Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Zamrzání pc
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zamrzání pc
Klikněte do obrazu videa pravým myšítkem>nastavení a vypněte hardwarovou akceleraci.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Zamrzání pc
Po vypnutí hardwarové akcelerace je to lepší. leč děje se stále v menší míře. Dále jsem zde našel vlákno http://forum.viry.cz/viewtopic.php?f=13&t=135261 kde se řeší problém s awastem. Zkusil jsem jej také přeistalovat, dva dny to běželo a už je to opět zpět video- zásek.
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zamrzání pc
Jiný prohlížeč (např IE) to nedělá?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Zamrzání pc
Právě, že IE to nedělá.
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zamrzání pc
Ještě zkuste přeinstalovat AdobeFlash.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Zamrzání pc
Adobe flash jsem přeinstaloval, ale problém po chvíly opět zpět. Ještě mám podezření na Adobe Shockwave Player. Není nějaké náhrada za adobe produkty?nebo jestli se nepere s avastem.
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zamrzání pc
Když Avast vypnete, problém zmizí?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Zamrzání pc
Když jsem avast vypnul tak se to neseklo.
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zamrzání pc
Zkuste ho přeinstalovat. K přeinstalaci použijte orig. utiltu Avast: https://www.avast.com/cs-sk/uninstall-utility .
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Zamrzání pc
mám přeinstalováno zatím bez zamrznutí jen mi vyskakuje hláška error- vcore.dll not found
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zamrzání pc
Nechápu proč, když to s Avastem nemá, co dělat. Dejte log FRST: http://forum.viry.cz/viewtopic.php?f=13&t=133100 . Nebo ta hláška vyskakovala už před reinstalem AV?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Zamrzání pc
Ta hláška se objevuje od včera.
Zde je log
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:04-11-2015
Ran by tomdasa (administrator) on TOMDASA-PC (04-11-2015 22:10:49)
Running from C:\Users\tomdasa\Desktop
Loaded Profiles: tomdasa (Available Profiles: tomdasa)
Platform: Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86) Language: Čeština (Česká republika)
Internet Explorer Version 9 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Nero AG) C:\Program Files\HTC\HTC Sync Manager\HSMServiceEntry.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
(Realtek Semiconductor) C:\Windows\RtHDVCpl.exe
(Hewlett-Packard Company) C:\hp\support\hpsysdrv.exe
(Hewlett-Packard Company) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
() C:\hp\KBD\KbdStub.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
(PixArt Imaging Incorporation) C:\Windows\PixArt\Pac207\Monitor.exe
(CyberLink Corp.) C:\Program Files\CyberLink\PCM4Everio\EverioService.exe
(Maxthon) C:\Program Files\Maxthon\Modules\Service\Update\MaxthonUpdateSvc.exe
() C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe
(Microsoft Corporation) C:\Windows\WindowsMobile\wmdc.exe
() C:\Windows\System32\PnkBstrA.exe
(CANON INC.) C:\Program Files\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
(Microsoft Corporation) C:\Windows\ehome\ehtray.exe
() C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe
() C:\Program Files\CyberLink\Shared Files\RichVideo.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
() C:\Program Files\HTC\HTC Sync Manager\HTC Sync\adb.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Windows\ehome\ehmsas.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
() C:\Users\tomdasa\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Service.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil32_19_0_0_226_ActiveX.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtHDVCpl] => C:\Windows\RtHDVCpl.exe [5369856 2008-03-26] (Realtek Semiconductor)
HKLM\...\Run: [hpsysdrv] => c:\hp\support\hpsysdrv.exe [65536 2007-04-18] (Hewlett-Packard Company)
HKLM\...\Run: [KBD] => C:\HP\KBD\KbdStub.EXE [65536 2006-12-08] ()
HKLM\...\Run: [IAAnotif] => C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe [178712 2007-07-12] (Intel Corporation)
HKLM\...\Run: [Monitor] => C:\Windows\PixArt\PAC207\Monitor.exe [319488 2006-11-03] (PixArt Imaging Incorporation)
HKLM\...\Run: [LanguageShortcut] => C:\Program Files\CyberLink\PowerDVD\Language\Language.exe [62760 2007-10-11] ()
HKLM\...\Run: [EverioService] => C:\Program Files\CyberLink\PCM4Everio\EverioService.exe [151552 2008-05-21] (CyberLink Corp.)
HKLM\...\Run: [UpdatePPShortCut] => C:\Program Files\CyberLink\PowerProducer\MUITransfer\MUIStartMenu.exe [222504 2008-02-21] (CyberLink Corp.)
HKLM\...\Run: [Windows Mobile Device Center] => C:\Windows\WindowsMobile\wmdc.exe [648072 2007-05-31] (Microsoft Corporation)
HKLM\...\Run: [CanonQuickMenu] => C:\Program Files\Canon\Quick Menu\CNQMMAIN.EXE [1282120 2013-05-02] (CANON INC.)
HKLM\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [453736 2013-02-19] (CANON INC.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7004376 2015-11-04] (AVAST Software)
HKLM\...\Run: [NvBackend] => C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2655520 2015-10-12] (NVIDIA Corporation)
HKU\S-1-5-21-2113988722-11527645-2074921056-1000\...\Run: [ehTray.exe] => C:\Windows\ehome\ehTray.exe [125952 2008-01-19] (Microsoft Corporation)
HKU\S-1-5-21-2113988722-11527645-2074921056-1000\...\Run: [cz.seznam.software.autoupdate] => C:\Users\tomdasa\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-2113988722-11527645-2074921056-1000\...\Run: [cz.seznam.software.szndesktop] => C:\Users\tomdasa\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [103080 2015-05-26] ()
HKU\S-1-5-21-2113988722-11527645-2074921056-1000\...\Run: [WMPNSCFG] => C:\Program Files\Windows Media Player\WMPNSCFG.exe [202240 2008-01-19] (Microsoft Corporation)
HKU\S-1-5-21-2113988722-11527645-2074921056-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\css.scr
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2015-11-04] (AVAST Software)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Winsock: Catalog5 02 C:\Windows\system32\napinsp.dll [50176 2008-01-19] (Společnost Microsoft)
Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [147456 2008-12-12] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{444720EC-4150-48E7-AC32-C7258357290F}: [DhcpNameServer] 10.0.0.138
Internet Explorer:
==================
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-2113988722-11527645-2074921056-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.seznam.cz/
HKU\S-1-5-21-2113988722-11527645-2074921056-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2113988722-11527645-2074921056-1000 -> DefaultScope {0C2FEAAE-7A8F-4270-B508-AAE4328B1598} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_12
SearchScopes: HKU\S-1-5-21-2113988722-11527645-2074921056-1000 -> {0C2FEAAE-7A8F-4270-B508-AAE4328B1598} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_12
SearchScopes: HKU\S-1-5-21-2113988722-11527645-2074921056-1000 -> {3EC4DBFF-46C7-4964-AB26-60E942F7387C} URL = hxxp://encyklopedie.seznam.cz/search?s={searchTerms}&sourceid={referrer:source?}
SearchScopes: HKU\S-1-5-21-2113988722-11527645-2074921056-1000 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
SearchScopes: HKU\S-1-5-21-2113988722-11527645-2074921056-1000 -> {8588BED3-78EA-42AF-841C-6BA975F9C4FA} URL = hxxp://zbozi.seznam.cz/?q={searchTerms}&sourceid={referrer:source?}
SearchScopes: HKU\S-1-5-21-2113988722-11527645-2074921056-1000 -> {A3B1A68E-51A6-4355-BBD8-4F9F33248A0A} URL = hxxp://search.seznam.cz/searchScreen?w={searchTerms}&mod=f&sourceid={referrer:source?}
SearchScopes: HKU\S-1-5-21-2113988722-11527645-2074921056-1000 -> {AB65709D-7E2C-44EB-8B19-51828FE1828A} URL = hxxp://www.mapy.cz/?query={searchTerms}&source ... rer:source?}
BHO: No Name -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> No File
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2014-07-07] (CANON INC.)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll [2012-05-04] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-11-04] (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll [2012-05-04] (Oracle Corporation)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2014-07-07] (CANON INC.)
DPF: {233C1507-6A77-46A4-9443-F871F945D258} hxxps://fpdownload.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
FireFox:
========
FF ProfilePath: C:\Users\tomdasa\AppData\Roaming\Mozilla\Firefox\Profiles\f8bl6r9a.default
FF Homepage: hxxps://www.seznam.cz/
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_19_0_0_226.dll [2015-10-24] ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw_1221171.dll [2015-10-19] (Adobe Systems, Inc.)
