Skocz do zawartości

  • 👋 Witaj na MPCForum!

    Przeglądasz forum jako gość, co oznacza, że wiele świetnych funkcji jest jeszcze przed Tobą! 😎

    • Pełny dostęp do działów i ukrytych treści
    • Możliwość pisania i odpowiadania w tematach
    • System prywatnych wiadomości
    • Zbieranie reputacji i rozwijanie swojego profilu
    • Członkostwo w jednej z największych społeczności graczy

    👉 Dołączenie zajmie Ci mniej niż minutę – a zyskasz znacznie więcej!

    Zarejestruj się teraz
  • 0

Zamulony pc

MrBlOoDcrew

Pytanie zadane przez MrBlOoDcrew ,

Pytanie

MrBlOoDcrew Pomocnik

MrBlOoDcrew

Opublikowano
Pomocnik

MrBlOoDcrew

Opublikowano

Witam,

3 miesiące temu kupowałem maszynę specjalnie pod gry i śmigał bez warunkowo. Tydzień temu nagle (ale dosłownie nagle przy włączeniu) dostał muła i od tego czasu ciągle mi muli.

Komputer jest dosyć świeży więc wątpie by to była wina z zepsuciem jakiejś części.

Odpalanie kompa trwa 5 minut gdzie wcześniej wystarczała minuta max i można było śmigać.

 

Dysk nie ma tu nic do tego bo mam 800 GB wolne.

Na wszelki wypadek przeskanowałem kompa ale wirow mi nie wykryło.

Mam takie odczucie jakby taktowanie w procku mi spadło.

 

Pytanie od czego może to być spodowane (wcześniej miałem też zamułkę na starym PC ale to wystarczyła defragmenacja dysku bo był zapchany) i jak to przywrócić do normy?

Gdyby były potrzebne jakieś screenshoty to dajcie znać czego i wstawię.

 

Parametry kompa:

Windows:  7

Direx:  9.0c

Procek: i7  x4 3.6 GHz

RAM:  8 GB DDR 3

Graficzna: GF GTX750Ti

12 odpowiedzi na to pytanie

Rekomendowane odpowiedzi

TroLLu. Legenda

TroLLu.

Opublikowano
Legenda

TroLLu.

Opublikowano

zrob ss'a procesow jakie masz po wlaczeniu pc

skoro to bylo nagle, to cos musi tam siedziec

format bylby tu najlepsze, jak na wszystkie problemy w windzie, jak nie masz zamiaru go robic moze da sie dojsc do zrodla problemu i go wyeliminowac 

­

MatrixXHardcore Znawca

MatrixXHardcore

Opublikowano
Znawca

MatrixXHardcore

Opublikowano

 

R1 {00aec75d-051f-41a9-9837-e94ac4f56303}Gw64; C:\Windows\System32\drivers\{00aec75d-051f-41a9-9837-e94ac4f56303}Gw64.sys [48784 2014-10-15] (StdLib)
R1 {02bbe9df-d3b0-43f4-8dcb-e24500d3308f}Gw64; C:\Windows\System32\drivers\{02bbe9df-d3b0-43f4-8dcb-e24500d3308f}Gw64.sys [48784 2014-10-17] (StdLib)
R1 {10e3e2da-8f7b-42cc-9f00-90007ce494b8}Gw64; C:\Windows\System32\drivers\{10e3e2da-8f7b-42cc-9f00-90007ce494b8}Gw64.sys [48832 2014-11-06] (StdLib)
R1 {1de2a23f-1c23-4ea1-8ef4-79bc5c5cea78}Gw64; C:\Windows\System32\drivers\{1de2a23f-1c23-4ea1-8ef4-79bc5c5cea78}Gw64.sys [48784 2014-10-13] (StdLib)
R1 {255a824a-3cde-4dee-9785-284605606456}Gw64; C:\Windows\System32\drivers\{255a824a-3cde-4dee-9785-284605606456}Gw64.sys [48832 2014-10-28] (StdLib)
R1 {32c6b9d7-6b2c-4b03-9178-01abbf9c7194}Gw64; C:\Windows\System32\drivers\{32c6b9d7-6b2c-4b03-9178-01abbf9c7194}Gw64.sys [48784 2014-10-11] (StdLib)
R1 {336e37ae-3235-4f16-98ec-8cdf679be7d2}Gw64; C:\Windows\System32\drivers\{336e37ae-3235-4f16-98ec-8cdf679be7d2}Gw64.sys [48784 2014-10-11] (StdLib)
R1 {34a9de73-8119-4710-8938-8d3ebf75d78f}Gw64; C:\Windows\System32\drivers\{34a9de73-8119-4710-8938-8d3ebf75d78f}Gw64.sys [48784 2014-10-18] (StdLib)
R1 {3b808196-ff63-49ee-b33b-efdf51723eca}Gw64; C:\Windows\System32\drivers\{3b808196-ff63-49ee-b33b-efdf51723eca}Gw64.sys [48784 2014-10-13] (StdLib)
R1 {3cac76e7-8310-45ea-8277-96d048a78c60}Gw64; C:\Windows\System32\drivers\{3cac76e7-8310-45ea-8277-96d048a78c60}Gw64.sys [48784 2014-11-27] (StdLib)
R1 {3fa44d1f-c300-4673-a8c1-5ba05468b4bd}Gw64; C:\Windows\System32\drivers\{3fa44d1f-c300-4673-a8c1-5ba05468b4bd}Gw64.sys [48784 2014-10-17] (StdLib)
R1 {4096aedf-3f28-4c8e-aebe-00255138fa8a}Gw64; C:\Windows\System32\drivers\{4096aedf-3f28-4c8e-aebe-00255138fa8a}Gw64.sys [48784 2014-10-14] (StdLib)
R1 {4530e639-76ab-4435-889d-a5e81ae090a4}Gw64; C:\Windows\System32\drivers\{4530e639-76ab-4435-889d-a5e81ae090a4}Gw64.sys [48784 2014-10-20] (StdLib)
R1 {51b9c91c-8e38-40ae-80de-58a590512b6b}Gw64; C:\Windows\System32\drivers\{51b9c91c-8e38-40ae-80de-58a590512b6b}Gw64.sys [48832 2014-11-10] (StdLib)
R1 {5d78e0ee-ca60-46a4-9492-4f24429cc925}Gw64; C:\Windows\System32\drivers\{5d78e0ee-ca60-46a4-9492-4f24429cc925}Gw64.sys [48784 2014-10-16] (StdLib)
R1 {67f29abb-07b3-41f5-94cd-f819d7c1fc76}Gw64; C:\Windows\System32\drivers\{67f29abb-07b3-41f5-94cd-f819d7c1fc76}Gw64.sys [48784 2014-10-20] (StdLib)
R1 {6b89253f-7097-40c7-9ead-2d5b1ceb02e2}w64; C:\Windows\System32\drivers\{6b89253f-7097-40c7-9ead-2d5b1ceb02e2}w64.sys [48776 2015-02-09] (StdLib)
R1 {6c84eb28-66c4-4e3d-8a5a-46ab94f0575a}Gw64; C:\Windows\System32\drivers\{6c84eb28-66c4-4e3d-8a5a-46ab94f0575a}Gw64.sys [48784 2014-10-19] (StdLib)
R1 {733fb217-c049-41ba-9504-3f2045e61977}Gw64; C:\Windows\System32\drivers\{733fb217-c049-41ba-9504-3f2045e61977}Gw64.sys [48784 2014-10-21] (StdLib)
R1 {84e24724-32a5-4ef8-b981-cc669543b4a4}Gw64; C:\Windows\System32\drivers\{84e24724-32a5-4ef8-b981-cc669543b4a4}Gw64.sys [48784 2014-10-11] (StdLib)
R1 {949aba83-1d7f-4d0b-b0ba-203450825231}Gw64; C:\Windows\System32\drivers\{949aba83-1d7f-4d0b-b0ba-203450825231}Gw64.sys [48784 2014-10-15] (StdLib)
R1 {94c4b27a-8cb1-4214-9d76-87c59a8cf657}Gw64; C:\Windows\System32\drivers\{94c4b27a-8cb1-4214-9d76-87c59a8cf657}Gw64.sys [48784 2014-10-10] (StdLib)
R1 {94d62e35-4b43-494c-bf52-ba5935df36ef}Gw64; C:\Windows\System32\drivers\{94d62e35-4b43-494c-bf52-ba5935df36ef}Gw64.sys [48784 2014-12-02] (StdLib)
R1 {94d62e35-4b43-494c-bf52-ba5935df36ef}w64; C:\Windows\System32\drivers\{94d62e35-4b43-494c-bf52-ba5935df36ef}w64.sys [48784 2014-12-10] (StdLib)
R1 {b0c7827f-c845-429a-833b-c2a798fc4fc3}Gw64; C:\Windows\System32\drivers\{b0c7827f-c845-429a-833b-c2a798fc4fc3}Gw64.sys [48784 2014-10-25] (StdLib)
R1 {bb7b7a60-f574-47c2-8a0b-4c56f2da9802}Gw64; C:\Windows\System32\drivers\{bb7b7a60-f574-47c2-8a0b-4c56f2da9802}Gw64.sys [48784 2014-09-29] (StdLib)
R1 {c61f6471-95aa-405a-be3a-f3b2dc07fdfa}Gw64; C:\Windows\System32\drivers\{c61f6471-95aa-405a-be3a-f3b2dc07fdfa}Gw64.sys [48784 2014-10-10] (StdLib)
R1 {d428f5a9-a362-4938-a8b7-f0abd920078b}Gw64; C:\Windows\System32\drivers\{d428f5a9-a362-4938-a8b7-f0abd920078b}Gw64.sys [48784 2014-12-01] (StdLib)
R1 {d997fcb4-42b4-4f84-a147-2e498567c954}Gw64; C:\Windows\System32\drivers\{d997fcb4-42b4-4f84-a147-2e498567c954}Gw64.sys [48784 2014-11-28] (StdLib)
R1 {dbec4a38-79aa-4d48-ac2b-d4467b1ded12}Gw64; C:\Windows\System32\drivers\{dbec4a38-79aa-4d48-ac2b-d4467b1ded12}Gw64.sys [48784 2014-11-29] (StdLib)
R1 {dc592624-f532-4311-9fc7-6920126fc404}Gw64; C:\Windows\System32\drivers\{dc592624-f532-4311-9fc7-6920126fc404}Gw64.sys [48784 2014-10-22] (StdLib)
R1 {e9629596-2cbd-4eea-9329-7470e8b0fdae}Gw64; C:\Windows\System32\drivers\{e9629596-2cbd-4eea-9329-7470e8b0fdae}Gw64.sys [48784 2014-10-12] (StdLib)
R1 {f5d136d7-adc2-4c84-85b2-e564334ab0bc}Gw64; C:\Windows\System32\drivers\{f5d136d7-adc2-4c84-85b2-e564334ab0bc}Gw64.sys [48784 2014-10-22] (StdLib)
R1 {f63e4e62-e47d-4415-9bb4-c9b1dfe161b9}Gw64; C:\Windows\System32\drivers\{f63e4e62-e47d-4415-9bb4-c9b1dfe161b9}Gw64.sys [48832 2014-11-04] (StdLib)
R1 {f9595960-dc6f-49f8-83db-4f3a4c9b714d}Gw64; C:\Windows\System32\drivers\{f9595960-dc6f-49f8-83db-4f3a4c9b714d}Gw64.sys [48784 2014-11-30] (StdLib)
R1 {fc7329ef-e953-454c-8e78-ed2cf0acb2ef}Gw64; C:\Windows\System32\drivers\{fc7329ef-e953-454c-8e78-ed2cf0acb2ef}Gw64.sys [48832 2014-10-31] (StdLib)
R1 {fce396ae-d8d1-4789-946e-2106fbe4292b}Gw64; C:\Windows\System32\drivers\{fce396ae-d8d1-4789-946e-2106fbe4292b}Gw64.sys [48784 2014-10-18] (StdLib)
R1 {fd600559-a688-4110-b9b9-0f1a9beae8ae}Gw64; C:\Windows\System32\drivers\{fd600559-a688-4110-b9b9-0f1a9beae8ae}Gw64.sys [48784 2014-10-12] (StdLib)
S3 MSICDSetup; \??\D:\CDriver64.sys [X]
S3 NTIOLib_1_0_C; \??\D:\NTIOLib_X64.sys [X]
 
Kilkanaście sterowników adware. Dostarcz jeszcze addition. 

 

2015-02-10 18:41 - 2015-02-10 18:41 - 00000000 ____D () C:\Users\mrbloodcrew\Documents\Optimizer Pro

przeoczyłeś

Janusz. Legenda

Janusz.

Opublikowano
Legenda

Janusz.

Opublikowano

1. Odinstaluj DirectX Packages, IndepthProc, AdvanceElite,

 

2. Pobierz http://speedy.sh/dFN7w/fixlist.txtumieść obok FRST i kliknij FIX. Po restarcie powinien utworzyć się plik Fixlog.txt, zapisz go na pulpicie.

 

3. Pobierz http://www.bleepingcomputer.com/download/shortcut-cleaner/i włącz. Po 10s powinien utworzyć się plik o nazwie sc-cleaner.txt, zapisz go na pulpicie. 

 

4. Pobierz http://www.unchecky.comi zainstaluj. Program pomaga w walce z adware (odznacza check boxy w instalatorach) Działa jako usługa w tle i jest mało zasobożerny. 

 

5. Wykonaj nowe logi FRST. 

 

6. W nowym poście mają znaleźć się takie pliki jak

 

-FRST.txt

-Addition.txt

-sc-cleaner.txt

-Fixlog.txt

Janusz. Legenda

Janusz.

Opublikowano
Legenda

Janusz.

Opublikowano
R1 {00aec75d-051f-41a9-9837-e94ac4f56303}Gw64; C:\Windows\System32\drivers\{00aec75d-051f-41a9-9837-e94ac4f56303}Gw64.sys [48784 2014-10-15] (StdLib)

R1 {02bbe9df-d3b0-43f4-8dcb-e24500d3308f}Gw64; C:\Windows\System32\drivers\{02bbe9df-d3b0-43f4-8dcb-e24500d3308f}Gw64.sys [48784 2014-10-17] (StdLib)

R1 {10e3e2da-8f7b-42cc-9f00-90007ce494b8}Gw64; C:\Windows\System32\drivers\{10e3e2da-8f7b-42cc-9f00-90007ce494b8}Gw64.sys [48832 2014-11-06] (StdLib)

R1 {1de2a23f-1c23-4ea1-8ef4-79bc5c5cea78}Gw64; C:\Windows\System32\drivers\{1de2a23f-1c23-4ea1-8ef4-79bc5c5cea78}Gw64.sys [48784 2014-10-13] (StdLib)

R1 {255a824a-3cde-4dee-9785-284605606456}Gw64; C:\Windows\System32\drivers\{255a824a-3cde-4dee-9785-284605606456}Gw64.sys [48832 2014-10-28] (StdLib)

R1 {32c6b9d7-6b2c-4b03-9178-01abbf9c7194}Gw64; C:\Windows\System32\drivers\{32c6b9d7-6b2c-4b03-9178-01abbf9c7194}Gw64.sys [48784 2014-10-11] (StdLib)

R1 {336e37ae-3235-4f16-98ec-8cdf679be7d2}Gw64; C:\Windows\System32\drivers\{336e37ae-3235-4f16-98ec-8cdf679be7d2}Gw64.sys [48784 2014-10-11] (StdLib)

R1 {34a9de73-8119-4710-8938-8d3ebf75d78f}Gw64; C:\Windows\System32\drivers\{34a9de73-8119-4710-8938-8d3ebf75d78f}Gw64.sys [48784 2014-10-18] (StdLib)

R1 {3b808196-ff63-49ee-b33b-efdf51723eca}Gw64; C:\Windows\System32\drivers\{3b808196-ff63-49ee-b33b-efdf51723eca}Gw64.sys [48784 2014-10-13] (StdLib)

R1 {3cac76e7-8310-45ea-8277-96d048a78c60}Gw64; C:\Windows\System32\drivers\{3cac76e7-8310-45ea-8277-96d048a78c60}Gw64.sys [48784 2014-11-27] (StdLib)

R1 {3fa44d1f-c300-4673-a8c1-5ba05468b4bd}Gw64; C:\Windows\System32\drivers\{3fa44d1f-c300-4673-a8c1-5ba05468b4bd}Gw64.sys [48784 2014-10-17] (StdLib)

R1 {4096aedf-3f28-4c8e-aebe-00255138fa8a}Gw64; C:\Windows\System32\drivers\{4096aedf-3f28-4c8e-aebe-00255138fa8a}Gw64.sys [48784 2014-10-14] (StdLib)

R1 {4530e639-76ab-4435-889d-a5e81ae090a4}Gw64; C:\Windows\System32\drivers\{4530e639-76ab-4435-889d-a5e81ae090a4}Gw64.sys [48784 2014-10-20] (StdLib)

R1 {51b9c91c-8e38-40ae-80de-58a590512b6b}Gw64; C:\Windows\System32\drivers\{51b9c91c-8e38-40ae-80de-58a590512b6b}Gw64.sys [48832 2014-11-10] (StdLib)

R1 {5d78e0ee-ca60-46a4-9492-4f24429cc925}Gw64; C:\Windows\System32\drivers\{5d78e0ee-ca60-46a4-9492-4f24429cc925}Gw64.sys [48784 2014-10-16] (StdLib)

R1 {67f29abb-07b3-41f5-94cd-f819d7c1fc76}Gw64; C:\Windows\System32\drivers\{67f29abb-07b3-41f5-94cd-f819d7c1fc76}Gw64.sys [48784 2014-10-20] (StdLib)

R1 {6b89253f-7097-40c7-9ead-2d5b1ceb02e2}w64; C:\Windows\System32\drivers\{6b89253f-7097-40c7-9ead-2d5b1ceb02e2}w64.sys [48776 2015-02-09] (StdLib)

R1 {6c84eb28-66c4-4e3d-8a5a-46ab94f0575a}Gw64; C:\Windows\System32\drivers\{6c84eb28-66c4-4e3d-8a5a-46ab94f0575a}Gw64.sys [48784 2014-10-19] (StdLib)

R1 {733fb217-c049-41ba-9504-3f2045e61977}Gw64; C:\Windows\System32\drivers\{733fb217-c049-41ba-9504-3f2045e61977}Gw64.sys [48784 2014-10-21] (StdLib)

R1 {84e24724-32a5-4ef8-b981-cc669543b4a4}Gw64; C:\Windows\System32\drivers\{84e24724-32a5-4ef8-b981-cc669543b4a4}Gw64.sys [48784 2014-10-11] (StdLib)

R1 {949aba83-1d7f-4d0b-b0ba-203450825231}Gw64; C:\Windows\System32\drivers\{949aba83-1d7f-4d0b-b0ba-203450825231}Gw64.sys [48784 2014-10-15] (StdLib)

R1 {94c4b27a-8cb1-4214-9d76-87c59a8cf657}Gw64; C:\Windows\System32\drivers\{94c4b27a-8cb1-4214-9d76-87c59a8cf657}Gw64.sys [48784 2014-10-10] (StdLib)

R1 {94d62e35-4b43-494c-bf52-ba5935df36ef}Gw64; C:\Windows\System32\drivers\{94d62e35-4b43-494c-bf52-ba5935df36ef}Gw64.sys [48784 2014-12-02] (StdLib)

R1 {94d62e35-4b43-494c-bf52-ba5935df36ef}w64; C:\Windows\System32\drivers\{94d62e35-4b43-494c-bf52-ba5935df36ef}w64.sys [48784 2014-12-10] (StdLib)

R1 {b0c7827f-c845-429a-833b-c2a798fc4fc3}Gw64; C:\Windows\System32\drivers\{b0c7827f-c845-429a-833b-c2a798fc4fc3}Gw64.sys [48784 2014-10-25] (StdLib)

R1 {bb7b7a60-f574-47c2-8a0b-4c56f2da9802}Gw64; C:\Windows\System32\drivers\{bb7b7a60-f574-47c2-8a0b-4c56f2da9802}Gw64.sys [48784 2014-09-29] (StdLib)

R1 {c61f6471-95aa-405a-be3a-f3b2dc07fdfa}Gw64; C:\Windows\System32\drivers\{c61f6471-95aa-405a-be3a-f3b2dc07fdfa}Gw64.sys [48784 2014-10-10] (StdLib)

R1 {d428f5a9-a362-4938-a8b7-f0abd920078b}Gw64; C:\Windows\System32\drivers\{d428f5a9-a362-4938-a8b7-f0abd920078b}Gw64.sys [48784 2014-12-01] (StdLib)

R1 {d997fcb4-42b4-4f84-a147-2e498567c954}Gw64; C:\Windows\System32\drivers\{d997fcb4-42b4-4f84-a147-2e498567c954}Gw64.sys [48784 2014-11-28] (StdLib)

R1 {dbec4a38-79aa-4d48-ac2b-d4467b1ded12}Gw64; C:\Windows\System32\drivers\{dbec4a38-79aa-4d48-ac2b-d4467b1ded12}Gw64.sys [48784 2014-11-29] (StdLib)

R1 {dc592624-f532-4311-9fc7-6920126fc404}Gw64; C:\Windows\System32\drivers\{dc592624-f532-4311-9fc7-6920126fc404}Gw64.sys [48784 2014-10-22] (StdLib)

R1 {e9629596-2cbd-4eea-9329-7470e8b0fdae}Gw64; C:\Windows\System32\drivers\{e9629596-2cbd-4eea-9329-7470e8b0fdae}Gw64.sys [48784 2014-10-12] (StdLib)

R1 {f5d136d7-adc2-4c84-85b2-e564334ab0bc}Gw64; C:\Windows\System32\drivers\{f5d136d7-adc2-4c84-85b2-e564334ab0bc}Gw64.sys [48784 2014-10-22] (StdLib)

R1 {f63e4e62-e47d-4415-9bb4-c9b1dfe161b9}Gw64; C:\Windows\System32\drivers\{f63e4e62-e47d-4415-9bb4-c9b1dfe161b9}Gw64.sys [48832 2014-11-04] (StdLib)

R1 {f9595960-dc6f-49f8-83db-4f3a4c9b714d}Gw64; C:\Windows\System32\drivers\{f9595960-dc6f-49f8-83db-4f3a4c9b714d}Gw64.sys [48784 2014-11-30] (StdLib)

R1 {fc7329ef-e953-454c-8e78-ed2cf0acb2ef}Gw64; C:\Windows\System32\drivers\{fc7329ef-e953-454c-8e78-ed2cf0acb2ef}Gw64.sys [48832 2014-10-31] (StdLib)

R1 {fce396ae-d8d1-4789-946e-2106fbe4292b}Gw64; C:\Windows\System32\drivers\{fce396ae-d8d1-4789-946e-2106fbe4292b}Gw64.sys [48784 2014-10-18] (StdLib)

R1 {fd600559-a688-4110-b9b9-0f1a9beae8ae}Gw64; C:\Windows\System32\drivers\{fd600559-a688-4110-b9b9-0f1a9beae8ae}Gw64.sys [48784 2014-10-12] (StdLib)

S3 MSICDSetup; \??\D:\CDriver64.sys [X]

S3 NTIOLib_1_0_C; \??\D:\NTIOLib_X64.sys [X]

 

Kilkanaście sterowników adware. Dostarcz jeszcze addition. 

