problem s RAM //high usage , no process

Zpráva

deadss · #1 Příspěvek od **deadss** » 28 úno 2015 08:41

Zdravim,
po nejakom case sa mi "asi konstantne" zvysuju ramky az kym to nedosiahne 80-90% a potom mi to freezne notas... tak ci by ste mi nevedeli nejak helpnut popripade poradit ako postupovat s fixnutim :}

Task manager namera max 200-300 MB na mozzile popripade 150 MB na skype

Ramka pri starte je cca 2 GB a po case vyskace az na 8 GB

Pridavam logy z FRSTu + v prilohe je addition

Za skoru odpoved vopred dakujem

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 25-02-2015 01
Ran by Tomas (administrator) on DEADSS on 28-02-2015 08:37:37
Running from C:\Users\Tomas\Desktop
Loaded Profiles: Tomas (Available profiles: Tomas & .NET v4.5 & DefaultAppPool & .NET v4.5 Classic)
Platform: Windows 8.1 Pro N (X64) OS Language: English (United States)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
(Stardock Software, Inc) C:\Program Files (x86)\Stardock\AcousticBridge\AcousticBridgeSrv.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Stardock Software, Inc) C:\Program Files (x86)\Stardock\AcousticBridge\AcousticBridge.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Hi-Rez Studios) C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\Bin\IpOverUsbSvc.exe
(Micro-Star International Co., Ltd.) C:\Program Files (x86)\S-Bar\MSIService.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
() C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(A-Volute) C:\ProgramData\Razer\Synapse\Devices\Razer Surround\Driver\RzMaelstromVADStreamingService.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Microsoft Corporation) C:\Windows\System32\vmms.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft) C:\Program Files (x86)\Microsoft Garage\Mouse without Borders\MouseWithoutBorders.exe
(Microsoft) C:\Program Files (x86)\Microsoft Garage\Mouse without Borders\MouseWithoutBorders.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(DT Soft Ltd) C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
() C:\Program Files (x86)\Microsoft Garage\Mouse without Borders\MouseWithoutBordersHelper.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(http://tortoisesvn.net) C:\Program Files\TortoiseSVN\bin\TSVNCache.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Spotify Ltd) C:\Users\Tomas\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(Spotify Ltd) C:\Users\Tomas\AppData\Roaming\Spotify\spotify.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
(Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
() C:\Program Files (x86)\Y Soft\SafeQ Client\Client\SafeQ Client.exe
(Micro-Star International Co.,Ltd.) C:\Program Files (x86)\S-Bar\S-Bar.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Sound Blaster Play\Volume Panel\VolPanlu.exe
(Skillbrains) C:\Program Files (x86)\Skillbrains\lightshot\5.2.0.17\Lightshot.exe
() C:\Users\Tomas\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Tomas\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Tomas\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Tomas\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Tomas\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Intel(R) Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
(forum.viry.cz) C:\Users\Tomas\Desktop\FRSTLauncher.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [BTMTrayAgent] => rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2199840 2014-04-30] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2873744 2012-09-28] (ELAN Microelectronics Corp.)
HKLM\...\Run: [TortoiseHgOverlayIconServer] => C:\Program Files\TortoiseHg\TortoiseHgOverlayServer.exe [100616 2014-07-08] ()
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [10464536 2014-07-02] (Logitech Inc.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13192848 2012-08-30] (Realtek Semiconductor)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\egui.exe [5595336 2014-10-01] (ESET)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [585536 2015-01-06] (Razer Inc.)
HKLM-x32\...\Run: [SafeQ Client] => C:\Program Files (x86)\Y Soft\SafeQ Client\Client\SafeQ Client.exe [259072 2014-06-27] ()
HKLM-x32\...\Run: [S-Bar] => C:\Program Files (x86)\S-Bar\S-Bar.exe [5504416 2012-12-03] (Micro-Star International Co.,Ltd.)
HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [226560 2014-11-18] ()
HKLM-x32\...\Run: [VolPanel] => C:\Program Files (x86)\Creative\Sound Blaster Play\Volume Panel\VolPanlu.exe [241757 2010-12-08] (Creative Technology Ltd)
HKU\S-1-5-21-2440462087-2289248456-2737662588-1001\...\Run: [LightShot] => C:\Users\Tomas\AppData\Local\Skillbrains\lightshot\Lightshot.exe
HKU\S-1-5-21-2440462087-2289248456-2737662588-1001\...\Run: [MySQL Notifier] => C:\Program Files (x86)\MySQL\MySQL Notifier 1.1.5\MySqlNotifier.exe [771584 2013-11-25] (Oracle Corporation)
HKU\S-1-5-21-2440462087-2289248456-2737662588-1001\...\Run: [Unified Remote v2] => C:\Program Files (x86)\Unified Remote\RemoteServer.exe [333008 2014-07-17] (Unified Intents AB)
HKU\S-1-5-21-2440462087-2289248456-2737662588-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [31090272 2015-01-23] (Skype Technologies S.A.)
HKU\S-1-5-21-2440462087-2289248456-2737662588-1001\...\Run: [Spotify Web Helper] => C:\Users\Tomas\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1676344 2014-12-11] (Spotify Ltd)
HKU\S-1-5-21-2440462087-2289248456-2737662588-1001\...\Run: [DAEMON Tools Pro Agent] => C:\Program Files (x86)\DAEMON Tools Pro\DTAgent.exe [3108480 2012-10-23] (DT Soft Ltd)
HKU\S-1-5-21-2440462087-2289248456-2737662588-1001\...\Run: [Spotify] => C:\Users\Tomas\AppData\Roaming\Spotify\spotify.exe [6737976 2014-12-11] (Spotify Ltd)
HKU\S-1-5-21-2440462087-2289248456-2737662588-1001\...\MountPoints2: {d3853433-4955-11e4-b33e-8c89a5024722} - "D:\LG_PC_Programs.exe"
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [177624 2015-02-05] (NVIDIA Corporation)
AppInit_DLLs: ,C:\WINDOWS\system32\nvinitx.dll => C:\WINDOWS\system32\nvinitx.dll [177624 2015-02-05] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\WINDOWS\SysWOW64\nvinit.dll => C:\WINDOWS\SysWOW64\nvinit.dll [164752 2015-02-05] (NVIDIA Corporation)
ShellIconOverlayIdentifiers: [1TortoiseNormal] -> {C5994560-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers: [2TortoiseModified] -> {C5994561-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers: [3TortoiseConflict] -> {C5994562-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers: [4TortoiseLocked] -> {C5994563-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers: [5TortoiseReadOnly] -> {C5994564-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers: [6TortoiseDeleted] -> {C5994565-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers: [7TortoiseAdded] -> {C5994566-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers: [8TortoiseIgnored] -> {C5994567-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers: [9TortoiseUnversioned] -> {C5994568-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [1TortoiseNormal] -> {C5994560-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [2TortoiseModified] -> {C5994561-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [3TortoiseConflict] -> {C5994562-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [4TortoiseLocked] -> {C5994563-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [5TortoiseReadOnly] -> {C5994564-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [6TortoiseDeleted] -> {C5994565-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [7TortoiseAdded] -> {C5994566-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [8TortoiseIgnored] -> {C5994567-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [9TortoiseUnversioned] -> {C5994568-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

