-12 13:07 - 2019-02-12 13:07 - 000143272 _____ C:\windows\Minidump\021219-21777-01.dmp

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-03-04 18:11 - 2011-10-20 11:01 - 000000990 _____ C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2854377482-2471292144-1422266838-1001UA.job
2019-03-04 16:47 - 2009-07-14 05:34 - 000023024 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2019-03-04 16:47 - 2009-07-14 05:34 - 000023024 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2019-03-04 12:11 - 2011-10-20 11:01 - 000000968 _____ C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2854377482-2471292144-1422266838-1001Core.job
2019-03-03 19:58 - 2009-11-29 17:15 - 000000000 ____D C:\Users\Lucinka\AppData\Roaming\Skype
2019-03-03 08:30 - 2018-07-14 07:51 - 000000000 ____D C:\Users\Lucinka\AppData\Local\AVAST Software
2019-03-03 08:27 - 2016-05-31 09:44 - 000065536 _____ C:\windows\system32\Ikeext.etl
2019-03-03 08:27 - 2009-07-14 05:53 - 000000006 ____H C:\windows\Tasks\SA.DAT
2019-03-03 08:16 - 2016-12-31 10:04 - 000000000 ____D C:\Users\Lucinka\AppData\LocalLow\Mozilla
2019-03-03 08:08 - 2017-02-26 18:37 - 000000000 ____D C:\Program Files\Mozilla Firefox
2019-03-03 08:08 - 2012-08-28 10:14 - 000000000 ____D C:\Program Files\Mozilla Maintenance Service
2019-03-03 03:53 - 2012-08-28 10:14 - 000000000 ____D C:\ProgramData\Mozilla
2019-03-03 03:46 - 2009-07-14 03:37 - 000000000 ____D C:\windows\tracing
2019-03-03 03:20 - 2009-09-20 08:18 - 000000000 ____D C:\ProgramData\PDFC
2019-02-26 09:42 - 2009-11-29 17:38 - 000002170 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-02-26 09:42 - 2009-11-29 17:38 - 000002129 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-02-20 07:06 - 2009-11-28 15:07 - 000401632 _____ (AVAST Software) C:\windows\system32\Drivers\aswSP.sys
2019-02-20 07:02 - 2019-01-16 14:04 - 000188784 _____ (AVAST Software) C:\windows\system32\Drivers\aswbidsdriver.sys
2019-02-20 07:02 - 2019-01-16 14:03 - 000255224 _____ (AVAST Software) C:\windows\system32\Drivers\aswblog.sys
2019-02-20 07:02 - 2019-01-16 14:03 - 000158096 _____ (AVAST Software) C:\windows\system32\Drivers\aswbidsh.sys
2019-02-20 07:02 - 2019-01-16 14:03 - 000051128 _____ (AVAST Software) C:\windows\system32\Drivers\aswbuniv.sys
2019-02-20 07:02 - 2019-01-16 14:03 - 000034488 _____ (AVAST Software) C:\windows\system32\Drivers\aswArDisk.sys
2019-02-20 07:02 - 2018-10-24 14:39 - 000040688 _____ (AVAST Software) C:\windows\system32\Drivers\aswKbd.sys
2019-02-20 07:02 - 2018-06-03 20:19 - 000171128 _____ (AVAST Software) C:\windows\system32\Drivers\aswArPot.sys
2019-02-20 07:02 - 2014-12-13 09:55 - 000162632 _____ (AVAST Software) C:\windows\system32\Drivers\aswStm.sys
2019-02-20 07:02 - 2013-05-25 16:31 - 000310200 _____ (AVAST Software) C:\windows\system32\Drivers\aswVmm.sys
2019-02-20 07:02 - 2013-05-25 16:31 - 000072800 _____ (AVAST Software) C:\windows\system32\Drivers\aswRvrt.sys
2019-02-20 07:02 - 2012-08-01 07:25 - 000100984 _____ (AVAST Software) C:\windows\system32\Drivers\aswRdr2.sys
2019-02-20 07:02 - 2012-01-03 23:17 - 000785584 _____ (AVAST Software) C:\windows\system32\Drivers\aswSnx.sys
2019-02-20 07:02 - 2009-11-28 15:07 - 000139296 _____ (AVAST Software) C:\windows\system32\Drivers\aswMonFlt.sys
2019-02-19 13:09 - 2011-09-09 22:26 - 365968686 _____ C:\windows\MEMORY.DMP
2019-02-19 13:09 - 2011-09-09 22:26 - 000000000 ____D C:\windows\Minidump
2019-02-12 18:31 - 2012-08-12 14:28 - 000842240 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerApp.exe
2019-02-12 18:31 - 2012-02-05 17:46 - 000175104 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerCPLApp.cpl
2019-02-12 18:31 - 2009-09-20 08:18 - 000000000 ____D C:\windows\system32\Macromed