Janusz. Legenda

Janusz.

Opublikowano
Legenda

Janusz.

Opublikowano

2015-02-10 18:41 - 2015-02-10 18:41 - 00000000 ____D () C:\Users\mrbloodcrew\Documents\Optimizer Pro

przeoczyłeś

Nie patrzyłem się na tego loga. Zobaczyłem tylko te sterowniki i brak Addition. 

MrBlOoDcrew Pomocnik

MrBlOoDcrew

Opublikowano
Pomocnik

MrBlOoDcrew

  • Autor
Opublikowano
Logg z Additiona

 

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11-03-2015

Ran by mrbloodcrew at 2015-03-11 15:10:08

Running from C:\Users\mrbloodcrew\Downloads

Boot Mode: Normal

==========================================================

 

 

==================== Security Center ========================

 

(If an entry is included in the fixlist, it will be removed.)

 

AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}

AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

 

==================== Installed Programs ======================

 

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

 

µTorrent (HKU\S-1-5-21-1197457787-3615189920-3557798660-1000\...\uTorrent) (Version: 3.4.2.37754 - BitTorrent Inc.)

Action! (HKLM-x32\...\Mirillis Action!) (Version: 1.20.2 - Mirillis)

Adobe Flash Player 16 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 16.0.0.305 - Adobe Systems Incorporated)

Adobe Flash Player 16 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 16.0.0.305 - Adobe Systems Incorporated)

AdvanceElite (HKLM\...\AdvanceElite) (Version: 2014.09.29.170243 - AdvanceElite) <==== ATTENTION

Aegisub 3.2.1 (HKLM-x32\...\{24BC8B57-716C-444F-B46B-A3349B9164C5}_is1) (Version: 3.2.1 - Aegisub Team)

Aktualizacje NVIDIA 16.18.9 (Version: 16.18.9 - NVIDIA Corporation) Hidden

avast! Free Antivirus (HKLM-x32\...\Avast) (Version: 9.0.2021 - AVAST Software)

AviSynth 2.5 (HKLM-x32\...\AviSynth) (Version:  - )

AVS Video Editor 7.0 (HKLM-x32\...\AVS Video Editor_is1) (Version: 7.0.1.258 - Online Media Technologies Ltd.)

Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)

Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.6.2 - EA Digital Illusions CE AB)

Boilsoft Video Splitter 6.34 (HKLM-x32\...\{24549038-9956-4EE5-976D-4419AAEA7DD5}_is1) (Version:  - Boilsoft, Inc.)

Call of Duty (HKLM-x32\...\Call of Duty) (Version:  - )

DirectX Packages (HKU\S-1-5-21-1197457787-3615189920-3557798660-1000\...\DirectX Packages) (Version:  - ) <==== ATTENTION

EA SPORTS™ FIFA 15 (HKLM-x32\...\{3D4ADA2B-F028-4307-ADF4-6F9AA44725DA}) (Version: 1.4.0.0 - Electronic Arts)

FormatFactory 3.3.5.0 (HKLM-x32\...\FormatFactory) (Version: 3.3.5.0 - Format Factory)

Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 7.0.3.916 - Foxit Software Inc.)

Free YouTube Download version 3.2.53.128 (HKLM-x32\...\Free YouTube Download_is1) (Version: 3.2.53.128 - DVDVideoSoft Ltd.)

Google Chrome (HKLM-x32\...\Google Chrome) (Version: 41.0.2272.89 - Google Inc.)

Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden

Google Update Helper (x32 Version: 1.3.26.9 - Google Inc.) Hidden

IndepthProc (HKLM-x32\...\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}{caa5fe02}) (Version:  - Software Publisher) <==== ATTENTION

Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.15.1730 - Intel Corporation)

Intel® USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 2.5.0.19 - Intel Corporation)

Java 8 Update 31 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418031F0}) (Version: 8.0.310 - Oracle Corporation)

K-Lite Mega Codec Pack 10.7.5 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 10.7.5 - )

League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)

League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden

Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{f45b48a7-f616-4211-b927-17cab6a96613}) (Version: 8.0.58298 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual C++ 2010 Redistributable - x64 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)

Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)

NVIDIA GeForce Experience 2.1.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.1.5 - NVIDIA Corporation)

NVIDIA Oprogramowanie systemu PhysX 9.14.0702 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.14.0702 - NVIDIA Corporation)

NVIDIA Sterownik 3D Vision 347.09 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 347.09 - NVIDIA Corporation)

NVIDIA Sterownik dźwięku HD 1.3.33.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.33.0 - NVIDIA Corporation)

NVIDIA Sterownik graficzny 347.09 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 347.09 - NVIDIA Corporation)

NVIDIA Sterownik kontrolera 3D Vision 347.09 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 347.09 - NVIDIA Corporation)

Opera Stable 28.0.1750.40 (HKLM-x32\...\Opera 28.0.1750.40) (Version: 28.0.1750.40 - Opera Software ASA)

Origin (HKLM-x32\...\Origin) (Version: 9.4.22.2815 - Electronic Arts, Inc.)

osu! (HKLM-x32\...\{5c69dd17-a3bb-4246-8431-df165e77bb36}) (Version: latest - ppy Pty Ltd)

Panel sterowania NVIDIA 347.09 (Version: 347.09 - NVIDIA Corporation) Hidden

PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.991 - Even Balance, Inc.)

Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.77.1126.2013 - Realtek)

Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7173 - Realtek Semiconductor Corp.)

SHIELD Streaming (Version: 3.1.3000 - NVIDIA Corporation) Hidden

SHIELD Wireless Controller Driver (Version: 16.18.9 - NVIDIA Corporation) Hidden

Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)

Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)

SUPER CHARGER (HKLM-x32\...\{7CDF10DD-A9B5-4DA3-AB95-E193248D4369}_is1) (Version: 1.2.024 - MSI)

TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)

Thunder Master v2.3 (HKLM-x32\...\{EE04522C-0814-4B63-AE57-0B63E5A355BB}_is1) (Version: 2.3.0.0 - Palit Microsystems Ltd.)

TP-LINK TL-WN721N_TL-WN722N Driver (HKLM-x32\...\{86A7EED0-02D0-4D91-8183-8D2F23F5E6AE}) (Version: 1.3.1 - TP-LINK)

TP-LINK Wireless Configuration Utility (HKLM-x32\...\{319D91C6-3D44-436C-9F79-36C0D22372DC}) (Version: 1.3.1 - TP-LINK)

VGA Boost (HKLM-x32\...\{809ACFAE-9A4D-4C60-9223-D8B615CD8CBA}}_is1) (Version: 1.0.0.7 - MSI)

VobSub v2.23 (Remove Only) (HKLM-x32\...\VobSub) (Version:  - )

 

==================== Custom CLSID (selected items): ==========================

 

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

 

 

==================== Restore Points  =========================

 

04-03-2015 17:41:37 Zaplanowany punkt kontrolny

10-03-2015 16:07:15 Windows Update

 

==================== Hosts content: ==========================

 

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

 

2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

 

==================== Scheduled Tasks (whitelisted) =============

 

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

 

Task: {00E66802-69A9-4EB0-92F1-69E29514EA58} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-09-28] (Google Inc.)

Task: {04EA9E7C-E0E8-4865-9840-F179C0F5BEE2} - System32\Tasks\{F05331AE-BED8-4945-B361-170EC2AF3FDA} => C:\Program Files (x86)\Gry\Dragon Age Inkwizycja\Dragon Age Inquisition\Launcher.exe

Task: {0854BED7-CFB5-4D8B-93D2-8731248A5E3C} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-02-04] (Adobe Systems Incorporated)

Task: {26643977-7CA0-42F2-AB50-44BFEEF2B8CB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-09-28] (Google Inc.)

Task: {57AE205B-4362-4D4E-AB94-7B1FA4F089AB} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-09-28] (AVAST Software)

Task: {6EBBF395-BA40-4304-AF2F-2178F8A53D3E} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work => C:\Windows\system32\WorkFoldersSystemTray.exe [2014-07-10] (Microsoft Corporation)

Task: {6F750321-F082-40BC-B292-E286ECFF61B3} - System32\Tasks\Opera scheduled Autoupdate 1412019865 => C:\Program Files (x86)\Opera\launcher.exe [2015-03-05] (Opera Software)

Task: {AB0EE31B-E078-41FC-A6B9-87193DCB7B97} - System32\Tasks\{552566D4-A6CB-41C0-928A-8B062911AB9B} => C:\Program Files (x86)\Gry\Dragon Age Inkwizycja\Dragon Age Inquisition\Launcher.exe

Task: {CC15FC76-F928-4279-BE3C-BAF71511AA00} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Sc.exe start osppsvc

Task: {FF11676F-8DFD-4B03-BEA2-1497ED59F1FC} - System32\Tasks\ThunderMaster => C:\Program Files (x86)\Thunder Master\THPanel.exe [2014-04-15] (Palit Microsystems Ltd.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

 

==================== Loaded Modules (whitelisted) ==============

 

2014-09-28 16:30 - 2014-12-13 09:03 - 00117576 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll

2014-10-19 01:46 - 2014-10-19 21:06 - 00076152 _____ () C:\Windows\SysWOW64\PnkBstrA.exe

2014-10-27 23:07 - 2015-03-11 13:50 - 00123624 _____ () C:\ProgramData\d2446020-ddff-402b-b064-199d2ce66b2b\maintainer.exe

2014-09-28 14:44 - 2014-09-28 14:44 - 00301152 _____ () C:\Program Files\AVAST Software\Avast\aswProperty.dll

2015-03-10 21:10 - 2015-03-10 21:10 - 02920960 _____ () C:\Program Files\AVAST Software\Avast\defs\15031001\algo.dll

2015-03-11 14:52 - 2015-03-11 14:52 - 02920960 _____ () C:\Program Files\AVAST Software\Avast\defs\15031100\algo.dll

2014-09-28 14:44 - 2014-09-28 14:44 - 19329904 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll

2014-09-28 13:00 - 2013-09-16 20:20 - 01242584 ____R () C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\ACE.dll

 

==================== Alternate Data Streams (whitelisted) =========

 

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

 

 

==================== Safe Mode (whitelisted) ===================

 

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

 

 

==================== EXE Association (whitelisted) ===============

 

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)

 

 

==================== Other Areas ============================

 

(Currently there is no automatic fix for this section.)

 

HKU\S-1-5-21-1197457787-3615189920-3557798660-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\mrbloodcrew\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg

DNS Servers: 192.168.0.1

 

==================== MSCONFIG/TASK MANAGER disabled items ==

 

(Currently there is no automatic fix for this section.)

 

 

==================== Accounts: =============================

 

Administrator (S-1-5-21-1197457787-3615189920-3557798660-500 - Administrator - Disabled)

Gość (S-1-5-21-1197457787-3615189920-3557798660-501 - Limited - Disabled)

HomeGroupUser$ (S-1-5-21-1197457787-3615189920-3557798660-1002 - Limited - Enabled)

mrbloodcrew (S-1-5-21-1197457787-3615189920-3557798660-1000 - Administrator - Enabled) => C:\Users\mrbloodcrew

 

==================== Faulty Device Manager Devices =============

 

Name: Karta tunelowania Teredo firmy Microsoft

Description: Karta tunelowania Teredo firmy Microsoft

Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}

Manufacturer: Microsoft

Service: tunnel

Problem: : This device cannot start. (Code10)

Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.

On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

 

Name: 

Description: 

Class Guid: 

Manufacturer: 

Service: 

Problem: : The drivers for this device are not installed. (Code 28)

Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

 

 

==================== Event log errors: =========================

 

Application errors:

==================

Error: (03/11/2015 01:52:24 PM) (Source: WinMgmt) (EventID: 10) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

 

Error: (03/11/2015 01:50:16 PM) (Source: Application Error) (EventID: 1000) (User: )

Description: Nazwa aplikacji powodującej błąd: MSI_Trigger_Service.exe, wersja: 1.0.9.0, sygnatura czasowa: 0x5243c86d

Nazwa modułu powodującego błąd: KERNELBASE.dll, wersja: 6.1.7601.18409, sygnatura czasowa: 0x53159a86

Kod wyjątku: 0xe0434352

Przesunięcie błędu: 0x0000c42d

Identyfikator procesu powodującego błąd: 0x848

Godzina uruchomienia aplikacji powodującej błąd: 0xMSI_Trigger_Service.exe0

Ścieżka aplikacji powodującej błąd: MSI_Trigger_Service.exe1

Ścieżka modułu powodującego błąd: MSI_Trigger_Service.exe2

Identyfikator raportu: MSI_Trigger_Service.exe3

 

Error: (03/11/2015 01:49:57 PM) (Source: .NET Runtime) (EventID: 1026) (User: )

Description: Application: MSI_Trigger_Service.exe

Framework Version: v4.0.30319

Description: The process was terminated due to an unhandled exception.

Exception Info: System.Runtime.InteropServices.COMException

Stack:

   at System.Runtime.InteropServices.Marshal.ThrowExceptionForHRInternal(Int32, IntPtr)

   at System.Runtime.InteropServices.Marshal.ThrowExceptionForHR(Int32)

   at System.Management.ManagementScope.InitializeGuts(System.Object)

   at System.Management.ManagementScope.Initialize()

   at System.Management.ManagementObjectSearcher.Initialize()

   at System.Management.ManagementObjectSearcher.Get()

   at MSI_Trigger_Service.Service1.DetectVGAInfo()

   at MSI_Trigger_Service.Service1.ServiceThread_Main()

   at System.Threading.ThreadHelper.ThreadStart_Context(System.Object)

   at System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)

   at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)

   at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)

   at System.Threading.ThreadHelper.ThreadStart()

 

Error: (03/11/2015 01:48:46 PM) (Source: NvStreamSvc) (EventID: 2001) (User: )

Description: NvStreamSvcNvVAD initialization failed [6]

 

Error: (03/11/2015 01:48:46 PM) (Source: NvStreamSvc) (EventID: 2001) (User: )

Description: NvStreamSvcFailed to set NvVAD endpoint as default Audio endpoint [0]

 

Error: (03/11/2015 01:48:46 PM) (Source: NvStreamSvc) (EventID: 2001) (User: )

Description: NvStreamSvcNvVAD endpoint registration failed [0]

 

Error: (03/11/2015 01:48:16 PM) (Source: Winlogon) (EventID: 4103) (User: )

Description: Aktywacja licencji systemu Windows nie powiodła się. Błąd 0x80070005.

 

Error: (03/10/2015 09:17:45 PM) (Source: Winlogon) (EventID: 4103) (User: )

Description: Aktywacja licencji systemu Windows nie powiodła się. Błąd 0x80070005.

 

Error: (03/10/2015 05:25:37 PM) (Source: Winlogon) (EventID: 4103) (User: )

Description: Aktywacja licencji systemu Windows nie powiodła się. Błąd 0x80070005.

 

Error: (03/10/2015 05:24:30 PM) (Source: Application Hang) (EventID: 1002) (User: )

Description: Program Explorer.EXE w wersji 6.1.7601.17567 zatrzymał interakcję z systemem Windows i został zamknięty. Aby zobaczyć, czy jest dostępnych więcej informacji dotyczących tego problemu, sprawdź historię problemu w panelu sterowania Centrum akcji.

 

Identyfikator procesu: 934

 

Godzina rozpoczęcia: 01d05b428e97687a

 

Godzina zakończenia: 10

 

Ścieżka aplikacji: C:\Windows\Explorer.EXE

 

Identyfikator raportu: e83372c4-c741-11e4-9e59-448a5bb8fc42

 

 

System errors:

=============

Error: (03/11/2015 01:50:57 PM) (Source: Service Control Manager) (EventID: 7034) (User: )

Description: Usługa MSI_Trigger_Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 1.

 

Error: (03/11/2015 01:50:47 PM) (Source: Service Control Manager) (EventID: 7011) (User: )

Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na odpowiedź transakcji z usługi ShellHWDetection.

 

Error: (03/11/2015 01:50:13 PM) (Source: Service Control Manager) (EventID: 7000) (User: )

Description: Nie można uruchomić usługi Util AdvanceElite z powodu następującego błędu: 

%%1053

 

Error: (03/11/2015 01:50:13 PM) (Source: Service Control Manager) (EventID: 7009) (User: )

Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się z usługą Util AdvanceElite.

 

Error: (03/11/2015 01:49:42 PM) (Source: Service Control Manager) (EventID: 7000) (User: )

Description: Nie można uruchomić usługi Update AdvanceElite z powodu następującego błędu: 

%%1053

 

Error: (03/11/2015 01:49:42 PM) (Source: Service Control Manager) (EventID: 7009) (User: )

Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się z usługą Update AdvanceElite.

 

Error: (03/11/2015 01:48:07 PM) (Source: EventLog) (EventID: 6008) (User: )

Description: Poprzednie zamknięcie systemu przy 21:19:33 na ‎2015-‎03-‎10 było nieoczekiwane.

 

Error: (03/10/2015 09:18:41 PM) (Source: Service Control Manager) (EventID: 7011) (User: )

Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na odpowiedź transakcji z usługi nvsvc.

 

Error: (03/10/2015 09:18:11 PM) (Source: Service Control Manager) (EventID: 7011) (User: )

Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na odpowiedź transakcji z usługi nvsvc.

 

Error: (03/10/2015 07:00:27 PM) (Source: DCOM) (EventID: 10016) (User: Home)

Description: domyślne ustawienia komputeraLokalnyAktywacja{9BA05972-F6A8-11CF-A442-00A0C90A8F39}{9BA05972-F6A8-11CF-A442-00A0C90A8F39}HomemrbloodcrewS-1-5-21-1197457787-3615189920-3557798660-1000LocalHost (użycie LRPC)

 

 

Microsoft Office Sessions:

=========================

Error: (03/11/2015 01:52:24 PM) (Source: WinMgmt) (EventID: 10) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

 

Error: (03/11/2015 01:50:16 PM) (Source: Application Error) (EventID: 1000) (User: )

Description: MSI_Trigger_Service.exe1.0.9.05243c86dKERNELBASE.dll6.1.7601.1840953159a86e04343520000c42d84801d05bf9a5ac0c75C:\Program Files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exeC:\Windows\syswow64\KERNELBASE.dll2a2001fb-c7ed-11e4-a564-448a5bb8fc42

 

Error: (03/11/2015 01:49:57 PM) (Source: .NET Runtime) (EventID: 1026) (User: )

Description: Application: MSI_Trigger_Service.exe

Framework Version: v4.0.30319

Description: The process was terminated due to an unhandled exception.