ProxyServer: [S-1-5-21-2440462087-2289248456-2737662588-1001] => cache34.ics.muni.cz:5555
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU\S-1-5-21-2440462087-2289248456-2737662588-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://t.msn.com/
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_31\bin\ssv.dll (Oracle Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_31\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll (Oracle Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll (Oracle Corporation)
DPF: HKLM-x32 {6C269571-C6D7-4818-BCA4-32A035E8C884} http://ccfiles.creative.com/Web/softwar ... TSUEng.cab
DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} http://ccfiles.creative.com/Web/softwar ... PIDPDE.cab
DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} http://ccfiles.creative.com/Web/softwar ... /CTPID.cab
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1

FireFox:
========
FF ProfilePath: C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\vom3f84r.default
FF Homepage: google.sk
FF NetworkProxy: "autoconfig_url", "data:text/javascript,function%20FindProxyForURL(url%2C%20host)%20%7Bif%20(url.indexOf('play.google.com')%20!%3D%20-1%20%7C%7C%20(url.indexOf('youtube.com%2Fvideoplayback')%20!%3D%20-1%20%26%26%20url.indexOf('%26gcr%3Dus')%20!%3D%20-1%20%26%26%20url.indexOf('%26ptchn')%20!%3D%20-1)%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.iheart.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.mtv.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fmedia.mtvnservices.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fsongza.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fnew.songza.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fpiki.fm*')%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Fpiki.fm*')%20%7C%7C%20url.indexOf('southparkstudios.com')%20!%3D%20-1%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.last.fm*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fext.last.fm*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.rdio.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.crunchyroll.com*')%20%7C%7C%20(url.indexOf('proxmate%3Dactive')%20!%3D%20-1%20%26%26%20url.indexOf('amazonaws.com')%20%3D%3D%20-1)%20%7C%7C%20(url.indexOf('proxmate%3Dus')%20!%3D%20-1)%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fgrooveshark.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fretro.grooveshark.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fhtml5.grooveshark.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Flisten.grooveshark.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.grooveshark.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fpreview.grooveshark.com*')%20%7C%7C%20host%20%3D%3D%20'www.pandora.com'%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.funimation.com*')%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Fsecure.funimation.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fplay.spotify.com*')%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Fplay.spotify.com*')%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Fwww.spotify.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.spotify.com*')%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Fwww.daisuki.net*')%20%7C%7C%20url.indexOf('vevo.com')%20!%3D%20-1%20%7C%7C%20host%20%3D%3D%20's.hulu.com'%20%7C%7C%20url.indexOf('discoverymedia.com')%20!%3D%20-1%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fdsc.discovery.com%2F*')%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Faccount.beatsmusic.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.beatsmusic.com*'))%20%7B%20return%20'PROXY%20us03.sq.proxmate.me%3A8000%3B%20PROXY%20us07.sq.proxmate.me%3A8000%3B%20PROXY%20us10.sq.proxmate.me%3A8000%3B%20PROXY%20us06.sq.proxmate.me%3A8000%3B%20PROXY%20us05.sq.proxmate.me%3A8000%3B%20PROXY%20us01.sq.proxmate.me%3A8000%3B%20PROXY%20us09.sq.proxmate.me%3A8000%3B%20PROXY%20us08.sq.proxmate.me%3A8000%3B%20PROXY%20us04.sq.proxmate.me%3A8000%3B%20PROXY%20us02.sq.proxmate.me%3A8000%3B%20PROXY%20us11.sq.proxmate.me%3A8000'%3B%7D%20%20else%20%7B%20return%20'DIRECT'%3B%20%7D%7D"
FF NetworkProxy: "http", "cache34.ics.muni.cz"
FF NetworkProxy: "http_port", 5555
FF NetworkProxy: "type", 2
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_16_0_0_305.dll ()
FF Plugin: @esn/npbattlelog,version=2.5.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.5.0\npbattlelogx64.dll No File
FF Plugin: @esn/npbattlelog,version=2.5.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.5.1\npbattlelogx64.dll (EA Digital Illusions CE AB)
FF Plugin: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll (EA Digital Illusions CE AB)
FF Plugin: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll ()
FF Plugin-x32: @esn/npbattlelog,version=2.5.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.5.1\npbattlelog.dll (EA Digital Illusions CE AB)
FF Plugin-x32: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll (EA Digital Illusions CE AB)
FF Plugin-x32: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\Tomas\AppData\Roaming\mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\Tomas\AppData\Roaming\mozilla\plugins\npgtpo3dautoplugin.dll ()
FF Plugin ProgramFiles/Appdata: C:\Users\Tomas\AppData\Roaming\mozilla\plugins\npo1d.dll (Google)
FF SearchPlugin: C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\vom3f84r.default\searchplugins\firmy.cz-235450.xml
FF SearchPlugin: C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\vom3f84r.default\searchplugins\mapy.cz-235450.xml
FF SearchPlugin: C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\vom3f84r.default\searchplugins\seznam.cz-235450.xml
FF SearchPlugin: C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\vom3f84r.default\searchplugins\utorrentcontrolv2-customized-web-search.xml
FF SearchPlugin: C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\vom3f84r.default\searchplugins\videa.seznam.cz-235450.xml
FF SearchPlugin: C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\vom3f84r.default\searchplugins\ybqs-firmy.xml
FF SearchPlugin: C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\vom3f84r.default\searchplugins\ybqs-mapy.xml
FF SearchPlugin: C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\vom3f84r.default\searchplugins\ybqs-seznam.xml
FF SearchPlugin: C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\vom3f84r.default\searchplugins\ybqs-sz_vidia.xml
FF SearchPlugin: C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\vom3f84r.default\searchplugins\ybqs-zbozi.xml
FF SearchPlugin: C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\vom3f84r.default\searchplugins\zbozi.cz-235450.xml
FF Extension: LavaFox V2 - C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\vom3f84r.default\Extensions\info@djzig.com [2015-01-07]
FF Extension: FT DeepDark - C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\vom3f84r.default\Extensions\{77d2ed30-4cd2-11e0-b8af-0800200c9a66} [2015-01-04]
FF Extension: Evernote Web Clipper - C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\vom3f84r.default\Extensions\{E0B8C461-F8FB-49b4-8373-FE32E9252800} [2014-06-24]
FF Extension: anonymoX - C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\vom3f84r.default\Extensions\client@anonymox.net.xpi [2014-06-24]
FF Extension: Copy Plain Text 2 - C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\vom3f84r.default\Extensions\copyplaintext@teo.pl.xpi [2014-06-24]
FF Extension: Firebug - C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\vom3f84r.default\Extensions\firebug@software.joehewitt.com.xpi [2014-06-24]
FF Extension: MEGA - C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\vom3f84r.default\Extensions\firefox@mega.co.nz.xpi [2014-07-11]
FF Extension: GlassMyFox - C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\vom3f84r.default\Extensions\GlassMyFox@ArisT2_Noia4dev.xpi [2014-06-24]
FF Extension: ProxTube - C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\vom3f84r.default\Extensions\ich@maltegoetz.de.xpi [2014-09-11]
FF Extension: YouTube ALL HTML5 - C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\vom3f84r.default\Extensions\jid1-qj0w91o64N7Eeg@jetpack.xpi [2014-10-12]
FF Extension: ProxMate - C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\vom3f84r.default\Extensions\jid1-QpHD8URtZWJC2A@jetpack.xpi [2014-06-24]
FF Extension: NASA Night Launch - C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\vom3f84r.default\Extensions\nasanightlaunch@example.com.xpi [2014-06-24]
FF Extension: Thumbnail Zoom Plus - C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\vom3f84r.default\Extensions\thumbnailZoom@dadler.github.com.xpi [2014-06-24]
FF Extension: Tile Tabs - C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\vom3f84r.default\Extensions\tiletabs@DW-dev.xpi [2014-06-24]
FF Extension: Location Bar Enhancer - C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\vom3f84r.default\Extensions\UIEnhancer@girishsharma.xpi [2014-06-24]
FF Extension: Stylish - C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\vom3f84r.default\Extensions\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8}.xpi [2014-06-24]
FF Extension: YouTube High Definition - C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\vom3f84r.default\Extensions\{7b1bf0b6-a1b9-42b0-b75d-252036438bdc}.xpi [2014-07-10]
FF Extension: Adblock Edge - C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\vom3f84r.default\Extensions\{fe272bd1-5f76-4ea4-8501-a05d35d823fc}.xpi [2014-06-24]

