Prosím kontrolu logu

[Timikk]

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 21.07.2018
Ran by kekek (administrator) on DESKTOP-PMD5U6B (25-07-2018 14:34:22)
Running from C:\Users\kekek\Downloads
Loaded Profiles: kekek (Available Profiles: kekek)
Platform: Windows 10 Pro Version 1709 16299.431 (X64) Language: Slovenčina (Slovensko)
Internet Explorer Version 11 (Default browser: "C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" -- "%1")
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(WiseCleaner.com) C:\Program Files (x86)\Wise\Wise Driver Care\wdcservice.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
() C:\Program Files (x86)\TunnelBear\TunnelBear.Maintenance.exe
(Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1806.18062-0\MsMpEng.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1806.18062-0\NisSrv.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler64.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11806.1001.21.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(AVAST Software) C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupSvc.exe
(Alexander Roshal) C:\Program Files\WinRAR\WinRAR.exe
(Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18388936 2018-05-05] (Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [316392 2018-05-11] (Adobe Systems, Incorporated)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2409424 2018-04-24] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-07-07] (Oracle Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-1756157390-23743665-148239557-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [18364648 2018-05-24] (Piriform Ltd)
HKU\S-1-5-21-1756157390-23743665-148239557-1001\...\Run: [ipts] => C:\Users\kekek\AppData\Local\Temp\Rar$EXb7580.9364\ipts.exe -h <==== ATTENTION
HKU\S-1-5-21-1756157390-23743665-148239557-1001\...\Run: [AvastBrowserAutoLaunch_003B303C5263FA834D18F9631C5E9129] => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1721560 2018-07-19] (AVAST Software)
HKU\S-1-5-21-1756157390-23743665-148239557-1001\...\MountPoints2: {0294d448-6ed5-11e8-827d-d05099887e1d} - "E:\Lenovo_Suite.exe"
GroupPolicy: Restriction ? <==== ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.88.1
Tcpip\..\Interfaces\{67bc290f-2f42-44d8-a0cd-9821939ac3ef}: [DhcpNameServer] 192.168.88.1

Internet Explorer:
==================
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_181\bin\ssv.dll [2018-07-21] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_181\bin\jp2ssv.dll [2018-07-21] (Oracle Corporation)

FireFox:
========
FF DefaultProfile: affv7xgu.default-1530730967687
FF ProfilePath: C:\Users\kekek\AppData\Roaming\Mozilla\Firefox\Profiles\affv7xgu.default-1530730967687 [2018-07-25]
FF Extension: (iMacros for Firefox) - C:\Users\kekek\AppData\Roaming\Mozilla\Firefox\Profiles\affv7xgu.default-1530730967687\Extensions\{81BF1D23-5F17-408D-AC6B-BD6DF7CAF670}.xpi [2018-07-23]
FF Extension: (WebCompat Reporter) - C:\Program Files\Mozilla Firefox\browser\features\webcompat-reporter@mozilla.org.xpi [2018-07-12] [Legacy] [not signed]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_30_0_0_134.dll [2018-07-10] ()
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2018-04-24] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_30_0_0_134.dll [2018-07-10] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.181.2 -> C:\Program Files (x86)\Java\jre1.8.0_181\bin\dtplugin\npDeployJava1.dll [2018-07-21] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.181.2 -> C:\Program Files (x86)\Java\jre1.8.0_181\bin\plugin2\npjp2.dll [2018-07-21] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.0.61118.0\npctrl.dll [2011-11-17] ( Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-06-24] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-06-24] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-31] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-31] (Google Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2018-04-24] (Adobe Systems)

