Dobrý deň prajem!Začal mi notebook "vyrábať" problémy a preto Vás chcem poprosiť o pomoc...Prikladám log:Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 27-10-2014 01
Ran by Rocky-67 (administrator) on ROCKY-67-PC on 29-10-2014 08:28:05
Running from C:\Users\Rocky-67\Desktop
Loaded Profile: Rocky-67 (Available profiles: Rocky-67 & Gemini-67)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Slovenčina (Slovensko)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Validity Sensors, Inc.) C:\Windows\System32\vcsFPService.exe
(Egis Technology Inc. ) C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe
(Egis Technology Inc. ) C:\Program Files (x86)\Hewlett-Packard\HP SimplePass Identity Protection\EgisService.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
(Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AESTSr64.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
(Foxit Corporation) C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe
(Nalpeiron Ltd.) C:\Windows\SysWOW64\nlssrv32.exe
(East-Tec) C:\Program Files (x86)\east-tec Eraser\etSCHService.exe
(East-Tec) C:\Program Files (x86)\east-tec Eraser\etUpdateService.exe
(CyberGhost S.R.L) C:\Program Files\CyberGhost 5\Service.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
(Microsoft Corporation) C:\Windows\ehome\ehrecvr.exe
(Microsoft Corporation) C:\Windows\ehome\mcGlidHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\CisTray.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Comfort Software Group) C:\Program Files\ComfortKeyboard\CKeyboard.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe
() C:\Program Files\ComfortKeyboard\CKeyboardCm.exe
(Egis Technology Inc. ) C:\Program Files (x86)\Hewlett-Packard\HP SimplePass Identity Protection\EgisTSR.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe
(forum.viry.cz) C:\Users\Rocky-67\Desktop\FRSTLauncher.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2771184 2013-07-26] (Synaptics Incorporated)
HKLM\...\Run: [COMODO Internet Security] => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [1275608 2014-03-25] (COMODO)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [5595848 2014-09-22] (ESET)
HKLM-x32\...\Run: [HPOSD] => C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe [379960 2011-08-19] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [VitaKeyTSR] => C:\Program Files (x86)\Hewlett-Packard\HP SimplePass Identity Protection\EgisTSR.exe [384048 2011-04-19] (Egis Technology Inc. )
HKU\S-1-5-21-238691012-2406985898-395691995-1000\...\Run: [CKeyboard] => C:\Program Files\ComfortKeyboard\CKeyboard.exe [4165544 2013-01-04] (Comfort Software Group)
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2013-10-04] (Microsoft Corporation)
Lsa: [Notification Packages] scecli EgisPwdFilter EgisDSPwdFilter c:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
BHO: EgisPBIE Sign-in Helper -> {7B51CCBE-4AF9-44A6-BDAB-D7F7E4C4E6F9} -> C:\Program Files (x86)\Hewlett-Packard\HP SimplePass Identity Protection\x64\EgisPBIE.dll (Egis Technology Inc.)
BHO-x32: EgisPBIE Sign-in Helper -> {7B51CCBE-4AF9-44A6-BDAB-D7F7E4C4E6F9} -> C:\Program Files (x86)\Hewlett-Packard\HP SimplePass Identity Protection\EgisPBIE.dll (Egis Technology Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{078A1910-50C5-43EA-8AC4-782E6032947D}: [NameServer] 156.154.70.25,156.154.71.25
Tcpip\..\Interfaces\{DF76DC86-190E-4058-BAB8-DAED8BD21CFD}: [NameServer] 156.154.70.22,156.154.71.22
FireFox:
========
FF ProfilePath: C:\Users\Rocky-67\AppData\Roaming\Mozilla\Firefox\Profiles\aio6a6tb.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_189.dll ()
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_189.dll ()
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @videolan.org/vlc,version=2.1.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\atlas-sk.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\azet-sk.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\dunaj-sk.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\slovnik-sk.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\zoznam-sk.xml
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
FF HKLM-x32\...\Firefox\Extensions: [{41ecbc0b-34d5-4cd4-935f-253a30e2cb7e}] - C:\Program Files (x86)\Hewlett-Packard\HP SimplePass Identity Protection\FFExt
FF Extension: Online Accounts Extension - C:\Program Files (x86)\Hewlett-Packard\HP SimplePass Identity Protection\FFExt [2013-10-04]
FF HKLM-x32\...\Firefox\Extensions: [{d4da7309-b89a-45ec-8ebb-cfb2ae13618b}] - C:\Program Files (x86)\Hewlett-Packard\HP SimplePass Identity Protection\FFExt20
FF Extension: Online Accounts Extension - C:\Program Files (x86)\Hewlett-Packard\HP SimplePass Identity Protection\FFExt20 [2013-10-04]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
Chrome:
=======
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 CGVPNCliService; C:\Program Files\CyberGhost 5\Service.exe [64624 2014-06-12] (CyberGhost S.R.L)
R2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [6817544 2014-04-16] (COMODO)
S3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2264280 2014-03-25] (COMODO)
R2 EgisTec Service; C:\Program Files (x86)\Hewlett-Packard\HP SimplePass Identity Protection\EgisService.exe [704048 2011-04-19] (Egis Technology Inc. )
R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [1350112 2014-09-16] (ESET)
R2 FoxitCloudUpdateService; C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe [242216 2014-06-17] (Foxit Corporation)
S4 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1720608 2014-07-25] (NVIDIA Corporation)
S4 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [18956064 2014-07-25] (NVIDIA Corporation)
R2 QSetSchedulerService; C:\Program Files (x86)\east-tec Eraser\etSCHService.exe [2424256 2014-10-03] (East-Tec)
R2 QSetUpdateService; C:\Program Files (x86)\east-tec Eraser\etUpdateService.exe [2271168 2014-10-03] (East-Tec)
S3 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [386344 2010-08-19] ()
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [340480 2013-12-04] (IDT, Inc.) [File not signed]
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R3 AVerAF15; C:\Windows\System32\Drivers\AVerAF15.sys [312064 2009-12-04] (AVerMedia TECHNOLOGIES, Inc.)
S3 cleanhlp; C:\Users\Gemini-67\Aplikácie\Antivíry\bin\cleanhlp64.sys [57024 2014-10-16] (Emsisoft GmbH)
R1 cmderd; C:\Windows\System32\DRIVERS\cmderd.sys [23168 2014-04-16] (COMODO)
R1 cmdGuard; C:\Windows\System32\DRIVERS\cmdguard.sys [738472 2014-04-16] (COMODO)
R1 cmdHlp; C:\Windows\System32\DRIVERS\cmdhlp.sys [48360 2014-04-16] (COMODO)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [243440 2014-09-22] (ESET)
U5 edevmon; C:\Windows\System32\Drivers\edevmon.sys [241368 2014-09-22] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [169280 2014-09-22] (ESET)
R2 epfwwfpr; C:\Windows\System32\DRIVERS\epfwwfpr.sys [158968 2014-09-22] (ESET)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28008 2014-04-24] (Intel Corporation)
R1 inspect; C:\Windows\System32\DRIVERS\inspect.sys [105552 2014-04-16] (COMODO)
S3 johci; C:\Windows\System32\DRIVERS\johci.sys [26208 2012-07-16] (JMicron Technology Corp.)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [20256 2014-07-25] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [38048 2014-09-04] (NVIDIA Corporation)
R2 PfFilter; C:\Program Files (x86)\IObit\Protected Folder\pffilter.sys [38392 2012-11-23] (IObit Information Technology)
R3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [34544 2013-07-26] (Synaptics Incorporated)
R0 tib; C:\Windows\System32\DRIVERS\tib.sys [1120032 2013-10-18] (Acronis International GmbH)
R0 tib_mounter; C:\Windows\System32\DRIVERS\tib_mounter.sys [183224 2013-10-18] (Acronis)
R3 ubohci; C:\Windows\System32\DRIVERS\ubohci.sys [132608 2012-10-05] (Unibrain)
R2 ubsbm; C:\Windows\System32\DRIVERS\ubsbm.sys [24064 2012-10-05] (Unibrain)
R2 ubumapi; C:\Windows\System32\DRIVERS\ubumapi.sys [92160 2012-10-05] (Unibrain)
R0 vidsflt; C:\Windows\System32\DRIVERS\vidsflt.sys [117024 2013-10-18] (Acronis International GmbH)
S3 vmci; \SystemRoot\system32\DRIVERS\vmci.sys [X]
S3 VMnetAdapter; system32\DRIVERS\vmnetadapter.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-10-29 08:28 - 2014-10-29 08:28 - 00012391 _____ () C:\Users\Rocky-67\Desktop\FRST.txt
2014-10-29 08:27 - 2014-10-29 08:28 - 00000000 ____D () C:\FRST
2014-10-29 07:34 - 2014-10-29 07:34 - 02113024 _____ (Farbar) C:\Users\Rocky-67\Desktop\FRST64.exe
2014-10-29 07:34 - 2014-10-29 07:34 - 00112640 _____ (forum.viry.cz) C:\Users\Rocky-67\Desktop\FRSTLauncher.exe
2014-10-29 07:23 - 2014-10-29 07:23 - 00000000 ____D () C:\rsit
2014-10-29 07:23 - 2014-10-29 07:23 - 00000000 ____D () C:\Program Files\trend micro
2014-10-28 20:31 - 2014-10-28 20:31 - 00000000 ____D () C:\Users\Rocky-67\AppData\Roaming\ComfortSoftware
2014-10-28 11:22 - 2014-10-28 20:26 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-10-26 10:55 - 2014-10-28 20:26 - 00000000 ____D () C:\Users\Gemini-67\AppData\Local\DxO_Labs
2014-10-26 10:55 - 2014-10-26 10:55 - 00000000 ____D () C:\Users\Gemini-67\AppData\Roaming\DxO Labs
2014-10-26 10:36 - 2014-10-26 10:36 - 00000000 ____D () C:\Users\Rocky-67\AppData\Roaming\DxO Labs
2014-10-26 10:35 - 2014-10-28 20:26 - 00000000 ____D () C:\Users\Rocky-67\AppData\Local\DxO_Labs
2014-10-26 10:35 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2014-10-26 10:35 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2014-10-26 10:34 - 2014-10-28 20:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DxO Optics Pro 8
2014-10-26 10:34 - 2014-10-28 20:26 - 00000000 ____D () C:\ProgramData\DxO Labs
2014-10-26 10:34 - 2014-10-26 10:34 - 00000000 ____D () C:\Program Files\DxO Labs
2014-10-24 19:27 - 2014-10-24 19:46 - 00000000 ____D () C:\Users\Gemini-67\AppData\Local\VMware
2014-10-24 19:12 - 2014-10-24 19:51 - 00000000 ____D () C:\ProgramData\VMware
2014-10-24 12:46 - 2012-10-05 12:26 - 00132608 _____ (Unibrain) C:\Windows\system32\Drivers\ubohci.sys
2014-10-24 12:46 - 2012-10-05 07:57 - 00092160 _____ (Unibrain) C:\Windows\system32\Drivers\UBUMAPI.sys
2014-10-24 12:46 - 2012-10-05 07:56 - 00187392 _____ (Unibrain) C:\Windows\system32\Drivers\UB1394.sys
2014-10-24 12:46 - 2012-10-05 07:56 - 00024064 _____ (Unibrain) C:\Windows\system32\Drivers\UBSBM.sys
2014-10-24 12:44 - 2013-12-04 22:32 - 02213376 _____ (IDT, Inc.) C:\Windows\system32\stapo64.dll
2014-10-24 12:44 - 2013-12-04 22:32 - 00697856 _____ (IDT, Inc.) C:\Windows\system32\stapi64.dll
2014-10-24 12:44 - 2013-12-04 22:32 - 00551936 _____ (IDT, Inc.) C:\Windows\system32\Drivers\stwrt64.sys
2014-10-24 12:44 - 2013-12-04 22:32 - 00499200 _____ (IDT, Inc.) C:\Windows\system32\stcplx64.dll
2014-10-24 12:44 - 2013-12-04 22:32 - 00256000 _____ (IDT, Inc.) C:\Windows\system32\st646498.dll
2014-10-24 12:43 - 2014-09-04 20:14 - 00038048 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2014-10-24 12:43 - 2014-09-04 20:14 - 00034976 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2014-10-24 12:43 - 2014-09-04 20:14 - 00032416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2014-10-24 12:43 - 2012-07-16 12:38 - 00026208 _____ (JMicron Technology Corp.) C:\Windows\system32\Drivers\johci.sys
2014-10-24 12:43 - 2009-12-25 19:09 - 00076112 _____ (ENE TECHNOLOGY INC.) C:\Windows\system32\Drivers\enecir.sys
2014-10-24 12:42 - 2014-10-28 20:26 - 00000000 ____D () C:\Users\Gemini-67\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zariadenia Bluetooth
2014-10-24 12:42 - 2014-07-16 08:06 - 00941784 _____ (Realtek ) C:\Windows\system32\Drivers\Rt64win7.sys
2014-10-24 12:42 - 2014-07-16 08:06 - 00073800 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll
2014-10-24 12:42 - 2014-04-24 15:34 - 00633704 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorA.sys
2014-10-24 12:42 - 2014-04-24 15:34 - 00028008 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorF.sys
2014-10-24 12:40 - 2014-10-28 20:40 - 00001562 _____ () C:\Windows\setupact.log
2014-10-24 12:40 - 2014-10-24 12:40 - 00000000 _____ () C:\Windows\setuperr.log
2014-10-24 12:17 - 2014-10-28 20:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Comfort On-Screen Keyboard
2014-10-24 12:17 - 2014-10-24 12:17 - 00000000 ____D () C:\Users\Gemini-67\AppData\Roaming\ComfortSoftware
2014-10-24 12:17 - 2014-10-24 12:17 - 00000000 ____D () C:\Program Files\ComfortKeyboard
2014-10-24 12:17 - 2012-12-06 19:17 - 00024408 _____ () C:\Windows\system32\cskeyboardlogon.dll
2014-10-24 12:17 - 2012-12-06 19:13 - 00199000 _____ () C:\Windows\system32\CsCredentialLogon.dll
2014-10-24 12:17 - 2012-12-06 19:13 - 00167256 _____ () C:\Windows\system32\CsCredentialLogon64.dll
2014-10-24 12:17 - 2012-12-06 19:13 - 00089944 _____ () C:\Windows\system32\runcosk.exe
2014-10-24 12:11 - 2014-10-28 20:26 - 00000000 ____D () C:\Users\Gemini-67\AppData\Roaming\uTorrent
2014-10-23 17:54 - 2014-10-24 12:46 - 00128836 _____ () C:\Windows\system32\Drivers\fvstore.dat
2014-10-22 20:05 - 2014-10-22 20:05 - 00000000 ____D () C:\Users\Gemini-67\AppData\Roaming\East-Tec
2014-10-22 19:16 - 2014-10-22 19:16 - 00000112 _____ () C:\Windows\etGlobalInfo.txt
2014-10-22 19:15 - 2014-10-22 19:15 - 00000000 ____D () C:\Users\Rocky-67\AppData\Roaming\East-Tec
2014-10-22 19:15 - 2014-10-22 19:15 - 00000000 ____D () C:\ProgramData\Licenses
2014-10-22 19:15 - 2014-10-22 19:15 - 00000000 ____D () C:\ProgramData\East-Tec
2014-10-22 19:14 - 2014-10-28 20:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\east-tec Eraser 2014
2014-10-22 19:14 - 2014-10-23 12:45 - 00000000 ____D () C:\Program Files (x86)\east-tec Eraser
2014-10-22 17:42 - 2009-12-04 06:54 - 00312064 _____ (AVerMedia TECHNOLOGIES, Inc.) C:\Windows\system32\Drivers\AVerAF15.sys
2014-10-22 17:41 - 2014-10-22 17:41 - 00000000 ____D () C:\Program Files (x86)\Realtek
2014-10-22 17:32 - 2012-05-02 05:18 - 00184144 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwaudio.sys
2014-10-22 17:32 - 2012-03-06 10:29 - 00210984 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwavdt.sys
2014-10-22 17:32 - 2012-03-06 10:29 - 00021544 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwrchid.sys
2014-10-22 17:32 - 2011-09-17 23:38 - 00039976 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwl2cap.sys
2014-10-22 17:12 - 2014-10-22 17:12 - 00000000 ____D () C:\Users\Public\Documents\Downloaded Installers
2014-10-22 07:17 - 2014-10-22 07:47 - 00000000 ____D () C:\Users\Rocky-67\AppData\Local\Google
2014-10-22 07:17 - 2014-10-22 07:47 - 00000000 ____D () C:\Program Files (x86)\Google
2014-10-22 07:17 - 2014-10-22 07:22 - 00000000 ____D () C:\Users\Gemini-67\AppData\Local\Google
2014-10-22 07:11 - 2014-10-22 07:13 - 00000000 ____D () C:\Users\Rocky-67\AppData\Local\Adobe
2014-10-19 18:23 - 2014-10-24 09:33 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-10-19 18:23 - 2014-10-19 18:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-10-19 18:23 - 2014-10-19 18:23 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-10-19 18:23 - 2014-10-19 18:23 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-10-19 18:23 - 2014-10-01 10:11 - 00093400 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-10-19 18:23 - 2014-10-01 10:11 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-10-19 18:23 - 2014-10-01 10:11 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-10-19 18:17 - 2014-10-19 18:17 - 00000000 ____D () C:\Users\Rocky-67\AppData\Roaming\Mozilla
2014-10-19 18:17 - 2014-10-19 18:17 - 00000000 ____D () C:\Users\Rocky-67\AppData\Local\Mozilla
2014-10-17 14:58 - 2014-10-17 14:58 - 00001167 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-10-17 14:58 - 2014-10-17 14:58 - 00000000 ____D () C:\Users\Gemini-67\AppData\Roaming\Mozilla
2014-10-17 14:58 - 2014-10-17 14:58 - 00000000 ____D () C:\Users\Gemini-67\AppData\Local\Mozilla
2014-10-17 14:57 - 2014-10-17 14:57 - 00000000 ____D () C:\ProgramData\Mozilla
2014-10-17 14:29 - 2014-10-17 14:29 - 00000000 ____D () C:\Users\Rocky-67\AppData\Local\CyberGhost
2014-10-17 12:20 - 2014-10-17 12:20 - 00001333 _____ () C:\Users\Rocky-67\Desktop\Start Emsisoft Emergency Kit.lnk