Chrome:
=======
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR Profile: C:\Users\Tomas\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Tomas\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-09-21]
CHR Extension: (Google Docs) - C:\Users\Tomas\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-09-21]
CHR Extension: (Google Drive) - C:\Users\Tomas\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-09-21]
CHR Extension: (YouTube) - C:\Users\Tomas\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-09-21]
CHR Extension: (Google Search) - C:\Users\Tomas\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-09-21]
CHR Extension: (Google Sheets) - C:\Users\Tomas\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-09-21]
CHR Extension: (AdBlock) - C:\Users\Tomas\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-11-13]
CHR Extension: (Reddit Enhancement Suite) - C:\Users\Tomas\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbmfpngjjgdllneeigpgjifpgocmfgmb [2014-11-22]
CHR Extension: (Google Wallet) - C:\Users\Tomas\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-09-21]
CHR Extension: (Hover Zoom) - C:\Users\Tomas\AppData\Local\Google\Chrome\User Data\Default\Extensions\nonjdcjchghhkdoolnlbekcfllmednbl [2014-11-22]
CHR Extension: (Gmail) - C:\Users\Tomas\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-09-21]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AcousticBridge; C:\Program Files (x86)\Stardock\AcousticBridge\AcousticBridgeSrv.exe [89232 2012-04-16] (Stardock Software, Inc)
S3 c2wts; C:\Program Files\Windows Identity Foundation\v3.5\c2wtshost.exe [5632 2014-07-03] (Microsoft Corporation)
S3 Creative ALchemy AL6 Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [79360 2014-12-19] (Creative Labs) [File not signed]
S3 Creative Audio Engine Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [79360 2014-12-19] (Creative Labs) [File not signed]
R2 CTAudSvcService; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [286720 2010-02-12] (Creative Technology Ltd) [File not signed]
S3 DsRoleSvc; C:\Windows\system32\dsrolesrv.dll [280064 2014-07-01] (Microsoft Corporation)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [1349576 2014-10-01] (ESET)
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [91472 2012-09-28] (ELAN Microelectronics Corp.)
S3 fussvc; C:\Program Files (x86)\Windows Kits\8.1\App Certification Kit\fussvc.exe [142336 2014-02-19] (Microsoft Corporation) [File not signed]
U2 HiPatchService; C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [9216 2015-02-24] (Hi-Rez Studios) [File not signed]
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [315352 2014-06-13] (Intel Corporation)
R2 IpOverUsbSvc; C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\Bin\IpOverUsbSvc.exe [22768 2014-04-17] (Microsoft Corporation)
R2 Micro Star SCM; C:\Program Files (x86)\S-Bar\MSIService.exe [160768 2012-12-03] (Micro-Star International Co., Ltd.) [File not signed]
S2 MouseWithoutBordersSvc; C:\Program Files (x86)\Microsoft Garage\Mouse without Borders\MouseWithoutBordersSvc.exe [27872 2012-12-28] (Microsoft)
R2 MSMQ; C:\Windows\system32\mqsvc.exe [25600 2014-06-24] (Microsoft Corporation)
S3 MySQL56; C:\ProgramData\MySQL\MySQL Server 5.6\my.ini [14239 2014-07-11] () [File not signed]
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [272176 2012-07-18] ()
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1617696 2014-04-30] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [21007192 2014-04-30] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [1910128 2015-01-26] (Electronic Arts)
R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [76152 2014-06-29] ()
R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [186048 2014-12-09] ()
R2 RzMaelstromVADStreamingService; C:\ProgramData\Razer\Synapse\Devices\Razer Surround\Driver\RzMaelstromVADStreamingService.exe [4250624 2014-06-09] (A-Volute) [File not signed]
S3 Te.Service; C:\Program Files (x86)\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe [119808 2013-08-22] (Microsoft Corporation) [File not signed]
R2 vmms; C:\Windows\system32\vmms.exe [13401600 2014-09-04] (Microsoft Corporation)
S3 VsEtwService120; C:\Program Files\Microsoft Visual Studio 12.0\Common7\Packages\Debugger\Services\VsEtwService.exe [87736 2014-04-30] (Microsoft Corporation)
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [76800 2014-06-24] (Microsoft Corporation)
R2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [546304 2014-06-24] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [368632 2014-09-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2014-09-22] (Microsoft Corporation)
S2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [2699568 2012-07-18] (Intel® Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-03-18] (Microsoft Corporation)
S3 btmaux; C:\Windows\system32\DRIVERS\btmaux.sys [121728 2012-08-27] (Motorola Solutions, Inc.)
S3 btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [857472 2012-08-29] (Motorola Solutions, Inc.)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283200 2014-11-16] (DT Soft Ltd)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [243440 2014-10-10] (ESET)
R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [241368 2014-10-10] (ESET)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [169280 2014-10-10] (ESET)
R2 epfw; C:\Windows\system32\DRIVERS\epfw.sys [222280 2014-10-10] (ESET)
R1 EpfwLWF; C:\Windows\system32\DRIVERS\EpfwLWF.sys [44632 2014-10-10] (ESET)
R0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [63160 2014-10-10] (ESET)
R1 hvservice; C:\Windows\System32\drivers\hvservice.sys [68960 2014-07-03] (Microsoft Corporation)
S3 lunparser; C:\Windows\System32\drivers\lunparser.sys [19456 2014-07-03] (Microsoft Corporation)
R3 MQAC; C:\Windows\System32\drivers\mqac.sys [173568 2014-06-24] (Microsoft Corporation)
R3 NETwNe64; C:\Windows\system32\DRIVERS\NETwew00.sys [4293672 2012-09-13] (Intel Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [18776 2014-04-30] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [40392 2014-03-31] (NVIDIA Corporation)
R3 OAfilt; C:\Windows\system32\drivers\OAfilt.sys [23552 2011-07-15] (Creative Technology Ltd.)
S3 passthruparser; C:\Windows\System32\drivers\passthruparser.sys [22016 2014-07-03] (Microsoft Corporation)
S3 pvhdparser; C:\Windows\System32\drivers\pvhdparser.sys [27136 2014-07-03] (Microsoft Corporation)
R3 RZMAELSTROMVADService; C:\Windows\system32\drivers\RzMaelstromVAD.sys [32768 2014-06-09] (Windows (R) Win 7 DDK provider)
R2 rzpmgrk; C:\WINDOWS\system32\drivers\rzpmgrk.sys [37184 2014-12-09] (Razer, Inc.)
R2 rzpnk; C:\WINDOWS\system32\drivers\rzpnk.sys [129600 2014-10-23] (Razer, Inc.)