Chrome:
=======
CHR Profile: C:\Users\kekek\AppData\Local\Google\Chrome\User Data\Default [2018-07-25]
CHR Extension: (Slides) - C:\Users\kekek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-05-31]
CHR Extension: (Docs) - C:\Users\kekek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-05-31]
CHR Extension: (Google Drive) - C:\Users\kekek\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-05-31]
CHR Extension: (YouTube) - C:\Users\kekek\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-05-31]
CHR Extension: (Sheets) - C:\Users\kekek\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-05-31]
CHR Extension: (Google Docs Offline) - C:\Users\kekek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-05-31]
CHR Extension: (AdBlock) - C:\Users\kekek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2018-07-19]
CHR Extension: (Chrome Web Store Payments) - C:\Users\kekek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-05-31]
CHR Extension: (NeoBux AdAlert) - C:\Users\kekek\AppData\Local\Google\Chrome\User Data\Default\Extensions\oaepeijninfcgjdnighjnlgdkkgpnaen [2018-07-13]
CHR Extension: (Gmail) - C:\Users\kekek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-05-31]
CHR Extension: (Chrome Media Router) - C:\Users\kekek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-07-25]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [818128 2018-04-24] (Adobe Systems Incorporated)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [2321384 2018-05-11] (Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2128872 2018-05-11] (Adobe Systems, Incorporated)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-06-02] (AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-06-02] (AVAST Software)
R2 CleanupPSvc; C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupSvc.exe [8730648 2018-07-25] (AVAST Software)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6541008 2018-05-09] (Malwarebytes)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [764456 2018-07-19] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [764456 2018-07-19] (NVIDIA Corporation)
R2 SbieSvc; C:\Program Files\Sandboxie\SbieSvc.exe [328344 2018-03-09] (Sandboxie Holdings, LLC)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [4329952 2017-12-14] (Microsoft Corporation)
R2 TunnelBearMaintenance; C:\Program Files (x86)\TunnelBear\TunnelBear.Maintenance.exe [119680 2018-06-19] ()
R2 wdcservice; C:\Program Files (x86)\Wise\Wise Driver Care\wdcservice.exe [367272 2017-07-31] (WiseCleaner.com)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1806.18062-0\NisSrv.exe [3925648 2018-07-02] (Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1806.18062-0\MsMpEng.exe [100080 2018-07-02] (Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 amdide64; C:\WINDOWS\System32\drivers\amdide64.sys [13848 2018-05-05] (Advanced Micro Devices Inc.)
S3 dtultrascsibus; C:\WINDOWS\System32\drivers\dtultrascsibus.sys [30264 2018-06-19] (Disc Soft Ltd)
S3 dtultrausbbus; C:\WINDOWS\System32\drivers\dtultrausbbus.sys [47672 2018-06-19] (Disc Soft Ltd)
S3 grmobileusb_svc; C:\WINDOWS\System32\Drivers\grmobileusb.sys [99688 2012-12-18] (Native Instruments GmbH)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [253664 2018-07-25] (Malwarebytes)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_485c1c3102021986\nvlddmkm.sys [17200392 2018-06-25] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30656 2018-07-12] (NVIDIA Corporation)
S3 NVSWCFilter; C:\WINDOWS\System32\drivers\nvswcfilter.sys [27584 2018-03-14] (Windows (R) Win 7 DDK provider)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [69544 2018-06-08] (NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [68112 2018-06-24] (NVIDIA Corporation)
S3 rig3usb_svc; C:\WINDOWS\System32\Drivers\rig3usb.sys [100200 2012-12-18] (Native Instruments GmbH)
R3 SbieDrv; C:\Program Files\Sandboxie\SbieDrv.sys [228208 2018-03-09] (Sandboxie Holdings, LLC)
S3 sessusb_svc; C:\WINDOWS\System32\Drivers\sessusb.sys [99688 2012-12-18] (Native Instruments GmbH)
S3 smbdirect; C:\WINDOWS\System32\DRIVERS\smbdirect.sys [151552 2018-05-31] (Microsoft Corporation)