==================== Files in the root of some directories =======

2018-06-03 15:18 - 2018-06-03 15:18 - 007649280 _____ () C:\Program Files\GUT362D.tmp
2018-02-12 15:54 - 2018-02-12 15:54 - 007649280 _____ () C:\Program Files\GUT928F.tmp
2011-03-16 16:24 - 2012-04-24 09:05 - 000001849 _____ () C:\Users\Lucinka\AppData\Roaming\GhostObjGAFix.xml
2009-11-25 18:34 - 2009-11-25 18:34 - 000000000 _____ () C:\Users\Lucinka\AppData\Local\AtStart.txt
2009-11-25 18:34 - 2009-11-25 18:34 - 000000000 _____ () C:\Users\Lucinka\AppData\Local\DSwitch.txt
2009-12-23 16:59 - 2009-12-23 16:59 - 000000095 _____ () C:\Users\Lucinka\AppData\Local\fusioncache.dat
2009-11-25 18:34 - 2009-11-25 18:34 - 000000000 _____ () C:\Users\Lucinka\AppData\Local\QSwitch.txt
2018-09-24 16:03 - 2018-09-24 16:03 - 000000000 _____ () C:\Users\Lucinka\AppData\Local\{84B6C474-2FFF-4C62-A43C-0B7B3012F464}
2016-06-28 05:11 - 2016-06-28 05:11 - 000000000 _____ () C:\Users\Lucinka\AppData\Local\{AD27140C-0996-42D4-B0FE-F078ADE76FA0}
2018-11-22 23:05 - 2018-11-22 23:05 - 000000000 _____ () C:\Users\Lucinka\AppData\Local\{E32DFEF3-4145-446E-BDC9-CC07E51FE517}
2018-09-24 16:03 - 2018-09-24 16:03 - 000000000 _____ () C:\Users\Lucinka\AppData\Local\{F7C8B676-2569-4715-9309-23D33FB681CD}