R3 SensorsSimulatorDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [227840 2014-05-31] (Microsoft Corporation)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [31472 2014-04-22] (Synaptics Incorporated)
S3 sthid; C:\Windows\System32\drivers\sthid.sys [21216 2014-08-06] (Splashtop Inc.)
R3 VBAudioVACMME; C:\Windows\system32\DRIVERS\vbaudio_cable64_win7.sys [38272 2013-05-25] (Windows (R) Win 7 DDK provider)
S3 vhdparser; C:\Windows\System32\drivers\vhdparser.sys [18944 2014-07-03] (Microsoft Corporation)
R3 VMSMP; C:\Windows\system32\DRIVERS\vmswitch.sys [690688 2014-08-26] (Microsoft Corporation)
S3 VMSP; C:\Windows\system32\DRIVERS\vmswitch.sys [690688 2014-08-26] (Microsoft Corporation)
S3 VMSVSF; C:\Windows\system32\DRIVERS\vmswitch.sys [690688 2014-08-26] (Microsoft Corporation)
S3 VMSVSP; C:\Windows\system32\DRIVERS\vmswitch.sys [690688 2014-08-26] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2014-09-22] (Microsoft Corporation)
S3 NTIOLib_1_0_3; \??\C:\Program Files (x86)\MSI\SUPER CHARGER\NTIOLib_X64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-02-28 08:27 - 2015-02-28 08:37 - 00035486 _____ () C:\Users\Tomas\Desktop\FRST.txt
2015-02-28 08:27 - 2015-02-28 08:27 - 00000000 ____D () C:\rsit
2015-02-28 08:27 - 2015-02-28 08:27 - 00000000 ____D () C:\Program Files\trend micro
2015-02-28 08:23 - 2015-02-28 08:37 - 00000000 ____D () C:\FRST
2015-02-28 08:23 - 2015-02-28 08:23 - 02087936 _____ (Farbar) C:\Users\Tomas\Desktop\FRST64.exe
2015-02-28 08:23 - 2015-02-28 08:23 - 01222144 _____ () C:\Users\Tomas\Desktop\RSITx64.exe
2015-02-28 08:22 - 2015-02-28 08:22 - 00112640 _____ (forum.viry.cz) C:\Users\Tomas\Desktop\FRSTLauncher.exe
2015-02-25 18:53 - 2015-02-25 18:54 - 00276267 _____ () C:\Users\Tomas\Desktop\RAMMap.zip
2015-02-25 18:25 - 2015-02-27 18:35 - 00007611 _____ () C:\Users\Tomas\AppData\Local\Resmon.ResmonCfg
2015-02-24 22:23 - 2014-12-13 22:28 - 00513488 _____ () C:\WINDOWS\SysWOW64\locale.nls
2015-02-24 22:23 - 2014-12-13 22:28 - 00513488 _____ () C:\WINDOWS\system32\locale.nls
2015-02-24 22:23 - 2014-10-29 02:27 - 01200128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2015-02-24 22:23 - 2014-10-29 02:27 - 00323072 _____ (Microsoft Corporation) C:\WINDOWS\system32\GlobCollationHost.dll
2015-02-24 22:23 - 2014-10-29 02:04 - 00868352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2015-02-24 22:23 - 2014-10-29 02:04 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GlobCollationHost.dll
2015-02-19 14:18 - 2015-02-19 14:18 - 00000000 ____D () C:\Users\Tomas\AppData\Roaming\java
2015-02-19 14:17 - 2015-02-27 09:45 - 00000000 ____D () C:\Users\Tomas\AppData\Roaming\.minecraft
2015-02-19 14:15 - 2015-02-19 14:15 - 00000000 ____D () C:\Users\Tomas\Downloads\Minecraft 1.8 by TeamExtremeMc.com
2015-02-19 12:14 - 2015-02-19 12:14 - 00000000 ____D () C:\Users\Tomas\AppData\Local\Steam
2015-02-15 23:51 - 2015-01-23 05:41 - 06041600 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-02-15 23:51 - 2015-01-23 04:17 - 04300800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-02-14 13:38 - 2015-02-14 13:47 - 00000000 ____D () C:\Users\Tomas\Downloads\The Hobbit Battle Of The Five Armies (2014) 720p DVDScr x264-RAV3N
2015-02-14 13:35 - 2015-02-14 13:35 - 00000000 ____D () C:\Users\Tomas\Downloads\The.Hobbit.2014.Battle.Of.The.Five.Armies.2014.DVDScr.XVID.AC3.HQ.Hive-CM8
2015-02-13 21:46 - 2015-02-13 22:10 - 00000000 ____D () C:\Users\Tomas\AppData\Local\SniperV2
2015-02-13 21:19 - 2015-02-27 09:49 - 00000000 ____D () C:\Users\Tomas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2015-02-12 22:39 - 2015-02-12 22:49 - 1002496198 _____ () C:\Users\Tomas\Downloads\American Sniper (2014) DvD Scr Rip - X264 lottery.mkv
2015-02-11 08:01 - 2015-02-15 10:27 - 00000000 ____D () C:\WINDOWS\SysWOW64\NV
2015-02-11 08:01 - 2015-02-15 10:27 - 00000000 ____D () C:\WINDOWS\system32\NV
2015-02-11 07:58 - 2015-02-05 22:01 - 32106640 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2015-02-11 07:58 - 2015-02-05 22:01 - 25460880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2015-02-11 07:58 - 2015-02-05 22:01 - 24768144 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2015-02-11 07:58 - 2015-02-05 22:01 - 20466496 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2015-02-11 07:58 - 2015-02-05 22:01 - 18575880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll
2015-02-11 07:58 - 2015-02-05 22:01 - 17253848 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll
2015-02-11 07:58 - 2015-02-05 22:01 - 16017040 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2015-02-11 07:58 - 2015-02-05 22:01 - 13294528 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2015-02-11 07:58 - 2015-02-05 22:01 - 13208200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2015-02-11 07:58 - 2015-02-05 22:01 - 10773704 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2015-02-11 07:58 - 2015-02-05 22:01 - 10713256 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2015-02-11 07:58 - 2015-02-05 22:01 - 10284872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2015-02-11 07:58 - 2015-02-05 22:01 - 03610768 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2015-02-11 07:58 - 2015-02-05 22:01 - 03247248 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2015-02-11 07:58 - 2015-02-05 22:01 - 01895240 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6434752.dll
2015-02-11 07:58 - 2015-02-05 22:01 - 01557648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6434752.dll
2015-02-11 07:58 - 2015-02-05 22:01 - 00969872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2015-02-11 07:58 - 2015-02-05 22:01 - 00943760 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2015-02-11 07:58 - 2015-02-05 22:01 - 00929936 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2015-02-11 07:58 - 2015-02-05 22:01 - 00908104 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2015-02-11 07:58 - 2015-02-05 22:01 - 00496272 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2015-02-11 07:58 - 2015-02-05 22:01 - 00399504 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2015-02-11 07:58 - 2015-02-05 22:01 - 00390472 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2015-02-11 07:58 - 2015-02-05 22:01 - 00353224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglshim64.dll
2015-02-11 07:58 - 2015-02-05 22:01 - 00345744 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2015-02-11 07:58 - 2015-02-05 22:01 - 00305136 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglshim32.dll
2015-02-11 07:58 - 2015-02-05 22:01 - 00031376 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvpciflt.sys