R3 tap-tb-0901; C:\WINDOWS\System32\drivers\tap-tb-0901.sys [38656 2018-05-16] (The OpenVPN Project)
S3 tapwindscribe0901; C:\WINDOWS\System32\drivers\tapwindscribe0901.sys [54896 2018-02-01] (The OpenVPN Project)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [46592 2018-07-02] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [340008 2018-07-02] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [59944 2018-07-02] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-07-25 14:34 - 2018-07-25 14:35 - 000016750 _____ C:\Users\kekek\Downloads\FRST.txt
2018-07-25 14:33 - 2018-07-25 14:34 - 000000000 ____D C:\FRST
2018-07-25 14:32 - 2018-07-25 14:32 - 002412544 _____ (Farbar) C:\Users\kekek\Downloads\FRST64.exe
2018-07-25 14:16 - 2018-07-25 14:16 - 001931969 _____ C:\Users\kekek\Downloads\ProcessExplorer.zip
2018-07-25 12:42 - 2018-07-25 12:42 - 000000000 ____D C:\Users\kekek\ansel
2018-07-25 12:35 - 2018-07-25 12:35 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2018-07-25 12:35 - 2018-06-24 17:40 - 000132032 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2018-07-25 12:34 - 2018-07-25 12:35 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2018-07-25 12:34 - 2018-06-25 19:26 - 000551840 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2018-07-25 12:30 - 2018-06-25 19:25 - 040346984 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2018-07-25 12:30 - 2018-06-25 19:25 - 035250256 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2018-07-25 12:30 - 2018-06-25 19:25 - 031244248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2018-07-25 12:30 - 2018-06-25 19:25 - 013728120 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2018-07-25 12:30 - 2018-06-25 19:25 - 011273632 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2018-07-25 12:30 - 2018-06-25 19:25 - 004350040 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2018-07-25 12:30 - 2018-06-25 19:25 - 003760672 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2018-07-25 12:30 - 2018-06-25 19:25 - 002013784 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6439836.dll
2018-07-25 12:30 - 2018-06-25 19:25 - 001563392 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2018-07-25 12:30 - 2018-06-25 19:25 - 001468448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6439836.dll
2018-07-25 12:30 - 2018-06-25 19:25 - 001419200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2018-07-25 12:30 - 2018-06-25 19:25 - 001216872 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2018-07-25 12:30 - 2018-06-25 19:25 - 001092360 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2018-07-25 12:30 - 2018-06-25 19:25 - 000749472 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll
2018-07-25 12:30 - 2018-06-25 19:25 - 000626616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2018-07-25 12:30 - 2018-06-25 19:25 - 000608512 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll
2018-07-25 12:30 - 2018-06-25 19:25 - 000518208 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2018-07-25 12:30 - 2018-06-25 19:24 - 025961336 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2018-07-25 12:30 - 2018-06-25 19:24 - 017750344 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2018-07-25 12:30 - 2018-06-25 19:24 - 015165008 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2018-07-25 12:30 - 2018-06-25 19:24 - 004126128 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2018-07-25 12:30 - 2018-06-25 19:24 - 001347664 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2018-07-25 12:30 - 2018-06-25 19:24 - 001157392 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2018-07-25 12:30 - 2018-06-25 19:24 - 001063216 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2018-07-25 12:30 - 2018-06-25 19:24 - 000904720 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2018-07-25 12:30 - 2018-06-25 19:24 - 000814616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2018-07-25 12:30 - 2018-06-25 19:24 - 000652344 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2018-07-25 12:30 - 2018-06-25 19:24 - 000634760 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