2014-10-17 09:43 - 2014-10-07 03:54 - 00378552 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-10-17 09:43 - 2014-10-07 03:04 - 00331448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-10-17 09:43 - 2014-09-25 23:46 - 00365056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-10-17 09:43 - 2014-09-25 23:46 - 00243200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-10-17 09:43 - 2014-09-25 23:46 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-10-17 09:43 - 2014-09-25 23:32 - 02017280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-10-17 09:43 - 2014-09-19 02:56 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-10-17 09:43 - 2014-09-19 02:55 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-10-17 09:43 - 2014-09-19 02:44 - 17484800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-10-17 09:43 - 2014-09-19 02:39 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-10-17 09:43 - 2014-09-19 02:30 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-10-17 09:43 - 2014-09-19 02:25 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-10-17 09:43 - 2014-09-19 02:14 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-10-17 09:43 - 2014-09-19 02:14 - 00446464 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-10-17 09:43 - 2014-09-19 02:06 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-10-17 09:43 - 2014-09-19 02:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-10-17 09:43 - 2014-09-19 02:01 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-10-17 09:43 - 2014-09-19 01:55 - 02187264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-10-17 09:43 - 2014-09-19 01:54 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-10-17 09:43 - 2014-09-19 01:53 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-10-17 09:43 - 2014-09-19 01:49 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-10-17 09:43 - 2014-09-19 01:42 - 00710656 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-10-17 09:43 - 2014-09-19 01:36 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-10-17 09:43 - 2014-09-19 01:20 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-10-17 09:43 - 2014-09-19 01:14 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-10-17 09:43 - 2014-09-19 00:53 - 01190400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-10-17 09:42 - 2014-10-10 03:05 - 00507392 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-10-17 09:42 - 2014-10-10 03:05 - 00276480 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2014-10-17 09:42 - 2014-10-10 03:00 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-10-17 09:42 - 2014-09-29 01:58 - 03198976 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-10-17 09:42 - 2014-09-25 23:50 - 13619200 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-10-17 09:42 - 2014-09-25 23:43 - 11807232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-10-17 09:42 - 2014-09-25 23:31 - 02108416 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-10-17 09:42 - 2014-09-19 03:25 - 23631360 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-10-17 09:42 - 2014-09-19 02:41 - 02796032 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-10-17 09:42 - 2014-09-19 02:40 - 00547328 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-10-17 09:42 - 2014-09-19 02:40 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-10-17 09:42 - 2014-09-19 02:38 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-10-17 09:42 - 2014-09-19 02:36 - 05829632 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-10-17 09:42 - 2014-09-19 02:31 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-10-17 09:42 - 2014-09-19 02:27 - 00595968 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-10-17 09:42 - 2014-09-19 02:26 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-10-17 09:42 - 2014-09-19 02:25 - 04201472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-10-17 09:42 - 2014-09-19 02:25 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-10-17 09:42 - 2014-09-19 02:18 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-10-17 09:42 - 2014-09-19 02:02 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-10-17 09:42 - 2014-09-19 02:01 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-10-17 09:42 - 2014-09-19 02:00 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-10-17 09:42 - 2014-09-19 01:59 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-10-17 09:42 - 2014-09-19 01:58 - 00289280 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-10-17 09:42 - 2014-09-19 01:51 - 00440320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-10-17 09:42 - 2014-09-19 01:50 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-10-17 09:42 - 2014-09-19 01:42 - 00731136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-10-17 09:42 - 2014-09-19 01:40 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-10-17 09:42 - 2014-09-19 01:33 - 02309632 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-10-17 09:42 - 2014-09-19 01:32 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-10-17 09:42 - 2014-09-19 01:18 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-10-17 09:42 - 2014-09-19 00:59 - 01810944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-10-17 09:42 - 2014-09-19 00:59 - 00775168 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-10-17 09:42 - 2014-09-19 00:52 - 00678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-10-17 09:42 - 2014-06-18 23:23 - 01943696 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2014-10-17 09:42 - 2014-06-18 23:23 - 01131664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfshim.dll
2014-10-17 09:42 - 2014-06-18 23:23 - 00156824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscorier.dll
2014-10-17 09:42 - 2014-06-18 23:23 - 00156312 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
2014-10-17 09:42 - 2014-06-18 23:23 - 00081560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscories.dll
2014-10-17 09:42 - 2014-06-18 23:23 - 00073880 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
2014-10-17 09:41 - 2014-09-18 03:00 - 03241472 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-10-17 09:41 - 2014-09-18 02:32 - 02363904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-10-17 09:41 - 2014-09-04 06:23 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2014-10-17 09:41 - 2014-09-04 06:04 - 00372736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
2014-10-17 09:41 - 2014-08-29 03:07 - 03179520 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-10-17 09:41 - 2014-07-17 03:07 - 00681984 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2014-10-17 09:41 - 2014-07-17 03:07 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-10-17 09:41 - 2014-07-17 03:07 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
2014-10-17 09:41 - 2014-07-17 03:07 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2014-10-17 09:41 - 2014-07-17 03:07 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-10-17 09:41 - 2014-07-17 03:07 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-10-17 09:41 - 2014-07-17 02:40 - 00157696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsta.dll
2014-10-17 09:41 - 2014-07-17 02:39 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-10-17 09:41 - 2014-07-17 02:39 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-10-17 09:41 - 2014-07-17 02:21 - 00212480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2014-10-17 09:41 - 2014-07-17 02:21 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2014-10-17 09:40 - 2014-09-13 02:58 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-10-17 09:40 - 2014-09-13 02:40 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2014-10-17 09:40 - 2014-09-05 03:11 - 06584320 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-10-17 09:40 - 2014-09-05 02:52 - 05703168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-10-14 18:26 - 2014-10-22 19:24 - 00000000 ____D () C:\Program Files (x86)\Mozilla Thunderbird
2014-10-11 17:46 - 2014-10-11 17:49 - 00000000 ____D () C:\Users\Gemini-67\AppData\Local\CyberGhost
2014-10-11 17:45 - 2014-10-11 17:46 - 00000000 ____D () C:\Program Files\TAP-Windows
2014-10-11 17:45 - 2014-10-11 17:46 - 00000000 ____D () C:\Program Files\CyberGhost 5
2014-10-11 17:45 - 2014-10-11 17:45 - 00001736 _____ () C:\Users\Rocky-67\Desktop\CyberGhost 5.lnk
2014-10-11 17:45 - 2014-10-11 17:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberGhost 5
2014-10-11 16:35 - 2014-10-28 21:34 - 00000000 ____D () C:\Users\Gemini-67\AppData\Roaming\Vso
2014-10-11 16:29 - 2014-10-11 16:29 - 00001057 _____ () C:\Users\Rocky-67\AppData\Roaming\vso_ts_preview.xml
2014-10-11 16:28 - 2014-10-11 16:28 - 00001236 _____ () C:\Users\Rocky-67\Desktop\ConvertXtoDVD 4.lnk
2014-10-11 16:28 - 2014-10-11 16:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VSO
2014-10-11 16:28 - 2014-10-11 16:28 - 00000000 ____D () C:\Program Files (x86)\VSO
2014-10-11 16:28 - 2009-09-02 12:44 - 01184984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wvc1dmod.dll
2014-10-11 16:28 - 2009-09-02 12:44 - 00626688 _____ (On2.com) C:\Windows\SysWOW64\vp7vfw.dll
2014-10-11 16:28 - 2009-09-02 12:44 - 00273408 _____ (RealNetworks, Inc.) C:\Windows\SysWOW64\Pncrt.dll
2014-10-11 16:28 - 2009-09-02 12:44 - 00217127 _____ (RealNetworks, Inc.) C:\Windows\SysWOW64\drv43260.dll
2014-10-11 16:28 - 2009-09-02 12:44 - 00208935 _____ (RealNetworks, Inc.) C:\Windows\SysWOW64\drv33260.dll
2014-10-11 16:28 - 2009-09-02 12:44 - 00176165 _____ (RealNetworks, Inc.) C:\Windows\SysWOW64\drv23260.dll
2014-10-11 16:28 - 2009-09-02 12:44 - 00102439 _____ (RealNetworks, Inc.) C:\Windows\SysWOW64\sipr3260.dll
2014-10-11 16:28 - 2009-09-02 12:44 - 00065602 _____ (RealNetworks, Inc.) C:\Windows\SysWOW64\cook3260.dll
2014-10-11 16:24 - 2014-10-11 16:24 - 00000000 ____D () C:\Users\Rocky-67\AppData\Local\ESET
2014-10-11 16:21 - 2014-10-17 14:37 - 00000000 ____D () C:\Users\Rocky-67\AppData\Roaming\Vso
2014-10-11 16:15 - 2014-10-11 16:15 - 00000000 ____D () C:\Users\Rocky-67\AppData\Local\VS Revo Group
2014-10-11 16:15 - 2014-10-11 16:15 - 00000000 ____D () C:\ProgramData\VS Revo Group
2014-10-11 16:15 - 2014-10-11 16:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro
2014-10-11 16:15 - 2014-10-11 16:15 - 00000000 ____D () C:\Program Files\VS Revo Group
2014-10-11 16:15 - 2009-12-30 10:21 - 00031800 _____ (VS Revo Group) C:\Windows\system32\Drivers\revoflt.sys
2014-10-11 15:35 - 2014-10-22 19:22 - 00000000 ____D () C:\Users\Rocky-67\AppData\Roaming\vlc
2014-10-11 15:12 - 2014-10-11 15:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Protected Folder
2014-10-11 15:11 - 2014-10-11 15:11 - 00000000 ____D () C:\ProgramData\IObit
2014-10-11 15:11 - 2014-10-11 15:11 - 00000000 ____D () C:\Program Files (x86)\IObit
2014-10-11 15:08 - 2014-10-11 15:09 - 00000000 ____D () C:\Users\Rocky-67\AppData\Local\NVIDIA Corporation
2014-10-11 07:19 - 2014-10-11 07:19 - 00000000 ____D () C:\ProgramData\Sun
2014-10-10 20:07 - 2014-10-10 20:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2014-10-10 20:07 - 2014-10-10 20:07 - 00000000 ____D () C:\ProgramData\ESET
2014-10-10 20:07 - 2014-10-10 20:07 - 00000000 ____D () C:\Program Files\ESET
2014-10-10 19:53 - 2014-06-27 03:08 - 02777088 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2014-10-10 19:53 - 2014-06-27 02:45 - 02285056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2014-10-10 19:52 - 2014-08-01 12:53 - 01031168 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2014-10-10 19:52 - 2014-08-01 12:35 - 00793600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2014-10-10 19:51 - 2014-09-25 03:08 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2014-10-10 19:51 - 2014-09-25 02:40 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2014-10-10 19:51 - 2014-09-09 23:11 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-10-10 19:51 - 2014-09-09 22:47 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-10-10 19:50 - 2014-08-23 03:07 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-10-10 19:50 - 2014-08-23 02:45 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-10-10 19:50 - 2014-07-07 03:06 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-10-10 19:50 - 2014-07-07 03:06 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-10-10 19:50 - 2014-07-07 02:40 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-10-10 19:50 - 2014-07-07 02:40 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-10-10 19:50 - 2014-07-07 02:39 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-10-10 19:50 - 2014-06-24 04:29 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-10-10 19:50 - 2014-06-24 03:59 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2014-09-29 09:15 - 2014-09-29 09:15 - 00859456 _____ (repkasoft) C:\Windows\yowindow.scr
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-10-28 21:49 - 2013-10-07 09:52 - 00000000 ____D () C:\Users\Gemini-67\AppData\Roaming\vlc
2014-10-28 21:23 - 2013-10-06 11:51 - 00000000 ___RD () C:\Users\Gemini-67\Aplikácie
2014-10-28 21:20 - 2013-10-15 08:56 - 01127148 _____ () C:\Windows\WindowsUpdate.log
2014-10-28 20:48 - 2009-07-14 05:45 - 00023568 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-10-28 20:48 - 2009-07-14 05:45 - 00023568 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-10-28 20:44 - 2009-07-14 06:13 - 00781790 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-10-28 20:40 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-10-28 20:26 - 2014-03-06 10:21 - 00000000 ____D () C:\Users\Gemini-67\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\uTorrent
2014-10-28 20:26 - 2013-10-04 12:44 - 00000000 ____D () C:\Users\Gemini-67
2014-10-28 20:26 - 2013-10-02 19:38 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-10-28 20:26 - 2013-10-02 17:35 - 00000000 ____D () C:\Users\Rocky-67
2014-10-28 20:26 - 2009-07-14 04:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2014-10-28 20:26 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-10-28 20:26 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\registration
2014-10-28 20:04 - 2013-10-07 09:25 - 00000000 ____D () C:\Users\Gemini-67\AppData\Roaming\CyberLink
2014-10-28 20:04 - 2013-10-07 09:21 - 00000000 ____D () C:\ProgramData\CyberLink
2014-10-28 20:03 - 2009-07-14 04:20 - 00000000 __RHD () C:\Users\Public\Libraries
2014-10-28 20:02 - 2013-10-09 19:30 - 00000000 ____D () C:\Users\Gemini-67\AppData\Local\CrashDumps
2014-10-28 12:52 - 2013-10-07 17:18 - 00001057 _____ () C:\Users\Gemini-67\AppData\Roaming\vso_ts_preview.xml
2014-10-26 10:35 - 2014-08-14 20:44 - 00000000 ____D () C:\Users\Rocky-67\AppData\Roaming\NVIDIA
2014-10-24 19:46 - 2013-10-06 13:33 - 00000000 ____D () C:\Users\Gemini-67\AppData\Roaming\VMware
2014-10-24 19:13 - 2013-10-09 20:09 - 00001024 _____ () C:\Windows\SysWOW64\%TMP%
2014-10-24 19:13 - 2013-10-04 12:34 - 00791072 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-10-24 12:45 - 2013-10-02 18:19 - 00000000 ____D () C:\Program Files\IDT
2014-10-24 09:13 - 2013-10-06 19:59 - 00000000 ____D () C:\Users\Gemini-67\AppData\Roaming\YoWindow
2014-10-23 12:48 - 2013-10-07 09:21 - 00000000 ____D () C:\ProgramData\Temp
2014-10-22 20:03 - 2009-07-14 06:32 - 00000000 ____D () C:\Windows\Performance
2014-10-22 17:44 - 2013-10-04 09:48 - 00000000 ____D () C:\SWSetup
2014-10-22 17:42 - 2013-10-04 09:53 - 00000000 ____D () C:\Windows\Driver Cache
2014-10-22 17:42 - 2013-10-04 09:53 - 00000000 ____D () C:\Program Files (x86)\AVerMedia
2014-10-22 17:41 - 2013-10-04 11:53 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-10-22 07:12 - 2013-10-04 13:10 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-10-22 07:12 - 2013-10-04 13:10 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-10-19 22:43 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2014-10-19 18:12 - 2013-10-16 18:11 - 00000000 ____D () C:\AdwCleaner
2014-10-17 11:54 - 2009-07-14 05:45 - 00325936 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-10-17 11:52 - 2014-08-13 17:37 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-10-17 09:47 - 2013-10-02 19:11 - 00000000 ____D () C:\Windows\system32\MRT
2014-10-17 09:43 - 2013-10-02 19:11 - 103265616 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-10-14 19:01 - 2013-10-04 12:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FastStone Image Viewer
2014-10-14 19:01 - 2013-10-04 12:10 - 00000000 ____D () C:\Program Files (x86)\FastStone Image Viewer
2014-10-11 17:49 - 2013-10-04 12:44 - 00000000 ____D () C:\Users\Gemini-67\AppData\Local\VirtualStore
2014-10-11 16:21 - 2014-03-03 14:57 - 00099384 _____ () C:\Users\Rocky-67\AppData\Roaming\inst.exe
2014-10-11 16:21 - 2014-03-03 14:57 - 00082816 _____ (VSO Software) C:\Users\Rocky-67\AppData\Roaming\pcouffin.sys
2014-10-11 16:21 - 2014-03-03 14:57 - 00007859 _____ () C:\Users\Rocky-67\AppData\Roaming\pcouffin.cat
2014-10-11 16:21 - 2014-03-03 14:57 - 00000055 _____ () C:\Users\Rocky-67\AppData\Roaming\pcouffin.log
2014-10-10 20:16 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\sk-SK
2014-10-10 20:16 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\sk-SK
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-10-26 12:09
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
Drive c: (Windows7) (Fixed) (Total:70 GB) (Free:30.44 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: (DATA) (Fixed) (Total:628.63 GB) (Free:122.21 GB) NTFS
Drive f: () (Fixed) (Total:465.75 GB) (Free:96.83 GB) NTFS
Drive h: (KINGSTON) (Removable) (Total:14.64 GB) (Free:14.13 GB) NTFS
Available physical RAM: 2495.7 MB
Total physical RAM: 4086.86 MB
Percentage of memory in use: 38%
==================== MBR and Partition Table ==================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 698.6 GB) (Disk ID: CE837F9A)
Partition 1: (Active) - (Size=70 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=628.6 GB) - (Type=05)
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 99F54618)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=OF Extended)
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 14.6 GB) (Disk ID: C3072E18)
Partition 1: (Active) - (Size=14.6 GB) - (Type=07 NTFS)
==================== Scheduled Tasks (whitelisted) ==================
==================== Alternate Data Streams (whitelisted) ==================
AlternateDataStreams: C:\Windows:nlsPreferences
AlternateDataStreams: C:\ProgramData\Temp:1CE11B51
AlternateDataStreams: C:\ProgramData\Temp:AC64BB05
==================== Security Center ==================
AV: ESET NOD32 Antivirus 8.0 (Enabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET NOD32 Antivirus 8.0 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
AS: COMODO Antivirus (Disabled - Out of date) {0C2D2636-923D-EE52-2A83-E643204A8275}
FW: COMODO Firewall (Enabled) {8F7746F7-FE68-E084-3B6C-7404A51E8FB3}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\Rocky-67\Desktop" je 2 MB.