FF Plugin: @canon.com/EPPEX -> C:\Program Files\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2011-11-30] (CANON INC.)
FF Plugin: @divx.com/DivX Browser Plugin,version=1.0.0 -> C:\Program Files\DivX\DivX Web Player\npdivx32.dll [2008-11-21] (DivX,Inc.)
FF Plugin: @divx.com/DivX Player Plugin,version=1.0.0 -> C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll [2008-11-21] (DivX, Inc)
FF Plugin: @java.com/DTPlugin,version=10.5.1 -> C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\dtplugin\npDeployJava1.dll [2012-05-04] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @real.com/nppl3260;version=16.0.0.282 -> c:\program files\real\realplayer\Netscape6\nppl3260.dll [2012-12-14] (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlchromebrowserrecordext;version=1.3.0 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll [2012-11-29] (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlhtml5videoshim;version=1.3.0 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll [2012-11-29] (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlpepperflashvideoshim;version=1.3.0 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll [2012-11-29] (RealNetworks, Inc.)
FF Plugin: @real.com/nprpplugin;version=16.0.0.282 -> c:\program files\real\realplayer\Netscape6\nprpplugin.dll [2012-12-14] (RealPlayer)
FF Plugin: @realnetworks.com/npdlplugin;version=1 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll [2012-11-29] (RealDownloader)
FF Plugin: @videolan.org/vlc,version=2.0.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2015-09-24] (Adobe Systems Inc.)
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-06-24] [not signed]
FF HKLM\...\Firefox\Extensions: [{34712C68-7391-4c47-94F3-8F88D49AD632}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2012-12-14] [not signed]
FF HKLM\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-11-04]
Chrome:
=======
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-11-04]
CHR HKLM\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx [2012-11-29]
Opera:
=======
StartMenuInternet: (HKLM) OperaNext - C:\Program Files\Opera Next\Opera.exe
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [174416 2015-11-04] (AVAST Software)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [922400 2015-10-12] (NVIDIA Corporation)
R2 HP Health Check Service; c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [65536 2007-09-19] (Hewlett-Packard) [File not signed]
R3 hpqcxs08; C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll [217088 2007-06-04] (Hewlett-Packard Co.) [File not signed]
R2 hpqddsvc; C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll [131072 2007-06-04] (Hewlett-Packard Co.) [File not signed]
R2 HTCMonitorService; C:\Program Files\HTC\HTC Sync Manager\HSMServiceEntry.exe [87368 2014-06-27] (Nero AG)
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 MaxthonUpdateSvc; C:\Program Files\Maxthon\Modules\Service\Update\MaxthonUpdateSvc.exe [1871784 2015-10-13] (Maxthon)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [43520 2006-11-08] (Hewlett-Packard) [File not signed]
R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1873696 2015-10-12] (NVIDIA Corporation)
R2 PassThru Service; C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe [166912 2013-10-17] () [File not signed]
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [53248 2006-11-08] (Hewlett-Packard) [File not signed]
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76888 2013-05-04] ()
R2 RealNetworks Downloader Resolver Service; C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe [38608 2012-11-29] ()
R2 RichVideo; C:\Program Files\CyberLink\Shared Files\RichVideo.exe [241734 2008-02-14] () [File not signed]
S3 ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [575488 2008-08-07] (Nokia.) [File not signed]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [272952 2008-01-19] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [24016 2015-11-04] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [81168 2015-11-04] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr.sys [55200 2015-11-04] (AVAST Software)
S0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [49776 2015-11-04] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [794952 2015-11-04] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [435464 2015-11-04] (AVAST Software)
R3 aswStmXP; C:\Windows\system32\drivers\aswStmXP.sys [167152 2015-11-04] (AVAST Software)
R3 aswTdi; C:\Windows\system32\drivers\aswTdi.sys [57888 2015-11-04] (AVAST Software)
R0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [209432 2015-11-04] (AVAST Software)
R0 FltMgr; C:\Windows\System32\drivers\fltmgr.sys [190424 2009-04-11] (Společnost Microsoft)
R0 giveio; C:\Windows\System32\giveio.sys [5248 1996-04-03] () [File not signed]
S3 hitmanpro37; C:\Windows\system32\drivers\hitmanpro37.sys [35992 2015-01-07] ()
S3 ivusb; C:\Windows\System32\DRIVERS\ivusb.sys [25112 2010-07-28] (Initio Corporation)
S3 MarvinBus; C:\Windows\System32\DRIVERS\MarvinBus.sys [171520 2005-09-23] (Pinnacle Systems GmbH) [File not signed]
R3 Ntfs; C:\Windows\system32\Drivers\Ntfs.sys [1082232 2013-03-03] (Společnost Microsoft)
R3 PAC207; C:\Windows\System32\DRIVERS\PFC027.SYS [507136 2006-12-05] (PixArt Imaging Inc.)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [717296 2009-02-25] () [File not signed]
S3 usbvm326_W; C:\Windows\System32\Drivers\usbvm326_w.sys [195200 2006-08-01] (Vimicro Corporation) [File not signed]
R2 {95808DC4-FA4A-4C74-92FE-5B863F82066B}; C:\Program Files\CyberLink\PowerDVD\000.fcl [41456 2008-01-18] (Cyberlink Corp.)
U3 a89u3wew; C:\Windows\system32\Drivers\a89u3wew.sys [0 ] (Microsoft Corporation) <==== ATTENTION (zero byte File/Folder)
U5 AppMgmt; C:\Windows\system32\svchost.exe [21504 2008-01-19] (Microsoft Corporation)
S4 blbdrive; \SystemRoot\system32\drivers\blbdrive.sys [X]
S3 gHidPnp; System32\Drivers\gHidPnp.Sys [X]
S3 gMouPS2; system32\DRIVERS\gMouPS2.sys [X]
S3 gMouUsb; system32\DRIVERS\gMouUsb.sys [X]
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]
U5 Tosrfcom; C:\Windows\System32\Drivers\Tosrfcom.sys [62799 2004-10-04] (TOSHIBA Corporation) [File not signed]
S3 upperdev; system32\DRIVERS\usbser_lowerflt.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-11-04 22:10 - 2015-11-04 22:11 - 00019806 _____ C:\Users\tomdasa\Desktop\FRST.txt
2015-11-04 22:10 - 2015-11-04 22:10 - 00000000 ____D C:\FRST
2015-11-04 22:09 - 2015-11-04 22:09 - 01701888 _____ (Farbar) C:\Users\tomdasa\Desktop\FRST.exe
2015-11-04 21:59 - 2015-11-04 21:59 - 00000000 ____D C:\Users\tomdasa\AppData\Local\Nvidia Corporation
2015-11-04 21:55 - 2015-11-04 21:56 - 00000000 ____D C:\Users\tomdasa\AppData\Local\NVIDIA
2015-11-04 21:55 - 2015-11-04 21:55 - 00001132 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2015-11-04 21:52 - 2015-10-28 23:03 - 06027430 _____ C:\Windows\system32\nvcoproc.bin
2015-11-04 21:50 - 2015-11-04 21:54 - 00000000 ____D C:\Windows\LastGood
2015-11-04 21:47 - 2015-11-02 23:47 - 00170128 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda32v.sys
2015-11-04 21:47 - 2015-11-02 23:47 - 00035984 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap32.dll
2015-11-04 21:47 - 2015-11-02 18:00 - 37881976 _____ C:\Windows\system32\nvcompiler.dll
2015-11-04 21:47 - 2015-11-02 18:00 - 18361976 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv32.dll
2015-11-04 21:47 - 2015-11-02 18:00 - 13527440 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2015-11-04 21:47 - 2015-11-02 18:00 - 12034248 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2015-11-04 21:47 - 2015-11-02 18:00 - 09383032 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2015-11-04 21:47 - 2015-11-02 18:00 - 03158736 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi.dll
2015-11-04 21:47 - 2015-11-02 18:00 - 02490672 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2015-11-04 21:47 - 2015-11-02 18:00 - 01053488 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco3235887.dll
2015-11-04 21:47 - 2015-11-02 18:00 - 00916600 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco3235887.dll
2015-11-04 21:45 - 2015-11-04 21:45 - 00000000 ____D C:\NVIDIA
2015-11-04 20:35 - 2015-11-04 20:30 - 00794952 _____ (AVAST Software) C:\Windows\system32\Drivers\asw4384.tmp