Exception Info: System.Runtime.InteropServices.COMException

Stack:

   at System.Runtime.InteropServices.Marshal.ThrowExceptionForHRInternal(Int32, IntPtr)

   at System.Runtime.InteropServices.Marshal.ThrowExceptionForHR(Int32)

   at System.Management.ManagementScope.InitializeGuts(System.Object)

   at System.Management.ManagementScope.Initialize()

   at System.Management.ManagementObjectSearcher.Initialize()

   at System.Management.ManagementObjectSearcher.Get()

   at MSI_Trigger_Service.Service1.DetectVGAInfo()

   at MSI_Trigger_Service.Service1.ServiceThread_Main()

   at System.Threading.ThreadHelper.ThreadStart_Context(System.Object)

   at System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)

   at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)

   at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)

   at System.Threading.ThreadHelper.ThreadStart()

 

Error: (03/11/2015 01:48:46 PM) (Source: NvStreamSvc) (EventID: 2001) (User: )

Description: NvStreamSvcNvVAD initialization failed [6]

 

Error: (03/11/2015 01:48:46 PM) (Source: NvStreamSvc) (EventID: 2001) (User: )

Description: NvStreamSvcFailed to set NvVAD endpoint as default Audio endpoint [0]

 

Error: (03/11/2015 01:48:46 PM) (Source: NvStreamSvc) (EventID: 2001) (User: )

Description: NvStreamSvcNvVAD endpoint registration failed [0]

 

Error: (03/11/2015 01:48:16 PM) (Source: Winlogon) (EventID: 4103) (User: )

Description: 0x800700050x00000000

 

Error: (03/10/2015 09:17:45 PM) (Source: Winlogon) (EventID: 4103) (User: )

Description: 0x800700050x00000000

 

Error: (03/10/2015 05:25:37 PM) (Source: Winlogon) (EventID: 4103) (User: )

Description: 0x800700050x00000000

 

Error: (03/10/2015 05:24:30 PM) (Source: Application Hang) (EventID: 1002) (User: )

Description: Explorer.EXE6.1.7601.1756793401d05b428e97687a10C:\Windows\Explorer.EXEe83372c4-c741-11e4-9e59-448a5bb8fc42

 

 

==================== Memory info =========================== 

 

Processor: Intel® Core i7-4790 CPU @ 3.60GHz

Percentage of memory in use: 22%

Total physical RAM: 8136.02 MB

Available physical RAM: 6338.79 MB

Total Pagefile: 16270.22 MB

Available Pagefile: 14493.95 MB

Total Virtual: 8192 MB

Available Virtual: 8191.8 MB

 

==================== Drives ================================

 

Drive c: () (Fixed) (Total:931.29 GB) (Free:828.27 GB) NTFS

 

==================== MBR & Partition Table ==================

 

========================================================

Disk: 0 (Size: 931.5 GB) (Disk ID: 89CC38E5)

 

Partition: GPT Partition Type.

 

==================== End Of Log ============================

MrBlOoDcrew Pomocnik

MrBlOoDcrew

Opublikowano
Pomocnik

MrBlOoDcrew

  • Autor
Opublikowano

Z góry dzięki za tak prostą instrukcje, jak i podlinkowanie :). Co do odinstalowania Indelpthproc nie mogłem go usunąć bo wyskakiwalo że brakuje jakiegoś modułu ;o, więc logi są z indelpth proc 

 

FIXLOG:

 

 

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 11-03-2015
Ran by mrbloodcrew at 2015-03-15 12:29:13 Run:1
Running from C:\Users\mrbloodcrew\Downloads
Loaded Profiles: mrbloodcrew (Available profiles: mrbloodcrew)
Boot Mode: Normal
==============================================
 
Content of fixlist:
*****************
CloseProcesses:
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://isearch.omiga..._S30YJ9DF517217
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://isearch.omiga..._S30YJ9DF517217
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://isearch.omiga...q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://isearch.omiga...q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://isearch.omiga..._S30YJ9DF517217
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://isearch.omiga..._S30YJ9DF517217
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://isearch.omiga...q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://isearch.omiga...q={searchTerms}
HKU\S-1-5-21-1197457787-3615189920-3557798660-1000\Software\Microsoft\Internet Explorer\Main,Search Page = http://isearch.omiga...q={searchTerms}
HKU\S-1-5-21-1197457787-3615189920-3557798660-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://isearch.omiga..._S30YJ9DF517217
HKU\S-1-5-21-1197457787-3615189920-3557798660-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://isearch.omiga..._S30YJ9DF517217
HKU\S-1-5-21-1197457787-3615189920-3557798660-1000\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://isearch.omiga...q={searchTerms}
SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://isearch.omiga...q={searchTerms}
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://isearch.omiga...q={searchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://isearch.omiga...q={searchTerms}
SearchScopes: HKLM-x32 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://isearch.omiga...q={searchTerms}
SearchScopes: HKU\S-1-5-21-1197457787-3615189920-3557798660-1000 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://isearch.omiga...q={searchTerms}
SearchScopes: HKU\S-1-5-21-1197457787-3615189920-3557798660-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://isearch.omiga...q={searchTerms}
SearchScopes: HKU\S-1-5-21-1197457787-3615189920-3557798660-1000 -> {2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} URL = http://isearch.omiga...q={searchTerms}
SearchScopes: HKU\S-1-5-21-1197457787-3615189920-3557798660-1000 -> {2D89F940-4D18-4527-8013-C56AB87EEEA9} URL = http://isearch.omiga...q={searchTerms}
SearchScopes: HKU\S-1-5-21-1197457787-3615189920-3557798660-1000 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://isearch.omiga...q={searchTerms}
SearchScopes: HKU\S-1-5-21-1197457787-3615189920-3557798660-1000 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://isearch.omiga...q={searchTerms}
SearchScopes: HKU\S-1-5-21-1197457787-3615189920-3557798660-1000 -> {E733165D-CBCF-4FDA-883E-ADEF965B476C} URL = http://isearch.omiga...q={searchTerms}
BHO-x32: IETabPage Class -> {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} -> C:\Program Files (x86)\XTab\SupTab.dll [2015-01-16] (Thinknice Co. Limited)
BHO-x32: AdvanceElite 1.0.0.7 -> {3b2cb4c8-72ab-4b25-8fa1-219b36a60bed} -> C:\Program Files (x86)\AdvanceElite\AdvanceEliteBHO.dll [2015-01-27] (AdvanceElite)
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} https://fpdownload.m...ash/swflash.cab
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe http://isearch.omiga..._S30YJ9DF517217
CHR HomePage: Default -> hxxp://isearch.omiga-plus.com/?type=hppp&ts=1423590023&from=ild&uid=ST1000LM024XHN-M101MBB_S30YJ9DF517217
CHR RestoreOnStartup: Default -> "hxxp://search.yahoo.com/?fr=hp-ddc-bd&type=616_pr__alt__ddc_dsssyc_bd_com"
CHR StartupUrls: Default -> "hxxp://search.yahoo.com/?fr=hp-ddc-bd&type=616_pr__alt__ddc_dsssyc_bd_com"
CHR DefaultSearchKeyword: Default -> yahoo.com
CHR DefaultNewTabURL: Default -> http://search.yahoo....sssyctab_bd_com
CHR Extension: (AdvanceElite) - C:\Users\mrbloodcrew\AppData\Local\Google\Chrome\User Data\Default\Extensions\ikelkcdeenapiakgpgaeffghpjojokin [2014-11-06]
S2 Update AdvanceElite; C:\Program Files (x86)\AdvanceElite\updateAdvanceElite.exe [409832 2015-03-10] ()
S2 Util AdvanceElite; C:\Program Files (x86)\AdvanceElite\bin\utilAdvanceElite.exe [409832 2015-03-10] ()
R2 MaintainerSvc1.20.7247763; C:\ProgramData\d2446020-ddff-402b-b064-199d2ce66b2b\maintainer.exe [123624 2015-03-11] ()
R1 {00aec75d-051f-41a9-9837-e94ac4f56303}Gw64; C:\Windows\System32\drivers\{00aec75d-051f-41a9-9837-e94ac4f56303}Gw64.sys [48784 2014-10-15] (StdLib)
R1 {02bbe9df-d3b0-43f4-8dcb-e24500d3308f}Gw64; C:\Windows\System32\drivers\{02bbe9df-d3b0-43f4-8dcb-e24500d3308f}Gw64.sys [48784 2014-10-17] (StdLib)
R1 {10e3e2da-8f7b-42cc-9f00-90007ce494b8}Gw64; C:\Windows\System32\drivers\{10e3e2da-8f7b-42cc-9f00-90007ce494b8}Gw64.sys [48832 2014-11-06] (StdLib)
R1 {1de2a23f-1c23-4ea1-8ef4-79bc5c5cea78}Gw64; C:\Windows\System32\drivers\{1de2a23f-1c23-4ea1-8ef4-79bc5c5cea78}Gw64.sys [48784 2014-10-13] (StdLib)
R1 {255a824a-3cde-4dee-9785-284605606456}Gw64; C:\Windows\System32\drivers\{255a824a-3cde-4dee-9785-284605606456}Gw64.sys [48832 2014-10-28] (StdLib)
R1 {32c6b9d7-6b2c-4b03-9178-01abbf9c7194}Gw64; C:\Windows\System32\drivers\{32c6b9d7-6b2c-4b03-9178-01abbf9c7194}Gw64.sys [48784 2014-10-11] (StdLib)
R1 {336e37ae-3235-4f16-98ec-8cdf679be7d2}Gw64; C:\Windows\System32\drivers\{336e37ae-3235-4f16-98ec-8cdf679be7d2}Gw64.sys [48784 2014-10-11] (StdLib)
R1 {34a9de73-8119-4710-8938-8d3ebf75d78f}Gw64; C:\Windows\System32\drivers\{34a9de73-8119-4710-8938-8d3ebf75d78f}Gw64.sys [48784 2014-10-18] (StdLib)
R1 {3b808196-ff63-49ee-b33b-efdf51723eca}Gw64; C:\Windows\System32\drivers\{3b808196-ff63-49ee-b33b-efdf51723eca}Gw64.sys [48784 2014-10-13] (StdLib)
R1 {3cac76e7-8310-45ea-8277-96d048a78c60}Gw64; C:\Windows\System32\drivers\{3cac76e7-8310-45ea-8277-96d048a78c60}Gw64.sys [48784 2014-11-27] (StdLib)
R1 {3fa44d1f-c300-4673-a8c1-5ba05468b4bd}Gw64; C:\Windows\System32\drivers\{3fa44d1f-c300-4673-a8c1-5ba05468b4bd}Gw64.sys [48784 2014-10-17] (StdLib)
R1 {4096aedf-3f28-4c8e-aebe-00255138fa8a}Gw64; C:\Windows\System32\drivers\{4096aedf-3f28-4c8e-aebe-00255138fa8a}Gw64.sys [48784 2014-10-14] (StdLib)
R1 {4530e639-76ab-4435-889d-a5e81ae090a4}Gw64; C:\Windows\System32\drivers\{4530e639-76ab-4435-889d-a5e81ae090a4}Gw64.sys [48784 2014-10-20] (StdLib)
R1 {51b9c91c-8e38-40ae-80de-58a590512b6b}Gw64; C:\Windows\System32\drivers\{51b9c91c-8e38-40ae-80de-58a590512b6b}Gw64.sys [48832 2014-11-10] (StdLib)
R1 {5d78e0ee-ca60-46a4-9492-4f24429cc925}Gw64; C:\Windows\System32\drivers\{5d78e0ee-ca60-46a4-9492-4f24429cc925}Gw64.sys [48784 2014-10-16] (StdLib)
R1 {67f29abb-07b3-41f5-94cd-f819d7c1fc76}Gw64; C:\Windows\System32\drivers\{67f29abb-07b3-41f5-94cd-f819d7c1fc76}Gw64.sys [48784 2014-10-20] (StdLib)
R1 {6b89253f-7097-40c7-9ead-2d5b1ceb02e2}w64; C:\Windows\System32\drivers\{6b89253f-7097-40c7-9ead-2d5b1ceb02e2}w64.sys [48776 2015-02-09] (StdLib)
R1 {6c84eb28-66c4-4e3d-8a5a-46ab94f0575a}Gw64; C:\Windows\System32\drivers\{6c84eb28-66c4-4e3d-8a5a-46ab94f0575a}Gw64.sys [48784 2014-10-19] (StdLib)
R1 {733fb217-c049-41ba-9504-3f2045e61977}Gw64; C:\Windows\System32\drivers\{733fb217-c049-41ba-9504-3f2045e61977}Gw64.sys [48784 2014-10-21] (StdLib)
R1 {84e24724-32a5-4ef8-b981-cc669543b4a4}Gw64; C:\Windows\System32\drivers\{84e24724-32a5-4ef8-b981-cc669543b4a4}Gw64.sys [48784 2014-10-11] (StdLib)
R1 {949aba83-1d7f-4d0b-b0ba-203450825231}Gw64; C:\Windows\System32\drivers\{949aba83-1d7f-4d0b-b0ba-203450825231}Gw64.sys [48784 2014-10-15] (StdLib)
R1 {94c4b27a-8cb1-4214-9d76-87c59a8cf657}Gw64; C:\Windows\System32\drivers\{94c4b27a-8cb1-4214-9d76-87c59a8cf657}Gw64.sys [48784 2014-10-10] (StdLib)
R1 {94d62e35-4b43-494c-bf52-ba5935df36ef}Gw64; C:\Windows\System32\drivers\{94d62e35-4b43-494c-bf52-ba5935df36ef}Gw64.sys [48784 2014-12-02] (StdLib)
R1 {94d62e35-4b43-494c-bf52-ba5935df36ef}w64; C:\Windows\System32\drivers\{94d62e35-4b43-494c-bf52-ba5935df36ef}w64.sys [48784 2014-12-10] (StdLib)
R1 {b0c7827f-c845-429a-833b-c2a798fc4fc3}Gw64; C:\Windows\System32\drivers\{b0c7827f-c845-429a-833b-c2a798fc4fc3}Gw64.sys [48784 2014-10-25] (StdLib)
R1 {bb7b7a60-f574-47c2-8a0b-4c56f2da9802}Gw64; C:\Windows\System32\drivers\{bb7b7a60-f574-47c2-8a0b-4c56f2da9802}Gw64.sys [48784 2014-09-29] (StdLib)
R1 {c61f6471-95aa-405a-be3a-f3b2dc07fdfa}Gw64; C:\Windows\System32\drivers\{c61f6471-95aa-405a-be3a-f3b2dc07fdfa}Gw64.sys [48784 2014-10-10] (StdLib)
R1 {d428f5a9-a362-4938-a8b7-f0abd920078b}Gw64; C:\Windows\System32\drivers\{d428f5a9-a362-4938-a8b7-f0abd920078b}Gw64.sys [48784 2014-12-01] (StdLib)
R1 {d997fcb4-42b4-4f84-a147-2e498567c954}Gw64; C:\Windows\System32\drivers\{d997fcb4-42b4-4f84-a147-2e498567c954}Gw64.sys [48784 2014-11-28] (StdLib)
R1 {dbec4a38-79aa-4d48-ac2b-d4467b1ded12}Gw64; C:\Windows\System32\drivers\{dbec4a38-79aa-4d48-ac2b-d4467b1ded12}Gw64.sys [48784 2014-11-29] (StdLib)
R1 {dc592624-f532-4311-9fc7-6920126fc404}Gw64; C:\Windows\System32\drivers\{dc592624-f532-4311-9fc7-6920126fc404}Gw64.sys [48784 2014-10-22] (StdLib)
R1 {e9629596-2cbd-4eea-9329-7470e8b0fdae}Gw64; C:\Windows\System32\drivers\{e9629596-2cbd-4eea-9329-7470e8b0fdae}Gw64.sys [48784 2014-10-12] (StdLib)
R1 {f5d136d7-adc2-4c84-85b2-e564334ab0bc}Gw64; C:\Windows\System32\drivers\{f5d136d7-adc2-4c84-85b2-e564334ab0bc}Gw64.sys [48784 2014-10-22] (StdLib)
R1 {f63e4e62-e47d-4415-9bb4-c9b1dfe161b9}Gw64; C:\Windows\System32\drivers\{f63e4e62-e47d-4415-9bb4-c9b1dfe161b9}Gw64.sys [48832 2014-11-04] (StdLib)
R1 {f9595960-dc6f-49f8-83db-4f3a4c9b714d}Gw64; C:\Windows\System32\drivers\{f9595960-dc6f-49f8-83db-4f3a4c9b714d}Gw64.sys [48784 2014-11-30] (StdLib)
R1 {fc7329ef-e953-454c-8e78-ed2cf0acb2ef}Gw64; C:\Windows\System32\drivers\{fc7329ef-e953-454c-8e78-ed2cf0acb2ef}Gw64.sys [48832 2014-10-31] (StdLib)
R1 {fce396ae-d8d1-4789-946e-2106fbe4292b}Gw64; C:\Windows\System32\drivers\{fce396ae-d8d1-4789-946e-2106fbe4292b}Gw64.sys [48784 2014-10-18] (StdLib)
R1 {fd600559-a688-4110-b9b9-0f1a9beae8ae}Gw64; C:\Windows\System32\drivers\{fd600559-a688-4110-b9b9-0f1a9beae8ae}Gw64.sys [48784 2014-10-12] (StdLib)
S3 MSICDSetup; \??\D:\CDriver64.sys [X]
S3 NTIOLib_1_0_C; \??\D:\NTIOLib_X64.sys [X]
C:\ProgramData\IHProtectUpDate
C:\Program Files (x86)\XTab
C:\ProgramData\WindowsMangerProtect
C:\Program Files (x86)\AdvanceElite
C:\ProgramData\d2446020-ddff-402b-b064-199d2ce66b2b
 
 
 
 
CMD: dir /a "C:\Program Files (x86)"
CMD: dir /a "C:\Program Files"
CMD: dir /a "C:\Users\ja\AppData\Roaming"
CMD: dir /a "C:\Users\ja\AppData\Local"
CMD: dir /a "C:\Users\ja\AppData"
CMD: dir /a "C:\ProgramData"
EmptyTemp:
*****************
 