Some files in TEMP:
====================
2015-02-01 11:37 - 2015-02-01 11:37 - 038624400 _____ (Adobe Systems Incorporated) C:\Users\Lucinka\AppData\Local\Temp\AdbeRdr11000_cs_CZ.exe
2011-01-16 13:22 - 2011-01-16 13:22 - 000005120 _____ (ALWIL Software) C:\Users\Lucinka\AppData\Local\Temp\aswV5Hlp.dll
2012-02-20 21:34 - 2012-10-02 05:30 - 000987080 _____ (McAfee, Inc.) C:\Users\Lucinka\AppData\Local\Temp\contentDATs.exe
2011-01-30 12:51 - 2009-04-02 16:07 - 000110592 ____R (Huawei Technologies Co., Ltd.) C:\Users\Lucinka\AppData\Local\Temp\DataCard_Setup.exe
2010-02-25 06:09 - 2010-02-25 06:09 - 001955784 _____ (Adobe Systems Incorporated) C:\Users\Lucinka\AppData\Local\Temp\FlashPlayerUpdate.exe
2010-08-31 19:48 - 2010-08-31 19:48 - 002826192 _____ (Adobe Systems, Inc.) C:\Users\Lucinka\AppData\Local\Temp\FlashPlayerUpdate01.exe
2009-11-29 17:38 - 2009-11-29 17:38 - 000559280 _____ () C:\Users\Lucinka\AppData\Local\Temp\GoogleChromeInstaller.exe
2009-11-29 17:15 - 2009-11-29 17:15 - 000200816 _____ (Google Inc.) C:\Users\Lucinka\AppData\Local\Temp\GoogleToolbarInstaller.exe
2009-11-25 18:28 - 2008-01-14 23:28 - 000069632 _____ (Hewlett-Packard Company) C:\Users\Lucinka\AppData\Local\Temp\HPQSi.exe
2010-04-28 18:34 - 2010-04-28 18:34 - 000001536 _____ () C:\Users\Lucinka\AppData\Local\Temp\NEventMessages.dll
2011-01-30 12:51 - 2009-03-18 11:46 - 000007168 ____R () C:\Users\Lucinka\AppData\Local\Temp\ResetDevice.exe
2012-06-27 14:34 - 2012-05-04 01:24 - 000031616 _____ (Hewlett-Packard Company) C:\Users\Lucinka\AppData\Local\Temp\Resource.exe
2010-09-17 05:49 - 2010-09-17 05:49 - 000426552 _____ (Google Inc.) C:\Users\Lucinka\AppData\Local\Temp\SearchWithGoogleUpdate.exe
2012-02-05 17:37 - 2013-01-29 18:35 - 003787456 _____ (McAfee, Inc.) C:\Users\Lucinka\AppData\Local\Temp\SecurityScan_Release.exe
2010-04-03 07:04 - 2010-04-03 07:04 - 021705696 _____ (Hewlett-Packard ) C:\Users\Lucinka\AppData\Local\Temp\sp47326.exe
2010-04-21 14:55 - 2010-04-21 14:56 - 022610224 _____ (Hewlett-Packard ) C:\Users\Lucinka\AppData\Local\Temp\sp48071.exe
2010-12-18 08:28 - 2010-12-18 08:29 - 035845112 _____ (Hewlett-Packard ) C:\Users\Lucinka\AppData\Local\Temp\sp50843.exe.exe
2012-06-27 14:32 - 2012-06-27 14:33 - 048868760 _____ (Hewlett-Packard ) C:\Users\Lucinka\AppData\Local\Temp\sp54620.exe
2013-04-14 09:42 - 2013-04-14 09:44 - 041580520 _____ (Hewlett-Packard ) C:\Users\Lucinka\AppData\Local\Temp\sp58915.exe
2014-08-18 23:00 - 2014-08-18 23:00 - 044799704 _____ (Hewlett-Packard ) C:\Users\Lucinka\AppData\Local\Temp\sp64126.exe
2015-02-01 11:36 - 2016-11-29 21:32 - 004696960 _____ (PS Media s.r.o.) C:\Users\Lucinka\AppData\Local\Temp\ssins.exe
2012-06-27 14:33 - 2013-11-04 19:15 - 000123192 _____ (Hewlett-Packard Company) C:\Users\Lucinka\AppData\Local\Temp\UninstallHPSA.exe
2010-12-18 08:29 - 2011-09-09 16:07 - 000449592 _____ (Hewlett-Packard Company) C:\Users\Lucinka\AppData\Local\Temp\UninstallHPTCA.exe
2014-06-17 14:36 - 2014-06-17 14:36 - 000000000 _____ () C:\Users\Lucinka\AppData\Local\Temp\v2tdkc0p.dll
2011-06-10 14:01 - 2011-06-10 14:01 - 000000000 _____ () C:\Users\Lucinka\AppData\Local\Temp\{AC584489-8367-46D9-B84F-39CE6B3A16C1}-chrome_installer.exe

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\windows\explorer.exe => File is digitally signed
C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\wininit.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\dnsapi.dll => File is digitally signed
C:\windows\system32\dllhost.exe => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2019-03-04 00:40

==================== End of FRST.txt ============================

Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: prosim o kontrolu logu...zpomalení notebooku

#9 Příspěvek od Conder »

:arrow: Otvor poznamkovy blok (Win+R -> notepad -> enter)
  • Skopiruj nasledujuci text a vloz ho do poznamkoveho bloku:

    Kód: Vybrat vše

    Start
    CloseProcesses:
    CreateRestorePoint:
    
    PowerShell: Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum
    File: C:\windows\system32\FsUsbExService.Exe
    File: C:\Program Files\Hewlett-Packard\HP Support Framework\hpsa_service.exe
    File: C:\Program Files\Common Files\LightScribe\LSSrvc.exe
    File: C:\Program Files\Nokia\PC Connectivity Solution\ServiceLayer.exe
    File: C:\windows\system32\FsUsbExDisk.SYS
    File: C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
    ExportKey: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AskTBar Uninstall
    Zip: C:\windows\Minidump
    