2015-02-11 05:18 - 2015-01-15 23:43 - 00563504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2015-02-11 05:18 - 2015-01-15 23:43 - 00177984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2015-02-11 05:18 - 2015-01-14 05:22 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2015-02-11 05:18 - 2015-01-14 04:53 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2015-02-11 05:18 - 2015-01-13 23:11 - 01762840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2015-02-11 05:18 - 2015-01-13 23:04 - 01489072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2015-02-11 05:18 - 2015-01-12 04:09 - 25056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-02-11 05:18 - 2015-01-12 03:48 - 02885632 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-02-11 05:18 - 2015-01-12 03:48 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-02-11 05:18 - 2015-01-12 03:47 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2015-02-11 05:18 - 2015-01-12 03:34 - 00816128 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-02-11 05:18 - 2015-01-12 03:25 - 19740160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-02-11 05:18 - 2015-01-12 03:21 - 00490496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2015-02-11 05:18 - 2015-01-12 03:08 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-02-11 05:18 - 2015-01-12 03:07 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2015-02-11 05:18 - 2015-01-12 03:05 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2015-02-11 05:18 - 2015-01-12 03:02 - 02277888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-02-11 05:18 - 2015-01-12 02:58 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2015-02-11 05:18 - 2015-01-12 02:55 - 00664064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-02-11 05:18 - 2015-01-12 02:51 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2015-02-11 05:18 - 2015-01-12 02:48 - 00801280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2015-02-11 05:18 - 2015-01-12 02:48 - 00718848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2015-02-11 05:18 - 2015-01-12 02:48 - 00374272 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2015-02-11 05:18 - 2015-01-12 02:46 - 02125824 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2015-02-11 05:18 - 2015-01-12 02:45 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll
2015-02-11 05:18 - 2015-01-12 02:43 - 14401024 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-02-11 05:18 - 2015-01-12 02:34 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2015-02-11 05:18 - 2015-01-12 02:30 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2015-02-11 05:18 - 2015-01-12 02:27 - 02865152 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2015-02-11 05:18 - 2015-01-12 02:27 - 02358272 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-02-11 05:18 - 2015-01-12 02:25 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2015-02-11 05:18 - 2015-01-12 02:23 - 02052608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2015-02-11 05:18 - 2015-01-12 02:23 - 00688640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2015-02-11 05:18 - 2015-01-12 02:23 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2015-02-11 05:18 - 2015-01-12 02:14 - 12829184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-02-11 05:18 - 2015-01-12 02:14 - 01548288 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-02-11 05:18 - 2015-01-12 02:02 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2015-02-11 05:18 - 2015-01-12 02:00 - 01888256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-02-11 05:18 - 2015-01-12 01:56 - 01307136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-02-11 05:18 - 2015-01-12 01:55 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2015-02-11 05:18 - 2015-01-10 08:00 - 00430080 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2015-02-11 05:18 - 2015-01-10 07:38 - 00359424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2015-02-11 05:18 - 2014-12-19 09:57 - 00788680 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2015-02-11 05:18 - 2014-12-19 09:25 - 00602776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2015-02-11 05:18 - 2014-12-09 04:45 - 00393728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scesrv.dll
2015-02-11 05:18 - 2014-12-09 02:56 - 00538624 _____ (Microsoft Corporation) C:\WINDOWS\system32\scesrv.dll
2015-02-11 05:18 - 2014-12-09 00:12 - 00391526 _____ () C:\WINDOWS\system32\ApnDatabase.xml
2015-02-11 05:18 - 2014-10-29 03:51 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msaudite.dll
2015-02-11 05:18 - 2014-10-29 03:50 - 00736768 _____ (Microsoft Corporation) C:\WINDOWS\system32\adtschema.dll
2015-02-11 05:18 - 2014-10-29 03:06 - 00736768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adtschema.dll
2015-02-11 05:18 - 2014-10-29 03:06 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msaudite.dll
2015-02-11 05:18 - 2014-10-29 02:31 - 01441792 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2015-02-11 05:17 - 2015-01-19 19:42 - 01487976 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2015-02-11 05:17 - 2015-01-10 10:10 - 07472960 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-02-11 05:17 - 2015-01-10 10:10 - 01733440 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2015-02-11 05:17 - 2015-01-10 09:28 - 01498360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2015-02-11 05:17 - 2015-01-10 09:22 - 04175872 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2015-02-11 05:17 - 2014-10-29 03:02 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll
2015-02-11 05:17 - 2014-10-29 03:02 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64cpu.dll
2015-02-11 05:17 - 2014-10-29 02:57 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntvdm64.dll
2015-02-11 05:17 - 2014-10-29 02:15 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntvdm64.dll
2015-02-11 05:17 - 2014-10-29 02:15 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wow32.dll
2015-02-11 05:17 - 2014-10-29 02:14 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user.exe
2015-02-11 05:17 - 2014-10-29 02:13 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setup16.exe
2015-02-11 05:17 - 2014-10-29 02:13 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\instnm.exe
2015-02-10 12:51 - 2015-02-10 12:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crazy Machines Complete Collection
2015-02-10 12:26 - 2015-02-10 12:26 - 00000000 ____D () C:\Users\Tomas\Downloads\Crazy Machines Complete Collection
2015-02-04 03:36 - 2015-02-04 03:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-02-04 03:33 - 2015-02-04 03:34 - 00000000 ____D () C:\ICQ
2015-02-04 03:33 - 2015-02-04 03:33 - 00000000 ____D () C:\Users\Tomas\AppData\Roaming\QIP
2015-01-29 11:56 - 2015-01-29 11:57 - 00363632 _____ () C:\WINDOWS\Minidump\012915-22812-01.dmp