Processes closed successfully.
C:\Windows\system32\GroupPolicy\Machine => Moved successfully.
C:\Windows\system32\GroupPolicy\GPT.ini => Moved successfully.
"HKLM\SOFTWARE\Policies\Google" => Key deleted successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Search Page => Value was restored successfully.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Search Page => Value was restored successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Page_URL => Value was restored successfully.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Page_URL => Value was restored successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Search_URL => Value was restored successfully.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Search_URL => Value was restored successfully.
HKU\S-1-5-21-1197457787-3615189920-3557798660-1000\Software\Microsoft\Internet Explorer\Main\\Search Page => Value was restored successfully.
HKU\S-1-5-21-1197457787-3615189920-3557798660-1000\Software\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKU\S-1-5-21-1197457787-3615189920-3557798660-1000\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL => Value was restored successfully.
HKU\S-1-5-21-1197457787-3615189920-3557798660-1000\Software\Microsoft\Internet Explorer\Main\\Default_Search_URL => Value was restored successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
"HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}" => Key deleted successfully.
HKCR\CLSID\{33BB0A4E-99AF-4226-BDF6-49120163DE86} => Key not found. 
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}" => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{33BB0A4E-99AF-4226-BDF6-49120163DE86} => Key not found. 
HKU\S-1-5-21-1197457787-3615189920-3557798660-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
"HKU\S-1-5-21-1197457787-3615189920-3557798660-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => Key deleted successfully.
HKCR\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => Key not found. 
"HKU\S-1-5-21-1197457787-3615189920-3557798660-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0}" => Key deleted successfully.
HKCR\CLSID\{2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} => Key not found. 
"HKU\S-1-5-21-1197457787-3615189920-3557798660-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2D89F940-4D18-4527-8013-C56AB87EEEA9}" => Key deleted successfully.
HKCR\CLSID\{2D89F940-4D18-4527-8013-C56AB87EEEA9} => Key not found. 
"HKU\S-1-5-21-1197457787-3615189920-3557798660-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}" => Key deleted successfully.
HKCR\CLSID\{33BB0A4E-99AF-4226-BDF6-49120163DE86} => Key not found. 
"HKU\S-1-5-21-1197457787-3615189920-3557798660-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}" => Key deleted successfully.
HKCR\CLSID\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} => Key not found. 
"HKU\S-1-5-21-1197457787-3615189920-3557798660-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{E733165D-CBCF-4FDA-883E-ADEF965B476C}" => Key deleted successfully.
HKCR\CLSID\{E733165D-CBCF-4FDA-883E-ADEF965B476C} => Key not found. 
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}" => Key deleted successfully.
"HKCR\Wow6432Node\CLSID\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}" => Key deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3b2cb4c8-72ab-4b25-8fa1-219b36a60bed} => Key not found. 
HKCR\Wow6432Node\CLSID\{3b2cb4c8-72ab-4b25-8fa1-219b36a60bed} => Key not found. 
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Code Store Database\Distribution Units\{D27CDB6E-AE6D-11CF-96B8-444553540000}" => Key deleted successfully.
"HKCR\Wow6432Node\CLSID\{D27CDB6E-AE6D-11CF-96B8-444553540000}" => Key Deleted successfully.
HKLM\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command\\Default => Value was restored successfully.
Chrome HomePage not detected.
RestoreOnStartup not detected.
Chrome StartupUrls not detected.
Chrome DefaultSearchKeyword not detected.
CHR DefaultNewTabURL: Default -> http://search.yahoo....sssyctab_bd_com=> Error: No automatic fix found for this entry.
C:\Users\mrbloodcrew\AppData\Local\Google\Chrome\User Data\Default\Extensions\ikelkcdeenapiakgpgaeffghpjojokin directory not found.
Update AdvanceElite => Service not found.
Util AdvanceElite => Service deleted successfully.
MaintainerSvc1.20.7247763 => Service not found.
{00aec75d-051f-41a9-9837-e94ac4f56303}Gw64 => Service stopped successfully.
{00aec75d-051f-41a9-9837-e94ac4f56303}Gw64 => Service deleted successfully.
{02bbe9df-d3b0-43f4-8dcb-e24500d3308f}Gw64 => Service stopped successfully.
{02bbe9df-d3b0-43f4-8dcb-e24500d3308f}Gw64 => Service deleted successfully.
{10e3e2da-8f7b-42cc-9f00-90007ce494b8}Gw64 => Service stopped successfully.
{10e3e2da-8f7b-42cc-9f00-90007ce494b8}Gw64 => Service deleted successfully.
{1de2a23f-1c23-4ea1-8ef4-79bc5c5cea78}Gw64 => Service stopped successfully.
{1de2a23f-1c23-4ea1-8ef4-79bc5c5cea78}Gw64 => Service deleted successfully.
{255a824a-3cde-4dee-9785-284605606456}Gw64 => Service stopped successfully.
{255a824a-3cde-4dee-9785-284605606456}Gw64 => Service deleted successfully.
{32c6b9d7-6b2c-4b03-9178-01abbf9c7194}Gw64 => Service stopped successfully.
{32c6b9d7-6b2c-4b03-9178-01abbf9c7194}Gw64 => Service deleted successfully.
{336e37ae-3235-4f16-98ec-8cdf679be7d2}Gw64 => Service stopped successfully.
{336e37ae-3235-4f16-98ec-8cdf679be7d2}Gw64 => Service deleted successfully.
{34a9de73-8119-4710-8938-8d3ebf75d78f}Gw64 => Service stopped successfully.
{34a9de73-8119-4710-8938-8d3ebf75d78f}Gw64 => Service deleted successfully.
{3b808196-ff63-49ee-b33b-efdf51723eca}Gw64 => Service stopped successfully.
{3b808196-ff63-49ee-b33b-efdf51723eca}Gw64 => Service deleted successfully.
{3cac76e7-8310-45ea-8277-96d048a78c60}Gw64 => Service stopped successfully.
{3cac76e7-8310-45ea-8277-96d048a78c60}Gw64 => Service deleted successfully.
{3fa44d1f-c300-4673-a8c1-5ba05468b4bd}Gw64 => Service stopped successfully.
{3fa44d1f-c300-4673-a8c1-5ba05468b4bd}Gw64 => Service deleted successfully.
{4096aedf-3f28-4c8e-aebe-00255138fa8a}Gw64 => Service stopped successfully.
{4096aedf-3f28-4c8e-aebe-00255138fa8a}Gw64 => Service deleted successfully.
{4530e639-76ab-4435-889d-a5e81ae090a4}Gw64 => Service stopped successfully.
{4530e639-76ab-4435-889d-a5e81ae090a4}Gw64 => Service deleted successfully.
{51b9c91c-8e38-40ae-80de-58a590512b6b}Gw64 => Service stopped successfully.
{51b9c91c-8e38-40ae-80de-58a590512b6b}Gw64 => Service deleted successfully.
{5d78e0ee-ca60-46a4-9492-4f24429cc925}Gw64 => Service stopped successfully.
{5d78e0ee-ca60-46a4-9492-4f24429cc925}Gw64 => Service deleted successfully.
{67f29abb-07b3-41f5-94cd-f819d7c1fc76}Gw64 => Service stopped successfully.
{67f29abb-07b3-41f5-94cd-f819d7c1fc76}Gw64 => Service deleted successfully.
{6b89253f-7097-40c7-9ead-2d5b1ceb02e2}w64 => Service stopped successfully.
{6b89253f-7097-40c7-9ead-2d5b1ceb02e2}w64 => Service deleted successfully.
{6c84eb28-66c4-4e3d-8a5a-46ab94f0575a}Gw64 => Service stopped successfully.
{6c84eb28-66c4-4e3d-8a5a-46ab94f0575a}Gw64 => Service deleted successfully.
{733fb217-c049-41ba-9504-3f2045e61977}Gw64 => Service stopped successfully.
{733fb217-c049-41ba-9504-3f2045e61977}Gw64 => Service deleted successfully.
{84e24724-32a5-4ef8-b981-cc669543b4a4}Gw64 => Service stopped successfully.
{84e24724-32a5-4ef8-b981-cc669543b4a4}Gw64 => Service deleted successfully.
{949aba83-1d7f-4d0b-b0ba-203450825231}Gw64 => Service stopped successfully.
{949aba83-1d7f-4d0b-b0ba-203450825231}Gw64 => Service deleted successfully.
{94c4b27a-8cb1-4214-9d76-87c59a8cf657}Gw64 => Service stopped successfully.
{94c4b27a-8cb1-4214-9d76-87c59a8cf657}Gw64 => Service deleted successfully.
{94d62e35-4b43-494c-bf52-ba5935df36ef}Gw64 => Service stopped successfully.
{94d62e35-4b43-494c-bf52-ba5935df36ef}Gw64 => Service deleted successfully.
{94d62e35-4b43-494c-bf52-ba5935df36ef}w64 => Service stopped successfully.
{94d62e35-4b43-494c-bf52-ba5935df36ef}w64 => Service deleted successfully.
{b0c7827f-c845-429a-833b-c2a798fc4fc3}Gw64 => Service stopped successfully.
{b0c7827f-c845-429a-833b-c2a798fc4fc3}Gw64 => Service deleted successfully.
{bb7b7a60-f574-47c2-8a0b-4c56f2da9802}Gw64 => Service stopped successfully.
{bb7b7a60-f574-47c2-8a0b-4c56f2da9802}Gw64 => Service deleted successfully.
{c61f6471-95aa-405a-be3a-f3b2dc07fdfa}Gw64 => Service stopped successfully.
{c61f6471-95aa-405a-be3a-f3b2dc07fdfa}Gw64 => Service deleted successfully.
{d428f5a9-a362-4938-a8b7-f0abd920078b}Gw64 => Service stopped successfully.
{d428f5a9-a362-4938-a8b7-f0abd920078b}Gw64 => Service deleted successfully.
{d997fcb4-42b4-4f84-a147-2e498567c954}Gw64 => Service stopped successfully.
{d997fcb4-42b4-4f84-a147-2e498567c954}Gw64 => Service deleted successfully.
{dbec4a38-79aa-4d48-ac2b-d4467b1ded12}Gw64 => Service stopped successfully.
{dbec4a38-79aa-4d48-ac2b-d4467b1ded12}Gw64 => Service deleted successfully.
{dc592624-f532-4311-9fc7-6920126fc404}Gw64 => Service stopped successfully.
{dc592624-f532-4311-9fc7-6920126fc404}Gw64 => Service deleted successfully.
{e9629596-2cbd-4eea-9329-7470e8b0fdae}Gw64 => Service stopped successfully.
{e9629596-2cbd-4eea-9329-7470e8b0fdae}Gw64 => Service deleted successfully.
{f5d136d7-adc2-4c84-85b2-e564334ab0bc}Gw64 => Service stopped successfully.
{f5d136d7-adc2-4c84-85b2-e564334ab0bc}Gw64 => Service deleted successfully.
{f63e4e62-e47d-4415-9bb4-c9b1dfe161b9}Gw64 => Service stopped successfully.
{f63e4e62-e47d-4415-9bb4-c9b1dfe161b9}Gw64 => Service deleted successfully.
{f9595960-dc6f-49f8-83db-4f3a4c9b714d}Gw64 => Service stopped successfully.
{f9595960-dc6f-49f8-83db-4f3a4c9b714d}Gw64 => Service deleted successfully.
{fc7329ef-e953-454c-8e78-ed2cf0acb2ef}Gw64 => Service stopped successfully.
{fc7329ef-e953-454c-8e78-ed2cf0acb2ef}Gw64 => Service deleted successfully.
{fce396ae-d8d1-4789-946e-2106fbe4292b}Gw64 => Service stopped successfully.
{fce396ae-d8d1-4789-946e-2106fbe4292b}Gw64 => Service deleted successfully.
{fd600559-a688-4110-b9b9-0f1a9beae8ae}Gw64 => Service stopped successfully.
{fd600559-a688-4110-b9b9-0f1a9beae8ae}Gw64 => Service deleted successfully.
MSICDSetup => Service deleted successfully.
NTIOLib_1_0_C => Service deleted successfully.
C:\ProgramData\IHProtectUpDate => Moved successfully.
C:\Program Files (x86)\XTab => Moved successfully.
C:\ProgramData\WindowsMangerProtect => Moved successfully.
C:\Program Files (x86)\AdvanceElite => Moved successfully.
"C:\ProgramData\d2446020-ddff-402b-b064-199d2ce66b2b" => File/Directory not found.
 
=========  dir /a "C:\Program Files (x86)" =========
 
 Wolumin w stacji C nie ma etykiety.
 Numer seryjny woluminu: A22E-B2D8
 
 Katalog: C:\Program Files (x86)
 
2015-03-15  12:32    <DIR>          .
2015-03-15  12:32    <DIR>          ..
2014-10-21  20:40    <DIR>          AGEIA Technologies
2014-10-04  12:31    <DIR>          AviSynth 2.5
2014-12-11  13:06    <DIR>          AVS4YOU
2015-01-05  06:49    <DIR>          Battlelog Web Plugins
2015-01-27  16:35    <DIR>          Common Files
2009-07-14  05:54               174 desktop.ini
2014-09-29  20:46    <DIR>          DirectX
2015-02-10  22:43    <DIR>          DVDVideoSoft
2014-09-28  15:36    <DIR>          FBReader
2014-09-28  15:36    <DIR>          Foxit Software
2015-02-10  22:43    <DIR>          Free Codec Pack
2014-10-04  12:33    <DIR>          FreeTime
2015-01-06  18:32    <DIR>          Gabest
2014-12-09  14:48    <DIR>          GameforgeLive
2014-09-28  13:19    <DIR>          Google
2015-03-04  17:12    <DIR>          Gry
2014-09-28  13:00    <DIR>          GUM3BF6.tmp
2015-03-02  16:02    <DIR>          IndepthProc
2015-01-04  17:09    <DIR>          InstallShield Installation Information
2014-09-28  13:01    <DIR>          Intel
2015-03-13  12:26    <DIR>          Internet Explorer
2014-10-04  12:30    <DIR>          K-Lite Codec Pack
2015-01-10  20:51    <DIR>          Microsoft SkyDrive
2015-01-13  13:42    <DIR>          Microsoft.NET
2009-07-14  06:32    <DIR>          MSBuild
2014-09-28  13:02    <DIR>          MSI
2014-11-20  14:03    <DIR>          NVIDIA Corporation
2015-03-10  16:07    <DIR>          Opera
2015-03-02  10:27    <DIR>          Origin
2014-11-29  20:49    <DIR>          Origin Games
2015-01-11  13:51    <DIR>          Programy
2014-09-28  12:58    <DIR>          Realtek
2009-07-14  06:32    <DIR>          Reference Assemblies
2015-01-10  23:22    <DIR>          Skype
2014-09-28  12:59    <DIR>          Temp
2014-09-28  13:05    <DIR>          Thunder Master
2014-12-10  16:58    <DIR>          TP-LINK
2014-12-09  14:49    <DIR>          Ubisoft
2009-07-14  05:57    <DIR>          Uninstall Information
2014-07-10  17:24    <DIR>          Windows Defender
2011-04-12  14:21    <DIR>          Windows Mail
2009-07-14  06:32    <DIR>          Windows NT
2011-04-12  14:21    <DIR>          Windows Photo Viewer
2010-11-21  04:31    <DIR>          Windows Portable Devices
2011-04-12  14:21    <DIR>          Windows Sidebar
2014-09-28  16:00    <DIR>          WinRAR
               1 plik(w)                174 bajtw
              47 katalog(w)  887246094336 bajtw wolnych
 
========= End of CMD: =========
 
 
=========  dir /a "C:\Program Files" =========
 
 Wolumin w stacji C nie ma etykiety.
 Numer seryjny woluminu: A22E-B2D8
 
 Katalog: C:\Program Files
 
2015-01-13  13:42    <DIR>          .
2015-01-13  13:42    <DIR>          ..
2014-09-28  14:43    <DIR>          AVAST Software
2014-09-28  13:16    <DIR>          Common Files
2009-07-14  05:54               174 desktop.ini
2011-04-12  14:32    <DIR>          DVD Maker
2014-09-28  13:19    <DIR>          Google
2014-09-28  13:01    <DIR>          Intel
2015-03-13  12:26    <DIR>          Internet Explorer
2015-01-27  16:36    <DIR>          Java
2009-07-14  06:32    <DIR>          MSBuild
2014-10-21  20:41    <DIR>          NVIDIA Corporation
2014-09-28  12:59    <DIR>          Realtek
2009-07-14  06:32    <DIR>          Reference Assemblies
2009-07-14  06:09    <DIR>          Uninstall Information
2014-07-10  17:24    <DIR>          Windows Defender
2014-07-10  23:13    <DIR>          Windows Journal
2011-04-12  14:21    <DIR>          Windows Mail
2015-02-10  19:13    <DIR>          Windows Media Player
2014-09-28  12:54    <DIR>          Windows NT
2011-04-12  14:21    <DIR>          Windows Photo Viewer
2010-11-21  04:31    <DIR>          Windows Portable Devices
2011-04-12  14:21    <DIR>          Windows Sidebar
               1 plik(w)                174 bajtw
              22 katalog(w)  887246094336 bajtw wolnych
 
========= End of CMD: =========
 
 
=========  dir /a "C:\Users\ja\AppData\Roaming" =========
 
System nie moe odnale okrelonej cieki.
 
========= End of CMD: =========
 
 
=========  dir /a "C:\Users\ja\AppData\Local" =========
 
System nie moe odnale okrelonej cieki.
 
========= End of CMD: =========
 
 
=========  dir /a "C:\Users\ja\AppData" =========
 
Nie mona odnale okrelonego pliku.
 
========= End of CMD: =========
 
 
=========  dir /a "C:\ProgramData" =========
 
 Wolumin w stacji C nie ma etykiety.
 Numer seryjny woluminu: A22E-B2D8
 
 Katalog: C:\ProgramData
 
2015-03-15  12:32    <DIR>          .
2015-03-15  12:32    <DIR>          ..
2015-03-02  08:48    <DIR>          21e6ca67000025f7
2009-07-14  06:08    <JUNCTION>     Application Data [C:\ProgramData]
2015-01-17  16:02    <DIR>          ASign
2014-09-28  14:43    <DIR>          AVAST Software
2014-10-26  19:43    <DIR>          AVG
2014-12-11  13:07    <DIR>          AVS4YOU
2014-10-26  19:40    <DIR>          Common Files
2014-09-28  12:54    <JUNCTION>     Dane aplikacji [C:\ProgramData]
2009-07-14  06:08    <JUNCTION>     Desktop [C:\Users\Public\Desktop]
2009-07-14  06:08    <JUNCTION>     Documents [C:\Users\Public\Documents]
2014-09-28  12:54    <JUNCTION>     Dokumenty [C:\Users\Public\Documents]
2014-09-28  12:59                 0 DP45977C.lfl
2014-09-29  13:01    <DIR>          EA Core
2014-09-29  13:17    <DIR>          EA Logs
2014-09-29  13:01    <DIR>          Electronic Arts
2009-07-14  06:08    <JUNCTION>     Favorites [C:\Users\Public\Favorites]
2014-09-28  13:01    <DIR>          Intel
2014-09-28  12:54    <JUNCTION>     Menu Start [C:\ProgramData\Microsoft\Windows\Start Menu]
2015-02-10  19:13    <DIR>          Microsoft
2015-01-10  20:51    <DIR>          Microsoft SkyDrive
2014-12-10  21:07    <DIR>          Mirillis
2014-09-28  13:19    <DIR>          Norton
2014-09-28  13:02    <DIR>          NortonInstaller
2014-09-30  22:12               472 ntuser.pol
2015-03-15  11:35    <DIR>          NVIDIA
2014-10-21  20:41    <DIR>          NVIDIA Corporation
2015-01-27  16:38    <DIR>          Oracle
2014-10-21  16:39    <DIR>          Orbit
2015-03-05  22:31    <DIR>          Origin
2015-02-02  11:08    <DIR>          Package Cache
2014-09-28  12:54    <JUNCTION>     Pulpit [C:\Users\Public\Desktop]
2014-11-19  20:27    <DIR>          RELOADED
2014-09-28  18:56    <DIR>          Riot Games
2015-01-10  23:22    <DIR>          Skype
2009-07-14  06:08    <JUNCTION>     Start Menu [C:\ProgramData\Microsoft\Windows\Start Menu]
2014-09-30  21:11    <DIR>          Steam
2014-11-21  18:11    <DIR>          Sun
2014-09-28  12:54    <JUNCTION>     Szablony [C:\ProgramData\Microsoft\Windows\Templates]
2009-07-14  06:08    <JUNCTION>     Templates [C:\ProgramData\Microsoft\Windows\Templates]
2014-12-10  16:58    <DIR>          TP-LINK
2014-09-28  12:54    <JUNCTION>     Ulubione [C:\Users\Public\Favorites]
2015-01-04  17:32    <DIR>          Xfire
2014-10-05  20:22    <DIR>          YTD Video Downloader
2014-10-26  19:40    <DIR>          {01BD4FC9-2F86-4706-A62E-774BB7E9D308}
2015-02-10  18:40    <DIR>          {bdf37d3c-6011-3951-bdf3-37d3c601f4f1}
               2 plik(w)                472 bajtw
              45 katalog(w)  887246090240 bajtw wolnych
 
========= End of CMD: =========
 
EmptyTemp: => Removed 7.9 GB temporary data.
 
 
The system needed a reboot. 
 
==== End of Fixlog 12:38:34 ====
 

SS-CLEANER:

 

Shortcut Cleaner 1.3.4 by Lawrence Abrams (Grinler)
Copyright 2008-2015 BleepingComputer.com
More Information about Shortcut Cleaner can be found at this link:
 
Windows Version: Windows 7 Professional Service Pack 1
Program started at: 03/15/2015 12:54:04 PM.
 
Scanning for registry hijacks:
 
 * No issues found in the Registry.
 
Searching for Hijacked Shortcuts:
 
Searching C:\Users\mrbloodcrew\AppData\Roaming\Microsoft\Windows\Start Menu\
 
Searching C:\ProgramData\Microsoft\Windows\Start Menu\
 
  * Shortcut Cleaned: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://isearch.omiga-plus.com/?type=sc&ts=1423590013&from=ild&uid=ST1000LM024XHN-M101MBB_S30YJ9DF517217
 
Searching C:\Users\mrbloodcrew\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\
 
  * Shortcut Cleaned: C:\Users\mrbloodcrew\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://isearch.omiga-plus.com/?type=sc&ts=1423590013&from=ild&uid=ST1000LM024XHN-M101MBB_S30YJ9DF517217
 
  * Shortcut Cleaned: C:\Users\mrbloodcrew\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk => C:\Program Files\Internet Explorer\iexplore.exe http://isearch.omiga-plus.com/?type=sc&ts=1423590013&from=ild&uid=ST1000LM024XHN-M101MBB_S30YJ9DF517217
 
  * Shortcut Cleaned: C:\Users\mrbloodcrew\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://isearch.omiga-plus.com/?type=sc&ts=1423590013&from=ild&uid=ST1000LM024XHN-M101MBB_S30YJ9DF517217
 
  * Shortcut Cleaned: C:\Users\mrbloodcrew\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk => C:\Program Files\Internet Explorer\iexplore.exe http://isearch.omiga-plus.com/?type=sc&ts=1423590013&from=ild&uid=ST1000LM024XHN-M101MBB_S30YJ9DF517217
 
Searching C:\Users\Public\Desktop\
 
  * Shortcut Cleaned: C:\Users\Public\Desktop\Google Chrome.lnk => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://isearch.omiga-plus.com/?type=sc&ts=1423590013&from=ild&uid=ST1000LM024XHN-M101MBB_S30YJ9DF517217
 
Searching C:\Users\mrbloodcrew\Desktop
 
 
6 bad shortcuts found.
 