    HKLM\...\Run: [NPSStartup] => [X]
    HKU\S-1-5-21-2854377482-2471292144-1422266838-1001\...\MountPoints2: {e32a091e-2c66-11e0-ba95-00247ef7aec9} - D:\AutoRun.exe
    BootExecute: autocheck autochk * C:\PROGRA~2\SPYWAR~1\st_rsdel.exe "\??\C:\ProgramData\Spyware Terminator\st_rsdel.dat"
    HKU\S-1-5-21-2854377482-2471292144-1422266838-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=cs_CZ&c=92&bd=all&pf=cmnb
    HKU\S-1-5-21-2854377482-2471292144-1422266838-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.seznam.cz/
    BHO: No Name -> {5C255C8A-E604-49b4-9D64-90988571CECB} -> No File
    Toolbar: HKLM - No Name - {0BF43445-2F28-4351-9252-17FE6E806AA0} -  No File
    FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
    CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\Alwil Software\Avast5\WebRep\Chrome\aswWebRepChromeSp.crx <not found>
    CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\Alwil Software\Avast5\WebRep\Chrome\aswWebRepChrome.crx <not found>
    C:\Program Files\*.tmp
    2009-11-25 18:34 - 2009-11-25 18:34 - 000000000 _____ () C:\Users\Lucinka\AppData\Local\AtStart.txt
    2009-11-25 18:34 - 2009-11-25 18:34 - 000000000 _____ () C:\Users\Lucinka\AppData\Local\DSwitch.txt
    2009-12-23 16:59 - 2009-12-23 16:59 - 000000095 _____ () C:\Users\Lucinka\AppData\Local\fusioncache.dat
    2009-11-25 18:34 - 2009-11-25 18:34 - 000000000 _____ () C:\Users\Lucinka\AppData\Local\QSwitch.txt
    2018-09-24 16:03 - 2018-09-24 16:03 - 000000000 _____ () C:\Users\Lucinka\AppData\Local\{84B6C474-2FFF-4C62-A43C-0B7B3012F464}
    2016-06-28 05:11 - 2016-06-28 05:11 - 000000000 _____ () C:\Users\Lucinka\AppData\Local\{AD27140C-0996-42D4-B0FE-F078ADE76FA0}
    2018-11-22 23:05 - 2018-11-22 23:05 - 000000000 _____ () C:\Users\Lucinka\AppData\Local\{E32DFEF3-4145-446E-BDC9-CC07E51FE517}
    2018-09-24 16:03 - 2018-09-24 16:03 - 000000000 _____ () C:\Users\Lucinka\AppData\Local\{F7C8B676-2569-4715-9309-23D33FB681CD}
    
    CustomCLSID: HKU\S-1-5-21-2854377482-2471292144-1422266838-1001_Classes\CLSID\{039B2CA5-3B41-4D93-AD77-47D3293FC5CB}\InprocServer32 -> C:\Program Files\Skype\Plugin Manager\ezPMUtils.dll => No File
    CustomCLSID: HKU\S-1-5-21-2854377482-2471292144-1422266838-1001_Classes\CLSID\{42481700-CF3C-4D05-8EC6-F9A1C57E8DC0}\InprocServer32 -> C:\Program Files\Skype\Plugin Manager\ezPMUtils.dll => No File
    CustomCLSID: HKU\S-1-5-21-2854377482-2471292144-1422266838-1001_Classes\CLSID\{D0D38C6E-BF64-4C42-840D-3E0019D9F7A6}\InprocServer32 -> C:\Program Files\Skype\Plugin Manager\ezPMUtils.dll => No File
    ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} =>  -> No File
    Task: {039CD453-1891-49D1-8EB3-8C82B30861A1} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent => Command(1): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshConfigAndContent
    Task: {039CD453-1891-49D1-8EB3-8C82B30861A1} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent => Command(2): C:\windows\system32\GWX\GWXDetector.exe [2016-03-21] (Microsoft Windows -> Microsoft Corporation)
    Task: {4C18EB70-96F4-49F5-A6BF-CB6CBF90B08A} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => Command(1): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshConfig
    Task: {4C18EB70-96F4-49F5-A6BF-CB6CBF90B08A} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => Command(2): C:\windows\system32\GWX\GWXDetector.exe [2016-03-21] (Microsoft Windows -> Microsoft Corporation)
    Task: {BB2EC776-71C7-4EA5-A919-A255AE195604} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime => Command(1): %windir%\system32\GWX\GWXUXWorker.exe -> /ScheduleUpgradeReminderTime
    Task: {BB2EC776-71C7-4EA5-A919-A255AE195604} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime => Command(2): C:\windows\system32\GWX\GWXDetector.exe [2016-03-21] (Microsoft Windows -> Microsoft Corporation)
    Task: {BCEA4F74-5CA0-4703-A8D0-A1156589E6FC} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(1): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshConfig
    Task: {BCEA4F74-5CA0-4703-A8D0-A1156589E6FC} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(2): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshContent
    Task: {BCEA4F74-5CA0-4703-A8D0-A1156589E6FC} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(3): C:\windows\system32\GWX\GWXDetector.exe [2016-03-21] (Microsoft Windows -> Microsoft Corporation)
    
    Hosts:
    EmptyTemp:
    End
  • Uloz na plochu s nazvom fixlist.txt
  • Spusti znovu FRST a klikni na Fix
  • Po dokonceni si FRST vyziada restart PC, potvrd kliknutim na OK
  • Po restartovani PC bude na ploche subor Fixlog.txt, jeho obsah sem skopiruj
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!