2015-11-04 20:35 - 2015-11-04 20:30 - 00435464 _____ (AVAST Software) C:\Windows\system32\Drivers\asw4435.tmp
2015-11-04 20:35 - 2015-11-04 20:30 - 00322760 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2015-11-04 20:35 - 2015-11-04 20:30 - 00209432 _____ (AVAST Software) C:\Windows\system32\Drivers\asw4455.tmp
2015-11-04 20:35 - 2015-11-04 20:30 - 00167152 _____ (AVAST Software) C:\Windows\system32\Drivers\asw4466.tmp
2015-11-04 20:35 - 2015-11-04 20:30 - 00081168 _____ (AVAST Software) C:\Windows\system32\Drivers\asw4404.tmp
2015-11-04 20:35 - 2015-11-04 20:30 - 00057888 _____ (AVAST Software) C:\Windows\system32\Drivers\asw4476.tmp
2015-11-04 20:35 - 2015-11-04 20:30 - 00055200 _____ (AVAST Software) C:\Windows\system32\Drivers\asw43E3.tmp
2015-11-04 20:35 - 2015-11-04 20:30 - 00049776 _____ (AVAST Software) C:\Windows\system32\Drivers\asw4424.tmp
2015-11-04 20:35 - 2015-11-04 20:30 - 00024016 _____ (AVAST Software) C:\Windows\system32\Drivers\asw43F4.tmp
2015-11-04 20:32 - 2015-11-04 20:32 - 00000000 ____D C:\Users\tomdasa\AppData\Roaming\AVAST Software
2015-11-04 20:31 - 2015-11-04 20:31 - 00001791 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2015-11-04 20:31 - 2015-11-04 20:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2015-11-04 20:31 - 2015-11-04 20:31 - 00000000 _____ C:\Windows\setuperr.log
2015-11-04 20:31 - 2015-11-04 20:31 - 00000000 _____ C:\Windows\setupact.log
2015-11-04 20:31 - 2015-11-04 20:30 - 00794952 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2015-11-04 20:31 - 2015-11-04 20:30 - 00435464 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2015-11-04 20:31 - 2015-11-04 20:30 - 00209432 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2015-11-04 20:31 - 2015-11-04 20:30 - 00167152 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStmXP.sys
2015-11-04 20:31 - 2015-11-04 20:30 - 00081168 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2015-11-04 20:31 - 2015-11-04 20:30 - 00057888 _____ (AVAST Software) C:\Windows\system32\Drivers\aswTdi.sys
2015-11-04 20:31 - 2015-11-04 20:30 - 00055200 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr.sys
2015-11-04 20:31 - 2015-11-04 20:30 - 00049776 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2015-11-04 20:31 - 2015-11-04 20:30 - 00024016 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2015-11-04 20:30 - 2015-11-04 20:30 - 00043112 _____ (AVAST Software) C:\Windows\avastSS.scr
2015-11-04 20:27 - 2015-11-04 20:27 - 00000000 ____D C:\Program Files\AVAST Software
2015-11-04 20:26 - 2015-11-04 20:26 - 00000000 ____D C:\ProgramData\AVAST Software
2015-11-04 20:21 - 2015-11-04 20:21 - 00002088 _____ C:\Users\tomdasa\Desktop\cc_20151104_202101.reg
2015-10-31 10:30 - 2015-10-31 10:40 - 00000000 ____D C:\Users\tomdasa\Desktop\gumy
2015-10-28 22:04 - 2015-10-28 22:04 - 00000000 ____D C:\Users\tomdasa\AppData\Local\Macromedia
2015-10-28 21:55 - 2015-10-28 22:03 - 00000000 ____D C:\Program Files\Mozilla Firefox
2015-10-28 21:55 - 2015-10-28 21:55 - 00000820 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-10-28 21:55 - 2015-10-28 21:55 - 00000808 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2015-10-28 21:55 - 2015-10-28 21:55 - 00000000 ____D C:\Users\tomdasa\AppData\Local\Mozilla
2015-10-23 23:01 - 2015-11-01 01:26 - 00000958 _____ C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job
2015-10-23 22:43 - 2015-10-24 00:21 - 00780488 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2015-10-23 22:43 - 2015-10-24 00:21 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2015-10-19 17:49 - 2010-02-03 17:51 - 00184320 _____ C:\Windows\system32\xvidvfw.dll
2015-10-19 17:49 - 2010-01-25 16:53 - 00598016 _____ C:\Windows\system32\xvidcore.dll
2015-10-15 21:47 - 2015-10-15 21:47 - 00001588 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera 12.11 1661.lnk
2015-10-15 21:47 - 2015-10-15 21:47 - 00000000 ____D C:\Program Files\Opera
2015-10-15 14:04 - 2015-10-15 14:04 - 00000000 ____D C:\Program Files\Viewer_IPCam
2015-10-15 12:56 - 2015-10-15 12:56 - 00000000 ____D C:\Program Files\object
2015-10-15 12:55 - 2015-10-15 12:55 - 00000000 ____D C:\Users\tomdasa\AppData\Roaming\P2P ID Finder
2015-10-15 12:55 - 2015-10-15 12:55 - 00000000 ____D C:\Users\tomdasa\AppData\Roaming\ipcamax
2015-10-14 23:14 - 2015-10-15 21:59 - 00000000 ____D C:\Users\tomdasa\AppData\Local\Opera
2015-10-14 23:14 - 2015-10-15 21:58 - 00000000 ____D C:\Users\tomdasa\AppData\Roaming\Opera
2015-10-14 23:14 - 2015-10-14 23:14 - 00001576 _____ C:\Users\Public\Desktop\Opera.lnk
2015-10-14 00:44 - 2015-09-28 18:17 - 01206192 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-10-14 00:44 - 2015-09-26 17:09 - 03606464 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2015-10-14 00:44 - 2015-09-26 17:09 - 03554240 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-10-14 00:44 - 2015-07-18 14:14 - 00901264 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00066400 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00022368 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00015200 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-eventing-provider-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00011104 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00011104 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-10-14 00:43 - 2015-07-29 01:46 - 11588096 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-10-14 00:02 - 2015-09-11 08:22 - 01814016 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-10-14 00:02 - 2015-09-11 08:21 - 12388352 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-10-14 00:02 - 2015-09-11 08:19 - 00367616 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-10-14 00:02 - 2015-09-11 08:17 - 09751552 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-10-14 00:02 - 2015-09-11 08:16 - 01139712 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-10-14 00:02 - 2015-09-11 08:16 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-10-14 00:02 - 2015-09-11 08:15 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-10-14 00:02 - 2015-09-11 08:15 - 00422912 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-10-14 00:02 - 2015-09-11 08:14 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-10-14 00:02 - 2015-09-11 08:14 - 01804288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-10-14 00:02 - 2015-09-11 08:14 - 00718848 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-10-14 00:02 - 2015-09-11 08:14 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-10-14 00:02 - 2015-09-11 08:14 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-10-14 00:02 - 2015-09-11 08:14 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2015-10-14 00:02 - 2015-09-11 08:14 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-10-14 00:02 - 2015-09-11 08:14 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-10-14 00:02 - 2015-09-11 08:14 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-10-14 00:02 - 2015-09-11 08:14 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-10-14 00:02 - 2015-09-11 08:14 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-10-14 00:02 - 2015-09-11 08:14 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2015-10-14 00:02 - 2015-09-11 08:14 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2015-10-14 00:02 - 2015-09-11 08:14 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2015-10-13 23:23 - 2015-10-13 23:23 - 00000836 _____ C:\Users\Public\Desktop\Maxthon Cloud Browser.lnk
2015-10-13 23:23 - 2015-10-13 23:23 - 00000000 ____D C:\Users\tomdasa\AppData\Roaming\Maxthon3
2015-10-13 23:23 - 2015-10-13 23:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maxthon Cloud Browser
2015-10-13 23:23 - 2015-10-13 23:23 - 00000000 ____D C:\Program Files\Maxthon
2015-10-13 22:20 - 2015-10-14 21:23 - 00000000 ____D C:\Users\tomdasa\Desktop\backup
2015-10-13 22:20 - 2015-10-13 22:20 - 00000000 ____D C:\Users\tomdasa\AppData\Local\havtech
2015-10-09 23:05 - 2015-10-09 23:05 - 00000000 ___HD C:\Windows\PIF
2015-10-09 09:46 - 2015-10-09 09:46 - 00000000 ____D C:\rsit
2015-10-09 09:46 - 2015-10-09 09:46 - 00000000 ____D C:\Program Files\trend micro