2018-07-25 12:30 - 2018-06-24 19:27 - 000047648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll
2018-07-25 11:53 - 2018-07-25 12:25 - 000000000 ____D C:\Users\kekek\AppData\Local\NVIDIA Corporation
2018-07-25 11:53 - 2018-07-25 11:53 - 000004308 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-07-25 11:53 - 2018-07-25 11:53 - 000004106 _____ C:\WINDOWS\System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-07-25 11:53 - 2018-07-25 11:53 - 000003976 _____ C:\WINDOWS\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-07-25 11:53 - 2018-07-25 11:53 - 000003940 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-07-25 11:53 - 2018-07-25 11:53 - 000003926 _____ C:\WINDOWS\System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-07-25 11:53 - 2018-07-25 11:53 - 000003926 _____ C:\WINDOWS\System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-07-25 11:53 - 2018-07-25 11:53 - 000003926 _____ C:\WINDOWS\System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-07-25 11:53 - 2018-07-25 11:53 - 000003894 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-07-25 11:53 - 2018-07-25 11:53 - 000003866 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-07-25 11:53 - 2018-07-25 11:53 - 000003858 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-07-25 11:53 - 2018-07-25 11:53 - 000003654 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-07-25 11:53 - 2018-07-25 11:53 - 000001439 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2018-07-25 11:53 - 2018-07-19 22:16 - 002340392 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2018-07-25 11:53 - 2018-07-19 22:16 - 001936424 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2018-07-25 11:53 - 2018-07-19 22:16 - 001311784 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvRtmpStreamer64.dll
2018-07-25 11:53 - 2018-07-19 19:44 - 000001951 _____ C:\WINDOWS\NvTelemetryContainerRecovery.bat
2018-07-25 11:53 - 2018-06-28 02:26 - 000206760 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2018-07-25 11:53 - 2018-06-28 02:26 - 000185256 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2018-07-25 11:53 - 2018-06-24 19:27 - 000068112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
2018-07-25 11:53 - 2018-06-08 03:59 - 000069544 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2018-07-25 11:45 - 2018-07-25 11:50 - 087630520 _____ (NVIDIA Corporation) C:\Users\kekek\Downloads\GeForce_Experience_v3.14.1.48.exe
2018-07-25 11:29 - 2018-07-25 12:39 - 000253664 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2018-07-25 11:15 - 2018-07-25 11:15 - 000000000 ___HD C:\Users\Public\Documents\AdobeGC
2018-07-24 22:10 - 2018-07-24 22:10 - 006889184 _____ (Piriform Ltd) C:\Users\kekek\Downloads\spsetup132.exe
2018-07-24 22:10 - 2018-07-24 22:10 - 000000837 _____ C:\Users\Public\Desktop\Speccy.lnk
2018-07-24 22:10 - 2018-07-24 22:10 - 000000000 ____D C:\Program Files\Speccy
2018-07-24 21:50 - 2018-07-24 21:50 - 000003122 _____ C:\WINDOWS\System32\Tasks\ParkControl
2018-07-24 21:50 - 2018-07-24 21:50 - 000000000 ____D C:\Program Files\ParkControl
2018-07-24 21:49 - 2018-07-24 21:49 - 000949160 _____ (Bitsum LLC) C:\Users\kekek\Downloads\parkcontrolsetup64.exe
2018-07-24 17:43 - 2018-07-24 17:43 - 000000000 ____D C:\Users\kekek\Documents\Rockstar Games
2018-07-24 17:43 - 2018-07-24 17:43 - 000000000 ____D C:\Users\kekek\AppData\Local\Rockstar Games
2018-07-24 17:40 - 2018-07-24 21:19 - 000000000 ____D C:\Program Files\Rockstar Games
2018-07-24 17:40 - 2018-07-24 21:19 - 000000000 ____D C:\Program Files (x86)\Rockstar Games
2018-07-23 17:20 - 2018-07-23 17:20 - 000313912 _____ (Mozilla) C:\Users\kekek\Downloads\Firefox Installer.exe
2018-07-23 17:17 - 2018-07-23 17:17 - 000179980 _____ C:\Users\kekek\Desktop\Nový textový dokument (2).txt
2018-07-23 13:15 - 2018-07-23 13:16 - 001297785 _____ C:\Users\kekek\Downloads\Godfather_Leak_-_VCC_method.pdf
2018-07-21 17:00 - 2018-07-21 17:02 - 008173005 _____ C:\Users\kekek\Downloads\huzuni-1.8.zip
2018-07-21 16:54 - 2018-07-21 16:54 - 074842112 _____ C:\WINDOWS\system32\config\SOFTWARE3382262e