Program finished at: 03/15/2015 12:54:16 PM
Execution time: 0 hours(s), 0 minute(s), and 12 seconds(s)
 
 
Addidion:
 
 
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11-03-2015
Ran by mrbloodcrew at 2015-03-15 13:00:37
Running from C:\Users\mrbloodcrew\Downloads
Boot Mode: Normal
==========================================================
 
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
AV: avast! Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
 
==================== Installed Programs ======================
 
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
µTorrent (HKU\S-1-5-21-1197457787-3615189920-3557798660-1000\...\uTorrent) (Version: 3.4.2.37754 - BitTorrent Inc.)
Action! (HKLM-x32\...\Mirillis Action!) (Version: 1.20.2 - Mirillis)
Adobe Flash Player 16 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 16.0.0.305 - Adobe Systems Incorporated)
Adobe Flash Player 16 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 16.0.0.305 - Adobe Systems Incorporated)
Aegisub 3.2.1 (HKLM-x32\...\{24BC8B57-716C-444F-B46B-A3349B9164C5}_is1) (Version: 3.2.1 - Aegisub Team)
Aktualizacje NVIDIA 17.12.8 (Version: 17.12.8 - NVIDIA Corporation) Hidden
avast! Free Antivirus (HKLM-x32\...\Avast) (Version: 9.0.2021 - AVAST Software)
AviSynth 2.5 (HKLM-x32\...\AviSynth) (Version:  - )
AVS Video Editor 7.0 (HKLM-x32\...\AVS Video Editor_is1) (Version: 7.0.1.258 - Online Media Technologies Ltd.)
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.6.2 - EA Digital Illusions CE AB)
Boilsoft Video Splitter 6.34 (HKLM-x32\...\{24549038-9956-4EE5-976D-4419AAEA7DD5}_is1) (Version:  - Boilsoft, Inc.)
Call of Duty (HKLM-x32\...\Call of Duty) (Version:  - )
EA SPORTS™ FIFA 15 (HKLM-x32\...\{3D4ADA2B-F028-4307-ADF4-6F9AA44725DA}) (Version: 1.4.0.0 - Electronic Arts)
FormatFactory 3.3.5.0 (HKLM-x32\...\FormatFactory) (Version: 3.3.5.0 - Format Factory)
Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 7.0.3.916 - Foxit Software Inc.)
Free YouTube Download version 3.2.53.128 (HKLM-x32\...\Free YouTube Download_is1) (Version: 3.2.53.128 - DVDVideoSoft Ltd.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 41.0.2272.89 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.26.9 - Google Inc.) Hidden
IndepthProc (HKLM-x32\...\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}{caa5fe02}) (Version:  - Software Publisher) <==== ATTENTION
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.15.1730 - Intel Corporation)
Intel® USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 2.5.0.19 - Intel Corporation)
Java 8 Update 31 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418031F0}) (Version: 8.0.310 - Oracle Corporation)
K-Lite Mega Codec Pack 10.7.5 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 10.7.5 - )
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{f45b48a7-f616-4211-b927-17cab6a96613}) (Version: 8.0.58298 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x64 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
NVIDIA GeForce Experience 2.2.2 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.2.2 - NVIDIA Corporation)
NVIDIA Oprogramowanie systemu PhysX 9.14.0702 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.14.0702 - NVIDIA Corporation)
NVIDIA Sterownik 3D Vision 347.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 347.52 - NVIDIA Corporation)
NVIDIA Sterownik dźwięku HD 1.3.33.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.33.0 - NVIDIA Corporation)
NVIDIA Sterownik graficzny 347.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 347.52 - NVIDIA Corporation)
NVIDIA Sterownik kontrolera 3D Vision 347.09 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 347.09 - NVIDIA Corporation)
Opera Stable 28.0.1750.40 (HKLM-x32\...\Opera 28.0.1750.40) (Version: 28.0.1750.40 - Opera Software ASA)
Origin (HKLM-x32\...\Origin) (Version: 9.4.22.2815 - Electronic Arts, Inc.)
osu! (HKLM-x32\...\{5c69dd17-a3bb-4246-8431-df165e77bb36}) (Version: latest - ppy Pty Ltd)
Panel sterowania NVIDIA 347.52 (Version: 347.52 - NVIDIA Corporation) Hidden
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.991 - Even Balance, Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.77.1126.2013 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7173 - Realtek Semiconductor Corp.)
SHIELD Streaming (Version: 4.0.1000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 17.12.8 - NVIDIA Corporation) Hidden
Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SUPER CHARGER (HKLM-x32\...\{7CDF10DD-A9B5-4DA3-AB95-E193248D4369}_is1) (Version: 1.2.024 - MSI)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
Thunder Master v2.3 (HKLM-x32\...\{EE04522C-0814-4B63-AE57-0B63E5A355BB}_is1) (Version: 2.3.0.0 - Palit Microsystems Ltd.)
TP-LINK TL-WN721N_TL-WN722N Driver (HKLM-x32\...\{86A7EED0-02D0-4D91-8183-8D2F23F5E6AE}) (Version: 1.3.1 - TP-LINK)
TP-LINK Wireless Configuration Utility (HKLM-x32\...\{319D91C6-3D44-436C-9F79-36C0D22372DC}) (Version: 1.3.1 - TP-LINK)
Unchecky v0.3.7 (HKLM-x32\...\Unchecky) (Version: 0.3.7 - RaMMicHaeL)
VGA Boost (HKLM-x32\...\{809ACFAE-9A4D-4C60-9223-D8B615CD8CBA}}_is1) (Version: 1.0.0.7 - MSI)
VobSub v2.23 (Remove Only) (HKLM-x32\...\VobSub) (Version:  - )
 
==================== Custom CLSID (selected items): ==========================
 
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
 
 
==================== Restore Points  =========================
 
04-03-2015 17:41:37 Zaplanowany punkt kontrolny
10-03-2015 16:07:15 Windows Update
11-03-2015 18:27:31 Windows Update
 
==================== Hosts content: ==========================
 
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
2009-07-14 03:34 - 2015-03-15 12:56 - 00001993 ____A C:\Windows\system32\Drivers\etc\hosts
0.0.0.0 0.0.0.0 # fix for traceroute and netstat display anomaly
0.0.0.0 tracking.opencandy.com.s3.amazonaws.com
0.0.0.0 media.opencandy.com
0.0.0.0 cdn.opencandy.com
0.0.0.0 tracking.opencandy.com
0.0.0.0 api.opencandy.com
0.0.0.0 installer.betterinstaller.com
0.0.0.0 installer.filebulldog.com
0.0.0.0 d3oxtn1x3b8d7i.cloudfront.net
0.0.0.0 inno.bisrv.com
0.0.0.0 nsis.bisrv.com
0.0.0.0 cdn.file2desktop.com
0.0.0.0 cdn.goateastcach.us
0.0.0.0 cdn.guttastatdk.us
0.0.0.0 cdn.inskinmedia.com
0.0.0.0 cdn.insta.oibundles2.com
0.0.0.0 cdn.insta.playbryte.com
0.0.0.0 cdn.llogetfastcach.us
0.0.0.0 cdn.montiera.com
0.0.0.0 cdn.msdwnld.com
0.0.0.0 cdn.mypcbackup.com
0.0.0.0 cdn.ppdownload.com
0.0.0.0 cdn.riceateastcach.us
0.0.0.0 cdn.shyapotato.us
0.0.0.0 cdn.solimba.com
0.0.0.0 cdn.tuto4pc.com
0.0.0.0 cdn.appround.biz
0.0.0.0 cdn.bigspeedpro.com
0.0.0.0 cdn.bispd.com
 
There are 4 more lines.
 
 
==================== Scheduled Tasks (whitelisted) =============
 
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
 
Task: {00E66802-69A9-4EB0-92F1-69E29514EA58} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-09-28] (Google Inc.)
Task: {04EA9E7C-E0E8-4865-9840-F179C0F5BEE2} - System32\Tasks\{F05331AE-BED8-4945-B361-170EC2AF3FDA} => C:\Program Files (x86)\Gry\Dragon Age Inkwizycja\Dragon Age Inquisition\Launcher.exe
Task: {0854BED7-CFB5-4D8B-93D2-8731248A5E3C} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-02-04] (Adobe Systems Incorporated)
Task: {26643977-7CA0-42F2-AB50-44BFEEF2B8CB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-09-28] (Google Inc.)
Task: {57AE205B-4362-4D4E-AB94-7B1FA4F089AB} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-09-28] (AVAST Software)
Task: {6EBBF395-BA40-4304-AF2F-2178F8A53D3E} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work => C:\Windows\system32\WorkFoldersSystemTray.exe [2014-07-10] (Microsoft Corporation)
Task: {6F750321-F082-40BC-B292-E286ECFF61B3} - System32\Tasks\Opera scheduled Autoupdate 1412019865 => C:\Program Files (x86)\Opera\launcher.exe [2015-03-05] (Opera Software)
Task: {AB0EE31B-E078-41FC-A6B9-87193DCB7B97} - System32\Tasks\{552566D4-A6CB-41C0-928A-8B062911AB9B} => C:\Program Files (x86)\Gry\Dragon Age Inkwizycja\Dragon Age Inquisition\Launcher.exe
Task: {CC15FC76-F928-4279-BE3C-BAF71511AA00} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Sc.exe start osppsvc
Task: {FF11676F-8DFD-4B03-BEA2-1497ED59F1FC} - System32\Tasks\ThunderMaster => C:\Program Files (x86)\Thunder Master\THPanel.exe [2014-04-15] (Palit Microsystems Ltd.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
 
==================== Loaded Modules (whitelisted) ==============
 
2014-09-28 16:30 - 2015-02-05 20:07 - 00117576 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-10-19 01:46 - 2014-10-19 21:06 - 00076152 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2014-09-28 14:44 - 2014-09-28 14:44 - 00301152 _____ () C:\Program Files\AVAST Software\Avast\aswProperty.dll
2015-03-11 14:52 - 2015-03-11 14:52 - 02920960 _____ () C:\Program Files\AVAST Software\Avast\defs\15031100\algo.dll
2014-09-28 14:44 - 2014-09-28 14:44 - 19329904 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-09-28 13:00 - 2013-09-16 20:20 - 01242584 ____R () C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\ACE.dll
 
==================== Alternate Data Streams (whitelisted) =========
 
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
 
 
==================== Safe Mode (whitelisted) ===================
 
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
 
==================== EXE Association (whitelisted) ===============
 
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
 
 
==================== Other Areas ============================
 
(Currently there is no automatic fix for this section.)
 
HKU\S-1-5-21-1197457787-3615189920-3557798660-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\mrbloodcrew\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.0.1
 
==================== MSCONFIG/TASK MANAGER disabled items ==
 
(Currently there is no automatic fix for this section.)
 
 
==================== Accounts: =============================
 
Administrator (S-1-5-21-1197457787-3615189920-3557798660-500 - Administrator - Disabled)
Gość (S-1-5-21-1197457787-3615189920-3557798660-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1197457787-3615189920-3557798660-1002 - Limited - Enabled)
mrbloodcrew (S-1-5-21-1197457787-3615189920-3557798660-1000 - Administrator - Enabled) => C:\Users\mrbloodcrew
 
==================== Faulty Device Manager Devices =============
 
Name: Karta tunelowania Teredo firmy Microsoft
Description: Karta tunelowania Teredo firmy Microsoft
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
 
Name: 
Description: 
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (03/15/2015 00:45:07 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (03/15/2015 00:43:44 PM) (Source: NvStreamSvc) (EventID: 2001) (User: )
Description: NvStreamSvcNvVAD initialization failed [6]
 
Error: (03/15/2015 00:43:44 PM) (Source: NvStreamSvc) (EventID: 2001) (User: )
Description: NvStreamSvcFailed to set NvVAD endpoint as default Audio endpoint [0]
 
Error: (03/15/2015 00:43:43 PM) (Source: NvStreamSvc) (EventID: 2001) (User: )
Description: NvStreamSvcNvVAD endpoint registration failed [0]
 
Error: (03/15/2015 00:41:22 PM) (Source: Winlogon) (EventID: 4103) (User: )
Description: Aktywacja licencji systemu Windows nie powiodła się. Błąd 0x80070005.
 
Error: (03/15/2015 00:36:39 PM) (Source: Software Protection Platform Service) (EventID: 8193) (User: )
Description: Wystąpił błąd harmonogramu aktywacji licencji (sppuinotify.dll), kod błędu: 
0x80070005
 
Error: (03/15/2015 11:38:09 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (03/15/2015 11:37:05 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nazwa aplikacji powodującej błąd: MSI_Trigger_Service.exe, wersja: 1.0.9.0, sygnatura czasowa: 0x5243c86d
Nazwa modułu powodującego błąd: KERNELBASE.dll, wersja: 6.1.7601.18409, sygnatura czasowa: 0x53159a86
Kod wyjątku: 0xe0434352
Przesunięcie błędu: 0x0000c42d
Identyfikator procesu powodującego błąd: 0x948
Godzina uruchomienia aplikacji powodującej błąd: 0xMSI_Trigger_Service.exe0
Ścieżka aplikacji powodującej błąd: MSI_Trigger_Service.exe1
Ścieżka modułu powodującego błąd: MSI_Trigger_Service.exe2
Identyfikator raportu: MSI_Trigger_Service.exe3
 
Error: (03/15/2015 11:36:42 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application: MSI_Trigger_Service.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.Runtime.InteropServices.COMException
Stack:
   at System.Runtime.InteropServices.Marshal.ThrowExceptionForHRInternal(Int32, IntPtr)
   at System.Runtime.InteropServices.Marshal.ThrowExceptionForHR(Int32)
   at System.Management.ManagementScope.InitializeGuts(System.Object)
   at System.Management.ManagementScope.Initialize()
   at System.Management.ManagementObjectSearcher.Initialize()
   at System.Management.ManagementObjectSearcher.Get()
   at MSI_Trigger_Service.Service1.DetectVGAInfo()
   at MSI_Trigger_Service.Service1.ServiceThread_Main()
   at System.Threading.ThreadHelper.ThreadStart_Context(System.Object)
   at System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
   at System.Threading.ThreadHelper.ThreadStart()
 
Error: (03/15/2015 11:35:33 AM) (Source: Winlogon) (EventID: 4103) (User: )
Description: Aktywacja licencji systemu Windows nie powiodła się. Błąd 0x80070005.
 
 
System errors:
=============
Error: (03/15/2015 00:42:48 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Nie można uruchomić usługi IHProtect Service z powodu następującego błędu: 
%%2
 
Error: (03/15/2015 00:36:39 PM) (Source: DCOM) (EventID: 10001) (User: )
Description: C:\Windows\System32\slui.exe -Embedding5{F87B28F1-DA9A-4F35-8EC0-800EFCF26B83}
 
Error: (03/15/2015 00:29:44 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {9E175B6D-F52A-11D8-B9A5-505054503030}
 
Error: (03/15/2015 00:29:13 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Usługa Ochrona oprogramowania niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 120000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie.
 
Error: (03/15/2015 00:29:13 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Usługa Intel® Dynamic Application Loader Host Interface Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 1.
 
Error: (03/15/2015 00:29:13 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Usługa Windows Search niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 30000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie.
 
Error: (03/15/2015 00:29:13 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Usługa Intel® Management and Security Application Local Management Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 1.
 
Error: (03/15/2015 00:29:13 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Usługa PnkBstrA niespodziewanie zakończyła pracę. Wystąpiło to razy: 1.
 
Error: (03/15/2015 00:29:13 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Usługa Intel® Capability Licensing Service Interface niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 0 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie.
 
Error: (03/15/2015 00:29:13 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Usługa NVIDIA Streamer Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 1.
 
 
Microsoft Office Sessions:
=========================
Error: (03/15/2015 00:45:07 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (03/15/2015 00:43:44 PM) (Source: NvStreamSvc) (EventID: 2001) (User: )
Description: NvStreamSvcNvVAD initialization failed [6]
 
Error: (03/15/2015 00:43:44 PM) (Source: NvStreamSvc) (EventID: 2001) (User: )
Description: NvStreamSvcFailed to set NvVAD endpoint as default Audio endpoint [0]
 
Error: (03/15/2015 00:43:43 PM) (Source: NvStreamSvc) (EventID: 2001) (User: )
Description: NvStreamSvcNvVAD endpoint registration failed [0]
 
Error: (03/15/2015 00:41:22 PM) (Source: Winlogon) (EventID: 4103) (User: )
Description: 0x800700050x00000000
 
Error: (03/15/2015 00:36:39 PM) (Source: Software Protection Platform Service) (EventID: 8193) (User: )
Description: 0x80070005
 
Error: (03/15/2015 11:38:09 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (03/15/2015 11:37:05 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: MSI_Trigger_Service.exe1.0.9.05243c86dKERNELBASE.dll6.1.7601.1840953159a86e04343520000c42d94801d05f0bc81cb891C:\Program Files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exeC:\Windows\syswow64\KERNELBASE.dll38fdce88-caff-11e4-a11f-448a5bb8fc42
 
Error: (03/15/2015 11:36:42 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application: MSI_Trigger_Service.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.Runtime.InteropServices.COMException
Stack:
   at System.Runtime.InteropServices.Marshal.ThrowExceptionForHRInternal(Int32, IntPtr)
   at System.Runtime.InteropServices.Marshal.ThrowExceptionForHR(Int32)
   at System.Management.ManagementScope.InitializeGuts(System.Object)
   at System.Management.ManagementScope.Initialize()
   at System.Management.ManagementObjectSearcher.Initialize()
   at System.Management.ManagementObjectSearcher.Get()
   at MSI_Trigger_Service.Service1.DetectVGAInfo()
   at MSI_Trigger_Service.Service1.ServiceThread_Main()
   at System.Threading.ThreadHelper.ThreadStart_Context(System.Object)
   at System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
   at System.Threading.ThreadHelper.ThreadStart()
 
Error: (03/15/2015 11:35:33 AM) (Source: Winlogon) (EventID: 4103) (User: )
Description: 0x800700050x00000000
 
 
==================== Memory info =========================== 
 
Processor: Intel® Core i7-4790 CPU @ 3.60GHz
Percentage of memory in use: 18%
Total physical RAM: 8136.02 MB
Available physical RAM: 6620.51 MB
Total Pagefile: 16270.22 MB
Available Pagefile: 14732.18 MB
Total Virtual: 8192 MB
Available Virtual: 8191.82 MB
 
==================== Drives ================================
 
Drive c: () (Fixed) (Total:931.29 GB) (Free:834.13 GB) NTFS
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 89CC38E5)
 
Partition: GPT Partition Type.
 