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-11-04 22:11 - 2006-11-02 13:47 - 00003696 _____ C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2015-11-04 22:11 - 2006-11-02 13:47 - 00003696 _____ C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2015-11-04 21:55 - 2012-11-19 06:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-11-04 21:55 - 2011-12-29 14:39 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-11-04 21:55 - 2011-12-29 14:38 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2015-11-04 21:55 - 2008-04-25 20:01 - 00000000 ____D C:\ProgramData\NVIDIA
2015-11-04 21:54 - 2008-10-26 12:36 - 00000000 ____D C:\Users\tomdasa
2015-11-04 21:53 - 2014-06-22 08:27 - 00000000 ____D C:\Temp
2015-11-04 21:00 - 2008-10-26 13:58 - 00198144 _____ C:\Users\tomdasa\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-11-04 20:55 - 2015-02-05 11:01 - 00000821 _____ C:\Users\Public\Desktop\VLC media player.lnk
2015-11-04 20:51 - 2008-12-22 20:13 - 00000000 ____D C:\Program Files\Common Files\Adobe AIR
2015-11-04 20:51 - 2008-12-09 09:50 - 00000000 ____D C:\Program Files\Adobe
2015-11-04 20:17 - 2015-01-01 13:48 - 00000000 ____D C:\Users\tomdasa\AppData\Roaming\Seznam.cz
2015-11-04 20:15 - 2008-04-06 11:09 - 02034464 ____N C:\Windows\WindowsUpdate.log
2015-11-04 20:11 - 2015-05-10 09:30 - 00376360 _____ C:\Windows\system32\FNTCACHE.DAT
2015-11-04 20:11 - 2014-11-17 19:06 - 00000000 ____D C:\Users\tomdasa\AppData\Local\HTC MediaHub
2015-11-04 20:11 - 2009-11-20 09:37 - 00000000 ____D C:\Users\tomdasa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink BD Solution
2015-11-04 20:11 - 2006-11-02 14:01 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-11-04 20:08 - 2008-11-03 14:40 - 00009268 _____ C:\Users\tomdasa\AppData\Local\d3d9caps.dat
2015-11-03 21:42 - 2008-10-27 19:58 - 00000012 _____ C:\Windows\bthservsdp.dat
2015-11-03 21:42 - 2006-11-02 14:01 - 00032534 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2015-11-02 23:47 - 2013-02-18 08:22 - 00926520 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco3220103.dll
2015-11-02 18:00 - 2013-02-25 23:22 - 15120736 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2um.dll
2015-11-02 18:00 - 2013-02-25 23:22 - 12770752 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dum.dll
2015-11-02 18:00 - 2011-12-29 14:38 - 00028854 _____ C:\Windows\system32\nvinfo.pb
2015-11-02 14:18 - 2011-03-24 00:29 - 03937072 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2015-11-02 14:18 - 2011-03-24 00:29 - 02580088 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc.dll
2015-11-02 14:18 - 2011-03-24 00:28 - 02554672 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2015-11-02 14:18 - 2011-03-24 00:28 - 00671352 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2015-11-02 14:18 - 2011-03-24 00:28 - 00374904 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2015-11-02 14:18 - 2011-03-24 00:28 - 00061744 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2015-11-02 09:27 - 2006-11-02 11:33 - 01532822 _____ C:\Windows\system32\PerfStringBackup.INI
2015-11-01 11:02 - 2008-11-07 18:48 - 00000000 ____D C:\Users\tomdasa\AppData\Roaming\Skype
2015-10-28 22:10 - 2009-01-24 11:10 - 00000000 ____D C:\Users\tomdasa\AppData\Roaming\Vso
2015-10-28 21:55 - 2010-06-11 17:11 - 00000000 ____D C:\Users\tomdasa\AppData\Roaming\Mozilla
2015-10-27 11:53 - 2009-01-24 11:11 - 00000671 _____ C:\Users\tomdasa\AppData\Roaming\vso_ts_preview.xml
2015-10-27 11:52 - 2009-01-24 11:13 - 00000000 ____D C:\Users\tomdasa\Documents\ConvertXtoDVD
2015-10-24 00:26 - 2008-12-13 17:39 - 00000000 ____D C:\Users\tomdasa\AppData\LocalLow\Adobe
2015-10-24 00:26 - 2008-12-13 17:38 - 00000000 ____D C:\Windows\system32\Adobe
2015-10-24 00:25 - 2012-04-16 11:32 - 00000000 ____D C:\Users\tomdasa\AppData\Local\Adobe
2015-10-15 13:41 - 2011-06-15 07:55 - 00002425 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X.lnk
2015-10-14 20:30 - 2015-09-17 08:19 - 00000000 ____D C:\Users\tomdasa\Desktop\booking
2015-10-14 00:50 - 2013-07-29 21:37 - 00000000 ____D C:\Windows\system32\MRT
2015-10-14 00:50 - 2008-10-28 17:26 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-10-14 00:46 - 2006-11-02 11:24 - 141105520 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2015-10-12 21:15 - 2009-01-31 23:57 - 00000000 ____D C:\Windows\Minidump
2015-10-12 18:47 - 2015-09-14 13:39 - 00000000 ____D C:\Users\tomdasa\Desktop\brána
2015-10-09 23:12 - 2015-09-05 09:14 - 00000000 ____D C:\AdwCleaner
==================== Files in the root of some directories =======
2009-01-24 11:10 - 2009-01-24 11:10 - 0087608 _____ () C:\Users\tomdasa\AppData\Roaming\inst.exe
2009-01-24 11:10 - 2009-01-24 11:10 - 0007887 _____ () C:\Users\tomdasa\AppData\Roaming\pcouffin.cat
2009-01-24 11:10 - 2009-01-24 11:10 - 0001144 _____ () C:\Users\tomdasa\AppData\Roaming\pcouffin.inf
2009-01-24 11:11 - 2009-01-24 11:11 - 0000034 _____ () C:\Users\tomdasa\AppData\Roaming\pcouffin.log
2009-01-24 11:10 - 2009-01-24 11:10 - 0047360 _____ (VSO Software) C:\Users\tomdasa\AppData\Roaming\pcouffin.sys
2008-12-25 00:03 - 2013-05-03 20:40 - 0138056 _____ () C:\Users\tomdasa\AppData\Roaming\PnkBstrK.sys
2009-01-24 11:11 - 2015-10-27 11:53 - 0000671 _____ () C:\Users\tomdasa\AppData\Roaming\vso_ts_preview.xml
2008-11-03 14:40 - 2015-11-04 20:08 - 0009268 _____ () C:\Users\tomdasa\AppData\Local\d3d9caps.dat
2008-10-26 13:58 - 2015-11-04 21:00 - 0198144 _____ () C:\Users\tomdasa\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2008-11-07 18:51 - 2008-11-07 18:51 - 0000056 ____H () C:\ProgramData\ezsidmv.dat
2008-04-25 20:01 - 2014-11-16 13:34 - 0038718 _____ () C:\ProgramData\hpzinstall.log
2011-11-25 20:10 - 2011-11-25 20:10 - 0000196 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc
Some files in TEMP:
====================
C:\Users\tomdasa\AppData\Local\temp\nvStInst.exe
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-11-04 20:20
==================== End of FRST.txt ============================
Zde je log
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:04-11-2015
Ran by tomdasa (administrator) on TOMDASA-PC (04-11-2015 22:10:49)
Running from C:\Users\tomdasa\Desktop
Loaded Profiles: tomdasa (Available Profiles: tomdasa)
Platform: Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86) Language: Čeština (Česká republika)
Internet Explorer Version 9 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Nero AG) C:\Program Files\HTC\HTC Sync Manager\HSMServiceEntry.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
(Realtek Semiconductor) C:\Windows\RtHDVCpl.exe
(Hewlett-Packard Company) C:\hp\support\hpsysdrv.exe
(Hewlett-Packard Company) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
() C:\hp\KBD\KbdStub.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
(PixArt Imaging Incorporation) C:\Windows\PixArt\Pac207\Monitor.exe
(CyberLink Corp.) C:\Program Files\CyberLink\PCM4Everio\EverioService.exe
(Maxthon) C:\Program Files\Maxthon\Modules\Service\Update\MaxthonUpdateSvc.exe
() C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe
(Microsoft Corporation) C:\Windows\WindowsMobile\wmdc.exe
() C:\Windows\System32\PnkBstrA.exe
(CANON INC.) C:\Program Files\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
(Microsoft Corporation) C:\Windows\ehome\ehtray.exe
() C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe
() C:\Program Files\CyberLink\Shared Files\RichVideo.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
() C:\Program Files\HTC\HTC Sync Manager\HTC Sync\adb.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Windows\ehome\ehmsas.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
() C:\Users\tomdasa\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Service.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil32_19_0_0_226_ActiveX.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtHDVCpl] => C:\Windows\RtHDVCpl.exe [5369856 2008-03-26] (Realtek Semiconductor)
HKLM\...\Run: [hpsysdrv] => c:\hp\support\hpsysdrv.exe [65536 2007-04-18] (Hewlett-Packard Company)
HKLM\...\Run: [KBD] => C:\HP\KBD\KbdStub.EXE [65536 2006-12-08] ()
HKLM\...\Run: [IAAnotif] => C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe [178712 2007-07-12] (Intel Corporation)
HKLM\...\Run: [Monitor] => C:\Windows\PixArt\PAC207\Monitor.exe [319488 2006-11-03] (PixArt Imaging Incorporation)
HKLM\...\Run: [LanguageShortcut] => C:\Program Files\CyberLink\PowerDVD\Language\Language.exe [62760 2007-10-11] ()
HKLM\...\Run: [EverioService] => C:\Program Files\CyberLink\PCM4Everio\EverioService.exe [151552 2008-05-21] (CyberLink Corp.)
