Moc prosím o preventivku

Zpráva

abdul99 · #1 Příspěvek od **abdul99** » 16 srp 2015 22:56

Ahoj, moc prosím o preventivku, ntb se mi zdá pomalejší:

Logfile of random's system information tool 1.10 (written by random/random)
Run by Adrian at 2015-08-16 23:54:29
Microsoft Windows 8.1
System drive C: has 203 GB (29%) free of 704 GB
Total RAM: 3971 MB (60% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:54:35, on 16. 8. 2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17840)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\TOSHIBA\PasswordUtility\readLM.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files\trend micro\Adrian.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files (x86)\Adobe\Acrobat 6.0 CE\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: ClassicIEBHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIEDLL_32.dll
O3 - Toolbar: Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O4 - HKLM\..\Run: [AmIcoSinglun64] "C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe"
O4 - HKLM\..\Run: [1.TPUReg] "C:\Program Files (x86)\TOSHIBA\PasswordUtility\readLM.exe"
O4 - HKLM\..\Run: [TSVU] "c:\Program Files\TOSHIBA\TOSHIBA Smart View Utility\TosSmartViewLauncher.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [Zoner Photo Studio Autoupdate] "C:\PROGRAM FILES\ZONER\PHOTO STUDIO 17\Program32\ZPSTRAY.EXE"
O4 - Global Startup: FAH.lnk = C:\Program Files\WinZip\FAH\FAHConsole.exe
O4 - Global Startup: WinZip Preloader.lnk = C:\Program Files\WinZip\WzPreloader.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: (no name) - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe
O9 - Extra 'Tools' menuitem: Classic IE Settings - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AtherosSvc - Windows (R) Win 7 DDK provider - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: DTS APO Service (dts_apo_service) - Unknown owner - C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_service.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: FABS - Helping agent for MAGIX media database (Fabs) - MAGIX AG - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) - MAGIX® - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: GFNEX Service (GFNEXSrv) - Unknown owner - C:\Program Files (x86)\TOSHIBA\PasswordUtility\GFNEXSrv.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SInstalátor (ssinstall) - PS Media s.r.o. - C:\Windows\SysWOW64\ssins.exe
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10101 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: TEMPRO Service (TemproMonitoringService) - Toshiba Europe GmbH - C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe
O23 - Service: TMachInfo - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - Unknown owner - C:\Windows\system32\TODDSrv.exe (file missing)
O23 - Service: TOSHIBA eco Utility Service - Toshiba Corporation - C:\Program Files\TOSHIBA\Teco\TecoService.exe
O23 - Service: TPCH Service (TPCHSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 10395 bytes

======Listing Processes======

wininit.exe

winlogon.exe

C:\Windows\system32\lsass.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files\IDT\WDM\STacSV64.exe"
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Program Files (x86)\TOSHIBA\PasswordUtility\GFNEXSrv.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
taskhostex.exe
C:\Windows\Explorer.EXE
ClassicStartMenu.exe -startup
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Windows\system32\GWX\GWX.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_service.exe"
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe"
C:\Windows\SysWOW64\ssins.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\TODDSrv.exe
"C:\Program Files\TOSHIBA\Teco\TecoService.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe" 78e4f9f7-2e15-457d-9041-8d2b02e91620
\??\C:\Windows\system32\conhost.exe 0x4
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\system32\igfxsrvc.exe" -Embedding
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe"
"C:\Program Files\TOSHIBA\Teco\TecoResident.exe"
"C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe"
"C:\Program Files\WinZip\FAH\FAHWindow64.exe" register
"C:\Program Files\WinZip\WzPreloader.exe"
"C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe"
"C:\Program Files (x86)\TOSHIBA\PasswordUtility\readLM.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\TOSHIBA\Toshiba Service Station\ToshibaServiceStation.exe" /hide
"C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe" /DisableUI
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe"
taskhost.exe /RuntimeWide
"C:\Windows\Microsoft.NET\Framework\v4.0.30319\NGenTask.exe" /RuntimeWide /StopEvent:372
\??\C:\Windows\system32\conhost.exe 0x4
"C:\Windows\Microsoft.NET\Framework\v4.0.30319\ngen.exe" ExecuteQueuedItems 2 /LegacyServiceBehavior
"C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe"
"C:\Program Files\TOSHIBA\TPHM\TPCHWMsg.exe"
"C:\Program Files (x86)\Toshiba TEMPRO\Toshiba.Tempro.UI.CommonNotifier.exe"
"C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe" serviceapp
\??\C:\Windows\system32\conhost.exe 0x4
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"

C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.17709_none_fa7932f59afc2e40\TiWorker.exe -Embedding