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-02-28 08:34 - 2014-06-24 18:28 - 00000000 ____D () C:\Users\Tomas\AppData\Roaming\Skype
2015-02-28 08:33 - 2014-06-24 10:29 - 01274178 _____ () C:\WINDOWS\WindowsUpdate.log
2015-02-28 08:25 - 2014-07-07 19:26 - 00000402 _____ () C:\WINDOWS\Tasks\update-S-1-5-21-2440462087-2289248456-2737662588-1001.job
2015-02-28 08:15 - 2014-07-11 14:45 - 27590656 _____ () C:\WINDOWS\system32\vmguest.iso
2015-02-28 08:13 - 2014-09-28 10:44 - 00000000 ____D () C:\Users\Tomas\AppData\Roaming\Spotify
2015-02-28 08:10 - 2014-06-24 16:39 - 00000000 ___DO () C:\Users\Tomas\OneDrive
2015-02-28 08:09 - 2014-06-24 10:34 - 00000000 ____D () C:\Users\Tomas
2015-02-28 08:09 - 2013-08-22 15:45 - 00397186 _____ () C:\WINDOWS\setupact.log
2015-02-28 08:08 - 2013-08-22 15:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2015-02-28 07:57 - 2014-06-24 17:03 - 00000830 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-02-28 05:27 - 2014-07-07 19:26 - 00000402 _____ () C:\WINDOWS\Tasks\update-sys.job
2015-02-28 04:00 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2015-02-27 21:55 - 2014-06-24 11:07 - 00000000 ____D () C:\Program Files (x86)\Steam
2015-02-27 18:40 - 2014-09-28 10:46 - 00000000 ____D () C:\Users\Tomas\AppData\Local\Spotify
2015-02-27 14:56 - 2014-06-24 13:52 - 00000000 ____D () C:\Users\Tomas\AppData\Roaming\TS3Client
2015-02-27 12:51 - 2014-10-05 20:15 - 00000000 ____D () C:\Users\Tomas\AppData\Local\TSVNCache
2015-02-27 12:51 - 2014-07-18 13:58 - 00000000 ____D () C:\Users\Tomas\AppData\Roaming\TortoiseHg
2015-02-27 12:19 - 2014-06-24 16:58 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2015-02-27 12:13 - 2013-08-22 14:25 - 00262144 ___SH () C:\WINDOWS\system32\config\BBI
2015-02-27 12:04 - 2014-06-24 07:59 - 00003600 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2440462087-2289248456-2737662588-1001
2015-02-27 11:18 - 2014-06-24 16:58 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2015-02-27 09:54 - 2013-08-22 15:44 - 00509920 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2015-02-27 09:53 - 2014-03-18 10:55 - 00037728 _____ () C:\WINDOWS\PFRO.log
2015-02-27 09:45 - 2014-06-26 17:20 - 00000000 ____D () C:\Users\Tomas\AppData\Roaming\TeamViewer
2015-02-27 09:45 - 2014-06-26 17:07 - 00000000 ____D () C:\Program Files (x86)\TeamViewer
2015-02-25 06:53 - 2012-07-26 09:00 - 00000000 ____D () C:\WINDOWS\CbsTemp
2015-02-23 16:23 - 2014-07-19 01:03 - 00000600 _____ () C:\Users\Tomas\AppData\Roaming\winscp.rnd
2015-02-23 13:16 - 2014-06-24 07:45 - 00000000 ____D () C:\Users\Tomas\AppData\Local\Packages
2015-02-22 23:13 - 2014-08-24 16:54 - 00000000 ____D () C:\Users\Tomas\AppData\Local\Battle.net
2015-02-22 07:42 - 2014-09-23 11:15 - 00000000 ___RD () C:\Program Files (x86)\Skype
2015-02-22 07:42 - 2014-06-24 10:38 - 00000000 ____D () C:\ProgramData\Skype
2015-02-20 19:51 - 2014-06-24 11:12 - 00000000 ____D () C:\Program Files (x86)\Origin
2015-02-19 14:16 - 2014-06-24 10:39 - 00000000 ____D () C:\Users\Tomas\AppData\Roaming\uTorrent
2015-02-17 23:08 - 2014-03-18 11:05 - 01035718 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2015-02-17 16:41 - 2014-07-01 12:41 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2015-02-17 16:39 - 2014-07-01 12:36 - 00000000 ____D () C:\ProgramData\Microsoft Help
2015-02-16 19:59 - 2014-08-20 20:25 - 00020423 _____ () C:\WINDOWS\system32\lvcoinst.log
2015-02-15 22:07 - 2014-08-24 16:54 - 00000000 ____D () C:\Users\Tomas\AppData\Roaming\Battle.net
2015-02-15 13:11 - 2014-07-03 19:55 - 00000000 ____D () C:\Users\Tomas\Documents\Visual Studio 2013
2015-02-15 12:22 - 2014-11-21 08:56 - 00351232 ___SH () C:\Users\Tomas\Desktop\Thumbs.db
2015-02-15 11:26 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\rescache
2015-02-14 19:55 - 2014-06-24 15:21 - 00215416 _____ () C:\WINDOWS\SysWOW64\PnkBstrB.exe
2015-02-14 19:49 - 2014-06-24 11:13 - 00000000 ____D () C:\ProgramData\Origin
2015-02-14 16:15 - 2014-07-01 12:31 - 00000000 ____D () C:\Users\Tomas\AppData\Roaming\vlc
2015-02-13 21:45 - 2014-06-24 15:19 - 00470215 _____ () C:\WINDOWS\DirectX.log
2015-02-13 21:40 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2015-02-12 20:44 - 2014-06-24 15:21 - 00215416 _____ () C:\WINDOWS\SysWOW64\PnkBstrB.ex0
2015-02-11 08:27 - 2014-06-24 20:15 - 00000000 ____D () C:\ProgramData\Package Cache
2015-02-11 08:02 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2015-02-11 08:01 - 2014-06-24 10:29 - 00000000 ____D () C:\ProgramData\NVIDIA
2015-02-11 07:46 - 2014-06-24 08:25 - 00000000 ____D () C:\WINDOWS\system32\MRT
2015-02-11 07:38 - 2014-06-24 08:25 - 116773704 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-02-11 07:36 - 2013-08-22 14:25 - 00000220 _____ () C:\WINDOWS\win.ini
2015-02-10 14:41 - 2014-08-19 13:07 - 00000000 ____D () C:\Users\Tomas\Documents\My Games
2015-02-10 12:50 - 2014-11-11 14:02 - 00000000 ____D () C:\Games
2015-02-09 22:01 - 2014-08-24 17:27 - 00000000 ____D () C:\Program Files (x86)\Hearthstone
2015-02-06 16:52 - 2014-08-24 16:54 - 00000000 ____D () C:\Program Files (x86)\Battle.net
2015-02-05 22:01 - 2014-06-24 10:25 - 14119744 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll
2015-02-05 22:01 - 2014-06-24 10:25 - 02902784 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2015-02-05 22:01 - 2014-06-24 10:25 - 00877816 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvumdshim.dll
2015-02-05 22:01 - 2013-09-05 10:37 - 00995248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvumdshimx.dll
2015-02-05 22:01 - 2013-09-05 10:36 - 00177624 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll
2015-02-05 22:01 - 2013-09-05 10:36 - 00164752 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll
2015-02-05 22:01 - 2013-09-05 10:36 - 00027441 _____ () C:\WINDOWS\system32\nvinfo.pb
2015-02-05 22:01 - 2013-09-05 10:35 - 03299512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2015-02-05 20:07 - 2014-06-24 10:29 - 06861128 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2015-02-05 20:07 - 2014-06-24 10:29 - 03517584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2015-02-05 20:07 - 2014-06-24 10:29 - 02558792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2015-02-05 20:07 - 2014-06-24 10:29 - 00935056 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2015-02-05 20:07 - 2014-06-24 10:29 - 00062792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2015-02-05 20:06 - 2014-06-24 10:29 - 01098384 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2015-02-05 20:06 - 2014-06-24 10:29 - 00385168 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2015-02-05 20:06 - 2014-06-24 10:29 - 00074896 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2015-02-05 13:50 - 2014-06-24 10:29 - 04236870 _____ () C:\WINDOWS\system32\nvcoproc.bin
2015-02-04 19:57 - 2014-06-24 17:03 - 00003718 _____ () C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2015-02-04 03:45 - 2014-07-22 22:54 - 00000049 _____ () C:\WINDOWS\SysWOW64\ScrRecX.log
2015-02-04 03:44 - 2014-07-14 11:20 - 00000000 ____D () C:\Users\Tomas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ICQ
2015-02-04 03:44 - 2014-06-24 17:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Creative
2015-02-04 03:44 - 2014-06-24 17:14 - 00000000 ____D () C:\Program Files (x86)\Creative
2015-02-04 03:43 - 2014-10-30 12:22 - 00000000 ____D () C:\Program Files (x86)\DriverToolkit
2015-02-04 03:42 - 2014-07-18 19:13 - 00000000 ____D () C:\Program Files (x86)\Google
2015-02-04 03:36 - 2014-06-24 11:15 - 00000000 ____D () C:\Program Files (x86)\Origin Games
2015-02-03 20:31 - 2014-11-16 11:40 - 00714720 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-02-03 20:31 - 2014-11-16 11:40 - 00106976 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-01-30 17:40 - 2014-09-04 18:33 - 00000003 _____ () C:\WINDOWS\system32\HRUPPROG.TXT
2015-01-29 11:56 - 2014-12-02 18:16 - 944145599 _____ () C:\WINDOWS\MEMORY.DMP
2015-01-29 11:56 - 2014-12-02 18:16 - 00000000 ____D () C:\WINDOWS\Minidump