HKLM\...\Run: [UpdatePPShortCut] => C:\Program Files\CyberLink\PowerProducer\MUITransfer\MUIStartMenu.exe [222504 2008-02-21] (CyberLink Corp.)
HKLM\...\Run: [Windows Mobile Device Center] => C:\Windows\WindowsMobile\wmdc.exe [648072 2007-05-31] (Microsoft Corporation)
HKLM\...\Run: [CanonQuickMenu] => C:\Program Files\Canon\Quick Menu\CNQMMAIN.EXE [1282120 2013-05-02] (CANON INC.)
HKLM\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [453736 2013-02-19] (CANON INC.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7004376 2015-11-04] (AVAST Software)
HKLM\...\Run: [NvBackend] => C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2655520 2015-10-12] (NVIDIA Corporation)
HKU\S-1-5-21-2113988722-11527645-2074921056-1000\...\Run: [ehTray.exe] => C:\Windows\ehome\ehTray.exe [125952 2008-01-19] (Microsoft Corporation)
HKU\S-1-5-21-2113988722-11527645-2074921056-1000\...\Run: [cz.seznam.software.autoupdate] => C:\Users\tomdasa\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-2113988722-11527645-2074921056-1000\...\Run: [cz.seznam.software.szndesktop] => C:\Users\tomdasa\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [103080 2015-05-26] ()
HKU\S-1-5-21-2113988722-11527645-2074921056-1000\...\Run: [WMPNSCFG] => C:\Program Files\Windows Media Player\WMPNSCFG.exe [202240 2008-01-19] (Microsoft Corporation)
HKU\S-1-5-21-2113988722-11527645-2074921056-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\css.scr
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2015-11-04] (AVAST Software)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Winsock: Catalog5 02 C:\Windows\system32\napinsp.dll [50176 2008-01-19] (Společnost Microsoft)
Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [147456 2008-12-12] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{444720EC-4150-48E7-AC32-C7258357290F}: [DhcpNameServer] 10.0.0.138
Internet Explorer:
==================
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-2113988722-11527645-2074921056-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.seznam.cz/
HKU\S-1-5-21-2113988722-11527645-2074921056-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2113988722-11527645-2074921056-1000 -> DefaultScope {0C2FEAAE-7A8F-4270-B508-AAE4328B1598} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_12
SearchScopes: HKU\S-1-5-21-2113988722-11527645-2074921056-1000 -> {0C2FEAAE-7A8F-4270-B508-AAE4328B1598} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_12
SearchScopes: HKU\S-1-5-21-2113988722-11527645-2074921056-1000 -> {3EC4DBFF-46C7-4964-AB26-60E942F7387C} URL = hxxp://encyklopedie.seznam.cz/search?s={searchTerms}&sourceid={referrer:source?}
SearchScopes: HKU\S-1-5-21-2113988722-11527645-2074921056-1000 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
SearchScopes: HKU\S-1-5-21-2113988722-11527645-2074921056-1000 -> {8588BED3-78EA-42AF-841C-6BA975F9C4FA} URL = hxxp://zbozi.seznam.cz/?q={searchTerms}&sourceid={referrer:source?}
SearchScopes: HKU\S-1-5-21-2113988722-11527645-2074921056-1000 -> {A3B1A68E-51A6-4355-BBD8-4F9F33248A0A} URL = hxxp://search.seznam.cz/searchScreen?w={searchTerms}&mod=f&sourceid={referrer:source?}
SearchScopes: HKU\S-1-5-21-2113988722-11527645-2074921056-1000 -> {AB65709D-7E2C-44EB-8B19-51828FE1828A} URL = hxxp://www.mapy.cz/?query={searchTerms}&source ... rer:source?}
BHO: No Name -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> No File
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2014-07-07] (CANON INC.)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll [2012-05-04] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-11-04] (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll [2012-05-04] (Oracle Corporation)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2014-07-07] (CANON INC.)
DPF: {233C1507-6A77-46A4-9443-F871F945D258} hxxps://fpdownload.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
FireFox:
========
FF ProfilePath: C:\Users\tomdasa\AppData\Roaming\Mozilla\Firefox\Profiles\f8bl6r9a.default
FF Homepage: hxxps://www.seznam.cz/
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_19_0_0_226.dll [2015-10-24] ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw_1221171.dll [2015-10-19] (Adobe Systems, Inc.)
FF Plugin: @canon.com/EPPEX -> C:\Program Files\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2011-11-30] (CANON INC.)
FF Plugin: @divx.com/DivX Browser Plugin,version=1.0.0 -> C:\Program Files\DivX\DivX Web Player\npdivx32.dll [2008-11-21] (DivX,Inc.)
FF Plugin: @divx.com/DivX Player Plugin,version=1.0.0 -> C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll [2008-11-21] (DivX, Inc)
FF Plugin: @java.com/DTPlugin,version=10.5.1 -> C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\dtplugin\npDeployJava1.dll [2012-05-04] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @real.com/nppl3260;version=16.0.0.282 -> c:\program files\real\realplayer\Netscape6\nppl3260.dll [2012-12-14] (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlchromebrowserrecordext;version=1.3.0 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll [2012-11-29] (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlhtml5videoshim;version=1.3.0 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll [2012-11-29] (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlpepperflashvideoshim;version=1.3.0 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll [2012-11-29] (RealNetworks, Inc.)
FF Plugin: @real.com/nprpplugin;version=16.0.0.282 -> c:\program files\real\realplayer\Netscape6\nprpplugin.dll [2012-12-14] (RealPlayer)
FF Plugin: @realnetworks.com/npdlplugin;version=1 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll [2012-11-29] (RealDownloader)
FF Plugin: @videolan.org/vlc,version=2.0.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2015-09-24] (Adobe Systems Inc.)
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-06-24] [not signed]
FF HKLM\...\Firefox\Extensions: [{34712C68-7391-4c47-94F3-8F88D49AD632}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2012-12-14] [not signed]
FF HKLM\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-11-04]
Chrome:
=======
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-11-04]
CHR HKLM\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx [2012-11-29]
Opera:
=======
StartMenuInternet: (HKLM) OperaNext - C:\Program Files\Opera Next\Opera.exe
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [174416 2015-11-04] (AVAST Software)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [922400 2015-10-12] (NVIDIA Corporation)
R2 HP Health Check Service; c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [65536 2007-09-19] (Hewlett-Packard) [File not signed]
R3 hpqcxs08; C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll [217088 2007-06-04] (Hewlett-Packard Co.) [File not signed]
R2 hpqddsvc; C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll [131072 2007-06-04] (Hewlett-Packard Co.) [File not signed]
R2 HTCMonitorService; C:\Program Files\HTC\HTC Sync Manager\HSMServiceEntry.exe [87368 2014-06-27] (Nero AG)
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 MaxthonUpdateSvc; C:\Program Files\Maxthon\Modules\Service\Update\MaxthonUpdateSvc.exe [1871784 2015-10-13] (Maxthon)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [43520 2006-11-08] (Hewlett-Packard) [File not signed]
R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1873696 2015-10-12] (NVIDIA Corporation)
R2 PassThru Service; C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe [166912 2013-10-17] () [File not signed]
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [53248 2006-11-08] (Hewlett-Packard) [File not signed]
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76888 2013-05-04] ()
R2 RealNetworks Downloader Resolver Service; C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe [38608 2012-11-29] ()
R2 RichVideo; C:\Program Files\CyberLink\Shared Files\RichVideo.exe [241734 2008-02-14] () [File not signed]
S3 ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [575488 2008-08-07] (Nokia.) [File not signed]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [272952 2008-01-19] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [24016 2015-11-04] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [81168 2015-11-04] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr.sys [55200 2015-11-04] (AVAST Software)
S0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [49776 2015-11-04] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [794952 2015-11-04] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [435464 2015-11-04] (AVAST Software)
R3 aswStmXP; C:\Windows\system32\drivers\aswStmXP.sys [167152 2015-11-04] (AVAST Software)
R3 aswTdi; C:\Windows\system32\drivers\aswTdi.sys [57888 2015-11-04] (AVAST Software)
R0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [209432 2015-11-04] (AVAST Software)
R0 FltMgr; C:\Windows\System32\drivers\fltmgr.sys [190424 2009-04-11] (Společnost Microsoft)
R0 giveio; C:\Windows\System32\giveio.sys [5248 1996-04-03] () [File not signed]
S3 hitmanpro37; C:\Windows\system32\drivers\hitmanpro37.sys [35992 2015-01-07] ()
S3 ivusb; C:\Windows\System32\DRIVERS\ivusb.sys [25112 2010-07-28] (Initio Corporation)
S3 MarvinBus; C:\Windows\System32\DRIVERS\MarvinBus.sys [171520 2005-09-23] (Pinnacle Systems GmbH) [File not signed]
R3 Ntfs; C:\Windows\system32\Drivers\Ntfs.sys [1082232 2013-03-03] (Společnost Microsoft)
R3 PAC207; C:\Windows\System32\DRIVERS\PFC027.SYS [507136 2006-12-05] (PixArt Imaging Inc.)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [717296 2009-02-25] () [File not signed]
S3 usbvm326_W; C:\Windows\System32\Drivers\usbvm326_w.sys [195200 2006-08-01] (Vimicro Corporation) [File not signed]
R2 {95808DC4-FA4A-4C74-92FE-5B863F82066B}; C:\Program Files\CyberLink\PowerDVD\000.fcl [41456 2008-01-18] (Cyberlink Corp.)