"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe3_ Global\UsGthrCtrlFltPipeMssGthrPipe3 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 568 572 580 65536 576

"C:\Users\Adrian\Desktop\RSITx64.exe"

=========Mozilla firefox=========

ProfilePath - C:\Users\Adrian\AppData\Roaming\Mozilla\Firefox\Profiles\idumb2aa.default

prefs.js - "browser.startup.homepage" - "https://www.seznam.cz/"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 18.0.0.232 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0]
"Description"=WildTangent Games App V2 Presence Detector Plugin
"Path"=C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 18.0.0.232 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{449D0D6E-2412-4E61-B68F-1CB625CD9E52}]
ExplorerBHO Class - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-04-20 803520]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-08-09 655480]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA801577-E6AD-4BD5-8F71-4BE0154331A4}]
ClassicIEBHO Class - C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2014-04-20 483520]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
AcroIEHlprObj Class - C:\Program Files (x86)\Adobe\Acrobat 6.0 CE\Reader\ActiveX\AcroIEHelper.dll [2003-05-12 50376]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{449D0D6E-2412-4E61-B68F-1CB625CD9E52}]
ExplorerBHO Class - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20 683200]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-08-09 559624]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA801577-E6AD-4BD5-8F71-4BE0154331A4}]
ClassicIEBHO Class - C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2014-04-20 440512]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{553891B7-A0D5-4526-BE18-D3CE461D6310} - Classic Explorer Bar - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-04-20 803520]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{553891B7-A0D5-4526-BE18-D3CE461D6310} - Classic Explorer Bar - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20 683200]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2013-09-20 391152]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2013-09-20 771056]
"Persistence"=C:\Windows\system32\igfxpers.exe [2013-09-20 769520]
"TSSSrv"=C:\Program Files (x86)\TOSHIBA\System Setting\TSSSrv.exe [2013-09-12 296520]
"TecoResident"=C:\Program Files\TOSHIBA\Teco\TecoResident.exe [2013-08-21 178016]
"TosWaitSrv"=C:\Program Files\TOSHIBA\TPHM\TosWaitSrv.exe [2013-08-14 354144]
"TCrdMain"=C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe [2013-08-18 2556768]
"Classic Start Menu"=C:\Program Files\Classic Shell\ClassicStartMenu.exe [2014-04-20 161984]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2015-07-24 2634896]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2015-07-24 1710568]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2015-07-17 8418584]
"Zoner Photo Studio Autoupdate"=C:\PROGRAM FILES\ZONER\PHOTO STUDIO 17\Program32\ZPSTRAY.EXE [2014-09-12 437248]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AmIcoSinglun64"=C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [2002-04-12 383768]
"1.TPUReg"=C:\Program Files (x86)\TOSHIBA\PasswordUtility\readLM.exe [2013-03-27 2216800]
"TSVU"=c:\Program Files\TOSHIBA\TOSHIBA Smart View Utility\TosSmartViewLauncher.exe [2013-07-23 516512]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-08-09 6109776]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
FAH.lnk - C:\Program Files\WinZip\FAH\FAHConsole.exe
WinZip Preloader.lnk - C:\Program Files\WinZip\WzPreloader.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2013-09-16 623104]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcpltsvc]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0
"SoftwareSASGeneration"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoRun"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-08-16 23:54:29 ----D---- C:\rsit
2015-08-16 23:49:15 ----D---- C:\Windows\SYSWOW64\NV
2015-08-16 23:49:15 ----D---- C:\Windows\system32\NV
2015-08-16 23:46:33 ----D---- C:\Windows\LastGood
2015-08-16 23:43:57 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2015-08-16 23:43:56 ----A---- C:\Windows\system32\nvwgf2umx.dll
2015-08-16 23:43:51 ----A---- C:\Windows\system32\drivers\nvpciflt.sys