==================== End Of Log ============================
 
 
FRST:
 
 
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 11-03-2015
Ran by mrbloodcrew (administrator) on HOME on 15-03-2015 12:57:22
Running from C:\Users\mrbloodcrew\Downloads
Loaded Profiles: mrbloodcrew (Available profiles: mrbloodcrew)
Platform: Windows 7 Professional Service Pack 1 (X64) OS Language: Polski (Polska)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Palit Microsystems Ltd.) C:\Program Files (x86)\Thunder Master\THPanel.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(MSI) C:\Program Files (x86)\MSI\SUPER CHARGER\ChargeService.exe
(MICRO-STAR INTERNATIONAL CO., LTD.) C:\Program Files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(MSI) C:\Program Files (x86)\MSI\SUPER CHARGER\SUPER CHARGER.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(RaMMicHaeL) C:\Program Files (x86)\Unchecky\bin\unchecky_svc.exe
(RaMMicHaeL) C:\Program Files (x86)\Unchecky\bin\unchecky_bg.exe
 
 
==================== Registry (Whitelisted) ==================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7540440 2014-02-11] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2585928 2015-01-16] (NVIDIA Corporation)
HKLM\...\Run: [shadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [uSB3MON] => C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292848 2013-04-26] (Intel Corporation)
HKLM-x32\...\Run: [sUPER CHARGER] => C:\Program Files (x86)\MSI\SUPER CHARGER\SUPER CHARGER.exe [1047536 2014-02-21] (MSI)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4085896 2014-09-28] (AVAST Software)
HKU\S-1-5-21-1197457787-3615189920-3557798660-1000\...\Run: [THPanel] => C:\Program Files (x86)\Thunder Master\THPanel.exe [2197800 2014-04-15] (Palit Microsystems Ltd.)
HKU\S-1-5-21-1197457787-3615189920-3557798660-1000\...\RunOnce: [uninstall C:\Users\mrbloodcrew\AppData\Local\Microsoft\SkyDrive\16.4.6012.0828\amd64] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\mrbloodcrew\AppData\Local\Microsoft\SkyDrive\16.4.6012.0828\amd64"
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
BHO: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_31\bin\ssv.dll [2015-01-27] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-09-28] (AVAST Software)
BHO: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-01-27] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-09-28] (AVAST Software)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
 
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_305.dll [2015-02-04] ()
FF Plugin: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll [2014-12-03] (EA Digital Illusions CE AB)
FF Plugin: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [2015-01-27] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-01-27] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll [2015-02-04] ()
FF Plugin-x32: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll [2014-12-03] (EA Digital Illusions CE AB)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2014-09-11] (Foxit Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-02-05] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-02-05] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-06] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-06] (Google Inc.)
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-09-28]
 
Chrome: 
=======
CHR Profile: C:\Users\mrbloodcrew\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\mrbloodcrew\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-09-28]
CHR Extension: (Google Docs) - C:\Users\mrbloodcrew\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-09-28]
CHR Extension: (Google Drive) - C:\Users\mrbloodcrew\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-09-28]
CHR Extension: (YouTube) - C:\Users\mrbloodcrew\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-09-28]
CHR Extension: (Google Search) - C:\Users\mrbloodcrew\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-09-28]
CHR Extension: (Google Sheets) - C:\Users\mrbloodcrew\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-09-28]
CHR Extension: (Avast Online Security) - C:\Users\mrbloodcrew\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-09-28]
CHR Extension: (Google Wallet) - C:\Users\mrbloodcrew\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-09-28]
CHR Extension: (Gmail) - C:\Users\mrbloodcrew\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-09-28]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-09-28]
 
==================== Services (Whitelisted) =================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-09-28] (AVAST Software)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1148744 2015-01-16] (NVIDIA Corporation)
R2 Intel® Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel® Corporation) [File not signed]
S3 Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel® Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [169432 2013-09-16] (Intel Corporation)
R2 MSI_SuperCharger; C:\Program Files (x86)\MSI\SUPER CHARGER\ChargeService.exe [162800 2014-02-21] (MSI)
R2 MSI_Trigger_Service; C:\Program Files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe [30240 2013-09-26] (MICRO-STAR INTERNATIONAL CO., LTD.)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1706312 2015-01-16] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [21833544 2015-01-16] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [1910640 2015-03-02] (Electronic Arts)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76152 2014-10-19] ()
R2 Unchecky; C:\Program Files (x86)\Unchecky\bin\Unchecky_svc.exe [161744 2015-03-15] (RaMMicHaeL)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2014-07-10] (Microsoft Corporation)
S2 IHProtect Service; C:\Program Files (x86)\XTab\ProtectService.exe [X]
 
==================== Drivers (Whitelisted) ====================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-09-28] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-09-28] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-09-28] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-09-28] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1041168 2014-11-22] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [427360 2014-09-28] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [92008 2014-09-28] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [224896 2014-09-28] ()
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [99288 2013-09-16] (Intel Corporation)
R3 NTIOLib_1_0_3; C:\Program Files (x86)\MSI\SUPER CHARGER\NTIOLib_X64.sys [13368 2012-10-25] (MSI)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19784 2015-01-16] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [38032 2014-11-22] (NVIDIA Corporation)
 
==================== NetSvcs (Whitelisted) ===================
 
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
 
 
==================== One Month Created Files and Folders ========
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2015-03-15 12:57 - 2015-03-15 12:59 - 00012778 _____ () C:\Users\mrbloodcrew\Downloads\FRST.txt
2015-03-15 12:56 - 2015-03-15 12:56 - 00001033 _____ () C:\Users\Public\Desktop\Unchecky.lnk
2015-03-15 12:56 - 2015-03-15 12:56 - 00000000 ____D () C:\ProgramData\Unchecky
2015-03-15 12:56 - 2015-03-15 12:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unchecky
2015-03-15 12:56 - 2015-03-15 12:56 - 00000000 ____D () C:\Program Files (x86)\Unchecky
2015-03-15 12:55 - 2015-03-15 12:55 - 00986472 _____ (RaMMicHaeL) C:\Users\mrbloodcrew\Downloads\unchecky_setup.exe
2015-03-15 12:55 - 2015-03-15 12:55 - 00005238 _____ () C:\Users\mrbloodcrew\Desktop\sc-cleaner.txt
2015-03-15 12:54 - 2015-03-15 12:54 - 00005238 _____ () C:\sc-cleaner.txt
2015-03-15 12:53 - 2015-03-15 12:53 - 00441592 _____ (Bleeping Computer, LLC) C:\Users\mrbloodcrew\Downloads\sc-cleaner.exe
2015-03-11 16:58 - 2015-02-05 18:57 - 00621384 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2015-03-11 16:57 - 2015-02-05 22:01 - 32106640 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2015-03-11 16:57 - 2015-02-05 22:01 - 25460880 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2015-03-11 16:57 - 2015-02-05 22:01 - 24768144 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2015-03-11 16:57 - 2015-02-05 22:01 - 20466496 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2015-03-11 16:57 - 2015-02-05 22:01 - 17253848 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2015-03-11 16:57 - 2015-02-05 22:01 - 13294528 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2015-03-11 16:57 - 2015-02-05 22:01 - 13208200 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2015-03-11 16:57 - 2015-02-05 22:01 - 10773704 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2015-03-11 16:57 - 2015-02-05 22:01 - 10713256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2015-03-11 16:57 - 2015-02-05 22:01 - 10284872 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2015-03-11 16:57 - 2015-02-05 22:01 - 03610768 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2015-03-11 16:57 - 2015-02-05 22:01 - 03247248 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2015-03-11 16:57 - 2015-02-05 22:01 - 01895240 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6434752.dll
2015-03-11 16:57 - 2015-02-05 22:01 - 01557648 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6434752.dll
2015-03-11 16:57 - 2015-02-05 22:01 - 01540240 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2015-03-11 16:57 - 2015-02-05 22:01 - 00995248 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2015-03-11 16:57 - 2015-02-05 22:01 - 00969872 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2015-03-11 16:57 - 2015-02-05 22:01 - 00943760 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2015-03-11 16:57 - 2015-02-05 22:01 - 00929936 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2015-03-11 16:57 - 2015-02-05 22:01 - 00908104 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2015-03-11 16:57 - 2015-02-05 22:01 - 00877816 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2015-03-11 16:57 - 2015-02-05 22:01 - 00496272 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2015-03-11 16:57 - 2015-02-05 22:01 - 00399504 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2015-03-11 16:57 - 2015-02-05 22:01 - 00390472 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2015-03-11 16:57 - 2015-02-05 22:01 - 00353224 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2015-03-11 16:57 - 2015-02-05 22:01 - 00345744 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2015-03-11 16:57 - 2015-02-05 22:01 - 00305136 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2015-03-11 16:57 - 2015-02-05 22:01 - 00177624 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2015-03-11 16:57 - 2015-02-05 22:01 - 00164752 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2015-03-11 14:49 - 2015-03-15 12:57 - 00000000 ____D () C:\FRST
2015-03-11 14:48 - 2015-03-11 14:49 - 02095616 _____ (Farbar) C:\Users\mrbloodcrew\Downloads\FRST64.exe
2015-03-11 14:36 - 2015-02-13 06:26 - 12875264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2015-03-11 14:36 - 2015-02-13 06:22 - 14177280 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-03-11 14:35 - 2015-03-06 06:38 - 00155576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-03-11 14:35 - 2015-03-06 06:38 - 00095672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-03-11 14:35 - 2015-03-06 06:33 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-03-11 14:35 - 2015-03-06 06:33 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-03-11 14:35 - 2015-03-06 06:33 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-03-11 14:35 - 2015-03-06 06:33 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-03-11 14:35 - 2015-03-06 06:32 - 01464832 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-03-11 14:35 - 2015-03-06 06:32 - 00729600 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-03-11 14:35 - 2015-03-06 06:32 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2015-03-11 14:35 - 2015-03-06 06:32 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-03-11 14:35 - 2015-03-06 06:32 - 00315904 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-03-11 14:35 - 2015-03-06 06:32 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-03-11 14:35 - 2015-03-06 06:32 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-03-11 14:35 - 2015-03-06 06:32 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-03-11 14:35 - 2015-03-06 06:32 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-03-11 14:35 - 2015-03-06 06:32 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-03-11 14:35 - 2015-03-06 06:29 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-03-11 14:35 - 2015-03-06 06:29 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-03-11 14:35 - 2015-03-06 06:27 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-03-11 14:35 - 2015-03-06 06:12 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-03-11 14:35 - 2015-03-06 06:12 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-03-11 14:35 - 2015-03-06 06:11 - 00551424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-03-11 14:35 - 2015-03-06 06:11 - 00342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2015-03-11 14:35 - 2015-03-06 06:11 - 00260096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-03-11 14:35 - 2015-03-06 06:11 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-03-11 14:35 - 2015-03-06 06:11 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-03-11 14:35 - 2015-03-06 06:11 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2015-03-11 14:35 - 2015-03-06 06:11 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2015-03-11 14:35 - 2015-03-06 06:11 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-03-11 14:35 - 2015-03-06 06:10 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-03-11 14:35 - 2015-03-06 06:09 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2015-03-11 14:35 - 2015-03-06 06:08 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-03-11 14:35 - 2015-03-06 06:07 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-03-11 14:35 - 2015-01-31 00:58 - 00459344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2015-03-11 14:35 - 2015-01-17 03:48 - 01067520 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2015-03-11 14:35 - 2015-01-17 03:30 - 00828928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2015-03-11 14:34 - 2015-02-20 05:41 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2015-03-11 14:34 - 2015-02-20 05:40 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2015-03-11 14:34 - 2015-02-20 05:40 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-03-11 14:34 - 2015-02-20 05:40 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2015-03-11 14:34 - 2015-02-20 05:13 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2015-03-11 14:34 - 2015-02-20 05:13 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2015-03-11 14:34 - 2015-02-20 05:13 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2015-03-11 14:34 - 2015-02-20 05:12 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2015-03-11 14:34 - 2015-02-20 04:29 - 00372224 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-03-11 14:34 - 2015-02-20 04:09 - 00299008 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2015-03-11 14:34 - 2015-02-03 04:31 - 01424896 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2015-03-11 14:34 - 2015-02-03 04:31 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2015-03-11 14:34 - 2015-02-03 04:12 - 01230848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2015-03-11 14:34 - 2015-02-03 04:12 - 00171520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ubpm.dll
2015-03-11 14:33 - 2015-02-03 04:55 - 05553600 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-03-11 14:33 - 2015-02-03 04:55 - 00693176 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2015-03-11 14:33 - 2015-02-03 04:53 - 00617376 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2015-03-11 14:33 - 2015-02-03 04:51 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-03-11 14:33 - 2015-02-03 04:51 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2015-03-11 14:33 - 2015-02-03 04:51 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-03-11 14:33 - 2015-02-03 04:50 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-03-11 14:33 - 2015-02-03 04:50 - 00148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2015-03-11 14:33 - 2015-02-03 04:50 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-03-11 14:33 - 2015-02-03 04:50 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2015-03-11 14:33 - 2015-02-03 04:50 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-03-11 14:33 - 2015-02-03 04:50 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2015-03-11 14:33 - 2015-02-03 04:50 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2015-03-11 14:33 - 2015-02-03 04:44 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-03-11 14:33 - 2015-02-03 04:38 - 03977664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-03-11 14:33 - 2015-02-03 04:38 - 03921848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-03-11 14:33 - 2015-02-03 04:34 - 00094656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2015-03-11 14:33 - 2015-02-03 04:32 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-03-11 14:33 - 2015-02-03 04:31 - 04121600 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2015-03-11 14:33 - 2015-02-03 04:31 - 01574400 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2015-03-11 14:33 - 2015-02-03 04:31 - 00782848 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll
2015-03-11 14:33 - 2015-02-03 04:31 - 00641024 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll
2015-03-11 14:33 - 2015-02-03 04:31 - 00500224 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2015-03-11 14:33 - 2015-02-03 04:31 - 00432128 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2015-03-11 14:33 - 2015-02-03 04:31 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2015-03-11 14:33 - 2015-02-03 04:31 - 00325632 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll
2015-03-11 14:33 - 2015-02-03 04:31 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2015-03-11 14:33 - 2015-02-03 04:31 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2015-03-11 14:33 - 2015-02-03 04:31 - 00188416 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2015-03-11 14:33 - 2015-02-03 04:31 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2015-03-11 14:33 - 2015-02-03 04:31 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll
2015-03-11 14:33 - 2015-02-03 04:31 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll
2015-03-11 14:33 - 2015-02-03 04:30 - 01480192 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2015-03-11 14:33 - 2015-02-03 04:30 - 01202176 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll
2015-03-11 14:33 - 2015-02-03 04:30 - 01069056 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2015-03-11 14:33 - 2015-02-03 04:30 - 00842240 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll
2015-03-11 14:33 - 2015-02-03 04:30 - 00680960 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2015-03-11 14:33 - 2015-02-03 04:30 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2015-03-11 14:33 - 2015-02-03 04:30 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll
2015-03-11 14:33 - 2015-02-03 04:30 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2015-03-11 14:33 - 2015-02-03 04:30 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2015-03-11 14:33 - 2015-02-03 04:30 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2015-03-11 14:33 - 2015-02-03 04:30 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2015-03-11 14:33 - 2015-02-03 04:30 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2015-03-11 14:33 - 2015-02-03 04:30 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2015-03-11 14:33 - 2015-02-03 04:30 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll
2015-03-11 14:33 - 2015-02-03 04:30 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2015-03-11 14:33 - 2015-02-03 04:30 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2015-03-11 14:33 - 2015-02-03 04:30 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\pcawrk.exe
2015-03-11 14:33 - 2015-02-03 04:30 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe
2015-03-11 14:33 - 2015-02-03 04:29 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll
2015-03-11 14:33 - 2015-02-03 04:28 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2015-03-11 14:33 - 2015-02-03 04:25 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2015-03-11 14:33 - 2015-02-03 04:19 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys
2015-03-11 14:33 - 2015-02-03 04:12 - 03209728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2015-03-11 14:33 - 2015-02-03 04:12 - 01329664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2015-03-11 14:33 - 2015-02-03 04:12 - 01174528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2015-03-11 14:33 - 2015-02-03 04:12 - 01005056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll
2015-03-11 14:33 - 2015-02-03 04:12 - 00988160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmv2clt.dll
2015-03-11 14:33 - 2015-02-03 04:12 - 00744960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\blackbox.dll
2015-03-11 14:33 - 2015-02-03 04:12 - 00617984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmsdk.dll
2015-03-11 14:33 - 2015-02-03 04:12 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2015-03-11 14:33 - 2015-02-03 04:12 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscp.dll
2015-03-11 14:33 - 2015-02-03 04:12 - 00489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2015-03-11 14:33 - 2015-02-03 04:12 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2015-03-11 14:33 - 2015-02-03 04:12 - 00406016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmmgrtn.dll
2015-03-11 14:33 - 2015-02-03 04:12 - 00374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2015-03-11 14:33 - 2015-02-03 04:12 - 00354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2015-03-11 14:33 - 2015-02-03 04:12 - 00265216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msnetobj.dll
2015-03-11 14:33 - 2015-02-03 04:12 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2015-03-11 14:33 - 2015-02-03 04:12 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2015-03-11 14:33 - 2015-02-03 04:12 - 00143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2015-03-11 14:33 - 2015-02-03 04:12 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2015-03-11 14:33 - 2015-02-03 04:12 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2015-03-11 14:33 - 2015-02-03 04:12 - 00081408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsp.dll
2015-03-11 14:33 - 2015-02-03 04:11 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
2015-03-11 14:33 - 2015-02-03 04:11 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
2015-03-11 14:33 - 2015-02-03 04:09 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
2015-03-11 14:33 - 2015-02-03 03:35 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2015-03-11 14:32 - 2015-01-31 04:48 - 03179520 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2015-03-11 14:32 - 2015-01-31 04:48 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2015-03-11 14:32 - 2015-01-31 00:56 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2015-03-11 14:12 - 2015-02-26 04:25 - 03204096 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-03-11 14:11 - 2015-02-24 04:15 - 00389800 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-03-11 14:11 - 2015-02-24 03:32 - 00342696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-03-11 14:11 - 2015-02-21 02:16 - 25021440 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-03-11 14:11 - 2015-02-21 01:41 - 12827648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-03-11 14:11 - 2015-02-21 01:27 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-03-11 14:11 - 2015-02-21 01:27 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-03-11 14:11 - 2015-02-21 01:25 - 19720192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-03-11 14:11 - 2015-02-21 00:58 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-03-11 14:11 - 2015-02-21 00:32 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-03-11 14:11 - 2015-02-20 04:06 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-03-11 14:11 - 2015-02-20 04:05 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-03-11 14:11 - 2015-02-20 03:50 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-03-11 14:11 - 2015-02-20 03:49 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-03-11 14:11 - 2015-02-20 03:49 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-03-11 14:11 - 2015-02-20 03:48 - 02886144 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-03-11 14:11 - 2015-02-20 03:47 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-03-11 14:11 - 2015-02-20 03:41 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-03-11 14:11 - 2015-02-20 03:40 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-03-11 14:11 - 2015-02-20 03:36 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-03-11 14:11 - 2015-02-20 03:35 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-03-11 14:11 - 2015-02-20 03:35 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-03-11 14:11 - 2015-02-20 03:34 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-03-11 14:11 - 2015-02-20 03:32 - 06035456 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-03-11 14:11 - 2015-02-20 03:26 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-03-11 14:11 - 2015-02-20 03:22 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-03-11 14:11 - 2015-02-20 03:22 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-03-11 14:11 - 2015-02-20 03:13 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-03-11 14:11 - 2015-02-20 03:09 - 00503296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-03-11 14:11 - 2015-02-20 03:08 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-03-11 14:11 - 2015-02-20 03:08 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-03-11 14:11 - 2015-02-20 03:08 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2015-03-11 14:11 - 2015-02-20 03:06 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-03-11 14:11 - 2015-02-20 03:05 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-03-11 14:11 - 2015-02-20 03:03 - 02278400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-03-11 14:11 - 2015-02-20 03:01 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-03-11 14:11 - 2015-02-20 03:00 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-03-11 14:11 - 2015-02-20 02:58 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-03-11 14:11 - 2015-02-20 02:56 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-03-11 14:11 - 2015-02-20 02:56 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-03-11 14:11 - 2015-02-20 02:49 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-03-11 14:11 - 2015-02-20 02:49 - 00718848 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-03-11 14:11 - 2015-02-20 02:47 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-03-11 14:11 - 2015-02-20 02:46 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-03-11 14:11 - 2015-02-20 02:43 - 14398976 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-03-11 14:11 - 2015-02-20 02:41 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-03-11 14:11 - 2015-02-20 02:37 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-03-11 14:11 - 2015-02-20 02:30 - 04300288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-03-11 14:11 - 2015-02-20 02:28 - 02358784 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-03-11 14:11 - 2015-02-20 02:24 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-03-11 14:11 - 2015-02-20 02:24 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-03-11 14:11 - 2015-02-20 02:23 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2015-03-11 14:11 - 2015-02-20 02:16 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-03-11 14:11 - 2015-02-20 02:03 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-03-11 14:11 - 2015-02-20 02:01 - 01888256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-03-11 14:11 - 2015-02-20 01:57 - 01311232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-03-11 14:11 - 2015-02-20 01:55 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-03-11 14:11 - 2015-02-04 04:16 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2015-03-11 14:11 - 2015-02-04 03:54 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2015-03-10 16:07 - 2015-03-10 16:07 - 00003864 _____ () C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1412019865
2015-03-06 16:00 - 2015-03-06 16:00 - 00007649 _____ () C:\Users\mrbloodcrew\AppData\Local\Resmon.ResmonCfg
2015-03-02 08:48 - 2015-03-02 16:02 - 00000000 ____D () C:\Program Files (x86)\IndepthProc
2015-02-25 22:13 - 2015-01-09 00:44 - 00419936 _____ () C:\Windows\SysWOW64\locale.nls
2015-02-25 22:13 - 2015-01-09 00:43 - 00419936 _____ () C:\Windows\system32\locale.nls
2015-02-25 20:35 - 2015-01-09 04:14 - 00950272 _____ (Microsoft Corporation) C:\Windows\system32\perftrack.dll
2015-02-25 20:35 - 2015-01-09 04:14 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\wdi.dll
2015-02-25 20:35 - 2015-01-09 04:14 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\powertracker.dll
2015-02-25 20:35 - 2015-01-09 03:48 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdi.dll
 