2018-07-21 16:53 - 2018-07-21 16:53 - 000000000 ____D C:\WINDOWS\Microsoft Antimalware
2018-07-21 16:13 - 2018-07-24 18:21 - 000000000 ____D C:\Users\kekek\AppData\Roaming\.minecraft
2018-07-21 16:13 - 2018-07-21 16:13 - 000098680 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2018-07-21 16:13 - 2018-07-21 16:13 - 000000000 ____D C:\Users\kekek\AppData\Roaming\Sun
2018-07-21 16:13 - 2018-07-21 16:13 - 000000000 ____D C:\Users\kekek\AppData\LocalLow\Sun
2018-07-21 16:12 - 2018-07-21 16:12 - 000000000 ____D C:\Program Files (x86)\Java
2018-07-21 15:59 - 2018-07-21 16:00 - 001902968 _____ (Oracle Corporation) C:\Users\kekek\Downloads\JavaSetup8u181.exe
2018-07-21 15:58 - 2018-07-21 15:58 - 001902968 _____ (Oracle Corporation) C:\Users\kekek\Downloads\Unconfirmed 754785.crdownload
2018-07-21 15:52 - 2014-09-20 20:06 - 001112245 _____ C:\Users\kekek\Desktop\Shiginima Launcher SE v1.406.exe
2018-07-21 15:40 - 2018-07-21 15:44 - 012963864 _____ C:\Users\kekek\Downloads\ShiginimaSE_v1406.zip
2018-07-19 19:14 - 2018-07-19 19:14 - 000000222 _____ C:\Users\kekek\Desktop\Grand Theft Auto V.url
2018-07-12 20:50 - 2018-07-19 19:41 - 000000199 _____ C:\Users\kekek\Desktop\Factor10LOL.txt
2018-07-12 14:32 - 2018-07-12 14:32 - 000000000 ____D C:\Users\kekek\Documents\League of Legends
2018-07-12 13:15 - 2018-07-12 13:15 - 000000741 _____ C:\Users\Public\Desktop\League of Legends.lnk
2018-07-12 13:15 - 2008-07-12 08:18 - 003851784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_39.dll
2018-07-12 13:15 - 2008-07-12 08:18 - 001493528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_39.dll
2018-07-12 13:15 - 2008-07-12 08:18 - 000467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_39.dll
2018-07-12 13:14 - 2018-07-12 13:14 - 000000000 ____D C:\Riot Games
2018-07-12 13:10 - 2018-07-12 13:14 - 078845344 _____ (Riot Games, Inc) C:\Users\kekek\Downloads\League of Legends installer NA.exe
2018-07-08 20:05 - 2018-07-08 20:05 - 000896664 _____ C:\Users\kekek\Downloads\Viral Shapeshifter.pdf
2018-07-08 19:56 - 2018-07-08 19:56 - 000676320 _____ C:\Users\kekek\Downloads\CASH_MANIAC.pdf
2018-07-08 19:49 - 2018-07-08 19:49 - 001286632 _____ C:\Users\kekek\Downloads\AUTOCASH.pdf
2018-07-08 19:46 - 2018-07-08 19:46 - 000076398 _____ C:\Users\kekek\Downloads\Ethersecret-scanner-master.zip
2018-07-08 18:51 - 2018-07-25 12:40 - 000000000 ____D C:\Program Files (x86)\TunnelBear
2018-07-08 18:51 - 2018-07-08 18:51 - 000002028 _____ C:\Users\Public\Desktop\TunnelBear.lnk
2018-07-08 18:51 - 2018-07-08 18:51 - 000000000 ____D C:\Users\kekek\AppData\Roaming\TunnelBear
2018-07-08 18:51 - 2018-07-08 18:51 - 000000000 ____D C:\Users\kekek\AppData\Local\IsolatedStorage
2018-07-08 18:44 - 2018-07-08 18:50 - 082248888 _____ (TunnelBear) C:\Users\kekek\Downloads\TunnelBear-Installer.exe
2018-07-05 15:05 - 2018-07-05 15:05 - 000001425 _____ C:\Users\kekek\Desktop\Roblox Player.lnk
2018-07-05 14:56 - 2018-07-05 15:29 - 000000000 ____D C:\Users\kekek\AppData\Local\Roblox
2018-07-05 14:56 - 2018-07-05 15:10 - 000000250 _____ C:\Users\kekek\AppData\LocalLow\rbxcsettings.rbx
2018-07-05 14:56 - 2018-07-05 15:05 - 000000000 ____D C:\Users\kekek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
2018-07-05 14:56 - 2018-07-05 14:56 - 000822328 _____ (Roblox Corporation) C:\Users\kekek\Downloads\RobloxPlayerLauncher.exe
2018-07-05 14:56 - 2018-07-05 14:56 - 000001240 _____ C:\Users\kekek\Desktop\Roblox Studio.lnk
2018-07-04 21:02 - 2018-07-04 21:02 - 000000000 ____D C:\Users\kekek\Desktop\Old Firefox Data
2018-07-04 20:58 - 2018-07-25 12:26 - 000000000 ____D C:\Users\kekek\AppData\Local\CrashDumps
2018-07-04 20:56 - 2018-07-05 14:32 - 000000000 ____D C:\Users\kekek\Desktop\Nový priečinok (3)
2018-07-04 20:54 - 2018-06-20 17:41 - 027834857 _____ C:\Users\kekek\Desktop\ipts_918717.7z
2018-07-03 22:50 - 2015-07-12 14:55 - 004124573 _____ C:\Users\kekek\Desktop\Sloth King V 1.0 www.ebookleaks.org.pdf
2018-07-03 22:11 - 2018-07-03 22:11 - 000000000 ____D C:\Users\kekek\Desktop\EZLeecherV3
2018-07-03 12:17 - 2018-07-03 12:18 - 012887692 _____ C:\Users\kekek\Downloads\Clixcoin.rar