U3 a89u3wew; C:\Windows\system32\Drivers\a89u3wew.sys [0 ] (Microsoft Corporation) <==== ATTENTION (zero byte File/Folder)
U5 AppMgmt; C:\Windows\system32\svchost.exe [21504 2008-01-19] (Microsoft Corporation)
S4 blbdrive; \SystemRoot\system32\drivers\blbdrive.sys [X]
S3 gHidPnp; System32\Drivers\gHidPnp.Sys [X]
S3 gMouPS2; system32\DRIVERS\gMouPS2.sys [X]
S3 gMouUsb; system32\DRIVERS\gMouUsb.sys [X]
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]
U5 Tosrfcom; C:\Windows\System32\Drivers\Tosrfcom.sys [62799 2004-10-04] (TOSHIBA Corporation) [File not signed]
S3 upperdev; system32\DRIVERS\usbser_lowerflt.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-11-04 22:10 - 2015-11-04 22:11 - 00019806 _____ C:\Users\tomdasa\Desktop\FRST.txt
2015-11-04 22:10 - 2015-11-04 22:10 - 00000000 ____D C:\FRST
2015-11-04 22:09 - 2015-11-04 22:09 - 01701888 _____ (Farbar) C:\Users\tomdasa\Desktop\FRST.exe
2015-11-04 21:59 - 2015-11-04 21:59 - 00000000 ____D C:\Users\tomdasa\AppData\Local\Nvidia Corporation
2015-11-04 21:55 - 2015-11-04 21:56 - 00000000 ____D C:\Users\tomdasa\AppData\Local\NVIDIA
2015-11-04 21:55 - 2015-11-04 21:55 - 00001132 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2015-11-04 21:52 - 2015-10-28 23:03 - 06027430 _____ C:\Windows\system32\nvcoproc.bin
2015-11-04 21:50 - 2015-11-04 21:54 - 00000000 ____D C:\Windows\LastGood
2015-11-04 21:47 - 2015-11-02 23:47 - 00170128 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda32v.sys
2015-11-04 21:47 - 2015-11-02 23:47 - 00035984 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap32.dll
2015-11-04 21:47 - 2015-11-02 18:00 - 37881976 _____ C:\Windows\system32\nvcompiler.dll
2015-11-04 21:47 - 2015-11-02 18:00 - 18361976 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv32.dll
2015-11-04 21:47 - 2015-11-02 18:00 - 13527440 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2015-11-04 21:47 - 2015-11-02 18:00 - 12034248 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2015-11-04 21:47 - 2015-11-02 18:00 - 09383032 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2015-11-04 21:47 - 2015-11-02 18:00 - 03158736 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi.dll
2015-11-04 21:47 - 2015-11-02 18:00 - 02490672 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2015-11-04 21:47 - 2015-11-02 18:00 - 01053488 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco3235887.dll
2015-11-04 21:47 - 2015-11-02 18:00 - 00916600 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco3235887.dll
2015-11-04 21:45 - 2015-11-04 21:45 - 00000000 ____D C:\NVIDIA
2015-11-04 20:35 - 2015-11-04 20:30 - 00794952 _____ (AVAST Software) C:\Windows\system32\Drivers\asw4384.tmp
2015-11-04 20:35 - 2015-11-04 20:30 - 00435464 _____ (AVAST Software) C:\Windows\system32\Drivers\asw4435.tmp
2015-11-04 20:35 - 2015-11-04 20:30 - 00322760 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2015-11-04 20:35 - 2015-11-04 20:30 - 00209432 _____ (AVAST Software) C:\Windows\system32\Drivers\asw4455.tmp
2015-11-04 20:35 - 2015-11-04 20:30 - 00167152 _____ (AVAST Software) C:\Windows\system32\Drivers\asw4466.tmp
2015-11-04 20:35 - 2015-11-04 20:30 - 00081168 _____ (AVAST Software) C:\Windows\system32\Drivers\asw4404.tmp
2015-11-04 20:35 - 2015-11-04 20:30 - 00057888 _____ (AVAST Software) C:\Windows\system32\Drivers\asw4476.tmp
2015-11-04 20:35 - 2015-11-04 20:30 - 00055200 _____ (AVAST Software) C:\Windows\system32\Drivers\asw43E3.tmp
2015-11-04 20:35 - 2015-11-04 20:30 - 00049776 _____ (AVAST Software) C:\Windows\system32\Drivers\asw4424.tmp
2015-11-04 20:35 - 2015-11-04 20:30 - 00024016 _____ (AVAST Software) C:\Windows\system32\Drivers\asw43F4.tmp
2015-11-04 20:32 - 2015-11-04 20:32 - 00000000 ____D C:\Users\tomdasa\AppData\Roaming\AVAST Software
2015-11-04 20:31 - 2015-11-04 20:31 - 00001791 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2015-11-04 20:31 - 2015-11-04 20:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2015-11-04 20:31 - 2015-11-04 20:31 - 00000000 _____ C:\Windows\setuperr.log
2015-11-04 20:31 - 2015-11-04 20:31 - 00000000 _____ C:\Windows\setupact.log
2015-11-04 20:31 - 2015-11-04 20:30 - 00794952 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2015-11-04 20:31 - 2015-11-04 20:30 - 00435464 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2015-11-04 20:31 - 2015-11-04 20:30 - 00209432 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2015-11-04 20:31 - 2015-11-04 20:30 - 00167152 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStmXP.sys
2015-11-04 20:31 - 2015-11-04 20:30 - 00081168 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2015-11-04 20:31 - 2015-11-04 20:30 - 00057888 _____ (AVAST Software) C:\Windows\system32\Drivers\aswTdi.sys
2015-11-04 20:31 - 2015-11-04 20:30 - 00055200 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr.sys
2015-11-04 20:31 - 2015-11-04 20:30 - 00049776 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2015-11-04 20:31 - 2015-11-04 20:30 - 00024016 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2015-11-04 20:30 - 2015-11-04 20:30 - 00043112 _____ (AVAST Software) C:\Windows\avastSS.scr
2015-11-04 20:27 - 2015-11-04 20:27 - 00000000 ____D C:\Program Files\AVAST Software
2015-11-04 20:26 - 2015-11-04 20:26 - 00000000 ____D C:\ProgramData\AVAST Software
2015-11-04 20:21 - 2015-11-04 20:21 - 00002088 _____ C:\Users\tomdasa\Desktop\cc_20151104_202101.reg
2015-10-31 10:30 - 2015-10-31 10:40 - 00000000 ____D C:\Users\tomdasa\Desktop\gumy
2015-10-28 22:04 - 2015-10-28 22:04 - 00000000 ____D C:\Users\tomdasa\AppData\Local\Macromedia
2015-10-28 21:55 - 2015-10-28 22:03 - 00000000 ____D C:\Program Files\Mozilla Firefox
2015-10-28 21:55 - 2015-10-28 21:55 - 00000820 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-10-28 21:55 - 2015-10-28 21:55 - 00000808 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2015-10-28 21:55 - 2015-10-28 21:55 - 00000000 ____D C:\Users\tomdasa\AppData\Local\Mozilla
2015-10-23 23:01 - 2015-11-01 01:26 - 00000958 _____ C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job
2015-10-23 22:43 - 2015-10-24 00:21 - 00780488 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2015-10-23 22:43 - 2015-10-24 00:21 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2015-10-19 17:49 - 2010-02-03 17:51 - 00184320 _____ C:\Windows\system32\xvidvfw.dll
2015-10-19 17:49 - 2010-01-25 16:53 - 00598016 _____ C:\Windows\system32\xvidcore.dll
2015-10-15 21:47 - 2015-10-15 21:47 - 00001588 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera 12.11 1661.lnk
2015-10-15 21:47 - 2015-10-15 21:47 - 00000000 ____D C:\Program Files\Opera
2015-10-15 14:04 - 2015-10-15 14:04 - 00000000 ____D C:\Program Files\Viewer_IPCam
2015-10-15 12:56 - 2015-10-15 12:56 - 00000000 ____D C:\Program Files\object
2015-10-15 12:55 - 2015-10-15 12:55 - 00000000 ____D C:\Users\tomdasa\AppData\Roaming\P2P ID Finder
2015-10-15 12:55 - 2015-10-15 12:55 - 00000000 ____D C:\Users\tomdasa\AppData\Roaming\ipcamax
2015-10-14 23:14 - 2015-10-15 21:59 - 00000000 ____D C:\Users\tomdasa\AppData\Local\Opera
2015-10-14 23:14 - 2015-10-15 21:58 - 00000000 ____D C:\Users\tomdasa\AppData\Roaming\Opera
2015-10-14 23:14 - 2015-10-14 23:14 - 00001576 _____ C:\Users\Public\Desktop\Opera.lnk