==================== One Month Modified Files and Folders =======
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2015-03-15 12:54 - 2014-09-28 13:00 - 00002199 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2015-03-15 12:52 - 2014-09-28 12:54 - 01789818 _____ () C:\Windows\WindowsUpdate.log
2015-03-15 12:47 - 2014-10-08 09:29 - 00000930 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-03-15 12:45 - 2014-09-30 22:12 - 00000008 __RSH () C:\ProgramData\ntuser.pol
2015-03-15 12:44 - 2014-07-10 23:51 - 00049732 _____ () C:\Windows\setupact.log
2015-03-15 12:42 - 2014-09-28 13:00 - 00001044 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-03-15 12:41 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-03-15 12:40 - 2014-09-28 16:30 - 00000000 ____D () C:\ProgramData\NVIDIA
2015-03-15 12:40 - 2010-11-21 04:47 - 00502724 _____ () C:\Windows\PFRO.log
2015-03-15 12:38 - 2009-07-14 05:45 - 00027248 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-03-15 12:38 - 2009-07-14 05:45 - 00027248 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-03-15 12:31 - 2014-09-28 13:00 - 00001048 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-03-15 12:29 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\GroupPolicy
2015-03-15 11:38 - 2009-07-14 03:34 - 00000505 _____ () C:\Windows\win.ini
2015-03-13 12:29 - 2009-07-14 05:45 - 00288968 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-03-13 12:26 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\Dism
2015-03-13 12:26 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\Dism
2015-03-11 18:31 - 2014-07-10 23:31 - 00000000 ____D () C:\Windows\system32\MRT
2015-03-11 18:29 - 2014-07-10 23:31 - 122905848 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-03-11 16:59 - 2014-10-21 20:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-03-10 16:07 - 2014-09-29 20:44 - 00000000 ____D () C:\Program Files (x86)\Opera
2015-03-05 22:31 - 2014-09-29 09:31 - 00000000 ____D () C:\ProgramData\Origin
2015-03-05 21:29 - 2014-10-19 01:46 - 00348928 _____ () C:\Windows\SysWOW64\PnkBstrB.exe
2015-03-05 21:29 - 2014-09-29 20:30 - 00348928 _____ () C:\Windows\SysWOW64\PnkBstrB.xtr
2015-03-05 21:28 - 2014-09-29 20:29 - 00280904 _____ () C:\Windows\SysWOW64\PnkBstrB.ex0
2015-03-05 14:46 - 2014-09-28 14:45 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2015-03-04 17:12 - 2014-09-28 15:50 - 00000000 ____D () C:\Program Files (x86)\Gry
2015-03-02 18:30 - 2014-09-29 21:46 - 00000000 ____D () C:\Gry download
2015-03-02 18:05 - 2014-09-29 20:53 - 00000000 ____D () C:\Users\mrbloodcrew\AppData\Roaming\uTorrent
2015-03-02 10:27 - 2014-09-29 13:16 - 00000000 ____D () C:\Program Files (x86)\Origin
2015-03-02 08:48 - 2015-02-10 18:41 - 00000000 ____D () C:\ProgramData\21e6ca67000025f7
2015-02-26 07:50 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\tracing
2015-02-24 03:17 - 2010-11-21 04:27 - 00295552 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2015-02-22 16:25 - 2014-10-04 13:22 - 00000000 ____D () C:\Users\mrbloodcrew\AppData\Roaming\Aegisub
2015-02-16 09:19 - 2014-09-30 18:21 - 00000000 ____D () C:\Users\mrbloodcrew\Desktop\YT
2015-02-13 22:00 - 2014-09-28 16:45 - 00000000 ____D () C:\Users\mrbloodcrew\AppData\Roaming\Xfire
2015-02-13 15:20 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
 
==================== Files in the root of some directories =======
 
2015-03-06 16:00 - 2015-03-06 16:00 - 0007649 _____ () C:\Users\mrbloodcrew\AppData\Local\Resmon.ResmonCfg
2014-09-28 12:59 - 2014-09-28 12:59 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
 
==================== Bamital & volsnap Check =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
 
 
LastRegBack: 2015-03-05 19:16
 
==================== End Of Log ============================
MrBlOoDcrew Pomocnik

MrBlOoDcrew

Opublikowano
Pomocnik

MrBlOoDcrew

  • Autor
Opublikowano
Nie wiem zabardzo czy potrzebny cały log czy jakiś jego fragment więc wstawiam cały. A jeszcze mam logi "Addition" i "shortcut"

 

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 11-03-2015

Ran by mrbloodcrew (administrator) on HOME on 11-03-2015 14:52:20

Running from C:\Users\mrbloodcrew\Downloads

Loaded Profiles: mrbloodcrew (Available profiles: mrbloodcrew)

Platform: Windows 7 Professional Service Pack 1 (X64) OS Language: Polski (Polska)

Internet Explorer Version 11 (Default browser: Chrome)

Boot Mode: Normal


 

==================== Processes (Whitelisted) =================

 

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

 

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe

(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe

(XTab system) C:\Program Files (x86)\XTab\ProtectService.exe

(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe

(SearchProtect) C:\Program Files (x86)\XTab\CmdShell.exe

(Microsoft Corporation) C:\Windows\System32\dllhost.exe

(MSI) C:\Program Files (x86)\MSI\SUPER CHARGER\ChargeService.exe

(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe

() C:\Windows\SysWOW64\PnkBstrA.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe

(Palit Microsystems Ltd.) C:\Program Files (x86)\Thunder Master\THPanel.exe

(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe

(XTab system) C:\Program Files (x86)\XTab\HPNotify.exe

(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe

(MSI) C:\Program Files (x86)\MSI\SUPER CHARGER\SUPER CHARGER.exe

(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe

() C:\ProgramData\d2446020-ddff-402b-b064-199d2ce66b2b\maintainer.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

(AVAST Software) C:\Program Files\AVAST Software\Avast\setup\instup.exe

 

 

==================== Registry (Whitelisted) ==================

 

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

 

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7540440 2014-02-11] (Realtek Semiconductor)

HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2531472 2014-12-13] (NVIDIA Corporation)

HKLM\...\Run: [shadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart

HKLM-x32\...\Run: [uSB3MON] => C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292848 2013-04-26] (Intel Corporation)

HKLM-x32\...\Run: [sUPER CHARGER] => C:\Program Files (x86)\MSI\SUPER CHARGER\SUPER CHARGER.exe [1047536 2014-02-21] (MSI)

HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4085896 2014-09-28] (AVAST Software)

HKU\S-1-5-21-1197457787-3615189920-3557798660-1000\...\Run: [THPanel] => C:\Program Files (x86)\Thunder Master\THPanel.exe [2197800 2014-04-15] (Palit Microsystems Ltd.)

HKU\S-1-5-21-1197457787-3615189920-3557798660-1000\...\RunOnce: [uninstall C:\Users\mrbloodcrew\AppData\Local\Microsoft\SkyDrive\16.4.6012.0828\amd64] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\mrbloodcrew\AppData\Local\Microsoft\SkyDrive\16.4.6012.0828\amd64"

ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)

GroupPolicy: Group Policy on Chrome detected <======= ATTENTION

CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

 

==================== Internet (Whitelisted) ====================

 

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

 


HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://isearch.omiga-plus.com/?type=hppp&ts=1423590023&from=ild&uid=ST1000LM024XHN-M101MBB_S30YJ9DF517217




HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://isearch.omiga-plus.com/?type=hppp&ts=1423590023&from=ild&uid=ST1000LM024XHN-M101MBB_S30YJ9DF517217



HKU\S-1-5-21-1197457787-3615189920-3557798660-1000\Software\Microsoft\Internet Explorer\Main,Search Page = http://isearch.omiga-plus.com/web/?type=dspp&ts=1423590023&from=ild&uid=ST1000LM024XHN-M101MBB_S30YJ9DF517217&q={searchTerms}

HKU\S-1-5-21-1197457787-3615189920-3557798660-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://isearch.omiga-plus.com/?type=hppp&ts=1423590023&from=ild&uid=ST1000LM024XHN-M101MBB_S30YJ9DF517217

HKU\S-1-5-21-1197457787-3615189920-3557798660-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://isearch.omiga-plus.com/?type=hppp&ts=1423590023&from=ild&uid=ST1000LM024XHN-M101MBB_S30YJ9DF517217

HKU\S-1-5-21-1197457787-3615189920-3557798660-1000\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://isearch.omiga-plus.com/web/?type=dspp&ts=1423590023&from=ild&uid=ST1000LM024XHN-M101MBB_S30YJ9DF517217&q={searchTerms}



SearchScopes: HKLM-x32 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://isearch.omiga-plus.com/web/?type=dspp&ts=1423590023&from=ild&uid=ST1000LM024XHN-M101MBB_S30YJ9DF517217&q={searchTerms}


SearchScopes: HKU\S-1-5-21-1197457787-3615189920-3557798660-1000 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://isearch.omiga-plus.com/web/?type=dspp&ts=1423590023&from=ild&uid=ST1000LM024XHN-M101MBB_S30YJ9DF517217&q={searchTerms}




SearchScopes: HKU\S-1-5-21-1197457787-3615189920-3557798660-1000 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://isearch.omiga-plus.com/web/?type=dspp&ts=1423590023&from=ild&uid=ST1000LM024XHN-M101MBB_S30YJ9DF517217&q={searchTerms}



BHO: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_31\bin\ssv.dll [2015-01-27] (Oracle Corporation)

BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-09-28] (AVAST Software)

BHO: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-01-27] (Oracle Corporation)

BHO-x32: IETabPage Class -> {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} -> C:\Program Files (x86)\XTab\SupTab.dll [2015-01-16] (Thinknice Co. Limited)

BHO-x32: AdvanceElite 1.0.0.7 -> {3b2cb4c8-72ab-4b25-8fa1-219b36a60bed} -> C:\Program Files (x86)\AdvanceElite\AdvanceEliteBHO.dll [2015-01-27] (AdvanceElite)

BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-09-28] (AVAST Software)

DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} https://fpdownload.macromedia.com/get/shockwave/cabs/flash/swflash.cab

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1

StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe http://isearch.omiga-plus.com/?type=sc&ts=1423590013&from=ild&uid=ST1000LM024XHN-M101MBB_S30YJ9DF517217

 

FireFox:

========

FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_305.dll [2015-02-04] ()

FF Plugin: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll [2014-12-03] (EA Digital Illusions CE AB)

FF Plugin: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [2015-01-27] (Oracle Corporation)

FF Plugin: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-01-27] (Oracle Corporation)

FF Plugin: @microsoft.com/GENUINE -> disabled No File

FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll [2015-02-04] ()

FF Plugin-x32: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll [2014-12-03] (EA Digital Illusions CE AB)

FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2014-09-11] (Foxit Corporation)

FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-16] (Intel Corporation)

FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-16] (Intel Corporation)

FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File

FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2014-12-13] (NVIDIA Corporation)

FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2014-12-13] (NVIDIA Corporation)

FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-06] (Google Inc.)

FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-06] (Google Inc.)

FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files\AVAST Software\Avast\WebRep\FF

FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-09-28]

 

Chrome: 

=======

CHR HomePage: Default -> hxxp://isearch.omiga-plus.com/?type=hppp&ts=1423590023&from=ild&uid=ST1000LM024XHN-M101MBB_S30YJ9DF517217

CHR RestoreOnStartup: Default -> "hxxp://search.yahoo.com/?fr=hp-ddc-bd&type=616_pr__alt__ddc_dsssyc_bd_com"

CHR StartupUrls: Default -> "hxxp://search.yahoo.com/?fr=hp-ddc-bd&type=616_pr__alt__ddc_dsssyc_bd_com"

CHR DefaultSearchKeyword: Default -> yahoo.com


CHR DefaultSuggestURL: Default -> 

CHR Profile: C:\Users\mrbloodcrew\AppData\Local\Google\Chrome\User Data\Default

CHR Extension: (Google Slides) - C:\Users\mrbloodcrew\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-09-28]

CHR Extension: (Google Docs) - C:\Users\mrbloodcrew\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-09-28]

CHR Extension: (Google Drive) - C:\Users\mrbloodcrew\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-09-28]

CHR Extension: (YouTube) - C:\Users\mrbloodcrew\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-09-28]

CHR Extension: (Google Search) - C:\Users\mrbloodcrew\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-09-28]

CHR Extension: (Google Sheets) - C:\Users\mrbloodcrew\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-09-28]

CHR Extension: (Avast Online Security) - C:\Users\mrbloodcrew\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-09-28]

CHR Extension: (AdvanceElite) - C:\Users\mrbloodcrew\AppData\Local\Google\Chrome\User Data\Default\Extensions\ikelkcdeenapiakgpgaeffghpjojokin [2014-11-06]

CHR Extension: (Google Wallet) - C:\Users\mrbloodcrew\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-09-28]

CHR Extension: (Adblock Pro) - C:\Users\mrbloodcrew\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocifcklkibdehekfnmflempfgjhbedch [2014-10-01]

CHR Extension: (Gmail) - C:\Users\mrbloodcrew\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-09-28]

CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-09-28]

 

==================== Services (Whitelisted) =================

 

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

 

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-09-28] (AVAST Software)

R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1148560 2014-12-13] (NVIDIA Corporation)

R2 IHProtect Service; C:\Program Files (x86)\XTab\ProtectService.exe [158896 2015-01-16] (XTab system)

R2 Intel® Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel® Corporation) [File not signed]

S3 Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel® Corporation)

R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [169432 2013-09-16] (Intel Corporation)

R2 MaintainerSvc1.20.7247763; C:\ProgramData\d2446020-ddff-402b-b064-199d2ce66b2b\maintainer.exe [123624 2015-03-11] ()

R2 MSI_SuperCharger; C:\Program Files (x86)\MSI\SUPER CHARGER\ChargeService.exe [162800 2014-02-21] (MSI)

S2 MSI_Trigger_Service; C:\Program Files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe [30240 2013-09-26] (MICRO-STAR INTERNATIONAL CO., LTD.)

R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1701520 2014-12-13] (NVIDIA Corporation)

R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [19823248 2014-12-13] (NVIDIA Corporation)

S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [1910640 2015-03-02] (Electronic Arts)

R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76152 2014-10-19] ()

S3 Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [833728 2014-10-21] (Valve Corporation) [File not signed]

S2 Update AdvanceElite; C:\Program Files (x86)\AdvanceElite\updateAdvanceElite.exe [409832 2015-03-10] ()

S2 Util AdvanceElite; C:\Program Files (x86)\AdvanceElite\bin\utilAdvanceElite.exe [409832 2015-03-10] ()

R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2014-07-10] (Microsoft Corporation)

 

==================== Drivers (Whitelisted) ====================

 

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

 

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-09-28] ()

R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-09-28] (AVAST Software)

R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-09-28] (AVAST Software)

R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-09-28] ()

R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1041168 2014-11-22] (AVAST Software)

R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [427360 2014-09-28] (AVAST Software)

R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [92008 2014-09-28] (AVAST Software)

R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [224896 2014-09-28] ()

R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [99288 2013-09-16] (Intel Corporation)

R3 NTIOLib_1_0_3; C:\Program Files (x86)\MSI\SUPER CHARGER\NTIOLib_X64.sys [13368 2012-10-25] (MSI)

R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2014-12-13] (NVIDIA Corporation)

R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [38032 2014-11-22] (NVIDIA Corporation)

R1 {00aec75d-051f-41a9-9837-e94ac4f56303}Gw64; C:\Windows\System32\drivers\{00aec75d-051f-41a9-9837-e94ac4f56303}Gw64.sys [48784 2014-10-15] (StdLib)

R1 {02bbe9df-d3b0-43f4-8dcb-e24500d3308f}Gw64; C:\Windows\System32\drivers\{02bbe9df-d3b0-43f4-8dcb-e24500d3308f}Gw64.sys [48784 2014-10-17] (StdLib)

R1 {10e3e2da-8f7b-42cc-9f00-90007ce494b8}Gw64; C:\Windows\System32\drivers\{10e3e2da-8f7b-42cc-9f00-90007ce494b8}Gw64.sys [48832 2014-11-06] (StdLib)

R1 {1de2a23f-1c23-4ea1-8ef4-79bc5c5cea78}Gw64; C:\Windows\System32\drivers\{1de2a23f-1c23-4ea1-8ef4-79bc5c5cea78}Gw64.sys [48784 2014-10-13] (StdLib)

R1 {255a824a-3cde-4dee-9785-284605606456}Gw64; C:\Windows\System32\drivers\{255a824a-3cde-4dee-9785-284605606456}Gw64.sys [48832 2014-10-28] (StdLib)

R1 {32c6b9d7-6b2c-4b03-9178-01abbf9c7194}Gw64; C:\Windows\System32\drivers\{32c6b9d7-6b2c-4b03-9178-01abbf9c7194}Gw64.sys [48784 2014-10-11] (StdLib)

R1 {336e37ae-3235-4f16-98ec-8cdf679be7d2}Gw64; C:\Windows\System32\drivers\{336e37ae-3235-4f16-98ec-8cdf679be7d2}Gw64.sys [48784 2014-10-11] (StdLib)

R1 {34a9de73-8119-4710-8938-8d3ebf75d78f}Gw64; C:\Windows\System32\drivers\{34a9de73-8119-4710-8938-8d3ebf75d78f}Gw64.sys [48784 2014-10-18] (StdLib)

R1 {3b808196-ff63-49ee-b33b-efdf51723eca}Gw64; C:\Windows\System32\drivers\{3b808196-ff63-49ee-b33b-efdf51723eca}Gw64.sys [48784 2014-10-13] (StdLib)

R1 {3cac76e7-8310-45ea-8277-96d048a78c60}Gw64; C:\Windows\System32\drivers\{3cac76e7-8310-45ea-8277-96d048a78c60}Gw64.sys [48784 2014-11-27] (StdLib)

R1 {3fa44d1f-c300-4673-a8c1-5ba05468b4bd}Gw64; C:\Windows\System32\drivers\{3fa44d1f-c300-4673-a8c1-5ba05468b4bd}Gw64.sys [48784 2014-10-17] (StdLib)

R1 {4096aedf-3f28-4c8e-aebe-00255138fa8a}Gw64; C:\Windows\System32\drivers\{4096aedf-3f28-4c8e-aebe-00255138fa8a}Gw64.sys [48784 2014-10-14] (StdLib)

R1 {4530e639-76ab-4435-889d-a5e81ae090a4}Gw64; C:\Windows\System32\drivers\{4530e639-76ab-4435-889d-a5e81ae090a4}Gw64.sys [48784 2014-10-20] (StdLib)

R1 {51b9c91c-8e38-40ae-80de-58a590512b6b}Gw64; C:\Windows\System32\drivers\{51b9c91c-8e38-40ae-80de-58a590512b6b}Gw64.sys [48832 2014-11-10] (StdLib)

R1 {5d78e0ee-ca60-46a4-9492-4f24429cc925}Gw64; C:\Windows\System32\drivers\{5d78e0ee-ca60-46a4-9492-4f24429cc925}Gw64.sys [48784 2014-10-16] (StdLib)

R1 {67f29abb-07b3-41f5-94cd-f819d7c1fc76}Gw64; C:\Windows\System32\drivers\{67f29abb-07b3-41f5-94cd-f819d7c1fc76}Gw64.sys [48784 2014-10-20] (StdLib)

R1 {6b89253f-7097-40c7-9ead-2d5b1ceb02e2}w64; C:\Windows\System32\drivers\{6b89253f-7097-40c7-9ead-2d5b1ceb02e2}w64.sys [48776 2015-02-09] (StdLib)

R1 {6c84eb28-66c4-4e3d-8a5a-46ab94f0575a}Gw64; C:\Windows\System32\drivers\{6c84eb28-66c4-4e3d-8a5a-46ab94f0575a}Gw64.sys [48784 2014-10-19] (StdLib)

R1 {733fb217-c049-41ba-9504-3f2045e61977}Gw64; C:\Windows\System32\drivers\{733fb217-c049-41ba-9504-3f2045e61977}Gw64.sys [48784 2014-10-21] (StdLib)

R1 {84e24724-32a5-4ef8-b981-cc669543b4a4}Gw64; C:\Windows\System32\drivers\{84e24724-32a5-4ef8-b981-cc669543b4a4}Gw64.sys [48784 2014-10-11] (StdLib)

R1 {949aba83-1d7f-4d0b-b0ba-203450825231}Gw64; C:\Windows\System32\drivers\{949aba83-1d7f-4d0b-b0ba-203450825231}Gw64.sys [48784 2014-10-15] (StdLib)

R1 {94c4b27a-8cb1-4214-9d76-87c59a8cf657}Gw64; C:\Windows\System32\drivers\{94c4b27a-8cb1-4214-9d76-87c59a8cf657}Gw64.sys [48784 2014-10-10] (StdLib)

R1 {94d62e35-4b43-494c-bf52-ba5935df36ef}Gw64; C:\Windows\System32\drivers\{94d62e35-4b43-494c-bf52-ba5935df36ef}Gw64.sys [48784 2014-12-02] (StdLib)

R1 {94d62e35-4b43-494c-bf52-ba5935df36ef}w64; C:\Windows\System32\drivers\{94d62e35-4b43-494c-bf52-ba5935df36ef}w64.sys [48784 2014-12-10] (StdLib)

R1 {b0c7827f-c845-429a-833b-c2a798fc4fc3}Gw64; C:\Windows\System32\drivers\{b0c7827f-c845-429a-833b-c2a798fc4fc3}Gw64.sys [48784 2014-10-25] (StdLib)

R1 {bb7b7a60-f574-47c2-8a0b-4c56f2da9802}Gw64; C:\Windows\System32\drivers\{bb7b7a60-f574-47c2-8a0b-4c56f2da9802}Gw64.sys [48784 2014-09-29] (StdLib)

R1 {c61f6471-95aa-405a-be3a-f3b2dc07fdfa}Gw64; C:\Windows\System32\drivers\{c61f6471-95aa-405a-be3a-f3b2dc07fdfa}Gw64.sys [48784 2014-10-10] (StdLib)

R1 {d428f5a9-a362-4938-a8b7-f0abd920078b}Gw64; C:\Windows\System32\drivers\{d428f5a9-a362-4938-a8b7-f0abd920078b}Gw64.sys [48784 2014-12-01] (StdLib)

R1 {d997fcb4-42b4-4f84-a147-2e498567c954}Gw64; C:\Windows\System32\drivers\{d997fcb4-42b4-4f84-a147-2e498567c954}Gw64.sys [48784 2014-11-28] (StdLib)

R1 {dbec4a38-79aa-4d48-ac2b-d4467b1ded12}Gw64; C:\Windows\System32\drivers\{dbec4a38-79aa-4d48-ac2b-d4467b1ded12}Gw64.sys [48784 2014-11-29] (StdLib)

R1 {dc592624-f532-4311-9fc7-6920126fc404}Gw64; C:\Windows\System32\drivers\{dc592624-f532-4311-9fc7-6920126fc404}Gw64.sys [48784 2014-10-22] (StdLib)

R1 {e9629596-2cbd-4eea-9329-7470e8b0fdae}Gw64; C:\Windows\System32\drivers\{e9629596-2cbd-4eea-9329-7470e8b0fdae}Gw64.sys [48784 2014-10-12] (StdLib)

R1 {f5d136d7-adc2-4c84-85b2-e564334ab0bc}Gw64; C:\Windows\System32\drivers\{f5d136d7-adc2-4c84-85b2-e564334ab0bc}Gw64.sys [48784 2014-10-22] (StdLib)

R1 {f63e4e62-e47d-4415-9bb4-c9b1dfe161b9}Gw64; C:\Windows\System32\drivers\{f63e4e62-e47d-4415-9bb4-c9b1dfe161b9}Gw64.sys [48832 2014-11-04] (StdLib)

R1 {f9595960-dc6f-49f8-83db-4f3a4c9b714d}Gw64; C:\Windows\System32\drivers\{f9595960-dc6f-49f8-83db-4f3a4c9b714d}Gw64.sys [48784 2014-11-30] (StdLib)

R1 {fc7329ef-e953-454c-8e78-ed2cf0acb2ef}Gw64; C:\Windows\System32\drivers\{fc7329ef-e953-454c-8e78-ed2cf0acb2ef}Gw64.sys [48832 2014-10-31] (StdLib)

R1 {fce396ae-d8d1-4789-946e-2106fbe4292b}Gw64; C:\Windows\System32\drivers\{fce396ae-d8d1-4789-946e-2106fbe4292b}Gw64.sys [48784 2014-10-18] (StdLib)

R1 {fd600559-a688-4110-b9b9-0f1a9beae8ae}Gw64; C:\Windows\System32\drivers\{fd600559-a688-4110-b9b9-0f1a9beae8ae}Gw64.sys [48784 2014-10-12] (StdLib)

S3 MSICDSetup; \??\D:\CDriver64.sys [X]

S3 NTIOLib_1_0_C; \??\D:\NTIOLib_X64.sys [X]

 

==================== NetSvcs (Whitelisted) ===================

 

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

 

 

==================== One Month Created Files and Folders ========

 

(If an entry is included in the fixlist, the file\folder will be moved.)