2018-07-03 12:16 - 2018-07-03 12:16 - 000146774 _____ C:\Users\kekek\Downloads\AutopPilot 100$ a month.pdf
2018-07-03 11:23 - 2018-07-03 11:23 - 000000000 ____D C:\Users\kekek\Desktop\Nový priečinok (2)
2018-07-03 11:23 - 2018-07-03 11:22 - 000053034 _____ C:\Users\kekek\Desktop\batman_forever.zip
2018-07-03 11:22 - 2018-07-03 11:22 - 000053034 _____ C:\Users\kekek\Downloads\batman_forever.zip
2018-07-02 13:16 - 2018-07-02 13:16 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2018-07-02 12:19 - 2018-07-17 19:44 - 000563832 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2018-07-02 12:00 - 2018-07-02 12:00 - 000003618 _____ C:\WINDOWS\System32\Tasks\AdobeGCInvoker-1.0-MicrosoftAccount-kekeke845@gmail.com
2018-07-01 15:36 - 2018-07-01 15:36 - 000000000 ____D C:\Users\kekek\AppData\Roaming\NVIDIA
2018-07-01 15:30 - 2018-07-01 15:30 - 000001151 _____ C:\Users\kekek\Desktop\Adobe Premiere Pro CC 2018.lnk
2018-07-01 15:30 - 2018-07-01 15:30 - 000000000 ____D C:\Users\Public\Documents\Adobe
2018-07-01 14:36 - 2018-07-01 14:36 - 000001745 _____ C:\Users\kekek\Desktop\Photoshop.lnk
2018-07-01 14:36 - 2018-07-01 14:36 - 000000000 ____D C:\Users\Public\Documents\AdobeInstalledCodecs
2018-07-01 14:33 - 2018-07-25 11:53 - 000000000 ____D C:\Users\kekek\AppData\Local\NVIDIA
2018-07-01 14:33 - 2018-07-01 14:33 - 000000000 ____D C:\Users\kekek\AppData\LocalLow\Adobe
2018-07-01 14:23 - 2018-07-01 15:36 - 000000000 ____D C:\Users\kekek\Documents\Adobe
2018-07-01 13:14 - 2018-07-01 15:30 - 000000000 ____D C:\Program Files\Common Files\Adobe
2018-07-01 13:07 - 2018-07-01 15:30 - 000000000 ____D C:\Program Files\Adobe
2018-07-01 13:04 - 2018-07-03 21:22 - 000000000 ___RD C:\Users\kekek\Creative Cloud Files
2018-07-01 12:51 - 2018-07-01 12:51 - 000001282 _____ C:\Users\Public\Desktop\Adobe Creative Cloud.lnk
2018-07-01 12:44 - 2018-07-01 13:04 - 000000000 ____D C:\Program Files (x86)\Adobe
2018-07-01 12:40 - 2018-07-01 12:41 - 000024917 _____ C:\Users\kekek\Desktop\YT.txt
2018-07-01 12:29 - 2018-07-01 12:29 - 000000070 _____ C:\Users\kekek\Desktop\Malwarebyes.txt
2018-07-01 12:10 - 2018-07-19 14:09 - 000152688 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2018-07-01 12:10 - 2018-07-01 12:10 - 000001912 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2018-07-01 12:10 - 2018-07-01 12:10 - 000000000 ____D C:\Program Files\Malwarebytes
2018-07-01 12:04 - 2018-07-01 12:08 - 072740872 _____ (Malwarebytes ) C:\Users\kekek\Downloads\mb3-setup-consumer-3.5.1.2522-1.0.374-1.0.5695.exe
2018-07-01 12:03 - 2018-07-01 12:03 - 000000000 ____D C:\AdwCleaner
2018-07-01 12:01 - 2018-07-01 12:03 - 040787888 _____ (Malwarebytes ) C:\Users\kekek\Downloads\Unconfirmed 196699.crdownload
2018-07-01 12:01 - 2018-07-01 12:02 - 007395536 _____ (Malwarebytes) C:\Users\kekek\Downloads\AdwCleaner.exe
2018-06-30 22:22 - 2018-06-30 22:22 - 000000000 ____D C:\Users\kekek\Desktop\sss
2018-06-30 22:22 - 2018-06-30 22:15 - 001817260 _____ C:\Users\kekek\Desktop\Adobe Suite CC.rar
2018-06-30 22:15 - 2018-06-30 22:15 - 001817260 _____ C:\Users\kekek\Downloads\Adobe Suite CC.rar
2018-06-30 22:01 - 2018-07-07 15:25 - 000000000 ____D C:\Users\kekek\Desktop\Release of Spotify Account Generator
2018-06-30 22:00 - 2018-06-30 22:00 - 000220869 _____ C:\Users\kekek\Downloads\Release of Spotify Account Generator.rar
2018-06-30 21:22 - 2018-06-30 21:22 - 000854120 _____ C:\Users\kekek\Downloads\Skin_Guide_Basic.pdf
2018-06-30 21:06 - 2018-06-30 21:06 - 000883171 _____ C:\Users\kekek\Downloads\How to earn 20$ a day (1).pdf
2018-06-30 21:02 - 2018-06-30 21:02 - 000552656 _____ C:\Users\kekek\Downloads\Start_making_cash_online_in_a_matter_of_hours (1).pdf
2018-06-30 17:54 - 2018-06-30 17:55 - 007057892 _____ C:\Users\kekek\Downloads\Bubble Turning Into Ice.mp4
2018-06-29 19:50 - 2018-06-29 19:51 - 005455597 _____ C:\Users\kekek\Downloads\Blurry Video Of Lights.mp4
2018-06-29 18:02 - 2018-06-29 18:04 - 020045971 _____ C:\Users\kekek\Downloads\step_by_step_exactly_how_to_get_to_500_000_followers_in_6_months.pdf
2018-06-25 21:05 - 2018-06-25 21:05 - 000000061 _____ C:\Users\kekek\Desktop\Nový textový dokument.txt