ebola
Návštěvník
Návštěvník
Příspěvky: 146
Registrován: 31 kvě 2007 07:07

Re: prosim o kontrolu logu...zpomalení notebooku

#10 Příspěvek od ebola »

log :

Fix result of Farbar Recovery Scan Tool (x86) Version: 03-03-2019 01
Ran by Lucinka (05-03-2019 21:04:58) Run:1
Running from C:\Users\Lucinka\Desktop
Loaded Profiles: Lucinka (Available Profiles: Lucinka)
Boot Mode: Normal

==============================================

fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:

PowerShell: Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum
File: C:\windows\system32\FsUsbExService.Exe
File: C:\Program Files\Hewlett-Packard\HP Support Framework\hpsa_service.exe
File: C:\Program Files\Common Files\LightScribe\LSSrvc.exe
File: C:\Program Files\Nokia\PC Connectivity Solution\ServiceLayer.exe
File: C:\windows\system32\FsUsbExDisk.SYS
File: C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
ExportKey: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AskTBar Uninstall
Zip: C:\windows\Minidump

HKLM\...\Run: [NPSStartup] => [X]
HKU\S-1-5-21-2854377482-2471292144-1422266838-1001\...\MountPoints2: {e32a091e-2c66-11e0-ba95-00247ef7aec9} - D:\AutoRun.exe
BootExecute: autocheck autochk * C:\PROGRA~2\SPYWAR~1\st_rsdel.exe "\??\C:\ProgramData\Spyware Terminator\st_rsdel.dat"
HKU\S-1-5-21-2854377482-2471292144-1422266838-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=cs_CZ&c=92&bd=all&pf=cmnb
HKU\S-1-5-21-2854377482-2471292144-1422266838-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.seznam.cz/
BHO: No Name -> {5C255C8A-E604-49b4-9D64-90988571CECB} -> No File
Toolbar: HKLM - No Name - {0BF43445-2F28-4351-9252-17FE6E806AA0} - No File
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\Alwil Software\Avast5\WebRep\Chrome\aswWebRepChromeSp.crx <not found>
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\Alwil Software\Avast5\WebRep\Chrome\aswWebRepChrome.crx <not found>
C:\Program Files\*.tmp
2009-11-25 18:34 - 2009-11-25 18:34 - 000000000 _____ () C:\Users\Lucinka\AppData\Local\AtStart.txt
2009-11-25 18:34 - 2009-11-25 18:34 - 000000000 _____ () C:\Users\Lucinka\AppData\Local\DSwitch.txt
2009-12-23 16:59 - 2009-12-23 16:59 - 000000095 _____ () C:\Users\Lucinka\AppData\Local\fusioncache.dat
2009-11-25 18:34 - 2009-11-25 18:34 - 000000000 _____ () C:\Users\Lucinka\AppData\Local\QSwitch.txt
2018-09-24 16:03 - 2018-09-24 16:03 - 000000000 _____ () C:\Users\Lucinka\AppData\Local\{84B6C474-2FFF-4C62-A43C-0B7B3012F464}
2016-06-28 05:11 - 2016-06-28 05:11 - 000000000 _____ () C:\Users\Lucinka\AppData\Local\{AD27140C-0996-42D4-B0FE-F078ADE76FA0}
2018-11-22 23:05 - 2018-11-22 23:05 - 000000000 _____ () C:\Users\Lucinka\AppData\Local\{E32DFEF3-4145-446E-BDC9-CC07E51FE517}
2018-09-24 16:03 - 2018-09-24 16:03 - 000000000 _____ () C:\Users\Lucinka\AppData\Local\{F7C8B676-2569-4715-9309-23D33FB681CD}