2015-08-16 23:43:50 ----A---- C:\Windows\SYSWOW64\nvopencl.dll
2015-08-16 23:43:50 ----A---- C:\Windows\system32\nvopencl.dll
2015-08-16 23:43:49 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2015-08-16 23:43:49 ----A---- C:\Windows\system32\nvoglv64.dll
2015-08-16 23:43:48 ----A---- C:\Windows\SYSWOW64\nvoglshim32.dll
2015-08-16 23:43:48 ----A---- C:\Windows\system32\nvoglshim64.dll
2015-08-16 23:43:46 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2015-08-16 23:43:43 ----A---- C:\Windows\SYSWOW64\NvIFROpenGL.dll
2015-08-16 23:43:43 ----A---- C:\Windows\system32\NvIFROpenGL.dll
2015-08-16 23:43:43 ----A---- C:\Windows\system32\NvIFR64.dll
2015-08-16 23:43:42 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2015-08-16 23:43:39 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2015-08-16 23:43:39 ----A---- C:\Windows\SYSWOW64\nvEncodeAPI.dll
2015-08-16 23:43:39 ----A---- C:\Windows\system32\NvFBC64.dll
2015-08-16 23:43:39 ----A---- C:\Windows\system32\nvEncodeAPI64.dll
2015-08-16 23:43:37 ----A---- C:\Windows\system32\nvdispgenco6435560.dll
2015-08-16 23:43:36 ----A---- C:\Windows\system32\nvdispco6435560.dll
2015-08-16 23:43:35 ----A---- C:\Windows\system32\nvd3dumx.dll
2015-08-16 23:43:34 ----A---- C:\Windows\system32\nvcuvid.dll
2015-08-16 23:43:33 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2015-08-16 23:43:33 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2015-08-16 23:43:33 ----A---- C:\Windows\system32\nvcuda.dll
2015-08-16 23:43:33 ----A---- C:\Windows\system32\nvcompiler.dll
2015-08-16 23:43:32 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2015-08-16 23:25:27 ----SHD---- C:\Config.Msi
2015-08-16 22:25:58 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-08-16 22:25:58 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-08-16 21:30:06 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-08-16 21:30:05 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2015-08-16 21:30:05 ----A---- C:\Windows\system32\sysmain.dll
2015-08-16 21:30:05 ----A---- C:\Windows\system32\ntdll.dll
2015-08-16 21:30:05 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2015-08-16 21:29:42 ----A---- C:\Windows\system32\wuaueng.dll
2015-08-16 21:29:41 ----A---- C:\Windows\system32\wucltux.dll
2015-08-16 21:29:40 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2015-08-16 21:29:40 ----A---- C:\Windows\system32\WUSettingsProvider.dll
2015-08-16 21:29:40 ----A---- C:\Windows\system32\wudriver.dll
2015-08-16 21:29:40 ----A---- C:\Windows\system32\wuauclt.exe
2015-08-16 21:29:40 ----A---- C:\Windows\system32\wuapi.dll
2015-08-16 21:29:39 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2015-08-16 21:29:39 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2015-08-16 21:29:39 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2015-08-16 21:29:39 ----A---- C:\Windows\system32\wuwebv.dll
2015-08-16 21:29:39 ----A---- C:\Windows\system32\wuapp.exe
2015-08-16 21:28:49 ----A---- C:\Windows\system32\mshtml.dll
2015-08-16 21:28:48 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-08-16 21:28:45 ----A---- C:\Windows\system32\ieframe.dll
2015-08-16 21:28:44 ----A---- C:\Windows\system32\jscript9.dll
2015-08-16 21:28:41 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-08-16 21:28:41 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-08-16 21:28:40 ----A---- C:\Windows\system32\wininet.dll
2015-08-16 21:28:40 ----A---- C:\Windows\system32\ieui.dll
2015-08-16 21:28:39 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-08-16 21:28:39 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-08-16 21:28:39 ----A---- C:\Windows\system32\actxprxy.dll
2015-08-16 21:28:38 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-08-16 21:28:38 ----A---- C:\Windows\system32\urlmon.dll
2015-08-16 21:28:38 ----A---- C:\Windows\system32\msfeeds.dll
2015-08-16 21:28:38 ----A---- C:\Windows\system32\iertutil.dll
2015-08-16 21:28:37 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-08-16 21:28:37 ----A---- C:\Windows\SYSWOW64\actxprxy.dll
2015-08-16 21:28:37 ----A---- C:\Windows\system32\webcheck.dll
2015-08-16 21:28:36 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-08-16 21:28:36 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2015-08-16 21:28:36 ----A---- C:\Windows\system32\vbscript.dll