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-07-25 12:56 - 2018-05-31 20:12 - 000000000 ____D C:\Program Files (x86)\Steam
2018-07-25 12:45 - 2018-05-31 20:01 - 001195110 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2018-07-25 12:42 - 2018-05-31 20:00 - 000000000 ____D C:\Users\kekek
2018-07-25 12:39 - 2018-05-31 19:49 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-07-25 12:38 - 2018-05-31 20:07 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2018-07-25 12:36 - 2018-05-31 20:22 - 000000000 ____D C:\WINDOWS\INF
2018-07-25 12:36 - 2018-05-31 20:02 - 000000000 ____D C:\Users\kekek\AppData\Local\VirtualStore
2018-07-25 12:36 - 2018-05-31 19:51 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2018-07-25 12:35 - 2018-05-31 19:51 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2018-07-25 12:14 - 2018-06-10 16:26 - 000000000 ____D C:\Users\kekek\AppData\Roaming\Battlerite
2018-07-25 12:09 - 2018-06-02 15:30 - 000000000 ____D C:\Users\kekek\AppData\Roaming\TS3Client
2018-07-25 11:43 - 2018-06-08 21:16 - 000000000 ____D C:\Program Files\CCleaner
2018-07-25 11:36 - 2018-05-31 20:24 - 000000000 ____D C:\WINDOWS\DeliveryOptimization
2018-07-25 11:29 - 2018-05-31 19:49 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2018-07-25 11:16 - 2018-05-31 20:07 - 000002280 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2018-07-25 11:15 - 2018-06-16 14:02 - 000004206 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{0C17A393-6C6C-48B3-A690-A0698EEA6AB3}
2018-07-24 18:04 - 2018-06-02 16:53 - 000002475 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk
2018-07-24 10:59 - 2018-06-10 20:18 - 000000000 ____D C:\WINDOWS\Minidump
2018-07-24 06:37 - 2018-05-31 20:24 - 000000000 ___HD C:\Program Files\WindowsApps
2018-07-24 06:37 - 2018-05-31 20:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2018-07-23 17:42 - 2018-06-01 14:47 - 000000000 ____D C:\Users\kekek\AppData\LocalLow\Mozilla
2018-07-20 14:24 - 2018-05-31 20:24 - 000000000 ____D C:\WINDOWS\rescache
2018-07-19 19:14 - 2018-05-31 20:40 - 000000000 ____D C:\Users\kekek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2018-07-17 20:38 - 2018-05-31 20:24 - 000000000 ____D C:\WINDOWS\system32\NDF
2018-07-17 20:16 - 2018-05-31 20:10 - 000000000 ____D C:\WINDOWS\CbsTemp
2018-07-13 09:34 - 2018-06-01 14:47 - 000000000 ____D C:\Program Files\Mozilla Firefox
2018-07-13 09:34 - 2018-06-01 14:47 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2018-07-10 17:36 - 2018-06-18 21:21 - 000004422 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2018-07-10 17:36 - 2018-06-01 14:52 - 000004588 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player NPAPI Notifier
2018-07-10 17:36 - 2018-05-31 20:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2018-07-10 17:36 - 2018-05-31 20:24 - 000000000 ____D C:\WINDOWS\system32\Macromed
2018-07-07 17:53 - 2018-06-23 18:43 - 000000000 ____D C:\Users\kekek\AppData\Local\PlaceholderTileLogoFolder
2018-07-07 17:53 - 2018-05-31 20:02 - 000000000 ____D C:\Users\kekek\AppData\Local\Packages
2018-07-06 19:59 - 2018-06-03 10:17 - 000002127 _____ C:\Users\Public\Desktop\Wise Driver Care.lnk
2018-07-05 14:33 - 2018-05-31 19:48 - 000223184 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2018-07-04 21:02 - 2018-06-19 18:10 - 000000000 ____D C:\Users\kekek\AppData\Roaming\uTorrent
2018-07-04 21:01 - 2018-06-18 19:58 - 000000000 ____D C:\Users\kekek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ITW
2018-07-04 21:01 - 2018-06-18 19:57 - 000000000 ____D C:\Users\kekek\AppData\Local\somiibo
2018-07-04 21:01 - 2018-05-31 20:20 - 000000000 ____D C:\Program Files (x86)\Cheat Engine 6.7
2018-07-03 21:22 - 2018-06-01 14:51 - 000000000 ____D C:\Users\kekek\AppData\Local\Adobe
2018-07-02 13:16 - 2018-05-31 20:24 - 000000000 ___RD C:\Program Files\Windows Defender
2018-07-01 15:37 - 2018-05-31 20:02 - 000000000 ____D C:\Users\kekek\AppData\Roaming\Adobe
2018-06-30 22:01 - 2018-06-03 11:07 - 000001680 _____ C:\WINDOWS\Sandboxie.ini
2018-06-29 10:28 - 2018-06-02 16:50 - 000000000 ____D C:\Users\kekek\AppData\Local\AVAST Software
2018-06-25 19:26 - 2018-05-31 20:24 - 000457144 _____ (Khronos Group) C:\WINDOWS\SysWOW64\opencl.dll
2018-06-25 19:24 - 2018-05-05 17:29 - 004856232 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2018-07-23 10:51