CustomCLSID: HKU\S-1-5-21-2854377482-2471292144-1422266838-1001_Classes\CLSID\{039B2CA5-3B41-4D93-AD77-47D3293FC5CB}\InprocServer32 -> C:\Program Files\Skype\Plugin Manager\ezPMUtils.dll => No File
CustomCLSID: HKU\S-1-5-21-2854377482-2471292144-1422266838-1001_Classes\CLSID\{42481700-CF3C-4D05-8EC6-F9A1C57E8DC0}\InprocServer32 -> C:\Program Files\Skype\Plugin Manager\ezPMUtils.dll => No File
CustomCLSID: HKU\S-1-5-21-2854377482-2471292144-1422266838-1001_Classes\CLSID\{D0D38C6E-BF64-4C42-840D-3E0019D9F7A6}\InprocServer32 -> C:\Program Files\Skype\Plugin Manager\ezPMUtils.dll => No File
ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => -> No File
Task: {039CD453-1891-49D1-8EB3-8C82B30861A1} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent => Command(1): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshConfigAndContent
Task: {039CD453-1891-49D1-8EB3-8C82B30861A1} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent => Command(2): C:\windows\system32\GWX\GWXDetector.exe [2016-03-21] (Microsoft Windows -> Microsoft Corporation)
Task: {4C18EB70-96F4-49F5-A6BF-CB6CBF90B08A} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => Command(1): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshConfig
Task: {4C18EB70-96F4-49F5-A6BF-CB6CBF90B08A} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => Command(2): C:\windows\system32\GWX\GWXDetector.exe [2016-03-21] (Microsoft Windows -> Microsoft Corporation)
Task: {BB2EC776-71C7-4EA5-A919-A255AE195604} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime => Command(1): %windir%\system32\GWX\GWXUXWorker.exe -> /ScheduleUpgradeReminderTime
Task: {BB2EC776-71C7-4EA5-A919-A255AE195604} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime => Command(2): C:\windows\system32\GWX\GWXDetector.exe [2016-03-21] (Microsoft Windows -> Microsoft Corporation)
Task: {BCEA4F74-5CA0-4703-A8D0-A1156589E6FC} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(1): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshConfig
Task: {BCEA4F74-5CA0-4703-A8D0-A1156589E6FC} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(2): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshContent
Task: {BCEA4F74-5CA0-4703-A8D0-A1156589E6FC} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(3): C:\windows\system32\GWX\GWXDetector.exe [2016-03-21] (Microsoft Windows -> Microsoft Corporation)

Hosts:
EmptyTemp:
End
*****************

Processes closed successfully.
Restore point was successfully created.

========= Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum =========



Count : 114
Average :
Sum : 20581369931
Maximum :
Minimum :
Property : Length


========= End of Powershell: =========


========================= File: C:\windows\system32\FsUsbExService.Exe ========================

C:\windows\system32\FsUsbExService.Exe
File not signed
MD5: D3F9205CC4CB07553F2F9472C767EA87
Creation and modification date: 2011-07-09 12:25 - 2009-03-31 08:39
Size: 000233472
Attributes: ----A
Company Name: Teruten
Internal Name: FsUsbDevice
Original Name: FsUsbDevice.EXE
Product: CwService
Description: FsUsbDevice
File Version: 1, 0, 0, 5
Product Version: 1, 0, 0, 5
Copyright: Copyright (C) 2005
VirusTotal: https://www.virustotal.com/file/b1df2b8 ... 545827990/

====== End of File: ======


========================= File: C:\Program Files\Hewlett-Packard\HP Support Framework\hpsa_service.exe ========================

C:\Program Files\Hewlett-Packard\HP Support Framework\hpsa_service.exe
File not signed
MD5: BB1FC298BE53AAB1E110F6E786BD8AC5
Creation and modification date: 2012-09-27 10:55 - 2012-09-27 10:55
Size: 000086528
Attributes: ----A
Company Name: Hewlett-Packard Company
Internal Name: HPSA_Service.exe
Original Name: HPSA_Service.exe
Product: HP Support Assistant
Description: HP Support Assistant Service
File Version: 7.0.39.14
Product Version: 7.0.39.14
Copyright: � 2012 Hewlett-Packard Development Company, L.P.
VirusTotal: https://www.virustotal.com/file/c2da2c3 ... 550998013/

====== End of File: ======


========================= File: C:\Program Files\Common Files\LightScribe\LSSrvc.exe ========================

C:\Program Files\Common Files\LightScribe\LSSrvc.exe
File not signed
MD5: 83D8BE94E1CBCBE2EA8372DB1A95A159
Creation and modification date: 2009-06-17 20:21 - 2009-06-17 20:21
Size: 000073728
Attributes: ----A
Company Name: Hewlett-Packard Company
Internal Name: LSSrvc.exe
Original Name: LSSrvc.exe
Product: LightScribe
Description: LightScribe Service
File Version: 1.18.6.1
Product Version:
Copyright: © Copyright 2003-2007 Hewlett-Packard Development Company, LP
VirusTotal: https://www.virustotal.com/file/28d18c7 ... 534982702/

====== End of File: ======


========================= File: C:\Program Files\Nokia\PC Connectivity Solution\ServiceLayer.exe ========================