2015-08-16 21:28:36 ----A---- C:\Windows\system32\jscript.dll
2015-08-16 21:28:36 ----A---- C:\Windows\system32\inetcomm.dll
2015-08-16 21:28:36 ----A---- C:\Windows\system32\iepeers.dll
2015-08-16 21:28:36 ----A---- C:\Windows\system32\ieapfltr.dll
2015-08-16 21:28:35 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-08-16 21:28:35 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-08-16 21:28:35 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-08-16 21:27:26 ----A---- C:\Windows\system32\Windows.UI.Xaml.dll
2015-08-16 21:27:24 ----A---- C:\Windows\SYSWOW64\Windows.UI.Xaml.dll
2015-08-16 21:27:23 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2015-08-16 21:27:23 ----A---- C:\Windows\system32\WebClnt.dll
2015-08-16 21:27:22 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2015-08-16 21:27:22 ----A---- C:\Windows\system32\davclnt.dll
2015-08-16 21:27:20 ----A---- C:\Windows\system32\invagent.dll
2015-08-16 21:27:20 ----A---- C:\Windows\system32\generaltel.dll
2015-08-16 21:27:20 ----A---- C:\Windows\system32\appraiser.dll
2015-08-16 21:27:19 ----A---- C:\Windows\system32\devinv.dll
2015-08-16 21:27:18 ----A---- C:\Windows\system32\CompatTelRunner.exe
2015-08-16 21:27:18 ----A---- C:\Windows\system32\aeinv.dll
2015-08-16 21:27:11 ----A---- C:\Windows\system32\acmigration.dll
2015-08-16 21:26:57 ----A---- C:\Windows\system32\drivers\WdFilter.sys
2015-08-16 21:26:57 ----A---- C:\Windows\system32\drivers\WdBoot.sys
2015-08-16 21:26:56 ----A---- C:\Windows\system32\drivers\WdNisDrv.sys
2015-08-16 21:26:10 ----A---- C:\Windows\system32\csrsrv.dll
2015-08-16 21:26:10 ----A---- C:\Windows\system32\basesrv.dll
2015-08-16 21:26:08 ----A---- C:\Windows\SYSWOW64\netcfgx.dll
2015-08-16 21:26:07 ----A---- C:\Windows\system32\netcfgx.dll
2015-08-16 21:26:06 ----A---- C:\Windows\SYSWOW64\notepad.exe
2015-08-16 21:26:06 ----A---- C:\Windows\system32\drivers\tcpip.sys
2015-08-16 21:26:06 ----A---- C:\Windows\system32\drivers\ndis.sys
2015-08-16 21:26:06 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2015-08-16 21:26:05 ----A---- C:\Windows\system32\notepad.exe
2015-08-16 21:26:05 ----A---- C:\Windows\system32\msxml6.dll
2015-08-16 21:26:05 ----A---- C:\Windows\system32\msxml3.dll
2015-08-16 21:26:05 ----A---- C:\Windows\notepad.exe
2015-08-16 21:26:04 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2015-08-16 21:26:04 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2015-08-16 21:26:04 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2015-08-16 21:26:04 ----A---- C:\Windows\system32\mstscax.dll
2015-08-16 21:26:03 ----A---- C:\Windows\SYSWOW64\rdvidcrl.dll
2015-08-16 21:26:03 ----A---- C:\Windows\system32\win32k.sys
2015-08-16 21:26:03 ----A---- C:\Windows\system32\rdvidcrl.dll
2015-08-16 21:26:02 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2015-08-16 21:26:02 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2015-08-16 21:26:02 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2015-08-16 21:26:02 ----A---- C:\Windows\system32\FntCache.dll
2015-08-16 21:26:02 ----A---- C:\Windows\system32\DWrite.dll
2015-08-16 21:26:02 ----A---- C:\Windows\system32\atmlib.dll
2015-08-16 21:26:02 ----A---- C:\Windows\system32\atmfd.dll
2015-08-09 23:40:37 ----A---- C:\Windows\system32\drivers\nvvad64v.sys
2015-08-09 23:40:36 ----A---- C:\Windows\SYSWOW64\nvaudcap32v.dll
2015-08-09 21:42:42 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-08-09 21:22:08 ----A---- C:\Windows\system32\aswBoot.exe
2015-08-09 21:22:01 ----A---- C:\Windows\avastSS.scr
2015-07-28 22:45:28 ----D---- C:\Users\Adrian\AppData\Roaming\Bentley
2015-07-28 22:31:44 ----D---- C:\ProgramData\Bentley
2015-07-28 22:31:44 ----D---- C:\Program Files (x86)\Bentley
2015-07-28 22:25:44 ----D---- C:\BentleyDownloads
2015-07-28 20:39:55 ----D---- C:\Users\Adrian\AppData\Roaming\calibre
2015-07-28 20:39:09 ----D---- C:\ProgramData\Epubsoft
2015-07-28 20:04:24 ----D---- C:\Program Files\ImageConverter Plus
2015-07-28 20:04:24 ----A---- C:\Windows\system32\ucinput.dll
2015-07-28 20:04:24 ----A---- C:\Windows\system32\cnvshell.dll
2015-07-21 20:39:47 ----N---- C:\Windows\system32\MpSigStub.exe
2015-07-21 20:23:07 ----D---- C:\Windows\%LOCALAPPDATA%
2015-07-21 20:12:05 ----A---- C:\Windows\system32\drivers\ngvss.sys