2015-10-14 00:44 - 2015-09-28 18:17 - 01206192 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-10-14 00:44 - 2015-09-26 17:09 - 03606464 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2015-10-14 00:44 - 2015-09-26 17:09 - 03554240 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-10-14 00:44 - 2015-07-18 14:14 - 00901264 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00066400 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00022368 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00015200 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-eventing-provider-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00011104 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-10-14 00:44 - 2015-07-18 14:14 - 00011104 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-10-14 00:43 - 2015-07-29 01:46 - 11588096 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-10-14 00:02 - 2015-09-11 08:22 - 01814016 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-10-14 00:02 - 2015-09-11 08:21 - 12388352 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-10-14 00:02 - 2015-09-11 08:19 - 00367616 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-10-14 00:02 - 2015-09-11 08:17 - 09751552 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-10-14 00:02 - 2015-09-11 08:16 - 01139712 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-10-14 00:02 - 2015-09-11 08:16 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-10-14 00:02 - 2015-09-11 08:15 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-10-14 00:02 - 2015-09-11 08:15 - 00422912 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-10-14 00:02 - 2015-09-11 08:14 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-10-14 00:02 - 2015-09-11 08:14 - 01804288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-10-14 00:02 - 2015-09-11 08:14 - 00718848 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-10-14 00:02 - 2015-09-11 08:14 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-10-14 00:02 - 2015-09-11 08:14 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-10-14 00:02 - 2015-09-11 08:14 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2015-10-14 00:02 - 2015-09-11 08:14 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-10-14 00:02 - 2015-09-11 08:14 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-10-14 00:02 - 2015-09-11 08:14 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-10-14 00:02 - 2015-09-11 08:14 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-10-14 00:02 - 2015-09-11 08:14 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-10-14 00:02 - 2015-09-11 08:14 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2015-10-14 00:02 - 2015-09-11 08:14 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2015-10-14 00:02 - 2015-09-11 08:14 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2015-10-13 23:23 - 2015-10-13 23:23 - 00000836 _____ C:\Users\Public\Desktop\Maxthon Cloud Browser.lnk
2015-10-13 23:23 - 2015-10-13 23:23 - 00000000 ____D C:\Users\tomdasa\AppData\Roaming\Maxthon3
2015-10-13 23:23 - 2015-10-13 23:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maxthon Cloud Browser
2015-10-13 23:23 - 2015-10-13 23:23 - 00000000 ____D C:\Program Files\Maxthon
2015-10-13 22:20 - 2015-10-14 21:23 - 00000000 ____D C:\Users\tomdasa\Desktop\backup
2015-10-13 22:20 - 2015-10-13 22:20 - 00000000 ____D C:\Users\tomdasa\AppData\Local\havtech
2015-10-09 23:05 - 2015-10-09 23:05 - 00000000 ___HD C:\Windows\PIF
2015-10-09 09:46 - 2015-10-09 09:46 - 00000000 ____D C:\rsit
2015-10-09 09:46 - 2015-10-09 09:46 - 00000000 ____D C:\Program Files\trend micro
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-11-04 22:11 - 2006-11-02 13:47 - 00003696 _____ C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2015-11-04 22:11 - 2006-11-02 13:47 - 00003696 _____ C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2015-11-04 21:55 - 2012-11-19 06:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-11-04 21:55 - 2011-12-29 14:39 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-11-04 21:55 - 2011-12-29 14:38 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2015-11-04 21:55 - 2008-04-25 20:01 - 00000000 ____D C:\ProgramData\NVIDIA
2015-11-04 21:54 - 2008-10-26 12:36 - 00000000 ____D C:\Users\tomdasa
2015-11-04 21:53 - 2014-06-22 08:27 - 00000000 ____D C:\Temp
2015-11-04 21:00 - 2008-10-26 13:58 - 00198144 _____ C:\Users\tomdasa\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-11-04 20:55 - 2015-02-05 11:01 - 00000821 _____ C:\Users\Public\Desktop\VLC media player.lnk
2015-11-04 20:51 - 2008-12-22 20:13 - 00000000 ____D C:\Program Files\Common Files\Adobe AIR
2015-11-04 20:51 - 2008-12-09 09:50 - 00000000 ____D C:\Program Files\Adobe
2015-11-04 20:17 - 2015-01-01 13:48 - 00000000 ____D C:\Users\tomdasa\AppData\Roaming\Seznam.cz
2015-11-04 20:15 - 2008-04-06 11:09 - 02034464 ____N C:\Windows\WindowsUpdate.log
2015-11-04 20:11 - 2015-05-10 09:30 - 00376360 _____ C:\Windows\system32\FNTCACHE.DAT
2015-11-04 20:11 - 2014-11-17 19:06 - 00000000 ____D C:\Users\tomdasa\AppData\Local\HTC MediaHub
2015-11-04 20:11 - 2009-11-20 09:37 - 00000000 ____D C:\Users\tomdasa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink BD Solution
2015-11-04 20:11 - 2006-11-02 14:01 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-11-04 20:08 - 2008-11-03 14:40 - 00009268 _____ C:\Users\tomdasa\AppData\Local\d3d9caps.dat
2015-11-03 21:42 - 2008-10-27 19:58 - 00000012 _____ C:\Windows\bthservsdp.dat
2015-11-03 21:42 - 2006-11-02 14:01 - 00032534 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2015-11-02 23:47 - 2013-02-18 08:22 - 00926520 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco3220103.dll
2015-11-02 18:00 - 2013-02-25 23:22 - 15120736 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2um.dll
2015-11-02 18:00 - 2013-02-25 23:22 - 12770752 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dum.dll
2015-11-02 18:00 - 2011-12-29 14:38 - 00028854 _____ C:\Windows\system32\nvinfo.pb
2015-11-02 14:18 - 2011-03-24 00:29 - 03937072 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2015-11-02 14:18 - 2011-03-24 00:29 - 02580088 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc.dll
2015-11-02 14:18 - 2011-03-24 00:28 - 02554672 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2015-11-02 14:18 - 2011-03-24 00:28 - 00671352 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2015-11-02 14:18 - 2011-03-24 00:28 - 00374904 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2015-11-02 14:18 - 2011-03-24 00:28 - 00061744 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2015-11-02 09:27 - 2006-11-02 11:33 - 01532822 _____ C:\Windows\system32\PerfStringBackup.INI
2015-11-01 11:02 - 2008-11-07 18:48 - 00000000 ____D C:\Users\tomdasa\AppData\Roaming\Skype
2015-10-28 22:10 - 2009-01-24 11:10 - 00000000 ____D C:\Users\tomdasa\AppData\Roaming\Vso
2015-10-28 21:55 - 2010-06-11 17:11 - 00000000 ____D C:\Users\tomdasa\AppData\Roaming\Mozilla
2015-10-27 11:53 - 2009-01-24 11:11 - 00000671 _____ C:\Users\tomdasa\AppData\Roaming\vso_ts_preview.xml
2015-10-27 11:52 - 2009-01-24 11:13 - 00000000 ____D C:\Users\tomdasa\Documents\ConvertXtoDVD
2015-10-24 00:26 - 2008-12-13 17:39 - 00000000 ____D C:\Users\tomdasa\AppData\LocalLow\Adobe
2015-10-24 00:26 - 2008-12-13 17:38 - 00000000 ____D C:\Windows\system32\Adobe
2015-10-24 00:25 - 2012-04-16 11:32 - 00000000 ____D C:\Users\tomdasa\AppData\Local\Adobe
2015-10-15 13:41 - 2011-06-15 07:55 - 00002425 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X.lnk
2015-10-14 20:30 - 2015-09-17 08:19 - 00000000 ____D C:\Users\tomdasa\Desktop\booking