==================== Files in the root of some directories =======

2014-07-19 01:03 - 2015-02-23 16:23 - 0000600 _____ () C:\Users\Tomas\AppData\Roaming\winscp.rnd
2014-07-18 19:19 - 2014-09-10 11:20 - 0000600 _____ () C:\Users\Tomas\AppData\Local\PUTTY.RND
2015-02-25 18:25 - 2015-02-27 18:35 - 0007611 _____ () C:\Users\Tomas\AppData\Local\Resmon.ResmonCfg
2014-07-07 19:26 - 2014-07-07 19:26 - 0000003 _____ () C:\Users\Tomas\AppData\Local\updater.log
2014-07-07 19:26 - 2014-12-18 08:32 - 0000425 _____ () C:\Users\Tomas\AppData\Local\UserProducts.xml

Some content of TEMP:
====================
C:\Users\Tomas\AppData\Local\Temp\HiPatchSelfUpdateWindow.exe
C:\Users\Tomas\AppData\Local\Temp\HiRezLauncherControls.dll
C:\Users\Tomas\AppData\Local\Temp\Uninstall.exe

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2015-02-23 10:12

===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

Drive c: () (Fixed) (Total:585.94 GB) (Free:281.08 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive e: (Work) (Fixed) (Total:112.69 GB) (Free:112.43 GB) NTFS

Available physical RAM: 5047.57 MB
Total physical RAM: 8088.94 MB
Percentage of memory in use: 37%

==================== MBR and Partition Table ==================

Disk: 0 (MBR Code: Windows 7 or 8) (Size: 698.6 GB) (Disk ID: 53A89814)
Partition 1: (Active) - (Size=585.9 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=112.7 GB) - (Type=05)

==================== Scheduled Tasks (whitelisted) ==================

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\update-S-1-5-21-2440462087-2289248456-2737662588-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe

==================== Alternate Data Streams (whitelisted) ==================

AlternateDataStreams: C:\Users\Tomas\OneDrive:ms-properties

==================== Security Center ==================

AV: ESET Smart Security 8.0 (Enabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET Smart Security 8.0 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
FW: ESET Personálny Firewall (Enabled) {211E1E8B-C9F9-A04B-6D84-BC85190CE5F2}

===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)

***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Tomas\Desktop" je 3 MB.

***** Startup Programs *****

***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"9000:TCP"="9000:TCP:*:Enabled:Logitech Media Server 9000 tcp (UI)"
"9001:TCP"="9001:TCP:*:Enabled:Logitech Media Server 9001 tcp (UI)"
"9002:TCP"="9002:TCP:*:Enabled:Logitech Media Server 9002 tcp (UI)"
"9003:TCP"="9003:TCP:*:Enabled:Logitech Media Server 9003 tcp (UI)"
"9004:TCP"="9004:TCP:*:Enabled:Logitech Media Server 9004 tcp (UI)"
"9005:TCP"="9005:TCP:*:Enabled:Logitech Media Server 9005 tcp (UI)"
"9006:TCP"="9006:TCP:*:Enabled:Logitech Media Server 9006 tcp (UI)"
"9007:TCP"="9007:TCP:*:Enabled:Logitech Media Server 9007 tcp (UI)"
"9008:TCP"="9008:TCP:*:Enabled:Logitech Media Server 9008 tcp (UI)"
"9009:TCP"="9009:TCP:*:Enabled:Logitech Media Server 9009 tcp (UI)"
"9010:TCP"="9010:TCP:*:Enabled:Logitech Media Server 9010 tcp (UI)"
"9100:TCP"="9100:TCP:*:Enabled:Logitech Media Server 9100 tcp (UI)"
"8000:TCP"="8000:TCP:*:Enabled:Logitech Media Server 8000 tcp (UI)"
"10000:TCP"="10000:TCP:*:Enabled:Logitech Media Server 10000 tcp (UI)"
"9090:TCP"="9090:TCP:*:Enabled:Logitech Media Server 9090 tcp (UI)"
"3483:UDP"="3483:UDP:*:Enabled:Logitech Media Server 3483 udp"
"3483:TCP"="3483:TCP:*:Enabled:Logitech Media Server 3483 tcp"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"9000:TCP"="9000:TCP:*:Enabled:Logitech Media Server 9000 tcp (UI)"
"9001:TCP"="9001:TCP:*:Enabled:Logitech Media Server 9001 tcp (UI)"
"9002:TCP"="9002:TCP:*:Enabled:Logitech Media Server 9002 tcp (UI)"
"9003:TCP"="9003:TCP:*:Enabled:Logitech Media Server 9003 tcp (UI)"
"9004:TCP"="9004:TCP:*:Enabled:Logitech Media Server 9004 tcp (UI)"
"9005:TCP"="9005:TCP:*:Enabled:Logitech Media Server 9005 tcp (UI)"
"9006:TCP"="9006:TCP:*:Enabled:Logitech Media Server 9006 tcp (UI)"
"9007:TCP"="9007:TCP:*:Enabled:Logitech Media Server 9007 tcp (UI)"
"9008:TCP"="9008:TCP:*:Enabled:Logitech Media Server 9008 tcp (UI)"
"9009:TCP"="9009:TCP:*:Enabled:Logitech Media Server 9009 tcp (UI)"
"9010:TCP"="9010:TCP:*:Enabled:Logitech Media Server 9010 tcp (UI)"
"9100:TCP"="9100:TCP:*:Enabled:Logitech Media Server 9100 tcp (UI)"
"8000:TCP"="8000:TCP:*:Enabled:Logitech Media Server 8000 tcp (UI)"
"10000:TCP"="10000:TCP:*:Enabled:Logitech Media Server 10000 tcp (UI)"
"9090:TCP"="9090:TCP:*:Enabled:Logitech Media Server 9090 tcp (UI)"
"3483:UDP"="3483:UDP:*:Enabled:Logitech Media Server 3483 udp"
"3483:TCP"="3483:TCP:*:Enabled:Logitech Media Server 3483 tcp"