======List of files/folders modified in the last 1 month======

2015-08-16 23:54:32 ----D---- C:\Program Files\trend micro
2015-08-16 23:53:44 ----D---- C:\Windows\Microsoft.NET
2015-08-16 23:53:42 ----RSD---- C:\Windows\assembly
2015-08-16 23:49:21 ----D---- C:\Windows\Prefetch
2015-08-16 23:49:18 ----D---- C:\ProgramData\NVIDIA Corporation
2015-08-16 23:49:15 ----RAD---- C:\Windows\System32
2015-08-16 23:49:15 ----D---- C:\Windows\SysWOW64
2015-08-16 23:49:06 ----D---- C:\ProgramData\NVIDIA
2015-08-16 23:48:08 ----D---- C:\Windows\Temp
2015-08-16 23:46:36 ----D---- C:\Windows\system32\drivers
2015-08-16 23:46:33 ----AD---- C:\Windows
2015-08-16 23:46:28 ----D---- C:\Windows\Inf
2015-08-16 23:46:25 ----D---- C:\Windows\system32\DriverStore
2015-08-16 23:29:39 ----SHD---- C:\Windows\Installer
2015-08-16 23:28:19 ----SD---- C:\ProgramData\Microsoft
2015-08-16 23:28:19 ----RD---- C:\Program Files (x86)
2015-08-16 23:28:19 ----RD---- C:\Program Files
2015-08-16 23:28:19 ----D---- C:\Program Files\Common Files\microsoft shared
2015-08-16 23:27:11 ----RSD---- C:\Windows\Fonts
2015-08-16 23:26:44 ----D---- C:\Program Files (x86)\MSBuild
2015-08-16 23:26:39 ----D---- C:\Program Files\Common Files
2015-08-16 23:26:10 ----D---- C:\ProgramData\Microsoft Help
2015-08-16 23:25:36 ----D---- C:\Windows\ShellNew
2015-08-16 23:25:19 ----D---- C:\Program Files\Common Files\System
2015-08-16 23:25:18 ----A---- C:\Windows\win.ini
2015-08-16 23:23:53 ----D---- C:\Windows\system32\config
2015-08-16 23:23:34 ----SHD---- C:\System Volume Information
2015-08-16 23:22:25 ----D---- C:\Users\Adrian\AppData\Roaming\ClassicShell
2015-08-16 23:13:57 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-08-16 23:10:35 ----D---- C:\Windows\Tasks
2015-08-16 23:10:35 ----D---- C:\Windows\system32\Tasks
2015-08-16 23:07:16 ----D---- C:\Windows\WinSxS
2015-08-16 23:03:59 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2015-08-16 23:00:54 ----D---- C:\Program Files\Windows Defender
2015-08-16 23:00:54 ----D---- C:\Program Files (x86)\Windows Defender
2015-08-16 23:00:50 ----D---- C:\Program Files\Internet Explorer
2015-08-16 23:00:50 ----D---- C:\Program Files (x86)\Internet Explorer
2015-08-16 23:00:48 ----D---- C:\Windows\system32\drivers\en-US
2015-08-16 23:00:48 ----D---- C:\Windows\system32\drivers\cs-CZ
2015-08-16 23:00:02 ----D---- C:\Windows\system32\sru
2015-08-16 22:57:58 ----D---- C:\Users\Adrian\AppData\Roaming\uTorrent
2015-08-16 22:40:48 ----D---- C:\Users\Adrian\AppData\Roaming\MPC-HC
2015-08-16 22:26:52 ----HD---- C:\Program Files\WindowsApps
2015-08-16 22:26:35 ----D---- C:\Windows\CbsTemp
2015-08-16 22:25:06 ----D---- C:\Windows\system32\MRT
2015-08-16 22:20:48 ----A---- C:\Windows\system32\MRT.exe
2015-08-16 22:18:49 ----SD---- C:\Windows\system32\CompatTel