C:\Program Files\Nokia\PC Connectivity Solution\ServiceLayer.exe
File not signed
MD5: 58D5BFDF3ADF49FE9CABD78CC61D92F6
Creation and modification date: 2009-06-02 09:10 - 2009-06-02 09:10
Size: 000637952
Attributes: ----A
Company Name: Nokia.
Internal Name: ServiceLayer
Original Name: ServiceLayer.exe
Product: PC Connectivity Solution
Description: ServiceLayer Module
File Version: 7, 0, 124, 0
Product Version: 3.8
Copyright: Copyright © 2002-2009 Nokia. All Rights Reserved.
VirusTotal: https://www.virustotal.com/file/2a8aa65 ... 518819493/

====== End of File: ======


========================= File: C:\windows\system32\FsUsbExDisk.SYS ========================

C:\windows\system32\FsUsbExDisk.SYS
File not signed
MD5: 790A4CA68F44BE35967B3DF61F3E4675
Creation and modification date: 2011-07-09 12:25 - 2009-03-31 08:39
Size: 000036608
Attributes: ----A
Company Name:
Internal Name:
Original Name:
Product:
Description:
File Version:
Product Version:
Copyright:
VirusTotal: 0

====== End of File: ======


========================= File: C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe ========================

C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
File is digitally signed
MD5: D1E23027543E73F12084A34ABE0CA1B5
Creation and modification date: 2018-07-14 07:51 - 2018-07-14 07:50
Size: 000164984
Attributes: ---AT
Company Name: AVAST Software s.r.o. -> AVAST Software
Internal Name: Avast Browser Update
Original Name: AvastBrowserUpdate.exe
Product: Avast Browser Update
Description: Avast Browser Update
File Version: 1.4.154.333
Product Version: 1.4.154.333
Copyright: (c) 2018 AVAST Software
VirusTotal: 0

====== End of File: ======

================== ExportKey: ===================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AskTBar Uninstall]
"DisplayName"="Ask Toolbar"
"HelpLink"="http://help.mysearch.com/searchbar.html"
"Publisher"="Ask.com"
"UninstallString"="rundll32 C:\PROGRA~1\AskTBar\bar\1.bin\AskTBar.dll,O "
"UrlInfoAbout"="http://www.mysearch.com/jsp/softwareterms.jsp"

=== End of ExportKey ===
================== Zip: ===================
C:\windows\Minidump -> Size=zero byte
=========== Zip: End ===========
"HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\NPSStartup" => removed successfully.
HKU\S-1-5-21-2854377482-2471292144-1422266838-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e32a091e-2c66-11e0-ba95-00247ef7aec9} => removed successfully.
HKLM\Software\Classes\CLSID\{e32a091e-2c66-11e0-ba95-00247ef7aec9} => not found
HKLM\System\CurrentControlSet\Control\Session Manager\\BootExecute => value restored successfully
HKU\S-1-5-21-2854377482-2471292144-1422266838-1001\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL => value restored successfully
"HKU\S-1-5-21-2854377482-2471292144-1422266838-1001\Software\Microsoft\Internet Explorer\Main\\Secondary Start Pages" => removed successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB} => removed successfully.
HKLM\Software\Classes\CLSID\{5C255C8A-E604-49b4-9D64-90988571CECB} => not found
"HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{0BF43445-2F28-4351-9252-17FE6E806AA0}" => removed successfully.
HKLM\Software\Classes\CLSID\{0BF43445-2F28-4351-9252-17FE6E806AA0} => not found
HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE => removed successfully.
HKLM\SOFTWARE\Google\Chrome\Extensions\eofcbnmajmjmplflapaojjnihcjkigck => removed successfully.
HKLM\SOFTWARE\Google\Chrome\Extensions\gomekmidlodglbbmalcneegieacbdmki => removed successfully.

=========== "C:\Program Files\*.tmp" ==========

C:\Program Files\GUT362D.tmp => moved successfully
C:\Program Files\GUT928F.tmp => moved successfully