***** Startup Programs *****
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acronis Scheduler2 Service
"C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe"
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AcronisTibMounterMonitor
C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CLMLServer
"C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\East-Tec east-tec Eraser Scheduler Agent
C:\Program Files (x86)\east-tec Eraser\etSCHAgent.exe
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EgisTecPMMUpdate
"C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe"
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EgisUpdate
"C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe" -d [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPreload
C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesTrayAgent
C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvBackend
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Power2GoExpress
"C:\Program Files (x86)\CyberLink\Power2Go\Power2GoExpress.exe"
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl10
"C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ShadowPlay
C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SysTrayApp
C:\Program Files\IDT\WDM\sttray64.exe
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TrueImageMonitor.exe
"C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe"
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\YouCam Mirage
"C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe"
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\YouCam Tray
"C:\Program Files (x86)\CyberLink\YouCam\YouCamTray.exe" /s [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Zoner Photo Studio Autoupdate
"C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTRAY.EXE"
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Zoner Photo Studio Service 16
"C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTRAY.EXEC:\Program Files\Zoner\Photo Studio 16\Program32\ZPSService.exe" [x]
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000
==================== End Of Log ==============================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Blbne počítač
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Nabuchodonozor671
- Návštěvník
- Příspěvky: 24
- Registrován: 29 zář 2013 17:47
Blbne počítač
- Přílohy
-
- Log.rar
- (6.91 KiB) Staženo 62 x
-
Rudy
- Site Admin
- Příspěvky: 119547
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Blbne počítač
Zdravím!
Spusťte nejprve tuto utilitu:
Spusťte nejprve tuto utilitu:
Jaké problémy vám PC "vyrábí"?Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
Nabuchodonozor671
- Návštěvník
- Příspěvky: 24
- Registrován: 29 zář 2013 17:47
Re: Blbne počítač
Zdravím Vás!Problémy pozorujem od včerajšieho večera,kedy mi na hlavnom panely vo Windows7,ikona stavu siete hlásila,že nemám prístup na net...Pritom to tak samozrejme nebolo-fungoval v poriadku.Ale hlavne mám pocit,že sa notebook spomalil a častejšie počuť chladiaci ventilátor,ako prv...Akoby ho niečo zaťažovalo.A dnes som naviac objavil vo firewalle Comodo,medzi pravidlami aplikácii,neznámi súbor bez mena,ktorý mal oprávnený plný prístup na net.Už som ho aj zmazal.A tiež Firefox začal "zamŕzať"!Tak neviem...Preto som poprosil o kontrolu.Tu je log z AdwareCleanera:# AdwCleaner v4.002 - Report created 29/10/2014 at 20:56:02
# DB v2014-10-26.6
# Updated 27/10/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Rocky-67 - ROCKY-67-PC
# Running from : C:\Users\Gemini-67\Desktop\adwcleaner_4.002.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
***** [ Scheduled Tasks ] *****
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\GoogleUpdate.exe
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.17344
-\\ Mozilla Firefox v33.0.1 (x86 sk)
*************************
AdwCleaner[R0].txt - [1442 octets] - [16/10/2013 18:11:40]
AdwCleaner[R1].txt - [1057 octets] - [27/02/2014 19:18:44]
AdwCleaner[R2].txt - [1149 octets] - [07/03/2014 16:31:43]
AdwCleaner[R3].txt - [1433 octets] - [14/08/2014 16:45:11]
AdwCleaner[R4].txt - [1435 octets] - [21/08/2014 12:22:04]
AdwCleaner[R5].txt - [31269 octets] - [17/10/2014 12:04:20]
AdwCleaner[R6].txt - [1448 octets] - [17/10/2014 20:11:04]
AdwCleaner[R7].txt - [1595 octets] - [19/10/2014 18:10:17]
AdwCleaner[R8].txt - [1771 octets] - [29/10/2014 20:53:04]
AdwCleaner[S0].txt - [1517 octets] - [16/10/2013 18:14:13]
AdwCleaner[S1].txt - [1121 octets] - [27/02/2014 19:19:41]
AdwCleaner[S2].txt - [1211 octets] - [07/03/2014 16:32:51]
AdwCleaner[S3].txt - [1496 octets] - [14/08/2014 16:46:08]
AdwCleaner[S4].txt - [1496 octets] - [21/08/2014 12:23:21]
AdwCleaner[S5].txt - [31870 octets] - [17/10/2014 12:06:56]
AdwCleaner[S6].txt - [1651 octets] - [19/10/2014 18:12:23]
AdwCleaner[S7].txt - [1687 octets] - [29/10/2014 20:56:02]
########## EOF - C:\AdwCleaner\AdwCleaner[S7].txt - [1747 octets] ##########
# DB v2014-10-26.6
# Updated 27/10/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Rocky-67 - ROCKY-67-PC
# Running from : C:\Users\Gemini-67\Desktop\adwcleaner_4.002.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
***** [ Scheduled Tasks ] *****
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\GoogleUpdate.exe
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.17344
-\\ Mozilla Firefox v33.0.1 (x86 sk)
*************************
AdwCleaner[R0].txt - [1442 octets] - [16/10/2013 18:11:40]
AdwCleaner[R1].txt - [1057 octets] - [27/02/2014 19:18:44]
AdwCleaner[R2].txt - [1149 octets] - [07/03/2014 16:31:43]
AdwCleaner[R3].txt - [1433 octets] - [14/08/2014 16:45:11]
AdwCleaner[R4].txt - [1435 octets] - [21/08/2014 12:22:04]
AdwCleaner[R5].txt - [31269 octets] - [17/10/2014 12:04:20]
AdwCleaner[R6].txt - [1448 octets] - [17/10/2014 20:11:04]
AdwCleaner[R7].txt - [1595 octets] - [19/10/2014 18:10:17]
AdwCleaner[R8].txt - [1771 octets] - [29/10/2014 20:53:04]
AdwCleaner[S0].txt - [1517 octets] - [16/10/2013 18:14:13]
AdwCleaner[S1].txt - [1121 octets] - [27/02/2014 19:19:41]
AdwCleaner[S2].txt - [1211 octets] - [07/03/2014 16:32:51]
AdwCleaner[S3].txt - [1496 octets] - [14/08/2014 16:46:08]
AdwCleaner[S4].txt - [1496 octets] - [21/08/2014 12:23:21]
AdwCleaner[S5].txt - [31870 octets] - [17/10/2014 12:06:56]
AdwCleaner[S6].txt - [1651 octets] - [19/10/2014 18:12:23]
AdwCleaner[S7].txt - [1687 octets] - [29/10/2014 20:56:02]
########## EOF - C:\AdwCleaner\AdwCleaner[S7].txt - [1747 octets] ##########
-
Rudy
- Site Admin
- Příspěvky: 119547
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Blbne počítač
Dejte nový log FRST.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
Nabuchodonozor671
- Návštěvník
- Příspěvky: 24
- Registrován: 29 zář 2013 17:47
Re: Blbne počítač
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 30-10-2014
Ran by Rocky-67 (administrator) on ROCKY-67-PC on 30-10-2014 10:51:21
Running from C:\Users\Rocky-67\Desktop
Loaded Profile: Rocky-67 (Available profiles: Rocky-67 & Gemini-67)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Slovenčina (Slovensko)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Validity Sensors, Inc.) C:\Windows\System32\vcsFPService.exe
(Egis Technology Inc. ) C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe
(Egis Technology Inc. ) C:\Program Files (x86)\Hewlett-Packard\HP SimplePass Identity Protection\EgisService.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
(Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AESTSr64.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
(Foxit Corporation) C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe
(Nalpeiron Ltd.) C:\Windows\SysWOW64\nlssrv32.exe
(East-Tec) C:\Program Files (x86)\east-tec Eraser\etSCHService.exe
(East-Tec) C:\Program Files (x86)\east-tec Eraser\etUpdateService.exe
(Winstep Software Technologies) C:\Program Files (x86)\Winstep\WsxService.exe
(CyberGhost S.R.L) C:\Program Files\CyberGhost 5\Service.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\CisTray.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Comfort Software Group) C:\Program Files\ComfortKeyboard\CKeyboard.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe
() C:\Program Files\ComfortKeyboard\CKeyboardCm.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe
(Egis Technology Inc. ) C:\Program Files (x86)\Hewlett-Packard\HP SimplePass Identity Protection\EgisTSR.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2771184 2013-07-26] (Synaptics Incorporated)
HKLM\...\Run: [COMODO Internet Security] => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [1275608 2014-03-25] (COMODO)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [5595848 2014-09-22] (ESET)
HKLM-x32\...\Run: [HPOSD] => C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe [379960 2011-08-19] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [VitaKeyTSR] => C:\Program Files (x86)\Hewlett-Packard\HP SimplePass Identity Protection\EgisTSR.exe [384048 2011-04-19] (Egis Technology Inc. )
HKU\S-1-5-21-238691012-2406985898-395691995-1000\...\Run: [CKeyboard] => C:\Program Files\ComfortKeyboard\CKeyboard.exe [4165544 2013-01-04] (Comfort Software Group)
HKU\S-1-5-21-238691012-2406985898-395691995-1000\...\Run: [Nexus] => [X]
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2013-10-04] (Microsoft Corporation)
Lsa: [Notification Packages] scecli EgisPwdFilter EgisDSPwdFilter c:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
BHO: EgisPBIE Sign-in Helper -> {7B51CCBE-4AF9-44A6-BDAB-D7F7E4C4E6F9} -> C:\Program Files (x86)\Hewlett-Packard\HP SimplePass Identity Protection\x64\EgisPBIE.dll (Egis Technology Inc.)
BHO-x32: EgisPBIE Sign-in Helper -> {7B51CCBE-4AF9-44A6-BDAB-D7F7E4C4E6F9} -> C:\Program Files (x86)\Hewlett-Packard\HP SimplePass Identity Protection\EgisPBIE.dll (Egis Technology Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{078A1910-50C5-43EA-8AC4-782E6032947D}: [NameServer] 156.154.70.25,156.154.71.25
Tcpip\..\Interfaces\{DF76DC86-190E-4058-BAB8-DAED8BD21CFD}: [NameServer] 156.154.70.22,156.154.71.22
FireFox:
========
FF ProfilePath: C:\Users\Rocky-67\AppData\Roaming\Mozilla\Firefox\Profiles\aio6a6tb.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_189.dll ()
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_189.dll ()
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @videolan.org/vlc,version=2.1.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\atlas-sk.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\azet-sk.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\dunaj-sk.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\slovnik-sk.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\zoznam-sk.xml
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
FF HKLM-x32\...\Firefox\Extensions: [{41ecbc0b-34d5-4cd4-935f-253a30e2cb7e}] - C:\Program Files (x86)\Hewlett-Packard\HP SimplePass Identity Protection\FFExt
FF Extension: Online Accounts Extension - C:\Program Files (x86)\Hewlett-Packard\HP SimplePass Identity Protection\FFExt [2013-10-04]
FF HKLM-x32\...\Firefox\Extensions: [{d4da7309-b89a-45ec-8ebb-cfb2ae13618b}] - C:\Program Files (x86)\Hewlett-Packard\HP SimplePass Identity Protection\FFExt20
FF Extension: Online Accounts Extension - C:\Program Files (x86)\Hewlett-Packard\HP SimplePass Identity Protection\FFExt20 [2013-10-04]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
Chrome:
=======
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 CGVPNCliService; C:\Program Files\CyberGhost 5\Service.exe [64624 2014-06-12] (CyberGhost S.R.L)
R2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [6817544 2014-04-16] (COMODO)
S3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2264280 2014-03-25] (COMODO)
R2 EgisTec Service; C:\Program Files (x86)\Hewlett-Packard\HP SimplePass Identity Protection\EgisService.exe [704048 2011-04-19] (Egis Technology Inc. )
R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [1350112 2014-09-16] (ESET)
R2 FoxitCloudUpdateService; C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe [242216 2014-06-17] (Foxit Corporation)
S4 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1720608 2014-07-25] (NVIDIA Corporation)
S4 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [18956064 2014-07-25] (NVIDIA Corporation)
R2 QSetSchedulerService; C:\Program Files (x86)\east-tec Eraser\etSCHService.exe [2424256 2014-10-03] (East-Tec)
R2 QSetUpdateService; C:\Program Files (x86)\east-tec Eraser\etUpdateService.exe [2271168 2014-10-03] (East-Tec)
S3 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [386344 2010-08-19] ()
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [340480 2013-12-04] (IDT, Inc.) [File not signed]
R2 Winstep Xtreme Service; C:\Program Files (x86)\Winstep\WsxService [X]
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R3 AVerAF15; C:\Windows\System32\Drivers\AVerAF15.sys [312064 2009-12-04] (AVerMedia TECHNOLOGIES, Inc.)