 

2015-03-11 14:52 - 2015-03-11 14:53 - 00025940 _____ () C:\Users\mrbloodcrew\Downloads\FRST.txt

2015-03-11 14:49 - 2015-03-11 14:52 - 00000000 ____D () C:\FRST

2015-03-11 14:48 - 2015-03-11 14:49 - 02095616 _____ (Farbar) C:\Users\mrbloodcrew\Downloads\FRST64.exe

2015-03-10 16:07 - 2015-03-10 16:07 - 00003864 _____ () C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1412019865

2015-03-06 16:00 - 2015-03-06 16:00 - 00007649 _____ () C:\Users\mrbloodcrew\AppData\Local\Resmon.ResmonCfg

2015-03-02 08:48 - 2015-03-02 16:02 - 00000000 ____D () C:\Program Files (x86)\IndepthProc

2015-02-25 22:13 - 2015-01-09 00:44 - 00419936 _____ () C:\Windows\SysWOW64\locale.nls

2015-02-25 22:13 - 2015-01-09 00:43 - 00419936 _____ () C:\Windows\system32\locale.nls

2015-02-25 20:35 - 2015-01-09 04:14 - 00950272 _____ (Microsoft Corporation) C:\Windows\system32\perftrack.dll

2015-02-25 20:35 - 2015-01-09 04:14 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\wdi.dll

2015-02-25 20:35 - 2015-01-09 04:14 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\powertracker.dll

2015-02-25 20:35 - 2015-01-09 03:48 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdi.dll

2015-02-12 16:24 - 2015-01-23 05:42 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll

2015-02-12 16:24 - 2015-01-23 05:41 - 06041600 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll

2015-02-12 16:24 - 2015-01-23 04:43 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll

2015-02-12 16:24 - 2015-01-23 04:17 - 04300800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll

2015-02-11 14:07 - 2015-02-04 04:16 - 00894976 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll

2015-02-11 14:07 - 2015-02-04 04:16 - 00762368 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll

2015-02-11 14:07 - 2015-02-04 04:16 - 00609280 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll

2015-02-11 14:07 - 2015-02-04 04:16 - 00414720 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll

2015-02-11 14:07 - 2015-02-04 04:16 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll

2015-02-11 14:07 - 2015-02-04 04:16 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll

2015-02-11 14:07 - 2015-02-04 04:13 - 01098752 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll

2015-02-11 14:07 - 2015-01-28 00:36 - 01239720 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe

2015-02-11 14:07 - 2015-01-14 06:47 - 00389808 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll

2015-02-11 14:07 - 2015-01-14 06:09 - 00342712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll

2015-02-11 14:07 - 2015-01-12 04:09 - 25056256 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll

2015-02-11 14:07 - 2015-01-12 04:05 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb

2015-02-11 14:07 - 2015-01-12 04:05 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll

2015-02-11 14:07 - 2015-01-12 03:49 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll

2015-02-11 14:07 - 2015-01-12 03:48 - 02885632 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll

2015-02-11 14:07 - 2015-01-12 03:48 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll

2015-02-11 14:07 - 2015-01-12 03:48 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll

2015-02-11 14:07 - 2015-01-12 03:47 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll

2015-02-11 14:07 - 2015-01-12 03:40 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll

2015-02-11 14:07 - 2015-01-12 03:39 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll

2015-02-11 14:07 - 2015-01-12 03:36 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll

2015-02-11 14:07 - 2015-01-12 03:34 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe

2015-02-11 14:07 - 2015-01-12 03:34 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe

2015-02-11 14:07 - 2015-01-12 03:25 - 19740160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll

2015-02-11 14:07 - 2015-01-12 03:25 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe

2015-02-11 14:07 - 2015-01-12 03:21 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb

2015-02-11 14:07 - 2015-01-12 03:21 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll

2015-02-11 14:07 - 2015-01-12 03:13 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll

2015-02-11 14:07 - 2015-01-12 03:08 - 00503296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll

2015-02-11 14:07 - 2015-01-12 03:08 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll

2015-02-11 14:07 - 2015-01-12 03:07 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll

2015-02-11 14:07 - 2015-01-12 03:07 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll

2015-02-11 14:07 - 2015-01-12 03:07 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll

2015-02-11 14:07 - 2015-01-12 03:05 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll

2015-02-11 14:07 - 2015-01-12 03:04 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll

2015-02-11 14:07 - 2015-01-12 03:02 - 02277888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll

2015-02-11 14:07 - 2015-01-12 03:00 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll

2015-02-11 14:07 - 2015-01-12 02:59 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll

2015-02-11 14:07 - 2015-01-12 02:57 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll

2015-02-11 14:07 - 2015-01-12 02:55 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe

2015-02-11 14:07 - 2015-01-12 02:48 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll

2015-02-11 14:07 - 2015-01-12 02:48 - 00718848 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe

2015-02-11 14:07 - 2015-01-12 02:46 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl

2015-02-11 14:07 - 2015-01-12 02:46 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll

2015-02-11 14:07 - 2015-01-12 02:45 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll

2015-02-11 14:07 - 2015-01-12 02:43 - 14401024 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll

2015-02-11 14:07 - 2015-01-12 02:40 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll

2015-02-11 14:07 - 2015-01-12 02:36 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll

2015-02-11 14:07 - 2015-01-12 02:35 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll

2015-02-11 14:07 - 2015-01-12 02:33 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll

2015-02-11 14:07 - 2015-01-12 02:27 - 02358272 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll

2015-02-11 14:07 - 2015-01-12 02:23 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl

2015-02-11 14:07 - 2015-01-12 02:23 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll

2015-02-11 14:07 - 2015-01-12 02:22 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll

2015-02-11 14:07 - 2015-01-12 02:14 - 12829184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll

2015-02-11 14:07 - 2015-01-12 02:14 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll

2015-02-11 14:07 - 2015-01-12 02:02 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll

2015-02-11 14:07 - 2015-01-12 02:00 - 01888256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll

2015-02-11 14:07 - 2015-01-12 01:56 - 01307136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll

2015-02-11 14:07 - 2015-01-12 01:55 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll

2015-02-11 14:06 - 2015-01-15 09:25 - 01464832 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll

2015-02-11 14:06 - 2015-01-15 09:25 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll

2015-02-11 14:06 - 2015-01-15 09:25 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll

2015-02-11 14:06 - 2015-01-15 09:25 - 00308224 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll

2015-02-11 14:06 - 2015-01-15 09:09 - 00342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll

2015-02-11 14:06 - 2015-01-15 09:09 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll

2015-02-11 14:06 - 2015-01-15 09:09 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll

2015-02-11 14:06 - 2015-01-15 09:09 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll

2015-02-11 14:06 - 2015-01-15 09:05 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll

2015-02-11 14:06 - 2015-01-15 05:22 - 00458832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys

2015-02-11 14:06 - 2015-01-13 04:10 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll

2015-02-11 14:06 - 2015-01-13 03:49 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll

2015-02-11 14:06 - 2014-12-12 06:31 - 01480192 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll

2015-02-11 14:06 - 2014-12-12 06:07 - 01174528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll

2015-02-11 14:06 - 2014-11-26 04:53 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll

2015-02-11 14:06 - 2014-11-26 04:32 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll

2015-02-11 14:06 - 2014-07-07 03:07 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll

2015-02-11 14:06 - 2014-07-07 03:06 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll

2015-02-11 14:06 - 2014-07-07 02:40 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll

2015-02-11 14:06 - 2014-07-07 02:40 - 00143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll

2015-02-11 14:05 - 2015-01-14 07:34 - 05553080 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe

2015-02-11 14:05 - 2015-01-14 07:25 - 03977656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe

2015-02-11 14:05 - 2015-01-14 07:25 - 03921848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe

2015-02-11 14:05 - 2015-01-09 03:03 - 03201536 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys

2015-02-11 14:05 - 2014-12-08 04:09 - 00406528 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll

2015-02-11 14:05 - 2014-12-08 03:46 - 00308224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scesrv.dll

2015-02-10 22:43 - 2015-02-10 22:43 - 00000000 ____D () C:\Program Files (x86)\Free Codec Pack

2015-02-10 22:43 - 2015-02-10 22:43 - 00000000 ____D () C:\Program Files (x86)\DVDVideoSoft

2015-02-10 18:44 - 2015-02-10 18:44 - 00000000 ____D () C:\Windows\system32\appmgmt

2015-02-10 18:41 - 2015-03-02 08:48 - 00000000 ____D () C:\ProgramData\21e6ca67000025f7

2015-02-10 18:41 - 2015-02-10 18:41 - 00000000 ____D () C:\Users\mrbloodcrew\Documents\Optimizer Pro

2015-02-10 18:40 - 2015-03-01 15:10 - 00000000 ____D () C:\ProgramData\WindowsMangerProtect

2015-02-10 18:40 - 2015-02-10 18:40 - 00000000 ____D () C:\ProgramData\IHProtectUpDate

2015-02-10 18:40 - 2015-02-10 18:40 - 00000000 ____D () C:\ProgramData\{bdf37d3c-6011-3951-bdf3-37d3c601f4f1}

2015-02-10 18:40 - 2015-02-10 18:40 - 00000000 ____D () C:\Program Files (x86)\XTab

2015-02-10 18:39 - 2015-02-10 18:39 - 00000000 ____D () C:\Users\mrbloodcrew\AppData\Local\Cool_Mirage

2015-02-10 13:57 - 2015-02-09 17:30 - 00048776 _____ (StdLib) C:\Windows\system32\Drivers\{6b89253f-7097-40c7-9ead-2d5b1ceb02e2}w64.sys

 

==================== One Month Modified Files and Folders =======

 

(If an entry is included in the fixlist, the file\folder will be moved.)

 

2015-03-11 14:47 - 2014-10-08 09:29 - 00000930 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job

2015-03-11 14:37 - 2014-09-28 13:00 - 00002407 _____ () C:\Users\Public\Desktop\Google Chrome.lnk

2015-03-11 14:37 - 2014-09-28 13:00 - 00001048 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

2015-03-11 14:36 - 2014-09-28 12:54 - 01073450 _____ () C:\Windows\WindowsUpdate.log

2015-03-11 13:50 - 2014-10-28 12:39 - 00000000 ____D () C:\ProgramData\d2446020-ddff-402b-b064-199d2ce66b2b

2015-03-11 13:49 - 2014-07-10 23:51 - 00048574 _____ () C:\Windows\setupact.log

2015-03-11 13:48 - 2014-09-28 16:30 - 00000000 ____D () C:\ProgramData\NVIDIA

2015-03-11 13:48 - 2014-09-28 13:00 - 00001044 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job

2015-03-11 13:48 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT

2015-03-10 21:01 - 2014-09-29 20:44 - 00000000 ____D () C:\Program Files (x86)\AdvanceElite

2015-03-10 20:01 - 2009-07-14 03:34 - 00000505 _____ () C:\Windows\win.ini

2015-03-10 16:07 - 2014-09-29 20:44 - 00000000 ____D () C:\Program Files (x86)\Opera

2015-03-07 15:06 - 2009-07-14 05:45 - 00027248 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0

2015-03-07 15:06 - 2009-07-14 05:45 - 00027248 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0

2015-03-05 22:31 - 2014-09-29 09:31 - 00000000 ____D () C:\ProgramData\Origin

2015-03-05 21:29 - 2014-10-19 01:46 - 00348928 _____ () C:\Windows\SysWOW64\PnkBstrB.exe

2015-03-05 21:29 - 2014-09-29 20:30 - 00348928 _____ () C:\Windows\SysWOW64\PnkBstrB.xtr

2015-03-05 21:28 - 2014-09-29 20:29 - 00280904 _____ () C:\Windows\SysWOW64\PnkBstrB.ex0

2015-03-05 14:46 - 2014-09-28 14:45 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update

2015-03-04 17:12 - 2014-09-28 15:50 - 00000000 ____D () C:\Program Files (x86)\Gry

2015-03-02 18:30 - 2014-09-29 21:46 - 00000000 ____D () C:\Gry download

2015-03-02 18:05 - 2014-09-29 20:53 - 00000000 ____D () C:\Users\mrbloodcrew\AppData\Roaming\uTorrent

2015-03-02 10:27 - 2014-09-29 13:16 - 00000000 ____D () C:\Program Files (x86)\Origin

2015-02-26 07:50 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\tracing

2015-02-24 03:17 - 2010-11-21 04:27 - 00295552 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe

2015-02-22 16:25 - 2014-10-04 13:22 - 00000000 ____D () C:\Users\mrbloodcrew\AppData\Roaming\Aegisub

2015-02-16 09:19 - 2014-09-30 18:21 - 00000000 ____D () C:\Users\mrbloodcrew\Desktop\YT

2015-02-13 22:00 - 2014-09-28 16:45 - 00000000 ____D () C:\Users\mrbloodcrew\AppData\Roaming\Xfire

2015-02-13 15:20 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache

2015-02-12 16:15 - 2009-07-14 05:45 - 00288968 _____ () C:\Windows\system32\FNTCACHE.DAT

2015-02-12 16:14 - 2014-12-11 17:22 - 00000000 ____D () C:\Windows\system32\appraiser

2015-02-12 16:14 - 2014-09-28 16:41 - 00000000 ___SD () C:\Windows\system32\CompatTel

2015-02-12 16:14 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\PolicyDefinitions

2015-02-11 22:45 - 2014-07-10 23:31 - 00000000 ____D () C:\Windows\system32\MRT

2015-02-11 22:40 - 2014-07-10 23:31 - 116773704 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe

2015-02-11 13:38 - 2010-11-21 04:47 - 00501148 _____ () C:\Windows\PFRO.log

2015-02-10 22:43 - 2014-10-26 19:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft

2015-02-10 22:43 - 2014-10-26 19:38 - 00000000 ____D () C:\Users\mrbloodcrew\AppData\Roaming\DVDVideoSoft

2015-02-10 19:18 - 2015-02-02 11:32 - 00000000 ____D () C:\Users\mrbloodcrew\Documents\FIFA 15

2015-02-10 18:44 - 2009-07-14 06:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games

 

==================== Files in the root of some directories =======

 

2015-03-06 16:00 - 2015-03-06 16:00 - 0007649 _____ () C:\Users\mrbloodcrew\AppData\Local\Resmon.ResmonCfg

2014-09-28 12:59 - 2014-09-28 12:59 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

 

Some content of TEMP:

====================

C:\Users\mrbloodcrew\AppData\Local\Temp\109-Avisynth_258_sciagnij.exe

C:\Users\mrbloodcrew\AppData\Local\Temp\AskPIP_FF_.exe

C:\Users\mrbloodcrew\AppData\Local\Temp\Avisynth_258.exe

C:\Users\mrbloodcrew\AppData\Local\Temp\devcon64.exe

C:\Users\mrbloodcrew\AppData\Local\Temp\DseShExt-x64.dll

C:\Users\mrbloodcrew\AppData\Local\Temp\DseShExt-x86.dll

C:\Users\mrbloodcrew\AppData\Local\Temp\dsrsetup.exe

C:\Users\mrbloodcrew\AppData\Local\Temp\Foxit Updater.exe

C:\Users\mrbloodcrew\AppData\Local\Temp\jre-8u31-windows-au.exe

C:\Users\mrbloodcrew\AppData\Local\Temp\nvSCPAPI.dll

C:\Users\mrbloodcrew\AppData\Local\Temp\nvSCPAPI64.dll

C:\Users\mrbloodcrew\AppData\Local\Temp\nvStInst.exe

C:\Users\mrbloodcrew\AppData\Local\Temp\ochelper.exe

C:\Users\mrbloodcrew\AppData\Local\Temp\OfficeSetup.exe

C:\Users\mrbloodcrew\AppData\Local\Temp\optprosetup.exe

C:\Users\mrbloodcrew\AppData\Local\Temp\res.dll

C:\Users\mrbloodcrew\AppData\Local\Temp\Runner2.exe

C:\Users\mrbloodcrew\AppData\Local\Temp\Runner4.exe

C:\Users\mrbloodcrew\AppData\Local\Temp\SDShelEx-win32.dll

C:\Users\mrbloodcrew\AppData\Local\Temp\SDShelEx-x64.dll

C:\Users\mrbloodcrew\AppData\Local\Temp\smarter.exe

C:\Users\mrbloodcrew\AppData\Local\Temp\tmd_34013187.exe

C:\Users\mrbloodcrew\AppData\Local\Temp\tmd_34013205.exe

C:\Users\mrbloodcrew\AppData\Local\Temp\tmd_34016404.exe

C:\Users\mrbloodcrew\AppData\Local\Temp\tmd_34017898.exe

C:\Users\mrbloodcrew\AppData\Local\Temp\tmd_34019883.exe

C:\Users\mrbloodcrew\AppData\Local\Temp\_is9B18.exe

 

 

==================== Bamital & volsnap Check =================

 

(There is no automatic fix for files that do not pass verification.)

 

C:\Windows\System32\winlogon.exe => File is digitally signed

C:\Windows\System32\wininit.exe => File is digitally signed

C:\Windows\SysWOW64\wininit.exe => File is digitally signed

C:\Windows\explorer.exe => File is digitally signed

C:\Windows\SysWOW64\explorer.exe => File is digitally signed

C:\Windows\System32\svchost.exe => File is digitally signed

C:\Windows\SysWOW64\svchost.exe => File is digitally signed

C:\Windows\System32\services.exe => File is digitally signed

C:\Windows\System32\User32.dll => MD5 is legit

C:\Windows\SysWOW64\User32.dll => MD5 is legit

C:\Windows\System32\userinit.exe => File is digitally signed

C:\Windows\SysWOW64\userinit.exe => File is digitally signed

C:\Windows\System32\rpcss.dll => File is digitally signed

C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

 

 

LastRegBack: 2015-03-05 19:16

 

==================== End Of Log ============================

Zarchiwizowany

Ten temat przebywa obecnie w archiwum. Dodawanie nowych odpowiedzi zostało zablokowane.

Pytania
×
×
  • Dodaj nową pozycję...