========= End -> "C:\Program Files\*.tmp" ========

C:\Users\Lucinka\AppData\Local\AtStart.txt => moved successfully
C:\Users\Lucinka\AppData\Local\DSwitch.txt => moved successfully
C:\Users\Lucinka\AppData\Local\fusioncache.dat => moved successfully
C:\Users\Lucinka\AppData\Local\QSwitch.txt => moved successfully
C:\Users\Lucinka\AppData\Local\{84B6C474-2FFF-4C62-A43C-0B7B3012F464} => moved successfully
C:\Users\Lucinka\AppData\Local\{AD27140C-0996-42D4-B0FE-F078ADE76FA0} => moved successfully
C:\Users\Lucinka\AppData\Local\{E32DFEF3-4145-446E-BDC9-CC07E51FE517} => moved successfully
C:\Users\Lucinka\AppData\Local\{F7C8B676-2569-4715-9309-23D33FB681CD} => moved successfully
HKU\S-1-5-21-2854377482-2471292144-1422266838-1001_Classes\CLSID\{039B2CA5-3B41-4D93-AD77-47D3293FC5CB} => removed successfully.
HKU\S-1-5-21-2854377482-2471292144-1422266838-1001_Classes\CLSID\{42481700-CF3C-4D05-8EC6-F9A1C57E8DC0} => removed successfully.
HKU\S-1-5-21-2854377482-2471292144-1422266838-1001_Classes\CLSID\{D0D38C6E-BF64-4C42-840D-3E0019D9F7A6} => removed successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\GDriveSharedOverlay => removed successfully.
HKLM\Software\Classes\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => not found
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{039CD453-1891-49D1-8EB3-8C82B30861A1}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{039CD453-1891-49D1-8EB3-8C82B30861A1}" => removed successfully.
C:\Windows\System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent" => removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{039CD453-1891-49D1-8EB3-8C82B30861A1} => not found
"C:\Windows\System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent" => not found
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent => not found
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4C18EB70-96F4-49F5-A6BF-CB6CBF90B08A}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4C18EB70-96F4-49F5-A6BF-CB6CBF90B08A}" => removed successfully.
C:\Windows\System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfig" => removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4C18EB70-96F4-49F5-A6BF-CB6CBF90B08A} => not found
"C:\Windows\System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig" => not found
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfig => not found
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BB2EC776-71C7-4EA5-A919-A255AE195604} => not found
C:\Windows\System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime" => removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BB2EC776-71C7-4EA5-A919-A255AE195604} => not found
"C:\Windows\System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime" => not found
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime => not found
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BCEA4F74-5CA0-4703-A8D0-A1156589E6FC} => not found
C:\Windows\System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B" => removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BCEA4F74-5CA0-4703-A8D0-A1156589E6FC} => not found
"C:\Windows\System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B" => not found
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => not found
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BCEA4F74-5CA0-4703-A8D0-A1156589E6FC} => not found
"C:\Windows\System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B" => not found
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => not found
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 7414674 B
Java, Flash, Steam htmlcache => 269807570 B
Windows/system/drivers => 7351001 B
Edge => 0 B
Chrome => 224223671 B
Firefox => 32373993 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 66228 B
Public => 0 B
ProgramData => 0 B
systemprofile => 30217758 B
LocalService => 132244 B
NetworkService => 505757 B
Lucinka => 484728782 B

RecycleBin => 0 B
EmptyTemp: => 1015.9 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 21:07:32 ====


díky za pomoc

Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: prosim o kontrolu logu...zpomalení notebooku

#11 Příspěvek od Conder »

:arrow: Plocha ma takmer 20 GB. Presun vsetky subory a zlozky z plochy do dokumentov a na ploche nechaj iba odkazy/zastupcov. Prilis velka velkost plochy moze sposobit spomalenie systemu.

:arrow: Spusti kontrolu integrity systemovych suborov:
  • Otvor Start, napis "cmd" (bez uvodzoviek), klikni pravym tlacitkom mysi na Prikazovy riadok a klikni na Spustit ako spravca
  • Skopiruj a spusti prikaz:

    Kód: Vybrat vše

    DISM.exe /Online /Cleanup-image /Restorehealth
  • Po dokonceni skopiruj a spusti druhy prikaz:

    Kód: Vybrat vše

    sfc /scannow
  • Po dokonceni obidvoch prikazov skopiruj a spusti tento prikaz:

    Kód: Vybrat vše

    findstr /c:"[SR]" %windir%\logs\cbs\cbs.log >> "%userprofile%\desktop\sfcdetails.txt" && copy %windir%\logs\dism\dism.log %userprofile%\desktop\dism.txt
  • Na ploche sa vytvoria subory sfcdetails.txt a dism.txt, tieto subory zabal ho do archivu RAR alebo ZIP a posli ako prilohu k dalsiemu prispevku
  • Restartuj PC a napis ako sa chova PC
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!

ebola
Návštěvník
Návštěvník
Příspěvky: 146
Registrován: 31 kvě 2007 07:07

Re: prosim o kontrolu logu...zpomalení notebooku

#12 Příspěvek od ebola »

děkuji za pomoc … už jede jak má :)

Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: prosim o kontrolu logu...zpomalení notebooku

#13 Příspěvek od Conder »

:arrow: Tak este upraceme po pouzitych nastrojoch:
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!

Odpovědět