S3 cleanhlp; C:\Users\Gemini-67\Aplikácie\Antivíry\bin\cleanhlp64.sys [57024 2014-10-16] (Emsisoft GmbH)
R1 cmderd; C:\Windows\System32\DRIVERS\cmderd.sys [23168 2014-04-16] (COMODO)
R1 cmdGuard; C:\Windows\System32\DRIVERS\cmdguard.sys [738472 2014-04-16] (COMODO)
R1 cmdHlp; C:\Windows\System32\DRIVERS\cmdhlp.sys [48360 2014-04-16] (COMODO)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [243440 2014-09-22] (ESET)
U5 edevmon; C:\Windows\System32\Drivers\edevmon.sys [241368 2014-09-22] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [169280 2014-09-22] (ESET)
R2 epfwwfpr; C:\Windows\System32\DRIVERS\epfwwfpr.sys [158968 2014-09-22] (ESET)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28008 2014-04-24] (Intel Corporation)
R1 inspect; C:\Windows\System32\DRIVERS\inspect.sys [105552 2014-04-16] (COMODO)
S3 johci; C:\Windows\System32\DRIVERS\johci.sys [26208 2012-07-16] (JMicron Technology Corp.)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [20256 2014-07-25] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [38048 2014-09-04] (NVIDIA Corporation)
R2 PfFilter; C:\Program Files (x86)\IObit\Protected Folder\pffilter.sys [38392 2012-11-23] (IObit Information Technology)
R3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [34544 2013-07-26] (Synaptics Incorporated)
R0 tib; C:\Windows\System32\DRIVERS\tib.sys [1120032 2013-10-18] (Acronis International GmbH)
R0 tib_mounter; C:\Windows\System32\DRIVERS\tib_mounter.sys [183224 2013-10-18] (Acronis)
R3 ubohci; C:\Windows\System32\DRIVERS\ubohci.sys [132608 2012-10-05] (Unibrain)
R2 ubsbm; C:\Windows\System32\DRIVERS\ubsbm.sys [24064 2012-10-05] (Unibrain)
R2 ubumapi; C:\Windows\System32\DRIVERS\ubumapi.sys [92160 2012-10-05] (Unibrain)
R0 vidsflt; C:\Windows\System32\DRIVERS\vidsflt.sys [117024 2013-10-18] (Acronis International GmbH)
S3 vmci; \SystemRoot\system32\DRIVERS\vmci.sys [X]
S3 VMnetAdapter; system32\DRIVERS\vmnetadapter.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-10-30 10:51 - 2014-10-30 10:52 - 00012337 _____ () C:\Users\Rocky-67\Desktop\FRST.txt
2014-10-30 10:50 - 2014-10-30 10:50 - 00000000 ____D () C:\Users\Rocky-67\Desktop\FRST-OlderVersion
2014-10-30 10:09 - 2014-10-30 10:15 - 00000000 ____D () C:\Users\Gemini-67\dwhelper
2014-10-29 20:57 - 2014-10-29 20:57 - 00000318 _____ () C:\Windows\PFRO.log
2014-10-29 20:31 - 2014-10-29 20:40 - 00000000 ____D () C:\Users\Gemini-67\AppData\Local\photoOptimizeHistoryDataBase
2014-10-29 20:25 - 2014-10-29 20:25 - 00000000 ____D () C:\Users\Rocky-67\AppData\Local\photoOptimizeHistoryDataBase
2014-10-29 20:24 - 2014-10-29 20:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo
2014-10-29 20:23 - 2014-10-29 20:23 - 00000000 ____D () C:\Program Files (x86)\Ashampoo
2014-10-29 20:06 - 2014-10-29 20:10 - 00000000 ____D () C:\Users\Gemini-67\AppData\Local\Riot
2014-10-29 08:52 - 2014-10-29 22:01 - 00000000 ____D () C:\Users\Public\Documents\Winstep
2014-10-29 08:52 - 2014-10-29 08:52 - 00001014 _____ () C:\Users\Rocky-67\Documents\Winstep.lnk
2014-10-29 08:52 - 2014-10-29 08:52 - 00000987 _____ () C:\Users\Rocky-67\Desktop\Nexus.lnk
2014-10-29 08:52 - 2014-10-29 08:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winstep
2014-10-29 08:52 - 2014-10-29 08:52 - 00000000 ____D () C:\Program Files (x86)\Winstep
2014-10-29 08:52 - 2008-02-05 15:36 - 00798208 _____ (Winstep Software Technologies) C:\Windows\SysWOW64\NextControls.ocx
2014-10-29 08:52 - 2000-05-22 17:58 - 00608448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.ocx
2014-10-29 08:52 - 1997-07-19 16:55 - 01347344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvbvm50.dll
2014-10-29 08:49 - 2014-10-29 08:49 - 00007076 _____ () C:\Users\Rocky-67\Desktop\Log.rar
2014-10-29 08:27 - 2014-10-30 10:51 - 00000000 ____D () C:\FRST
2014-10-29 07:34 - 2014-10-30 10:50 - 02113536 _____ (Farbar) C:\Users\Rocky-67\Desktop\FRST64.exe
2014-10-29 07:23 - 2014-10-29 07:23 - 00000000 ____D () C:\rsit
2014-10-29 07:23 - 2014-10-29 07:23 - 00000000 ____D () C:\Program Files\trend micro
2014-10-28 20:31 - 2014-10-28 20:31 - 00000000 ____D () C:\Users\Rocky-67\AppData\Roaming\ComfortSoftware
2014-10-28 11:22 - 2014-10-28 20:26 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-10-26 10:55 - 2014-10-28 20:26 - 00000000 ____D () C:\Users\Gemini-67\AppData\Local\DxO_Labs
2014-10-26 10:55 - 2014-10-26 10:55 - 00000000 ____D () C:\Users\Gemini-67\AppData\Roaming\DxO Labs
2014-10-26 10:36 - 2014-10-26 10:36 - 00000000 ____D () C:\Users\Rocky-67\AppData\Roaming\DxO Labs
2014-10-26 10:35 - 2014-10-28 20:26 - 00000000 ____D () C:\Users\Rocky-67\AppData\Local\DxO_Labs
2014-10-26 10:35 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2014-10-26 10:35 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2014-10-26 10:34 - 2014-10-28 20:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DxO Optics Pro 8
2014-10-26 10:34 - 2014-10-28 20:26 - 00000000 ____D () C:\ProgramData\DxO Labs
2014-10-26 10:34 - 2014-10-26 10:34 - 00000000 ____D () C:\Program Files\DxO Labs
2014-10-24 19:27 - 2014-10-24 19:46 - 00000000 ____D () C:\Users\Gemini-67\AppData\Local\VMware
2014-10-24 19:12 - 2014-10-24 19:51 - 00000000 ____D () C:\ProgramData\VMware
2014-10-24 12:46 - 2012-10-05 12:26 - 00132608 _____ (Unibrain) C:\Windows\system32\Drivers\ubohci.sys
2014-10-24 12:46 - 2012-10-05 07:57 - 00092160 _____ (Unibrain) C:\Windows\system32\Drivers\UBUMAPI.sys
2014-10-24 12:46 - 2012-10-05 07:56 - 00187392 _____ (Unibrain) C:\Windows\system32\Drivers\UB1394.sys
2014-10-24 12:46 - 2012-10-05 07:56 - 00024064 _____ (Unibrain) C:\Windows\system32\Drivers\UBSBM.sys
2014-10-24 12:44 - 2013-12-04 22:32 - 02213376 _____ (IDT, Inc.) C:\Windows\system32\stapo64.dll
2014-10-24 12:44 - 2013-12-04 22:32 - 00697856 _____ (IDT, Inc.) C:\Windows\system32\stapi64.dll
2014-10-24 12:44 - 2013-12-04 22:32 - 00551936 _____ (IDT, Inc.) C:\Windows\system32\Drivers\stwrt64.sys
2014-10-24 12:44 - 2013-12-04 22:32 - 00499200 _____ (IDT, Inc.) C:\Windows\system32\stcplx64.dll
2014-10-24 12:44 - 2013-12-04 22:32 - 00256000 _____ (IDT, Inc.) C:\Windows\system32\st646498.dll
2014-10-24 12:43 - 2014-09-04 20:14 - 00038048 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2014-10-24 12:43 - 2014-09-04 20:14 - 00034976 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2014-10-24 12:43 - 2014-09-04 20:14 - 00032416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2014-10-24 12:43 - 2012-07-16 12:38 - 00026208 _____ (JMicron Technology Corp.) C:\Windows\system32\Drivers\johci.sys
2014-10-24 12:43 - 2009-12-25 19:09 - 00076112 _____ (ENE TECHNOLOGY INC.) C:\Windows\system32\Drivers\enecir.sys
2014-10-24 12:42 - 2014-10-28 20:26 - 00000000 ____D () C:\Users\Gemini-67\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zariadenia Bluetooth
2014-10-24 12:42 - 2014-07-16 08:06 - 00941784 _____ (Realtek ) C:\Windows\system32\Drivers\Rt64win7.sys
2014-10-24 12:42 - 2014-07-16 08:06 - 00073800 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll
2014-10-24 12:42 - 2014-04-24 15:34 - 00633704 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorA.sys
2014-10-24 12:42 - 2014-04-24 15:34 - 00028008 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorF.sys
2014-10-24 12:40 - 2014-10-29 20:58 - 00001618 _____ () C:\Windows\setupact.log
2014-10-24 12:40 - 2014-10-24 12:40 - 00000000 _____ () C:\Windows\setuperr.log
2014-10-24 12:17 - 2014-10-28 20:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Comfort On-Screen Keyboard
2014-10-24 12:17 - 2014-10-24 12:17 - 00000000 ____D () C:\Users\Gemini-67\AppData\Roaming\ComfortSoftware
2014-10-24 12:17 - 2014-10-24 12:17 - 00000000 ____D () C:\Program Files\ComfortKeyboard
2014-10-24 12:17 - 2012-12-06 19:17 - 00024408 _____ () C:\Windows\system32\cskeyboardlogon.dll
2014-10-24 12:17 - 2012-12-06 19:13 - 00199000 _____ () C:\Windows\system32\CsCredentialLogon.dll
2014-10-24 12:17 - 2012-12-06 19:13 - 00167256 _____ () C:\Windows\system32\CsCredentialLogon64.dll
2014-10-24 12:17 - 2012-12-06 19:13 - 00089944 _____ () C:\Windows\system32\runcosk.exe
2014-10-24 12:11 - 2014-10-29 20:21 - 00000000 ____D () C:\Users\Gemini-67\AppData\Roaming\uTorrent
2014-10-23 17:54 - 2014-10-24 12:46 - 00128836 _____ () C:\Windows\system32\Drivers\fvstore.dat
2014-10-22 20:05 - 2014-10-22 20:05 - 00000000 ____D () C:\Users\Gemini-67\AppData\Roaming\East-Tec
2014-10-22 19:16 - 2014-10-22 19:16 - 00000112 _____ () C:\Windows\etGlobalInfo.txt
2014-10-22 19:15 - 2014-10-22 19:15 - 00000000 ____D () C:\Users\Rocky-67\AppData\Roaming\East-Tec
2014-10-22 19:15 - 2014-10-22 19:15 - 00000000 ____D () C:\ProgramData\Licenses
2014-10-22 19:15 - 2014-10-22 19:15 - 00000000 ____D () C:\ProgramData\East-Tec
2014-10-22 19:14 - 2014-10-28 20:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\east-tec Eraser 2014
2014-10-22 19:14 - 2014-10-23 12:45 - 00000000 ____D () C:\Program Files (x86)\east-tec Eraser
2014-10-22 17:42 - 2009-12-04 06:54 - 00312064 _____ (AVerMedia TECHNOLOGIES, Inc.) C:\Windows\system32\Drivers\AVerAF15.sys
2014-10-22 17:41 - 2014-10-22 17:41 - 00000000 ____D () C:\Program Files (x86)\Realtek
2014-10-22 17:32 - 2012-05-02 05:18 - 00184144 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwaudio.sys
2014-10-22 17:32 - 2012-03-06 10:29 - 00210984 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwavdt.sys
2014-10-22 17:32 - 2012-03-06 10:29 - 00021544 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwrchid.sys
2014-10-22 17:32 - 2011-09-17 23:38 - 00039976 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwl2cap.sys
2014-10-22 17:12 - 2014-10-22 17:12 - 00000000 ____D () C:\Users\Public\Documents\Downloaded Installers
2014-10-22 07:17 - 2014-10-22 07:47 - 00000000 ____D () C:\Users\Rocky-67\AppData\Local\Google
2014-10-22 07:17 - 2014-10-22 07:47 - 00000000 ____D () C:\Program Files (x86)\Google
2014-10-22 07:17 - 2014-10-22 07:22 - 00000000 ____D () C:\Users\Gemini-67\AppData\Local\Google
2014-10-22 07:11 - 2014-10-22 07:13 - 00000000 ____D () C:\Users\Rocky-67\AppData\Local\Adobe
2014-10-19 18:23 - 2014-10-24 09:33 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-10-19 18:23 - 2014-10-19 18:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-10-19 18:23 - 2014-10-19 18:23 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-10-19 18:23 - 2014-10-19 18:23 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-10-19 18:23 - 2014-10-01 10:11 - 00093400 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-10-19 18:23 - 2014-10-01 10:11 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-10-19 18:23 - 2014-10-01 10:11 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-10-19 18:17 - 2014-10-19 18:17 - 00000000 ____D () C:\Users\Rocky-67\AppData\Roaming\Mozilla
2014-10-19 18:17 - 2014-10-19 18:17 - 00000000 ____D () C:\Users\Rocky-67\AppData\Local\Mozilla
2014-10-17 14:58 - 2014-10-17 14:58 - 00001167 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-10-17 14:58 - 2014-10-17 14:58 - 00000000 ____D () C:\Users\Gemini-67\AppData\Roaming\Mozilla
2014-10-17 14:58 - 2014-10-17 14:58 - 00000000 ____D () C:\Users\Gemini-67\AppData\Local\Mozilla
2014-10-17 14:57 - 2014-10-17 14:57 - 00000000 ____D () C:\ProgramData\Mozilla
2014-10-17 14:29 - 2014-10-17 14:29 - 00000000 ____D () C:\Users\Rocky-67\AppData\Local\CyberGhost
2014-10-17 12:20 - 2014-10-17 12:20 - 00001333 _____ () C:\Users\Rocky-67\Desktop\Start Emsisoft Emergency Kit.lnk
2014-10-17 09:43 - 2014-10-07 03:54 - 00378552 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-10-17 09:43 - 2014-10-07 03:04 - 00331448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-10-17 09:43 - 2014-09-25 23:46 - 00365056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-10-17 09:43 - 2014-09-25 23:46 - 00243200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-10-17 09:43 - 2014-09-25 23:46 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-10-17 09:43 - 2014-09-25 23:32 - 02017280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-10-17 09:43 - 2014-09-19 02:56 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-10-17 09:43 - 2014-09-19 02:55 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-10-17 09:43 - 2014-09-19 02:44 - 17484800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-10-17 09:43 - 2014-09-19 02:39 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-10-17 09:43 - 2014-09-19 02:30 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-10-17 09:43 - 2014-09-19 02:25 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-10-17 09:43 - 2014-09-19 02:14 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-10-17 09:43 - 2014-09-19 02:14 - 00446464 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-10-17 09:43 - 2014-09-19 02:06 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-10-17 09:43 - 2014-09-19 02:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-10-17 09:43 - 2014-09-19 02:01 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-10-17 09:43 - 2014-09-19 01:55 - 02187264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-10-17 09:43 - 2014-09-19 01:54 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-10-17 09:43 - 2014-09-19 01:53 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-10-17 09:43 - 2014-09-19 01:49 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-10-17 09:43 - 2014-09-19 01:42 - 00710656 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-10-17 09:43 - 2014-09-19 01:36 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-10-17 09:43 - 2014-09-19 01:20 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-10-17 09:43 - 2014-09-19 01:14 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-10-17 09:43 - 2014-09-19 00:53 - 01190400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-10-17 09:42 - 2014-10-10 03:05 - 00507392 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-10-17 09:42 - 2014-10-10 03:05 - 00276480 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2014-10-17 09:42 - 2014-10-10 03:00 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-10-17 09:42 - 2014-09-29 01:58 - 03198976 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-10-17 09:42 - 2014-09-25 23:50 - 13619200 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-10-17 09:42 - 2014-09-25 23:43 - 11807232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-10-17 09:42 - 2014-09-25 23:31 - 02108416 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-10-17 09:42 - 2014-09-19 03:25 - 23631360 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-10-17 09:42 - 2014-09-19 02:41 - 02796032 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-10-17 09:42 - 2014-09-19 02:40 - 00547328 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-10-17 09:42 - 2014-09-19 02:40 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-10-17 09:42 - 2014-09-19 02:38 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-10-17 09:42 - 2014-09-19 02:36 - 05829632 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-10-17 09:42 - 2014-09-19 02:31 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-10-17 09:42 - 2014-09-19 02:27 - 00595968 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-10-17 09:42 - 2014-09-19 02:26 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-10-17 09:42 - 2014-09-19 02:25 - 04201472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-10-17 09:42 - 2014-09-19 02:25 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-10-17 09:42 - 2014-09-19 02:18 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-10-17 09:42 - 2014-09-19 02:02 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-10-17 09:42 - 2014-09-19 02:01 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-10-17 09:42 - 2014-09-19 02:00 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-10-17 09:42 - 2014-09-19 01:59 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-10-17 09:42 - 2014-09-19 01:58 - 00289280 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-10-17 09:42 - 2014-09-19 01:51 - 00440320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-10-17 09:42 - 2014-09-19 01:50 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-10-17 09:42 - 2014-09-19 01:42 - 00731136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-10-17 09:42 - 2014-09-19 01:40 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-10-17 09:42 - 2014-09-19 01:33 - 02309632 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-10-17 09:42 - 2014-09-19 01:32 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-10-17 09:42 - 2014-09-19 01:18 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-10-17 09:42 - 2014-09-19 00:59 - 01810944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-10-17 09:42 - 2014-09-19 00:59 - 00775168 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-10-17 09:42 - 2014-09-19 00:52 - 00678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-10-17 09:42 - 2014-06-18 23:23 - 01943696 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2014-10-17 09:42 - 2014-06-18 23:23 - 01131664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfshim.dll