***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000

==================== End Of Log ==============================

#2 Příspěvek od **Rudy** » 28 úno 2015 11:56

Zdravím!
Spusťte tuto utilitu:

Stáhněte AdwCleaner http://www.stahuj.centrum.cz/utility_a_ ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve >Scan< a potom na >Clean< (smazat)
Proběhne skenováni a pak se objeví log, který sem vložte.

deadss · #3 Příspěvek od **deadss** » 28 úno 2015 13:09

# AdwCleaner v4.111 - Logfile created 28/02/2015 at 09:11:28
# Updated 18/02/2015 by Xplode
# Database : 2015-02-18.3 [Server]
# Operating system : Windows 8.1 Pro N (x64)
# Username : Tomas - DEADSS
# Running from : C:\Users\Tomas\Desktop\adwcleaner_4.111.exe
# Option : Cleaning

***** [ Services ] *****

***** [ Files / Folders ] *****

Folder Deleted : C:\Program Files (x86)\DriverToolkit
Folder Deleted : C:\Users\Tomas\AppData\Local\CrashRpt
Folder Deleted : C:\Users\Tomas\AppData\Local\DriverToolkit
Folder Deleted : C:\Users\Tomas\AppData\Roaming\OpenCandy
File Deleted : C:\Users\Tomas\AppData\Local\Temp\Uninstall.exe
File Deleted : C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\vom3f84r.default\foxydeal.sqlite

***** [ Scheduled tasks ] *****

Task Deleted : update-sys
Task Deleted : update-S-1-5-21-2440462087-2289248456-2737662588-1001

***** [ Shortcuts ] *****

***** [ Registry ] *****

Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [Lightshot]
Key Deleted : HKCU\Software\DriverToolkit
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1
Data Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyServer] - cache34.ics.muni.cz:5555

***** [ Web browsers ] *****

-\\ Internet Explorer v0.0.0.0

-\\ Mozilla Firefox v36.0 (x86 en-US)

[vom3f84r.default\prefs.js] - Line Deleted : user_pref("smartbar.machineId", "YU6720ELL3TJXVUWC3KYJ5OVCXQZOJHXPWF/5H06CYUCLZBLZ6+GZCYK/UH7TS/PGAWPTTXONH13OB+DTI/NFW");

-\\ Google Chrome v

*************************

AdwCleaner[R0].txt - [1816 bytes] - [28/02/2015 09:09:13]
AdwCleaner[S0].txt - [1706 bytes] - [28/02/2015 09:11:28]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1765 bytes] ##########

# AdwCleaner v4.111 - Logfile created 28/02/2015 at 09:09:13
# Updated 18/02/2015 by Xplode
# Database : 2015-02-18.3 [Server]
# Operating system : Windows 8.1 Pro N (x64)
# Username : Tomas - DEADSS
# Running from : C:\Users\Tomas\Desktop\adwcleaner_4.111.exe
# Option : Scan

***** [ Services ] *****

***** [ Files / Folders ] *****

File Found : C:\Users\Tomas\AppData\Local\Temp\Uninstall.exe
File Found : C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\vom3f84r.default\foxydeal.sqlite
Folder Found : C:\Program Files (x86)\DriverToolkit
Folder Found : C:\Users\Tomas\AppData\Local\CrashRpt
Folder Found : C:\Users\Tomas\AppData\Local\DriverToolkit
Folder Found : C:\Users\Tomas\AppData\Roaming\OpenCandy

***** [ Scheduled tasks ] *****

Task Found : update-sys
Task Found : update-S-1-5-21-2440462087-2289248456-2737662588-1001
Task Found : update-sys

***** [ Shortcuts ] *****

***** [ Registry ] *****

Data Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyServer] - cache34.ics.muni.cz:5555
Key Found : HKCU\Software\DriverToolkit
Key Found : [x64] HKCU\Software\DriverToolkit
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1
Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [Lightshot]

***** [ Web browsers ] *****

-\\ Internet Explorer v0.0.0.0

-\\ Mozilla Firefox v36.0 (x86 en-US)

[vom3f84r.default] - Line Found : user_pref("smartbar.machineId", "YU6720ELL3TJXVUWC3KYJ5OVCXQZOJHXPWF/5H06CYUCLZBLZ6+GZCYK/UH7TS/PGAWPTTXONH13OB+DTI/NFW");

-\\ Google Chrome v

*************************

AdwCleaner[R0].txt - [1674 bytes] - [28/02/2015 09:09:13]

########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [1733 bytes] ##########

#4 Příspěvek od **Rudy** » 28 úno 2015 14:09

Nedokončil jste, neklikl na >clean<. Zkuste ještě jednou.

deadss · #5 Příspěvek od **deadss** » 28 úno 2015 20:49

log z cleanu je hned nad tym...

ale uz je to fixed ... dik za ochotu

#6 Příspěvek od **Rudy** » 28 úno 2015 21:29

Ještě je třeba dočistit. Dejte nový log FRST.

VIRY.CZ

problem s RAM //high usage , no process

problem s RAM //high usage , no process

Re: problem s RAM //high usage , no process

Re: problem s RAM //high usage , no process

Re: problem s RAM //high usage , no process

Re: problem s RAM //high usage , no process

Re: problem s RAM //high usage , no process