2015-08-16 22:18:49 ----D---- C:\Windows\system32\appraiser
2015-08-16 22:18:49 ----D---- C:\Windows\apppatch
2015-08-16 22:14:33 ----D---- C:\Windows\debug
2015-08-16 21:22:47 ----D---- C:\Windows\system32\catroot2
2015-08-10 07:19:25 ----D---- C:\Windows\SoftwareDistribution
2015-08-10 01:26:25 ----D---- C:\ProgramData\VSO
2015-08-10 01:22:58 ----D---- C:\Program Files\CCleaner
2015-08-09 22:08:42 ----D---- C:\Windows\Panther
2015-08-09 22:03:32 ----HD---- C:\$Windows.~BT
2015-08-09 21:22:39 ----D---- C:\Windows\AppReadiness
2015-08-08 15:55:07 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-08-07 13:06:30 ----A---- C:\Windows\SYSWOW64\nvumdshim.dll
2015-08-07 13:06:30 ----A---- C:\Windows\SYSWOW64\nvinit.dll
2015-08-07 13:06:30 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2015-08-07 13:06:30 ----A---- C:\Windows\SYSWOW64\nvapi.dll
2015-08-07 13:06:30 ----A---- C:\Windows\system32\nvumdshimx.dll
2015-08-07 13:06:30 ----A---- C:\Windows\system32\nvinitx.dll
2015-08-07 13:06:30 ----A---- C:\Windows\system32\nvapi64.dll
2015-08-07 06:34:33 ----A---- C:\Windows\system32\nvvsvc.exe
2015-08-07 06:34:33 ----A---- C:\Windows\system32\nvsvcr.dll
2015-08-07 06:34:33 ----A---- C:\Windows\system32\nvshext.dll
2015-08-07 06:34:32 ----A---- C:\Windows\system32\nvmctray.dll
2015-08-07 06:34:32 ----A---- C:\Windows\system32\nv3dappshextr.dll
2015-08-07 06:34:32 ----A---- C:\Windows\system32\nv3dappshext.dll
2015-08-07 06:34:31 ----A---- C:\Windows\system32\nvsvc64.dll
2015-08-07 06:34:31 ----A---- C:\Windows\system32\nvcpl.dll
2015-07-28 22:57:09 ----SD---- C:\Users\Adrian\AppData\Roaming\Microsoft
2015-07-28 22:31:44 ----D---- C:\Program Files (x86)\Common Files
2015-07-28 22:31:44 ----AHD---- C:\ProgramData
2015-07-28 21:12:04 ----D---- C:\Program Files (x86)\Microsoft.NET
2015-07-28 21:08:02 ----D---- C:\Program Files (x86)\Microsoft Office
2015-07-28 19:37:43 ----SD---- C:\Windows\system32\GWX
2015-07-24 06:21:23 ----A---- C:\Windows\SYSWOW64\nvspcap.dll
2015-07-24 06:21:23 ----A---- C:\Windows\SYSWOW64\nvspbridge.dll
2015-07-24 06:21:14 ----A---- C:\Windows\system32\nvspcap64.dll
2015-07-24 06:21:14 ----A---- C:\Windows\system32\nvspbridge64.dll
2015-07-21 23:30:47 ----D---- C:\Windows\SYSWOW64\vbox
2015-07-21 23:30:47 ----D---- C:\Windows\system32\vbox
2015-07-19 09:21:03 ----D---- C:\Windows\rescache
2015-07-18 13:42:23 ----D---- C:\Users\Adrian\AppData\Roaming\Tropico 4
2015-07-17 05:38:46 ----D---- C:\Windows\system32\en-US
2015-07-17 05:38:46 ----D---- C:\Windows\system32\cs-CZ
2015-07-17 05:38:43 ----D---- C:\Windows\system32\CodeIntegrity
2015-07-17 05:38:42 ----RD---- C:\Windows\ToastData
2015-07-17 05:38:40 ----D---- C:\Windows\system32\wbem
2015-07-17 05:38:39 ----D---- C:\Windows\WinStore
2015-07-17 05:38:36 ----SD---- C:\Windows\SYSWOW64\GWX