2015-10-14 00:50 - 2013-07-29 21:37 - 00000000 ____D C:\Windows\system32\MRT
2015-10-14 00:50 - 2008-10-28 17:26 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-10-14 00:46 - 2006-11-02 11:24 - 141105520 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2015-10-12 21:15 - 2009-01-31 23:57 - 00000000 ____D C:\Windows\Minidump
2015-10-12 18:47 - 2015-09-14 13:39 - 00000000 ____D C:\Users\tomdasa\Desktop\brána
2015-10-09 23:12 - 2015-09-05 09:14 - 00000000 ____D C:\AdwCleaner
==================== Files in the root of some directories =======
2009-01-24 11:10 - 2009-01-24 11:10 - 0087608 _____ () C:\Users\tomdasa\AppData\Roaming\inst.exe
2009-01-24 11:10 - 2009-01-24 11:10 - 0007887 _____ () C:\Users\tomdasa\AppData\Roaming\pcouffin.cat
2009-01-24 11:10 - 2009-01-24 11:10 - 0001144 _____ () C:\Users\tomdasa\AppData\Roaming\pcouffin.inf
2009-01-24 11:11 - 2009-01-24 11:11 - 0000034 _____ () C:\Users\tomdasa\AppData\Roaming\pcouffin.log
2009-01-24 11:10 - 2009-01-24 11:10 - 0047360 _____ (VSO Software) C:\Users\tomdasa\AppData\Roaming\pcouffin.sys
2008-12-25 00:03 - 2013-05-03 20:40 - 0138056 _____ () C:\Users\tomdasa\AppData\Roaming\PnkBstrK.sys
2009-01-24 11:11 - 2015-10-27 11:53 - 0000671 _____ () C:\Users\tomdasa\AppData\Roaming\vso_ts_preview.xml
2008-11-03 14:40 - 2015-11-04 20:08 - 0009268 _____ () C:\Users\tomdasa\AppData\Local\d3d9caps.dat
2008-10-26 13:58 - 2015-11-04 21:00 - 0198144 _____ () C:\Users\tomdasa\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2008-11-07 18:51 - 2008-11-07 18:51 - 0000056 ____H () C:\ProgramData\ezsidmv.dat
2008-04-25 20:01 - 2014-11-16 13:34 - 0038718 _____ () C:\ProgramData\hpzinstall.log
2011-11-25 20:10 - 2011-11-25 20:10 - 0000196 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc
Some files in TEMP:
====================
C:\Users\tomdasa\AppData\Local\temp\nvStInst.exe
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-11-04 20:20
==================== End of FRST.txt ============================
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zamrzání pc
Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2113988722-11527645-2074921056-1000 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
CHR HKLM\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx [2012-11-29]
U3 a89u3wew; C:\Windows\system32\Drivers\a89u3wew.sys [0 ] (Microsoft Corporation) <==== ATTENTION (zero byte File/Folder)
C:\Windows\system32\Drivers\asw4455.tmp
C:\Windows\system32\Drivers\asw4466.tmp
C:\Windows\system32\Drivers\asw4404.tmp
C:\Windows\system32\Drivers\asw4476.tmp
C:\Windows\system32\Drivers\asw43E3.tmp
C:\Windows\system32\Drivers\asw4424.tmp
C:\Windows\system32\Drivers\asw43F4.tmp
C:\Users\tomdasa\AppData\Local\temp
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Zamrzání pc
zde je log
Fix result of Farbar Recovery Scan Tool (x86) Version:04-11-2015
Ran by tomdasa (2015-11-04 22:47:01) Run:1
Running from C:\Users\tomdasa\Desktop
Loaded Profiles: tomdasa (Available Profiles: tomdasa)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2113988722-11527645-2074921056-1000 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
CHR HKLM\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx [2012-11-29]
U3 a89u3wew; C:\Windows\system32\Drivers\a89u3wew.sys [0 ] (Microsoft Corporation) <==== ATTENTION (zero byte File/Folder)
C:\Windows\system32\Drivers\asw4455.tmp
C:\Windows\system32\Drivers\asw4466.tmp
C:\Windows\system32\Drivers\asw4404.tmp
C:\Windows\system32\Drivers\asw4476.tmp
C:\Windows\system32\Drivers\asw43E3.tmp
C:\Windows\system32\Drivers\asw4424.tmp
C:\Windows\system32\Drivers\asw43F4.tmp
C:\Users\tomdasa\AppData\Local\temp
End
*****************
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully.
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully.
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully.
"HKU\S-1-5-21-2113988722-11527645-2074921056-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}" => key removed successfully.
HKCR\CLSID\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} => key not found.
"HKLM\SOFTWARE\Google\Chrome\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji" => key removed successfully.
C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx => moved successfully
a89u3wew => service removed successfully.
C:\Windows\system32\Drivers\asw4455.tmp => moved successfully
C:\Windows\system32\Drivers\asw4466.tmp => moved successfully
C:\Windows\system32\Drivers\asw4404.tmp => moved successfully
C:\Windows\system32\Drivers\asw4476.tmp => moved successfully
C:\Windows\system32\Drivers\asw43E3.tmp => moved successfully
C:\Windows\system32\Drivers\asw4424.tmp => moved successfully
C:\Windows\system32\Drivers\asw43F4.tmp => moved successfully
"C:\Users\tomdasa\AppData\Local\temp" folder move:
Could not move "C:\Users\tomdasa\AppData\Local\temp" => Scheduled to move on reboot.
Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 2015-11-04 22:49:37)
"C:\Users\tomdasa\AppData\Local\temp" => Could not move
==== End of Fixlog 22:49:38 ====
Fix result of Farbar Recovery Scan Tool (x86) Version:04-11-2015
Ran by tomdasa (2015-11-04 22:47:01) Run:1
Running from C:\Users\tomdasa\Desktop
Loaded Profiles: tomdasa (Available Profiles: tomdasa)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2113988722-11527645-2074921056-1000 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
CHR HKLM\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx [2012-11-29]
U3 a89u3wew; C:\Windows\system32\Drivers\a89u3wew.sys [0 ] (Microsoft Corporation) <==== ATTENTION (zero byte File/Folder)
C:\Windows\system32\Drivers\asw4455.tmp
C:\Windows\system32\Drivers\asw4466.tmp
C:\Windows\system32\Drivers\asw4404.tmp
C:\Windows\system32\Drivers\asw4476.tmp
C:\Windows\system32\Drivers\asw43E3.tmp
C:\Windows\system32\Drivers\asw4424.tmp
C:\Windows\system32\Drivers\asw43F4.tmp
C:\Users\tomdasa\AppData\Local\temp
End
*****************
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully.
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully.
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully.
"HKU\S-1-5-21-2113988722-11527645-2074921056-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}" => key removed successfully.
HKCR\CLSID\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} => key not found.
"HKLM\SOFTWARE\Google\Chrome\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji" => key removed successfully.
C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx => moved successfully
a89u3wew => service removed successfully.
C:\Windows\system32\Drivers\asw4455.tmp => moved successfully
C:\Windows\system32\Drivers\asw4466.tmp => moved successfully
C:\Windows\system32\Drivers\asw4404.tmp => moved successfully
C:\Windows\system32\Drivers\asw4476.tmp => moved successfully
C:\Windows\system32\Drivers\asw43E3.tmp => moved successfully
C:\Windows\system32\Drivers\asw4424.tmp => moved successfully
C:\Windows\system32\Drivers\asw43F4.tmp => moved successfully
"C:\Users\tomdasa\AppData\Local\temp" folder move:
Could not move "C:\Users\tomdasa\AppData\Local\temp" => Scheduled to move on reboot.
Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 2015-11-04 22:49:37)
"C:\Users\tomdasa\AppData\Local\temp" => Could not move
==== End of Fixlog 22:49:38 ====
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zamrzání pc
OK. Změnilo se něco?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?