2014-10-17 09:42 - 2014-06-18 23:23 - 00156824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscorier.dll
2014-10-17 09:42 - 2014-06-18 23:23 - 00156312 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
2014-10-17 09:42 - 2014-06-18 23:23 - 00081560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscories.dll
2014-10-17 09:42 - 2014-06-18 23:23 - 00073880 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
2014-10-17 09:41 - 2014-09-18 03:00 - 03241472 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-10-17 09:41 - 2014-09-18 02:32 - 02363904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-10-17 09:41 - 2014-09-04 06:23 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2014-10-17 09:41 - 2014-09-04 06:04 - 00372736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
2014-10-17 09:41 - 2014-08-29 03:07 - 03179520 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-10-17 09:41 - 2014-07-17 03:07 - 00681984 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2014-10-17 09:41 - 2014-07-17 03:07 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-10-17 09:41 - 2014-07-17 03:07 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
2014-10-17 09:41 - 2014-07-17 03:07 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2014-10-17 09:41 - 2014-07-17 03:07 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-10-17 09:41 - 2014-07-17 03:07 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-10-17 09:41 - 2014-07-17 02:40 - 00157696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsta.dll
2014-10-17 09:41 - 2014-07-17 02:39 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-10-17 09:41 - 2014-07-17 02:39 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-10-17 09:41 - 2014-07-17 02:21 - 00212480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2014-10-17 09:41 - 2014-07-17 02:21 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2014-10-17 09:40 - 2014-09-13 02:58 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-10-17 09:40 - 2014-09-13 02:40 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2014-10-17 09:40 - 2014-09-05 03:11 - 06584320 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-10-17 09:40 - 2014-09-05 02:52 - 05703168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-10-14 18:26 - 2014-10-22 19:24 - 00000000 ____D () C:\Program Files (x86)\Mozilla Thunderbird
2014-10-11 17:46 - 2014-10-11 17:49 - 00000000 ____D () C:\Users\Gemini-67\AppData\Local\CyberGhost
2014-10-11 17:45 - 2014-10-11 17:46 - 00000000 ____D () C:\Program Files\TAP-Windows
2014-10-11 17:45 - 2014-10-11 17:46 - 00000000 ____D () C:\Program Files\CyberGhost 5
2014-10-11 17:45 - 2014-10-11 17:45 - 00001736 _____ () C:\Users\Rocky-67\Desktop\CyberGhost 5.lnk
2014-10-11 17:45 - 2014-10-11 17:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberGhost 5
2014-10-11 16:35 - 2014-10-28 21:34 - 00000000 ____D () C:\Users\Gemini-67\AppData\Roaming\Vso
2014-10-11 16:29 - 2014-10-11 16:29 - 00001057 _____ () C:\Users\Rocky-67\AppData\Roaming\vso_ts_preview.xml
2014-10-11 16:28 - 2014-10-11 16:28 - 00001236 _____ () C:\Users\Rocky-67\Desktop\ConvertXtoDVD 4.lnk
2014-10-11 16:28 - 2014-10-11 16:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VSO
2014-10-11 16:28 - 2014-10-11 16:28 - 00000000 ____D () C:\Program Files (x86)\VSO
2014-10-11 16:28 - 2009-09-02 12:44 - 01184984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wvc1dmod.dll
2014-10-11 16:28 - 2009-09-02 12:44 - 00626688 _____ (On2.com) C:\Windows\SysWOW64\vp7vfw.dll
2014-10-11 16:28 - 2009-09-02 12:44 - 00273408 _____ (RealNetworks, Inc.) C:\Windows\SysWOW64\Pncrt.dll
2014-10-11 16:28 - 2009-09-02 12:44 - 00217127 _____ (RealNetworks, Inc.) C:\Windows\SysWOW64\drv43260.dll
2014-10-11 16:28 - 2009-09-02 12:44 - 00208935 _____ (RealNetworks, Inc.) C:\Windows\SysWOW64\drv33260.dll
2014-10-11 16:28 - 2009-09-02 12:44 - 00176165 _____ (RealNetworks, Inc.) C:\Windows\SysWOW64\drv23260.dll
2014-10-11 16:28 - 2009-09-02 12:44 - 00102439 _____ (RealNetworks, Inc.) C:\Windows\SysWOW64\sipr3260.dll
2014-10-11 16:28 - 2009-09-02 12:44 - 00065602 _____ (RealNetworks, Inc.) C:\Windows\SysWOW64\cook3260.dll
2014-10-11 16:24 - 2014-10-11 16:24 - 00000000 ____D () C:\Users\Rocky-67\AppData\Local\ESET
2014-10-11 16:21 - 2014-10-17 14:37 - 00000000 ____D () C:\Users\Rocky-67\AppData\Roaming\Vso
2014-10-11 16:15 - 2014-10-11 16:15 - 00000000 ____D () C:\Users\Rocky-67\AppData\Local\VS Revo Group
2014-10-11 16:15 - 2014-10-11 16:15 - 00000000 ____D () C:\ProgramData\VS Revo Group
2014-10-11 16:15 - 2014-10-11 16:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro
2014-10-11 16:15 - 2014-10-11 16:15 - 00000000 ____D () C:\Program Files\VS Revo Group
2014-10-11 16:15 - 2009-12-30 10:21 - 00031800 _____ (VS Revo Group) C:\Windows\system32\Drivers\revoflt.sys
2014-10-11 15:35 - 2014-10-22 19:22 - 00000000 ____D () C:\Users\Rocky-67\AppData\Roaming\vlc
2014-10-11 15:12 - 2014-10-11 15:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Protected Folder
2014-10-11 15:11 - 2014-10-11 15:11 - 00000000 ____D () C:\ProgramData\IObit
2014-10-11 15:11 - 2014-10-11 15:11 - 00000000 ____D () C:\Program Files (x86)\IObit
2014-10-11 15:08 - 2014-10-11 15:09 - 00000000 ____D () C:\Users\Rocky-67\AppData\Local\NVIDIA Corporation
2014-10-11 07:19 - 2014-10-11 07:19 - 00000000 ____D () C:\ProgramData\Sun
2014-10-10 20:07 - 2014-10-10 20:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2014-10-10 20:07 - 2014-10-10 20:07 - 00000000 ____D () C:\ProgramData\ESET
2014-10-10 20:07 - 2014-10-10 20:07 - 00000000 ____D () C:\Program Files\ESET
2014-10-10 19:53 - 2014-06-27 03:08 - 02777088 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2014-10-10 19:53 - 2014-06-27 02:45 - 02285056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2014-10-10 19:52 - 2014-08-01 12:53 - 01031168 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2014-10-10 19:52 - 2014-08-01 12:35 - 00793600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2014-10-10 19:51 - 2014-09-25 03:08 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2014-10-10 19:51 - 2014-09-25 02:40 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2014-10-10 19:51 - 2014-09-09 23:11 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-10-10 19:51 - 2014-09-09 22:47 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-10-10 19:50 - 2014-08-23 03:07 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-10-10 19:50 - 2014-08-23 02:45 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-10-10 19:50 - 2014-07-07 03:06 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-10-10 19:50 - 2014-07-07 03:06 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-10-10 19:50 - 2014-07-07 02:40 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-10-10 19:50 - 2014-07-07 02:40 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-10-10 19:50 - 2014-07-07 02:39 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-10-10 19:50 - 2014-06-24 04:29 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-10-10 19:50 - 2014-06-24 03:59 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-10-30 10:09 - 2013-10-04 12:44 - 00000000 ____D () C:\Users\Gemini-67
2014-10-29 22:38 - 2013-10-07 09:52 - 00000000 ____D () C:\Users\Gemini-67\AppData\Roaming\vlc
2014-10-29 21:14 - 2013-10-15 08:56 - 01157014 _____ () C:\Windows\WindowsUpdate.log
2014-10-29 21:05 - 2009-07-14 05:45 - 00023568 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-10-29 21:05 - 2009-07-14 05:45 - 00023568 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-10-29 21:02 - 2009-07-14 06:13 - 00781790 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-10-29 20:58 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-10-29 20:58 - 2009-07-14 05:45 - 00331680 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-10-29 20:56 - 2013-10-16 18:11 - 00000000 ____D () C:\AdwCleaner
2014-10-29 20:23 - 2013-10-07 17:41 - 00000000 ____D () C:\ProgramData\Ashampoo
2014-10-29 19:11 - 2013-10-04 12:45 - 00077464 _____ () C:\Users\Gemini-67\AppData\Local\GDIPFONTCACHEV1.DAT
2014-10-28 21:23 - 2013-10-06 11:51 - 00000000 ___RD () C:\Users\Gemini-67\Aplikácie
2014-10-28 20:26 - 2014-03-06 10:21 - 00000000 ____D () C:\Users\Gemini-67\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\uTorrent
2014-10-28 20:26 - 2013-10-02 19:38 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-10-28 20:26 - 2013-10-02 17:35 - 00000000 ____D () C:\Users\Rocky-67
2014-10-28 20:26 - 2009-07-14 04:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2014-10-28 20:26 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-10-28 20:26 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\registration
2014-10-28 20:04 - 2013-10-07 09:25 - 00000000 ____D () C:\Users\Gemini-67\AppData\Roaming\CyberLink
2014-10-28 20:04 - 2013-10-07 09:21 - 00000000 ____D () C:\ProgramData\CyberLink
2014-10-28 20:03 - 2009-07-14 04:20 - 00000000 __RHD () C:\Users\Public\Libraries
2014-10-28 20:02 - 2013-10-09 19:30 - 00000000 ____D () C:\Users\Gemini-67\AppData\Local\CrashDumps
2014-10-28 12:52 - 2013-10-07 17:18 - 00001057 _____ () C:\Users\Gemini-67\AppData\Roaming\vso_ts_preview.xml
2014-10-26 10:35 - 2014-08-14 20:44 - 00000000 ____D () C:\Users\Rocky-67\AppData\Roaming\NVIDIA
2014-10-24 19:46 - 2013-10-06 13:33 - 00000000 ____D () C:\Users\Gemini-67\AppData\Roaming\VMware
2014-10-24 19:13 - 2013-10-09 20:09 - 00001024 _____ () C:\Windows\SysWOW64\%TMP%
2014-10-24 19:13 - 2013-10-04 12:34 - 00791072 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-10-24 12:45 - 2013-10-02 18:19 - 00000000 ____D () C:\Program Files\IDT
2014-10-24 09:13 - 2013-10-06 19:59 - 00000000 ____D () C:\Users\Gemini-67\AppData\Roaming\YoWindow
2014-10-23 12:48 - 2013-10-07 09:21 - 00000000 ____D () C:\ProgramData\Temp
2014-10-22 20:03 - 2009-07-14 06:32 - 00000000 ____D () C:\Windows\Performance
2014-10-22 17:44 - 2013-10-04 09:48 - 00000000 ____D () C:\SWSetup
2014-10-22 17:42 - 2013-10-04 09:53 - 00000000 ____D () C:\Windows\Driver Cache
2014-10-22 17:42 - 2013-10-04 09:53 - 00000000 ____D () C:\Program Files (x86)\AVerMedia
2014-10-22 17:41 - 2013-10-04 11:53 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-10-22 07:12 - 2013-10-04 13:10 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-10-22 07:12 - 2013-10-04 13:10 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-10-19 22:43 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2014-10-17 11:52 - 2014-08-13 17:37 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-10-17 09:47 - 2013-10-02 19:11 - 00000000 ____D () C:\Windows\system32\MRT
2014-10-17 09:43 - 2013-10-02 19:11 - 103265616 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-10-14 19:01 - 2013-10-04 12:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FastStone Image Viewer
2014-10-14 19:01 - 2013-10-04 12:10 - 00000000 ____D () C:\Program Files (x86)\FastStone Image Viewer
2014-10-11 17:49 - 2013-10-04 12:44 - 00000000 ____D () C:\Users\Gemini-67\AppData\Local\VirtualStore
2014-10-11 16:21 - 2014-03-03 14:57 - 00099384 _____ () C:\Users\Rocky-67\AppData\Roaming\inst.exe
2014-10-11 16:21 - 2014-03-03 14:57 - 00082816 _____ (VSO Software) C:\Users\Rocky-67\AppData\Roaming\pcouffin.sys
2014-10-11 16:21 - 2014-03-03 14:57 - 00007859 _____ () C:\Users\Rocky-67\AppData\Roaming\pcouffin.cat
2014-10-11 16:21 - 2014-03-03 14:57 - 00000055 _____ () C:\Users\Rocky-67\AppData\Roaming\pcouffin.log
2014-10-10 20:16 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\sk-SK
2014-10-10 20:16 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\sk-SK
Some content of TEMP:
====================
C:\Users\Gemini-67\AppData\Local\Temp\Foxit Reader Updater.exe
C:\Users\Gemini-67\AppData\Local\Temp\Photooptimizer.exe
C:\Users\Rocky-67\AppData\Local\Temp\Photooptimizer.exe
C:\Users\Rocky-67\AppData\Local\Temp\Quarantine.exe
C:\Users\Rocky-67\AppData\Local\Temp\sqlite3.dll
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-10-26 12:09
==================== End Of Log ============================
Ran by Rocky-67 (administrator) on ROCKY-67-PC on 30-10-2014 10:51:21
Running from C:\Users\Rocky-67\Desktop
Loaded Profile: Rocky-67 (Available profiles: Rocky-67 & Gemini-67)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Slovenčina (Slovensko)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Validity Sensors, Inc.) C:\Windows\System32\vcsFPService.exe
(Egis Technology Inc. ) C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe
(Egis Technology Inc. ) C:\Program Files (x86)\Hewlett-Packard\HP SimplePass Identity Protection\EgisService.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
(Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AESTSr64.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
(Foxit Corporation) C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe
(Nalpeiron Ltd.) C:\Windows\SysWOW64\nlssrv32.exe
(East-Tec) C:\Program Files (x86)\east-tec Eraser\etSCHService.exe
(East-Tec) C:\Program Files (x86)\east-tec Eraser\etUpdateService.exe
(Winstep Software Technologies) C:\Program Files (x86)\Winstep\WsxService.exe
(CyberGhost S.R.L) C:\Program Files\CyberGhost 5\Service.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\CisTray.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Comfort Software Group) C:\Program Files\ComfortKeyboard\CKeyboard.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe
() C:\Program Files\ComfortKeyboard\CKeyboardCm.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe
(Egis Technology Inc. ) C:\Program Files (x86)\Hewlett-Packard\HP SimplePass Identity Protection\EgisTSR.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2771184 2013-07-26] (Synaptics Incorporated)
HKLM\...\Run: [COMODO Internet Security] => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [1275608 2014-03-25] (COMODO)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [5595848 2014-09-22] (ESET)
HKLM-x32\...\Run: [HPOSD] => C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe [379960 2011-08-19] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [VitaKeyTSR] => C:\Program Files (x86)\Hewlett-Packard\HP SimplePass Identity Protection\EgisTSR.exe [384048 2011-04-19] (Egis Technology Inc. )
HKU\S-1-5-21-238691012-2406985898-395691995-1000\...\Run: [CKeyboard] => C:\Program Files\ComfortKeyboard\CKeyboard.exe [4165544 2013-01-04] (Comfort Software Group)
HKU\S-1-5-21-238691012-2406985898-395691995-1000\...\Run: [Nexus] => [X]
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2013-10-04] (Microsoft Corporation)
Lsa: [Notification Packages] scecli EgisPwdFilter EgisDSPwdFilter c:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
BHO: EgisPBIE Sign-in Helper -> {7B51CCBE-4AF9-44A6-BDAB-D7F7E4C4E6F9} -> C:\Program Files (x86)\Hewlett-Packard\HP SimplePass Identity Protection\x64\EgisPBIE.dll (Egis Technology Inc.)