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2015-08-09 65224]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2015-08-09 274808]
R0 iaStorA;iaStorA; C:\Windows\System32\drivers\iaStorA.sys [2013-08-07 644968]
R0 ngvss;ngvss; C:\Windows\system32\drivers\ngvss.sys [2015-08-09 115152]
R0 nvpciflt;nvpciflt; C:\Windows\system32\DRIVERS\nvpciflt.sys [2015-08-07 31352]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2015-01-12 386680]
R0 tos_sps64;@oem21.inf,%SERVICE_DESC_amd64%;TOSHIBA tos_sps64 Service; C:\Windows\System32\drivers\tos_sps64.sys [2012-06-18 499096]
R0 TVALZ;@oem17.inf,%TVALZ.SvcDesc%;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Driver; C:\Windows\System32\drivers\TVALZ_O.SYS [2013-08-15 32832]
R0 TVALZFL;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Filter Driver; C:\Windows\System32\Drivers\TVALZFL.sys [2012-07-22 16768]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2015-08-09 93528]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2015-08-16 1048344]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2015-08-09 447944]
R1 dtsoftbus01;@oem32.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\Windows\System32\drivers\dtsoftbus01.sys [2015-01-12 283064]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\Windows\system32\DRIVERS\vwififlt.sys [2014-04-30 71680]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2015-08-09 28656]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2015-08-09 90968]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2015-08-09 150672]
R2 PEGAGFN;PEGAGFN; \??\C:\Program Files (x86)\TOSHIBA\PasswordUtility\PEGAGFN.sys [2009-09-11 14344]
R2 VBoxAswDrv;VBoxAsw Support Driver; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [2015-07-21 273824]
R3 AmUStor;@oem20.inf,%AmUStor.SvcDesc%;AM USB Stroage Driver; C:\Windows\system32\drivers\AmUStor.SYS [2013-06-25 109336]
R3 athr;@oem18.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athwbx.sys [2013-08-16 3859968]
R3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2013-10-01 594632]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\Windows\System32\drivers\BthEnum.sys [2014-10-29 53248]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\Windows\System32\drivers\BthLEEnum.sys [2013-12-04 226304]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\Windows\System32\drivers\bthpan.sys [2014-07-24 118272]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2014-10-29 81920]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2013-09-16 4177920]
R3 IntcDAud;@oem3.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2013-09-16 449528]
R3 iwdbus;@oem6.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\Windows\System32\drivers\iwdbus.sys [2013-08-23 26008]
R3 L1C;@oem13.inf,%L1C.Service.DispName%;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C63x64.sys [2013-07-18 130248]
R3 MEIx64;@oem2.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2013-09-04 99288]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2015-08-07 11076216]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2015-07-24 19600]
R3 nvvad_WaveExtensible;@oem61.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2015-07-03 47976]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\System32\drivers\rfcomm.sys [2015-01-30 167424]
R3 SmbDrvI;SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [2013-08-22 34544]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10301; C:\Windows\system32\DRIVERS\stwrt64.sys [2013-08-16 551936]
R3 SynTP;@oem23.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2014-08-06 528112]
R3 tdcmdpst;TOSHIBA Writing Engine Filter Driver; C:\Windows\system32\DRIVERS\tdcmdpst.sys [2012-07-25 31184]
R3 Thotkey;@oem14.inf,%Thotkey%;Toshiba Hotkey Driver; C:\Windows\System32\drivers\Thotkey.sys [2013-08-19 32624]
R3 tosrfec;@oem22.inf,%busenum.SVCDESC%;Bluetooth ACPI; C:\Windows\System32\drivers\tosrfec.sys [2013-11-01 27032]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2014-06-21 212736]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\Windows\system32\DRIVERS\vwifimp.sys [2014-04-30 38912]
S2 athsgt;athsgt; C:\Windows\system32\DRIVERS\athsgt.sys [2015-05-25 210944]
S2 limsgt;limsgt; C:\Windows\system32\DRIVERS\limsgt.sys [2015-05-25 22528]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2015-05-11 1201664]
S3 dtscsidrv;dtscsidrv; C:\Windows\system32\drivers\dtscsidrv.sys [2015-01-12 309248]
S3 intaud_WaveExtensible;@oem5.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\Windows\system32\drivers\intelaud.sys [2013-08-23 39320]
S3 nmwcd;@oem36.inf,%MFG% %SVC%;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2011-08-17 19968]
S3 nmwcdc;@oem40.inf,%MFG% %SVC%;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbox64.sys [2011-08-17 27136]
S3 RTWlanE;@netrtwlane.inf,%RTWlanE.DeviceDesc.DispName%;Realtek Wireless LAN 802.11n PCI-E Network Adapter; C:\Windows\system32\DRIVERS\rtwlane.sys [2013-07-31 1936088]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2011-08-17 9216]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-22 33280]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2011-08-17 9216]
S3 VClone;VClone; C:\Windows\System32\drivers\VClone.sys [2013-07-24 34816]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2013-10-01 312448]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-08-09 146600]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2014-10-29 38792]
R2 dts_apo_service;DTS APO Service; C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_service.exe [2013-09-10 19792]
R2 Fabs;FABS - Helping agent for MAGIX media database; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [2012-01-23 1858048]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2015-07-24 1155216]
R2 GFNEXSrv;GFNEX Service; C:\Program Files (x86)\TOSHIBA\PasswordUtility\GFNEXSrv.exe [2013-03-27 163168]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-05-12 733696]
R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2013-09-04 131544]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-09-04 169432]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-09-04 390616]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2015-07-24 1871504]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2015-07-24 5544592]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2015-08-07 937592]
R2 ssinstall;SInstalátor; C:\Windows\SysWOW64\ssins.exe [2015-01-08 2324216]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10101; C:\Program Files\IDT\WDM\STacSV64.exe [2013-08-16 339456]
R2 TODDSrv;TOSHIBA Optical Disc Drive Service; C:\Windows\system32\TODDSrv.exe [2009-07-28 140632]
R2 TOSHIBA eco Utility Service;TOSHIBA eco Utility Service; C:\Program Files\TOSHIBA\Teco\TecoService.exe [2013-08-10 328544]
R3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
R3 TemproMonitoringService;TEMPRO Service; C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe [2013-07-19 116088]
R3 TMachInfo;TMachInfo; C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe [2013-07-31 53864]
R3 TPCHSrv;TPCH Service; C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe [2013-09-04 466504]
S3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [2015-07-21 4047768]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\Windows\System32\svchost.exe [2014-10-29 38792]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2013-09-20 279024]
S3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [2011-04-26 2702848]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-22 43696]
S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-05-12 822232]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-08-09 148136]