==================== End of FRST.txt ============================

[Rudy]

Zdravím!
Spusťte tuto utilitu:

Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

[Timikk]

Nič to nenašlo.

[Rudy]

OK. Otevřte poznámkový blok a zkopírujte do něj:

Start

CloseProcesses:
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-07-07] (Oracle Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-1756157390-23743665-148239557-1001\...\MountPoints2: {0294d448-6ed5-11e8-827d-d05099887e1d} - "E:\Lenovo_Suite.exe"
GroupPolicy: Restriction ? <==== ATTENTION
C:\WINDOWS\LastGood.Tmp

EmptyTemp:
End

Uložte do C:\Users\kekek\Downloads jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

[Timikk]

Fix result of Farbar Recovery Scan Tool (x64) Version: 21.07.2018
Ran by kekek (25-07-2018 18:32:42) Run:1
Running from C:\Users\kekek\Downloads
Loaded Profiles: kekek (Available Profiles: kekek)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-07-07] (Oracle Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-1756157390-23743665-148239557-1001\...\MountPoints2: {0294d448-6ed5-11e8-827d-d05099887e1d} - "E:\Lenovo_Suite.exe"
GroupPolicy: Restriction ? <==== ATTENTION
C:\WINDOWS\LastGood.Tmp

EmptyTemp:
End

*****************

Processes closed successfully.
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched" => removed successfully
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => could not remove, key could be protected
"HKU\S-1-5-21-1756157390-23743665-148239557-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{0294d448-6ed5-11e8-827d-d05099887e1d}" => removed successfully
HKLM\Software\Classes\CLSID\{0294d448-6ed5-11e8-827d-d05099887e1d} => not found
C:\WINDOWS\system32\GroupPolicy\Machine => moved successfully
C:\WINDOWS\system32\GroupPolicy\GPT.ini => moved successfully
C:\WINDOWS\LastGood.Tmp => moved successfully

=========== EmptyTemp: ==========

BITS transfer queue => 7888896 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 81716696 B
Java, Flash, Steam htmlcache => 14350341 B
Windows/system/drivers => 3753504 B
Edge => 1205847 B
Chrome => 386779175 B
Firefox => 24140087 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 3750 B

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 25-07-2018 18:35:14)

==> ATTENTION: System is not rebooted.

Result of scheduled keys to remove after reboot:

"HKLM\SOFTWARE\Policies\Microsoft\Windows Defender" => removed successfully

==== End of Fixlog 18:35:14 ====

[Rudy]

Smazáno.

==> ATTENTION: System is not rebooted.

Je třeba ještě restartovat. Log by již měl být OK.

[Timikk]

Nešlo by vymazať aj toto ?

HKU\S-1-5-21-1756157390-23743665-148239557-1001\...\Run: [ipts] => C:\Users\kekek\AppData\Local\Temp\Rar$EXb7580.9364\ipts.exe -h <==== ATTENTION

[Rudy]

Tempy by měly být vymazané příkazem EmptyTemp: kompletně. Nebo to tam zůstalo?

[Timikk]

Nie už je to zmazané.

Trošku offtopic ale mohol by som sa vás niečo opýať ?


Ako ešte sa dá zrýchliť PC ?

[Rudy]

Ano. Zkuste defragmentovat disk.

[Timikk]

Práve defragmentujem.


Keby toto nepomohlo sú tu aj iné metódy ? Aj nejaké ktoré osobne používate ?




Edit: Disk vyhradený systémom-optimalizácia je potrebná. Ale keď spustím optimalizáciu hneď sa vypne.

[Rudy]

Zkuste to v nouz. režimu. Pak je ještě možná optimalizace plochy (v případě, že PC startuje delší dobu). Vytvořte v C:\Users\kekek novou složku, do které přesuňte všechna data z plochy (kromě zástupců. Na plochu si pak dejte zástupce té plochy pro snazší přístup. Toto bývá příčinou v případě, že na ploše je velké množství dat. Osobně dělám občas pročištění CCleanerem: https://forum.viry.cz/viewtopic.php?f=46&t=7478 . V tomto případě asi moc nepomůže, systém byl vyčištěn použitými utilitami.