BHO-x32: EgisPBIE Sign-in Helper -> {7B51CCBE-4AF9-44A6-BDAB-D7F7E4C4E6F9} -> C:\Program Files (x86)\Hewlett-Packard\HP SimplePass Identity Protection\EgisPBIE.dll (Egis Technology Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{078A1910-50C5-43EA-8AC4-782E6032947D}: [NameServer] 156.154.70.25,156.154.71.25
Tcpip\..\Interfaces\{DF76DC86-190E-4058-BAB8-DAED8BD21CFD}: [NameServer] 156.154.70.22,156.154.71.22
FireFox:
========
FF ProfilePath: C:\Users\Rocky-67\AppData\Roaming\Mozilla\Firefox\Profiles\aio6a6tb.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_189.dll ()
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_189.dll ()
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @videolan.org/vlc,version=2.1.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\atlas-sk.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\azet-sk.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\dunaj-sk.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\slovnik-sk.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\zoznam-sk.xml
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
FF HKLM-x32\...\Firefox\Extensions: [{41ecbc0b-34d5-4cd4-935f-253a30e2cb7e}] - C:\Program Files (x86)\Hewlett-Packard\HP SimplePass Identity Protection\FFExt
FF Extension: Online Accounts Extension - C:\Program Files (x86)\Hewlett-Packard\HP SimplePass Identity Protection\FFExt [2013-10-04]
FF HKLM-x32\...\Firefox\Extensions: [{d4da7309-b89a-45ec-8ebb-cfb2ae13618b}] - C:\Program Files (x86)\Hewlett-Packard\HP SimplePass Identity Protection\FFExt20
FF Extension: Online Accounts Extension - C:\Program Files (x86)\Hewlett-Packard\HP SimplePass Identity Protection\FFExt20 [2013-10-04]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
Chrome:
=======
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 CGVPNCliService; C:\Program Files\CyberGhost 5\Service.exe [64624 2014-06-12] (CyberGhost S.R.L)
R2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [6817544 2014-04-16] (COMODO)
S3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2264280 2014-03-25] (COMODO)
R2 EgisTec Service; C:\Program Files (x86)\Hewlett-Packard\HP SimplePass Identity Protection\EgisService.exe [704048 2011-04-19] (Egis Technology Inc. )
R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [1350112 2014-09-16] (ESET)
R2 FoxitCloudUpdateService; C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe [242216 2014-06-17] (Foxit Corporation)
S4 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1720608 2014-07-25] (NVIDIA Corporation)
S4 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [18956064 2014-07-25] (NVIDIA Corporation)
R2 QSetSchedulerService; C:\Program Files (x86)\east-tec Eraser\etSCHService.exe [2424256 2014-10-03] (East-Tec)
R2 QSetUpdateService; C:\Program Files (x86)\east-tec Eraser\etUpdateService.exe [2271168 2014-10-03] (East-Tec)
S3 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [386344 2010-08-19] ()
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [340480 2013-12-04] (IDT, Inc.) [File not signed]
R2 Winstep Xtreme Service; C:\Program Files (x86)\Winstep\WsxService [X]
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R3 AVerAF15; C:\Windows\System32\Drivers\AVerAF15.sys [312064 2009-12-04] (AVerMedia TECHNOLOGIES, Inc.)
S3 cleanhlp; C:\Users\Gemini-67\Aplikácie\Antivíry\bin\cleanhlp64.sys [57024 2014-10-16] (Emsisoft GmbH)
R1 cmderd; C:\Windows\System32\DRIVERS\cmderd.sys [23168 2014-04-16] (COMODO)
R1 cmdGuard; C:\Windows\System32\DRIVERS\cmdguard.sys [738472 2014-04-16] (COMODO)
R1 cmdHlp; C:\Windows\System32\DRIVERS\cmdhlp.sys [48360 2014-04-16] (COMODO)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [243440 2014-09-22] (ESET)
U5 edevmon; C:\Windows\System32\Drivers\edevmon.sys [241368 2014-09-22] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [169280 2014-09-22] (ESET)
R2 epfwwfpr; C:\Windows\System32\DRIVERS\epfwwfpr.sys [158968 2014-09-22] (ESET)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28008 2014-04-24] (Intel Corporation)
R1 inspect; C:\Windows\System32\DRIVERS\inspect.sys [105552 2014-04-16] (COMODO)
S3 johci; C:\Windows\System32\DRIVERS\johci.sys [26208 2012-07-16] (JMicron Technology Corp.)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [20256 2014-07-25] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [38048 2014-09-04] (NVIDIA Corporation)
R2 PfFilter; C:\Program Files (x86)\IObit\Protected Folder\pffilter.sys [38392 2012-11-23] (IObit Information Technology)
R3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [34544 2013-07-26] (Synaptics Incorporated)
R0 tib; C:\Windows\System32\DRIVERS\tib.sys [1120032 2013-10-18] (Acronis International GmbH)
R0 tib_mounter; C:\Windows\System32\DRIVERS\tib_mounter.sys [183224 2013-10-18] (Acronis)
R3 ubohci; C:\Windows\System32\DRIVERS\ubohci.sys [132608 2012-10-05] (Unibrain)
R2 ubsbm; C:\Windows\System32\DRIVERS\ubsbm.sys [24064 2012-10-05] (Unibrain)
R2 ubumapi; C:\Windows\System32\DRIVERS\ubumapi.sys [92160 2012-10-05] (Unibrain)
R0 vidsflt; C:\Windows\System32\DRIVERS\vidsflt.sys [117024 2013-10-18] (Acronis International GmbH)
S3 vmci; \SystemRoot\system32\DRIVERS\vmci.sys [X]
S3 VMnetAdapter; system32\DRIVERS\vmnetadapter.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-10-30 10:51 - 2014-10-30 10:52 - 00012337 _____ () C:\Users\Rocky-67\Desktop\FRST.txt
2014-10-30 10:50 - 2014-10-30 10:50 - 00000000 ____D () C:\Users\Rocky-67\Desktop\FRST-OlderVersion
2014-10-30 10:09 - 2014-10-30 10:15 - 00000000 ____D () C:\Users\Gemini-67\dwhelper
2014-10-29 20:57 - 2014-10-29 20:57 - 00000318 _____ () C:\Windows\PFRO.log
2014-10-29 20:31 - 2014-10-29 20:40 - 00000000 ____D () C:\Users\Gemini-67\AppData\Local\photoOptimizeHistoryDataBase
2014-10-29 20:25 - 2014-10-29 20:25 - 00000000 ____D () C:\Users\Rocky-67\AppData\Local\photoOptimizeHistoryDataBase
2014-10-29 20:24 - 2014-10-29 20:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo
2014-10-29 20:23 - 2014-10-29 20:23 - 00000000 ____D () C:\Program Files (x86)\Ashampoo
2014-10-29 20:06 - 2014-10-29 20:10 - 00000000 ____D () C:\Users\Gemini-67\AppData\Local\Riot
2014-10-29 08:52 - 2014-10-29 22:01 - 00000000 ____D () C:\Users\Public\Documents\Winstep
2014-10-29 08:52 - 2014-10-29 08:52 - 00001014 _____ () C:\Users\Rocky-67\Documents\Winstep.lnk
2014-10-29 08:52 - 2014-10-29 08:52 - 00000987 _____ () C:\Users\Rocky-67\Desktop\Nexus.lnk
2014-10-29 08:52 - 2014-10-29 08:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winstep
2014-10-29 08:52 - 2014-10-29 08:52 - 00000000 ____D () C:\Program Files (x86)\Winstep
2014-10-29 08:52 - 2008-02-05 15:36 - 00798208 _____ (Winstep Software Technologies) C:\Windows\SysWOW64\NextControls.ocx
2014-10-29 08:52 - 2000-05-22 17:58 - 00608448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.ocx
2014-10-29 08:52 - 1997-07-19 16:55 - 01347344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvbvm50.dll
2014-10-29 08:49 - 2014-10-29 08:49 - 00007076 _____ () C:\Users\Rocky-67\Desktop\Log.rar
2014-10-29 08:27 - 2014-10-30 10:51 - 00000000 ____D () C:\FRST
2014-10-29 07:34 - 2014-10-30 10:50 - 02113536 _____ (Farbar) C:\Users\Rocky-67\Desktop\FRST64.exe
2014-10-29 07:23 - 2014-10-29 07:23 - 00000000 ____D () C:\rsit
2014-10-29 07:23 - 2014-10-29 07:23 - 00000000 ____D () C:\Program Files\trend micro
2014-10-28 20:31 - 2014-10-28 20:31 - 00000000 ____D () C:\Users\Rocky-67\AppData\Roaming\ComfortSoftware
2014-10-28 11:22 - 2014-10-28 20:26 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-10-26 10:55 - 2014-10-28 20:26 - 00000000 ____D () C:\Users\Gemini-67\AppData\Local\DxO_Labs
2014-10-26 10:55 - 2014-10-26 10:55 - 00000000 ____D () C:\Users\Gemini-67\AppData\Roaming\DxO Labs
2014-10-26 10:36 - 2014-10-26 10:36 - 00000000 ____D () C:\Users\Rocky-67\AppData\Roaming\DxO Labs
2014-10-26 10:35 - 2014-10-28 20:26 - 00000000 ____D () C:\Users\Rocky-67\AppData\Local\DxO_Labs
2014-10-26 10:35 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2014-10-26 10:35 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2014-10-26 10:34 - 2014-10-28 20:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DxO Optics Pro 8
2014-10-26 10:34 - 2014-10-28 20:26 - 00000000 ____D () C:\ProgramData\DxO Labs
2014-10-26 10:34 - 2014-10-26 10:34 - 00000000 ____D () C:\Program Files\DxO Labs
2014-10-24 19:27 - 2014-10-24 19:46 - 00000000 ____D () C:\Users\Gemini-67\AppData\Local\VMware
2014-10-24 19:12 - 2014-10-24 19:51 - 00000000 ____D () C:\ProgramData\VMware
2014-10-24 12:46 - 2012-10-05 12:26 - 00132608 _____ (Unibrain) C:\Windows\system32\Drivers\ubohci.sys
2014-10-24 12:46 - 2012-10-05 07:57 - 00092160 _____ (Unibrain) C:\Windows\system32\Drivers\UBUMAPI.sys
2014-10-24 12:46 - 2012-10-05 07:56 - 00187392 _____ (Unibrain) C:\Windows\system32\Drivers\UB1394.sys
2014-10-24 12:46 - 2012-10-05 07:56 - 00024064 _____ (Unibrain) C:\Windows\system32\Drivers\UBSBM.sys
2014-10-24 12:44 - 2013-12-04 22:32 - 02213376 _____ (IDT, Inc.) C:\Windows\system32\stapo64.dll
2014-10-24 12:44 - 2013-12-04 22:32 - 00697856 _____ (IDT, Inc.) C:\Windows\system32\stapi64.dll
2014-10-24 12:44 - 2013-12-04 22:32 - 00551936 _____ (IDT, Inc.) C:\Windows\system32\Drivers\stwrt64.sys
2014-10-24 12:44 - 2013-12-04 22:32 - 00499200 _____ (IDT, Inc.) C:\Windows\system32\stcplx64.dll
2014-10-24 12:44 - 2013-12-04 22:32 - 00256000 _____ (IDT, Inc.) C:\Windows\system32\st646498.dll
2014-10-24 12:43 - 2014-09-04 20:14 - 00038048 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2014-10-24 12:43 - 2014-09-04 20:14 - 00034976 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2014-10-24 12:43 - 2014-09-04 20:14 - 00032416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2014-10-24 12:43 - 2012-07-16 12:38 - 00026208 _____ (JMicron Technology Corp.) C:\Windows\system32\Drivers\johci.sys
2014-10-24 12:43 - 2009-12-25 19:09 - 00076112 _____ (ENE TECHNOLOGY INC.) C:\Windows\system32\Drivers\enecir.sys
2014-10-24 12:42 - 2014-10-28 20:26 - 00000000 ____D () C:\Users\Gemini-67\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zariadenia Bluetooth
2014-10-24 12:42 - 2014-07-16 08:06 - 00941784 _____ (Realtek ) C:\Windows\system32\Drivers\Rt64win7.sys
2014-10-24 12:42 - 2014-07-16 08:06 - 00073800 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll
2014-10-24 12:42 - 2014-04-24 15:34 - 00633704 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorA.sys
2014-10-24 12:42 - 2014-04-24 15:34 - 00028008 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorF.sys
2014-10-24 12:40 - 2014-10-29 20:58 - 00001618 _____ () C:\Windows\setupact.log
2014-10-24 12:40 - 2014-10-24 12:40 - 00000000 _____ () C:\Windows\setuperr.log
2014-10-24 12:17 - 2014-10-28 20:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Comfort On-Screen Keyboard
2014-10-24 12:17 - 2014-10-24 12:17 - 00000000 ____D () C:\Users\Gemini-67\AppData\Roaming\ComfortSoftware
2014-10-24 12:17 - 2014-10-24 12:17 - 00000000 ____D () C:\Program Files\ComfortKeyboard
2014-10-24 12:17 - 2012-12-06 19:17 - 00024408 _____ () C:\Windows\system32\cskeyboardlogon.dll
2014-10-24 12:17 - 2012-12-06 19:13 - 00199000 _____ () C:\Windows\system32\CsCredentialLogon.dll
2014-10-24 12:17 - 2012-12-06 19:13 - 00167256 _____ () C:\Windows\system32\CsCredentialLogon64.dll
2014-10-24 12:17 - 2012-12-06 19:13 - 00089944 _____ () C:\Windows\system32\runcosk.exe
2014-10-24 12:11 - 2014-10-29 20:21 - 00000000 ____D () C:\Users\Gemini-67\AppData\Roaming\uTorrent
2014-10-23 17:54 - 2014-10-24 12:46 - 00128836 _____ () C:\Windows\system32\Drivers\fvstore.dat
2014-10-22 20:05 - 2014-10-22 20:05 - 00000000 ____D () C:\Users\Gemini-67\AppData\Roaming\East-Tec
2014-10-22 19:16 - 2014-10-22 19:16 - 00000112 _____ () C:\Windows\etGlobalInfo.txt
2014-10-22 19:15 - 2014-10-22 19:15 - 00000000 ____D () C:\Users\Rocky-67\AppData\Roaming\East-Tec
2014-10-22 19:15 - 2014-10-22 19:15 - 00000000 ____D () C:\ProgramData\Licenses
2014-10-22 19:15 - 2014-10-22 19:15 - 00000000 ____D () C:\ProgramData\East-Tec
2014-10-22 19:14 - 2014-10-28 20:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\east-tec Eraser 2014
2014-10-22 19:14 - 2014-10-23 12:45 - 00000000 ____D () C:\Program Files (x86)\east-tec Eraser
2014-10-22 17:42 - 2009-12-04 06:54 - 00312064 _____ (AVerMedia TECHNOLOGIES, Inc.) C:\Windows\system32\Drivers\AVerAF15.sys
2014-10-22 17:41 - 2014-10-22 17:41 - 00000000 ____D () C:\Program Files (x86)\Realtek
2014-10-22 17:32 - 2012-05-02 05:18 - 00184144 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwaudio.sys
2014-10-22 17:32 - 2012-03-06 10:29 - 00210984 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwavdt.sys
2014-10-22 17:32 - 2012-03-06 10:29 - 00021544 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwrchid.sys
2014-10-22 17:32 - 2011-09-17 23:38 - 00039976 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwl2cap.sys
2014-10-22 17:12 - 2014-10-22 17:12 - 00000000 ____D () C:\Users\Public\Documents\Downloaded Installers
2014-10-22 07:17 - 2014-10-22 07:47 - 00000000 ____D () C:\Users\Rocky-67\AppData\Local\Google
2014-10-22 07:17 - 2014-10-22 07:47 - 00000000 ____D () C:\Program Files (x86)\Google
2014-10-22 07:17 - 2014-10-22 07:22 - 00000000 ____D () C:\Users\Gemini-67\AppData\Local\Google
2014-10-22 07:11 - 2014-10-22 07:13 - 00000000 ____D () C:\Users\Rocky-67\AppData\Local\Adobe
2014-10-19 18:23 - 2014-10-24 09:33 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-10-19 18:23 - 2014-10-19 18:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-10-19 18:23 - 2014-10-19 18:23 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-10-19 18:23 - 2014-10-19 18:23 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-10-19 18:23 - 2014-10-01 10:11 - 00093400 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-10-19 18:23 - 2014-10-01 10:11 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-10-19 18:23 - 2014-10-01 10:11 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-10-19 18:17 - 2014-10-19 18:17 - 00000000 ____D () C:\Users\Rocky-67\AppData\Roaming\Mozilla
2014-10-19 18:17 - 2014-10-19 18:17 - 00000000 ____D () C:\Users\Rocky-67\AppData\Local\Mozilla
2014-10-17 14:58 - 2014-10-17 14:58 - 00001167 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-10-17 14:58 - 2014-10-17 14:58 - 00000000 ____D () C:\Users\Gemini-67\AppData\Roaming\Mozilla
2014-10-17 14:58 - 2014-10-17 14:58 - 00000000 ____D () C:\Users\Gemini-67\AppData\Local\Mozilla
2014-10-17 14:57 - 2014-10-17 14:57 - 00000000 ____D () C:\ProgramData\Mozilla
2014-10-17 14:29 - 2014-10-17 14:29 - 00000000 ____D () C:\Users\Rocky-67\AppData\Local\CyberGhost
2014-10-17 12:20 - 2014-10-17 12:20 - 00001333 _____ () C:\Users\Rocky-67\Desktop\Start Emsisoft Emergency Kit.lnk
2014-10-17 09:43 - 2014-10-07 03:54 - 00378552 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-10-17 09:43 - 2014-10-07 03:04 - 00331448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-10-17 09:43 - 2014-09-25 23:46 - 00365056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-10-17 09:43 - 2014-09-25 23:46 - 00243200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-10-17 09:43 - 2014-09-25 23:46 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-10-17 09:43 - 2014-09-25 23:32 - 02017280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-10-17 09:43 - 2014-09-19 02:56 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-10-17 09:43 - 2014-09-19 02:55 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-10-17 09:43 - 2014-09-19 02:44 - 17484800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-10-17 09:43 - 2014-09-19 02:39 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-10-17 09:43 - 2014-09-19 02:30 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-10-17 09:43 - 2014-09-19 02:25 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-10-17 09:43 - 2014-09-19 02:14 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-10-17 09:43 - 2014-09-19 02:14 - 00446464 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-10-17 09:43 - 2014-09-19 02:06 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-10-17 09:43 - 2014-09-19 02:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-10-17 09:43 - 2014-09-19 02:01 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-10-17 09:43 - 2014-09-19 01:55 - 02187264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-10-17 09:43 - 2014-09-19 01:54 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-10-17 09:43 - 2014-09-19 01:53 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-10-17 09:43 - 2014-09-19 01:49 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-10-17 09:43 - 2014-09-19 01:42 - 00710656 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-10-17 09:43 - 2014-09-19 01:36 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-10-17 09:43 - 2014-09-19 01:20 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-10-17 09:43 - 2014-09-19 01:14 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-10-17 09:43 - 2014-09-19 00:53 - 01190400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-10-17 09:42 - 2014-10-10 03:05 - 00507392 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-10-17 09:42 - 2014-10-10 03:05 - 00276480 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2014-10-17 09:42 - 2014-10-10 03:00 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-10-17 09:42 - 2014-09-29 01:58 - 03198976 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-10-17 09:42 - 2014-09-25 23:50 - 13619200 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-10-17 09:42 - 2014-09-25 23:43 - 11807232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-10-17 09:42 - 2014-09-25 23:31 - 02108416 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-10-17 09:42 - 2014-09-19 03:25 - 23631360 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-10-17 09:42 - 2014-09-19 02:41 - 02796032 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-10-17 09:42 - 2014-09-19 02:40 - 00547328 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-10-17 09:42 - 2014-09-19 02:40 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-10-17 09:42 - 2014-09-19 02:38 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-10-17 09:42 - 2014-09-19 02:36 - 05829632 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-10-17 09:42 - 2014-09-19 02:31 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-10-17 09:42 - 2014-09-19 02:27 - 00595968 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-10-17 09:42 - 2014-09-19 02:26 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-10-17 09:42 - 2014-09-19 02:25 - 04201472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-10-17 09:42 - 2014-09-19 02:25 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-10-17 09:42 - 2014-09-19 02:18 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-10-17 09:42 - 2014-09-19 02:02 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-10-17 09:42 - 2014-09-19 02:01 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-10-17 09:42 - 2014-09-19 02:00 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-10-17 09:42 - 2014-09-19 01:59 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-10-17 09:42 - 2014-09-19 01:58 - 00289280 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-10-17 09:42 - 2014-09-19 01:51 - 00440320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-10-17 09:42 - 2014-09-19 01:50 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-10-17 09:42 - 2014-09-19 01:42 - 00731136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-10-17 09:42 - 2014-09-19 01:40 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-10-17 09:42 - 2014-09-19 01:33 - 02309632 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-10-17 09:42 - 2014-09-19 01:32 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-10-17 09:42 - 2014-09-19 01:18 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-10-17 09:42 - 2014-09-19 00:59 - 01810944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-10-17 09:42 - 2014-09-19 00:59 - 00775168 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-10-17 09:42 - 2014-09-19 00:52 - 00678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-10-17 09:42 - 2014-06-18 23:23 - 01943696 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2014-10-17 09:42 - 2014-06-18 23:23 - 01131664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfshim.dll
2014-10-17 09:42 - 2014-06-18 23:23 - 00156824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscorier.dll
2014-10-17 09:42 - 2014-06-18 23:23 - 00156312 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
2014-10-17 09:42 - 2014-06-18 23:23 - 00081560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscories.dll
2014-10-17 09:42 - 2014-06-18 23:23 - 00073880 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
2014-10-17 09:41 - 2014-09-18 03:00 - 03241472 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-10-17 09:41 - 2014-09-18 02:32 - 02363904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-10-17 09:41 - 2014-09-04 06:23 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2014-10-17 09:41 - 2014-09-04 06:04 - 00372736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
2014-10-17 09:41 - 2014-08-29 03:07 - 03179520 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-10-17 09:41 - 2014-07-17 03:07 - 00681984 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2014-10-17 09:41 - 2014-07-17 03:07 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-10-17 09:41 - 2014-07-17 03:07 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
2014-10-17 09:41 - 2014-07-17 03:07 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2014-10-17 09:41 - 2014-07-17 03:07 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-10-17 09:41 - 2014-07-17 03:07 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-10-17 09:41 - 2014-07-17 02:40 - 00157696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsta.dll
2014-10-17 09:41 - 2014-07-17 02:39 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-10-17 09:41 - 2014-07-17 02:39 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-10-17 09:41 - 2014-07-17 02:21 - 00212480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2014-10-17 09:41 - 2014-07-17 02:21 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2014-10-17 09:40 - 2014-09-13 02:58 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-10-17 09:40 - 2014-09-13 02:40 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2014-10-17 09:40 - 2014-09-05 03:11 - 06584320 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-10-17 09:40 - 2014-09-05 02:52 - 05703168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-10-14 18:26 - 2014-10-22 19:24 - 00000000 ____D () C:\Program Files (x86)\Mozilla Thunderbird
2014-10-11 17:46 - 2014-10-11 17:49 - 00000000 ____D () C:\Users\Gemini-67\AppData\Local\CyberGhost
2014-10-11 17:45 - 2014-10-11 17:46 - 00000000 ____D () C:\Program Files\TAP-Windows
2014-10-11 17:45 - 2014-10-11 17:46 - 00000000 ____D () C:\Program Files\CyberGhost 5
2014-10-11 17:45 - 2014-10-11 17:45 - 00001736 _____ () C:\Users\Rocky-67\Desktop\CyberGhost 5.lnk
2014-10-11 17:45 - 2014-10-11 17:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberGhost 5
2014-10-11 16:35 - 2014-10-28 21:34 - 00000000 ____D () C:\Users\Gemini-67\AppData\Roaming\Vso
2014-10-11 16:29 - 2014-10-11 16:29 - 00001057 _____ () C:\Users\Rocky-67\AppData\Roaming\vso_ts_preview.xml
2014-10-11 16:28 - 2014-10-11 16:28 - 00001236 _____ () C:\Users\Rocky-67\Desktop\ConvertXtoDVD 4.lnk
2014-10-11 16:28 - 2014-10-11 16:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VSO
2014-10-11 16:28 - 2014-10-11 16:28 - 00000000 ____D () C:\Program Files (x86)\VSO
2014-10-11 16:28 - 2009-09-02 12:44 - 01184984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wvc1dmod.dll
2014-10-11 16:28 - 2009-09-02 12:44 - 00626688 _____ (On2.com) C:\Windows\SysWOW64\vp7vfw.dll
2014-10-11 16:28 - 2009-09-02 12:44 - 00273408 _____ (RealNetworks, Inc.) C:\Windows\SysWOW64\Pncrt.dll
2014-10-11 16:28 - 2009-09-02 12:44 - 00217127 _____ (RealNetworks, Inc.) C:\Windows\SysWOW64\drv43260.dll
2014-10-11 16:28 - 2009-09-02 12:44 - 00208935 _____ (RealNetworks, Inc.) C:\Windows\SysWOW64\drv33260.dll
2014-10-11 16:28 - 2009-09-02 12:44 - 00176165 _____ (RealNetworks, Inc.) C:\Windows\SysWOW64\drv23260.dll
2014-10-11 16:28 - 2009-09-02 12:44 - 00102439 _____ (RealNetworks, Inc.) C:\Windows\SysWOW64\sipr3260.dll
2014-10-11 16:28 - 2009-09-02 12:44 - 00065602 _____ (RealNetworks, Inc.) C:\Windows\SysWOW64\cook3260.dll
2014-10-11 16:24 - 2014-10-11 16:24 - 00000000 ____D () C:\Users\Rocky-67\AppData\Local\ESET
2014-10-11 16:21 - 2014-10-17 14:37 - 00000000 ____D () C:\Users\Rocky-67\AppData\Roaming\Vso
2014-10-11 16:15 - 2014-10-11 16:15 - 00000000 ____D () C:\Users\Rocky-67\AppData\Local\VS Revo Group
2014-10-11 16:15 - 2014-10-11 16:15 - 00000000 ____D () C:\ProgramData\VS Revo Group
2014-10-11 16:15 - 2014-10-11 16:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro
2014-10-11 16:15 - 2014-10-11 16:15 - 00000000 ____D () C:\Program Files\VS Revo Group
2014-10-11 16:15 - 2009-12-30 10:21 - 00031800 _____ (VS Revo Group) C:\Windows\system32\Drivers\revoflt.sys
2014-10-11 15:35 - 2014-10-22 19:22 - 00000000 ____D () C:\Users\Rocky-67\AppData\Roaming\vlc
2014-10-11 15:12 - 2014-10-11 15:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Protected Folder
2014-10-11 15:11 - 2014-10-11 15:11 - 00000000 ____D () C:\ProgramData\IObit
2014-10-11 15:11 - 2014-10-11 15:11 - 00000000 ____D () C:\Program Files (x86)\IObit
2014-10-11 15:08 - 2014-10-11 15:09 - 00000000 ____D () C:\Users\Rocky-67\AppData\Local\NVIDIA Corporation
2014-10-11 07:19 - 2014-10-11 07:19 - 00000000 ____D () C:\ProgramData\Sun
2014-10-10 20:07 - 2014-10-10 20:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2014-10-10 20:07 - 2014-10-10 20:07 - 00000000 ____D () C:\ProgramData\ESET
2014-10-10 20:07 - 2014-10-10 20:07 - 00000000 ____D () C:\Program Files\ESET
2014-10-10 19:53 - 2014-06-27 03:08 - 02777088 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2014-10-10 19:53 - 2014-06-27 02:45 - 02285056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2014-10-10 19:52 - 2014-08-01 12:53 - 01031168 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2014-10-10 19:52 - 2014-08-01 12:35 - 00793600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2014-10-10 19:51 - 2014-09-25 03:08 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2014-10-10 19:51 - 2014-09-25 02:40 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2014-10-10 19:51 - 2014-09-09 23:11 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-10-10 19:51 - 2014-09-09 22:47 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-10-10 19:50 - 2014-08-23 03:07 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-10-10 19:50 - 2014-08-23 02:45 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-10-10 19:50 - 2014-07-07 03:06 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-10-10 19:50 - 2014-07-07 03:06 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-10-10 19:50 - 2014-07-07 02:40 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-10-10 19:50 - 2014-07-07 02:40 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-10-10 19:50 - 2014-07-07 02:39 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-10-10 19:50 - 2014-06-24 04:29 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-10-10 19:50 - 2014-06-24 03:59 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-10-30 10:09 - 2013-10-04 12:44 - 00000000 ____D () C:\Users\Gemini-67
2014-10-29 22:38 - 2013-10-07 09:52 - 00000000 ____D () C:\Users\Gemini-67\AppData\Roaming\vlc
2014-10-29 21:14 - 2013-10-15 08:56 - 01157014 _____ () C:\Windows\WindowsUpdate.log
2014-10-29 21:05 - 2009-07-14 05:45 - 00023568 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-10-29 21:05 - 2009-07-14 05:45 - 00023568 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-10-29 21:02 - 2009-07-14 06:13 - 00781790 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-10-29 20:58 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-10-29 20:58 - 2009-07-14 05:45 - 00331680 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-10-29 20:56 - 2013-10-16 18:11 - 00000000 ____D () C:\AdwCleaner
2014-10-29 20:23 - 2013-10-07 17:41 - 00000000 ____D () C:\ProgramData\Ashampoo
2014-10-29 19:11 - 2013-10-04 12:45 - 00077464 _____ () C:\Users\Gemini-67\AppData\Local\GDIPFONTCACHEV1.DAT
2014-10-28 21:23 - 2013-10-06 11:51 - 00000000 ___RD () C:\Users\Gemini-67\Aplikácie
2014-10-28 20:26 - 2014-03-06 10:21 - 00000000 ____D () C:\Users\Gemini-67\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\uTorrent
2014-10-28 20:26 - 2013-10-02 19:38 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-10-28 20:26 - 2013-10-02 17:35 - 00000000 ____D () C:\Users\Rocky-67
2014-10-28 20:26 - 2009-07-14 04:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2014-10-28 20:26 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-10-28 20:26 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\registration
2014-10-28 20:04 - 2013-10-07 09:25 - 00000000 ____D () C:\Users\Gemini-67\AppData\Roaming\CyberLink
2014-10-28 20:04 - 2013-10-07 09:21 - 00000000 ____D () C:\ProgramData\CyberLink
2014-10-28 20:03 - 2009-07-14 04:20 - 00000000 __RHD () C:\Users\Public\Libraries
2014-10-28 20:02 - 2013-10-09 19:30 - 00000000 ____D () C:\Users\Gemini-67\AppData\Local\CrashDumps
2014-10-28 12:52 - 2013-10-07 17:18 - 00001057 _____ () C:\Users\Gemini-67\AppData\Roaming\vso_ts_preview.xml
2014-10-26 10:35 - 2014-08-14 20:44 - 00000000 ____D () C:\Users\Rocky-67\AppData\Roaming\NVIDIA
2014-10-24 19:46 - 2013-10-06 13:33 - 00000000 ____D () C:\Users\Gemini-67\AppData\Roaming\VMware
2014-10-24 19:13 - 2013-10-09 20:09 - 00001024 _____ () C:\Windows\SysWOW64\%TMP%
2014-10-24 19:13 - 2013-10-04 12:34 - 00791072 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-10-24 12:45 - 2013-10-02 18:19 - 00000000 ____D () C:\Program Files\IDT
2014-10-24 09:13 - 2013-10-06 19:59 - 00000000 ____D () C:\Users\Gemini-67\AppData\Roaming\YoWindow
2014-10-23 12:48 - 2013-10-07 09:21 - 00000000 ____D () C:\ProgramData\Temp
2014-10-22 20:03 - 2009-07-14 06:32 - 00000000 ____D () C:\Windows\Performance
2014-10-22 17:44 - 2013-10-04 09:48 - 00000000 ____D () C:\SWSetup
2014-10-22 17:42 - 2013-10-04 09:53 - 00000000 ____D () C:\Windows\Driver Cache
2014-10-22 17:42 - 2013-10-04 09:53 - 00000000 ____D () C:\Program Files (x86)\AVerMedia
2014-10-22 17:41 - 2013-10-04 11:53 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-10-22 07:12 - 2013-10-04 13:10 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-10-22 07:12 - 2013-10-04 13:10 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-10-19 22:43 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2014-10-17 11:52 - 2014-08-13 17:37 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-10-17 09:47 - 2013-10-02 19:11 - 00000000 ____D () C:\Windows\system32\MRT
2014-10-17 09:43 - 2013-10-02 19:11 - 103265616 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-10-14 19:01 - 2013-10-04 12:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FastStone Image Viewer
2014-10-14 19:01 - 2013-10-04 12:10 - 00000000 ____D () C:\Program Files (x86)\FastStone Image Viewer
2014-10-11 17:49 - 2013-10-04 12:44 - 00000000 ____D () C:\Users\Gemini-67\AppData\Local\VirtualStore
2014-10-11 16:21 - 2014-03-03 14:57 - 00099384 _____ () C:\Users\Rocky-67\AppData\Roaming\inst.exe
2014-10-11 16:21 - 2014-03-03 14:57 - 00082816 _____ (VSO Software) C:\Users\Rocky-67\AppData\Roaming\pcouffin.sys
2014-10-11 16:21 - 2014-03-03 14:57 - 00007859 _____ () C:\Users\Rocky-67\AppData\Roaming\pcouffin.cat
2014-10-11 16:21 - 2014-03-03 14:57 - 00000055 _____ () C:\Users\Rocky-67\AppData\Roaming\pcouffin.log
2014-10-10 20:16 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\sk-SK
2014-10-10 20:16 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\sk-SK
Some content of TEMP:
====================
C:\Users\Gemini-67\AppData\Local\Temp\Foxit Reader Updater.exe
C:\Users\Gemini-67\AppData\Local\Temp\Photooptimizer.exe
C:\Users\Rocky-67\AppData\Local\Temp\Photooptimizer.exe
C:\Users\Rocky-67\AppData\Local\Temp\Quarantine.exe
C:\Users\Rocky-67\AppData\Local\Temp\sqlite3.dll
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-10-26 12:09
==================== End Of Log ============================
- Přílohy
-
- Addition.rar
- (6.61 KiB) Staženo 62 x
-
Rudy
- Site Admin
- Příspěvky: 119547
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Blbne počítač
Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
C:\Users\Gemini-67\AppData\Local\Temp
C:\Users\Rocky-67\AppData\Local\Temp
AlternateDataStreams: C:\Windows:nlsPreferences
AlternateDataStreams: C:\ProgramData\Temp:1CE11B51
AlternateDataStreams: C:\ProgramData\Temp:AC64BB05
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
Nabuchodonozor671
- Návštěvník
- Příspěvky: 24
- Registrován: 29 zář 2013 17:47
Re: Blbne počítač
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 30-10-2014
Ran by Rocky-67 at 2014-10-30 18:06:05 Run:1
Running from C:\Users\Rocky-67\Desktop
Loaded Profile: Rocky-67 (Available profiles: Rocky-67 & Gemini-67)
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
Start
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
C:\Users\Gemini-67\AppData\Local\Temp
C:\Users\Rocky-67\AppData\Local\Temp
AlternateDataStreams: C:\Windows:nlsPreferences
AlternateDataStreams: C:\ProgramData\Temp:1CE11B51
AlternateDataStreams: C:\ProgramData\Temp:AC64BB05
End
*****************
"HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE" => Key deleted successfully.
"HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE" => Key deleted successfully.
C:\Users\Gemini-67\AppData\Local\Temp => Moved successfully.
"C:\Users\Rocky-67\AppData\Local\Temp" directory move:
C:\Users\Rocky-67\AppData\Local\Temp\adwcleaner.db => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\AdwCleaner.jpg => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\Cleaning.ico => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\dd_vcredistMSI1699.txt => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\dd_vcredistMSI16B3.txt => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\dd_vcredistUI1699.txt => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\dd_vcredistUI16B3.txt => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\Donate.ico => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\dop80_install_log.log => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\EULA.txt => Moved successfully.
Could not move "C:\Users\Rocky-67\AppData\Local\Temp\FXSAPIDebugLogFile.txt" => Scheduled to move on reboot.
C:\Users\Rocky-67\AppData\Local\Temp\MYIZP52R.htm => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\Quarantine.exe => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\Report.ico => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\resources8.cab => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\Scan.ico => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\sqlite3.dll => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\Uninstall.ico => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\vminst.log => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\vmsetup.20141024201057.log => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\vmsetup.20141024201057.vmwareworkstation_x64.msi.install.log => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\vmsetup.20141024201519.log => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\vmsetup.20141024201519.tools-freebsd.msi.install.log => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\vmsetup.20141024201536.log => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\vmsetup.20141024201536.tools-linux.msi.install.log => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\vmsetup.20141024201554.log => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\vmsetup.20141024201554.tools-netware.msi.install.log => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\vmsetup.20141024201557.log => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\vmsetup.20141024201557.tools-solaris.msi.install.log => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\vmsetup.20141024201609.log => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\vmsetup.20141024201609.tools-windows.msi.install.log => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\vmsetup.20141024201627.log => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\vmsetup.20141024201627.tools-winpre2k.msi.install.log => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\vmsetup.20141024204653.log => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\vmsetup.20141024204653.{003BFBBD-6C67-419E-A24D-0DCAFC3A5249}.uninstall.log => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\vmsetup.20141024204653.{0D94F75A-0EA6-4951-B3AF-B145FA9E05C6}.uninstall.log => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\vmsetup.20141024204653.{197597A7-AD33-4898-9D8E-73066818B464}.uninstall.log => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\vmsetup.20141024204653.{AB1C87CB-1807-4CF0-B4C2-CEE14C18CDB4}.uninstall.log => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\vmsetup.20141024204653.{AE0F62A7-A1A2-407F-9F4C-48939BD9AD8D}.uninstall.log => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\vmsetup.20141024204653.{D102611A-6466-4101-A51D-51069303AC65}.uninstall.log => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\vmsetup.20141024204653.{FFD9383C-01D5-4897-A954-43AF599AED30}.uninstall.log => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\X5G01YNK.htm => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\~1486.tmp => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\~7951.tmp => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\~86C8.tmp => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\vmware-Rocky-67\vmware-vix-3196.log => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\Photooptimizer.exe\00000\applicationLog_00000_2014-29-10_20-25-25-3623599525914.txt => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\Photooptimizer.exe\00000\imageprocessorLog_00000_2014-29-10_20-25-25-3623599525914.txt => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\Photooptimizer.exe\00000\shareddllLog_00000_2014-29-10_20-25-25-3623599525914.txt => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\30e343e5b0f707dd240618f10b741aa_fce8395f8fd8a80a_15f74c7777689be5_0_0.bin => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\30e343e5b0f707dd240618f10b741aa_fce8395f8fd8a80a_15f74c7777689be5_0_0.toc => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\30e343e5b0f707dd240618f10b741aa_fce8395f8fd8a80a_15f74c7777689be5_1_0.bin => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\30e343e5b0f707dd240618f10b741aa_fce8395f8fd8a80a_15f74c7777689be5_1_0.toc => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\30e343e5b0f707dd240618f10b741aa_fce8395f8fd8a80a_c9d4dd09ac9a930c_0_0.bin => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\30e343e5b0f707dd240618f10b741aa_fce8395f8fd8a80a_c9d4dd09ac9a930c_0_0.toc => Moved successfully.
Could not move "C:\Users\Rocky-67\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\63547c51a55c7182c5c77fb521826c6c_fce8395f8fd8a80a_6229ccd76215aea1_0_0.bin" => Scheduled to move on reboot.
Could not move "C:\Users\Rocky-67\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\63547c51a55c7182c5c77fb521826c6c_fce8395f8fd8a80a_6229ccd76215aea1_0_0.toc" => Scheduled to move on reboot.
C:\Users\Rocky-67\AppData\Local\Temp\directx_dx9_42\Aug2009_d3dx9_42_x64.cab => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\directx_dx9_42\Aug2009_d3dx9_42_x86.cab => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\directx_dx9_42\dsetup.dll => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\directx_dx9_42\dsetup32.dll => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\directx_dx9_42\dxdllreg_x86.cab => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\directx_dx9_42\dxsetup.exe => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\directx_dx9_42\dxupdate.cab => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\directx_dx9_42\RGB9Rast_1_x64.cab => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\directx_dx9_42\RGB9Rast_1_x86.cab => Moved successfully.
Could not move "C:\Users\Rocky-67\AppData\Local\Temp" directory. => Scheduled to move on reboot.
C:\Windows => ":nlsPreferences" ADS removed successfully.
C:\ProgramData\Temp => ":1CE11B51" ADS removed successfully.
C:\ProgramData\Temp => ":AC64BB05" ADS removed successfully.
Ran by Rocky-67 at 2014-10-30 18:06:05 Run:1
Running from C:\Users\Rocky-67\Desktop
Loaded Profile: Rocky-67 (Available profiles: Rocky-67 & Gemini-67)
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
Start
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
C:\Users\Gemini-67\AppData\Local\Temp
C:\Users\Rocky-67\AppData\Local\Temp
AlternateDataStreams: C:\Windows:nlsPreferences
AlternateDataStreams: C:\ProgramData\Temp:1CE11B51
AlternateDataStreams: C:\ProgramData\Temp:AC64BB05
End
*****************
"HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE" => Key deleted successfully.
"HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE" => Key deleted successfully.
C:\Users\Gemini-67\AppData\Local\Temp => Moved successfully.
"C:\Users\Rocky-67\AppData\Local\Temp" directory move:
C:\Users\Rocky-67\AppData\Local\Temp\adwcleaner.db => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\AdwCleaner.jpg => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\Cleaning.ico => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\dd_vcredistMSI1699.txt => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\dd_vcredistMSI16B3.txt => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\dd_vcredistUI1699.txt => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\dd_vcredistUI16B3.txt => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\Donate.ico => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\dop80_install_log.log => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\EULA.txt => Moved successfully.
Could not move "C:\Users\Rocky-67\AppData\Local\Temp\FXSAPIDebugLogFile.txt" => Scheduled to move on reboot.
C:\Users\Rocky-67\AppData\Local\Temp\MYIZP52R.htm => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\Quarantine.exe => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\Report.ico => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\resources8.cab => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\Scan.ico => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\sqlite3.dll => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\Uninstall.ico => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\vminst.log => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\vmsetup.20141024201057.log => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\vmsetup.20141024201057.vmwareworkstation_x64.msi.install.log => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\vmsetup.20141024201519.log => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\vmsetup.20141024201519.tools-freebsd.msi.install.log => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\vmsetup.20141024201536.log => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\vmsetup.20141024201536.tools-linux.msi.install.log => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\vmsetup.20141024201554.log => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\vmsetup.20141024201554.tools-netware.msi.install.log => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\vmsetup.20141024201557.log => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\vmsetup.20141024201557.tools-solaris.msi.install.log => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\vmsetup.20141024201609.log => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\vmsetup.20141024201609.tools-windows.msi.install.log => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\vmsetup.20141024201627.log => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\vmsetup.20141024201627.tools-winpre2k.msi.install.log => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\vmsetup.20141024204653.log => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\vmsetup.20141024204653.{003BFBBD-6C67-419E-A24D-0DCAFC3A5249}.uninstall.log => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\vmsetup.20141024204653.{0D94F75A-0EA6-4951-B3AF-B145FA9E05C6}.uninstall.log => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\vmsetup.20141024204653.{197597A7-AD33-4898-9D8E-73066818B464}.uninstall.log => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\vmsetup.20141024204653.{AB1C87CB-1807-4CF0-B4C2-CEE14C18CDB4}.uninstall.log => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\vmsetup.20141024204653.{AE0F62A7-A1A2-407F-9F4C-48939BD9AD8D}.uninstall.log => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\vmsetup.20141024204653.{D102611A-6466-4101-A51D-51069303AC65}.uninstall.log => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\vmsetup.20141024204653.{FFD9383C-01D5-4897-A954-43AF599AED30}.uninstall.log => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\X5G01YNK.htm => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\~1486.tmp => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\~7951.tmp => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\~86C8.tmp => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\vmware-Rocky-67\vmware-vix-3196.log => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\Photooptimizer.exe\00000\applicationLog_00000_2014-29-10_20-25-25-3623599525914.txt => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\Photooptimizer.exe\00000\imageprocessorLog_00000_2014-29-10_20-25-25-3623599525914.txt => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\Photooptimizer.exe\00000\shareddllLog_00000_2014-29-10_20-25-25-3623599525914.txt => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\30e343e5b0f707dd240618f10b741aa_fce8395f8fd8a80a_15f74c7777689be5_0_0.bin => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\30e343e5b0f707dd240618f10b741aa_fce8395f8fd8a80a_15f74c7777689be5_0_0.toc => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\30e343e5b0f707dd240618f10b741aa_fce8395f8fd8a80a_15f74c7777689be5_1_0.bin => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\30e343e5b0f707dd240618f10b741aa_fce8395f8fd8a80a_15f74c7777689be5_1_0.toc => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\30e343e5b0f707dd240618f10b741aa_fce8395f8fd8a80a_c9d4dd09ac9a930c_0_0.bin => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\30e343e5b0f707dd240618f10b741aa_fce8395f8fd8a80a_c9d4dd09ac9a930c_0_0.toc => Moved successfully.
Could not move "C:\Users\Rocky-67\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\63547c51a55c7182c5c77fb521826c6c_fce8395f8fd8a80a_6229ccd76215aea1_0_0.bin" => Scheduled to move on reboot.
Could not move "C:\Users\Rocky-67\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\63547c51a55c7182c5c77fb521826c6c_fce8395f8fd8a80a_6229ccd76215aea1_0_0.toc" => Scheduled to move on reboot.
C:\Users\Rocky-67\AppData\Local\Temp\directx_dx9_42\Aug2009_d3dx9_42_x64.cab => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\directx_dx9_42\Aug2009_d3dx9_42_x86.cab => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\directx_dx9_42\dsetup.dll => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\directx_dx9_42\dsetup32.dll => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\directx_dx9_42\dxdllreg_x86.cab => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\directx_dx9_42\dxsetup.exe => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\directx_dx9_42\dxupdate.cab => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\directx_dx9_42\RGB9Rast_1_x64.cab => Moved successfully.
C:\Users\Rocky-67\AppData\Local\Temp\directx_dx9_42\RGB9Rast_1_x86.cab => Moved successfully.
Could not move "C:\Users\Rocky-67\AppData\Local\Temp" directory. => Scheduled to move on reboot.
C:\Windows => ":nlsPreferences" ADS removed successfully.
C:\ProgramData\Temp => ":1CE11B51" ADS removed successfully.
C:\ProgramData\Temp => ":AC64BB05" ADS removed successfully.
-
Rudy
- Site Admin
- Příspěvky: 119547
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Blbne počítač
Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
Nabuchodonozor671
- Návštěvník
- Příspěvky: 24
- Registrován: 29 zář 2013 17:47
Re: Blbne počítač
Notebook šlape...Firefox už "nemrzne",no neviem či to má s tým (vírusom?) súvis,ale v ponuke štart-všetky programy,mi nekorektne zobrazuje ikony programov...Nie všetky,len niektoré.Takže mal som v PC dáku "háveď"?Inak kontrolujem systém pravideľne s Malwarebytes,či Emsisoft Emergency Kit a zakaždým čisté...a dokonca nechodím ani na "zakázané" stránky 
...Tak neviem!Ak je to teda všetko z Vašej strany,ďakujem veľmi pekne za pomoc!Však až by som niečo spozoroval-dám zasa vedieť...Pekný večer prajem!
...Tak neviem!Ak je to teda všetko z Vašej strany,ďakujem veľmi pekne za pomoc!Však až by som niečo spozoroval-dám zasa vedieť...Pekný večer prajem!-
Rudy
- Site Admin
- Příspěvky: 119547
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Blbne počítač
Byly tam AdWary a zbytečnosti. Nemáte zač! Není-li jiný problém, je to vše.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?