-----------------EOF-----------------

#2 Příspěvek od **Márty84** » 17 srp 2015 06:13

Zdravim

Stahnete crystal disk info http://sourceforge.jp/projects/crystald ... 5_0_0.zip/
Spustte jako spravce. Za chvili se zobrazi vysledek.
Kliknete nahore na napis Úpravy a pak na napis Kopírovat. To co se zkopiruje (ulozi se to do pameti) mi sem vlozte (ctrl + V)

Stahnete AdwCleaner https://toolslib.net/downloads/finish/1/ a ulozte ho na plochu.
Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Kliknete na Scan a pockejte, az kontrola dobehne.
Pak kliknete na Cleaning
Program zacne pracovat (muze dojit k restartu pc) a vyplivne log (pripadne bude zde C:\AdwCleaner[C?].txt ). Ten mi sem zkopirujte.

Udelejte kontrolu s MBAM. Test nastavte podle tohoto navodu (cili Vlastni sken vsech disku) http://forum.viry.cz/viewtopic.php?f=29&t=144868 a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekce

abdul99 · #3 Příspěvek od **abdul99** » 17 srp 2015 13:58

----------------------------------------------------------------------------
CrystalDiskInfo 5.0.0 (C) 2008-2012 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows 8 [6.2 Build 9200] (x64)
Date : 2015/08/17 14:57:51

-- Controller Map ----------------------------------------------------------
+ Intel(R) 7 Series Chipset Family SATA AHCI Controller [ATA]
- TOSHIBA MQ01ABD075
- TSSTcorp CDDVDW SU-208FB
+ DTSCSIDRV IDE Controller [SCSI]
- TIFQTA DIZ0XIZO1M3 SCSI CdRom Device
- Řadič prostorů úložišť [SCSI]

-- Disk List ---------------------------------------------------------------
(1) TOSHIBA MQ01ABD075 : 750,1 GB [0/0/0, pd1]

----------------------------------------------------------------------------
(1) TOSHIBA MQ01ABD075
----------------------------------------------------------------------------
Model : TOSHIBA MQ01ABD075
Firmware : AX0A4M
Serial Number : 24O3PJEQT
Disk Size : 750,1 GB (8,4/137,4/750,1)
Buffer Size : 8192 KB
Queue Depth : 32
# of Sectors : 1465149168
Rotation Rate : 5400 RPM
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ----
Transfer Mode : SATA/300
Power On Hours : 758 hod.
Power On Count : 125 krát
Temparature : 34 C (93 F)
Health Status : Dobrý
Features : S.M.A.R.T., APM, 48bit LBA, NCQ
APM Level : 0080h [ON]
AAM Level : ----

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 100 100 _50 000000000000 Počet chyb čtení
02 100 100 _50 000000000000 Průchodnost disku
03 100 100 __1 000000000696 Čas na roztočení ploten
04 100 100 __0 00000000007D Počet spuštění/zastavení
05 100 100 _50 000000000000 Počet přemapovaných sektorů
07 100 100 _50 000000000000 Počet chybných hledání
08 100 100 _50 000000000000 Čas potřebný na vyhledání
09 _99 _99 __0 0000000002F6 Hodin v činnosti
0A 102 100 _30 000000000000 Počet opakovaných pokusů o roztočení ploten
0C 100 100 __0 00000000007D Počet cyklů zapnutí zařízení
BF 100 100 __0 00000000000B Počet udalostí zaznamenaných otřesovým senzorem
C0 100 100 __0 000000000002 Počet vypnutí disku
C1 100 100 __0 0000000006DC Počet cyklů načítání/vymazání
C2 100 100 __0 002D000F0022 Teplota
C4 100 100 __0 000000000000 Počet udalostí s číslem realokování sektorů
C5 100 100 __0 000000000000 Počet podezřelých sektorů
C6 100 100 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
DC 100 100 __0 000000000000 Posunutí disku vůči ose
DE _99 _99 __0 0000000002B7 Počet hodin zalažení budoucího mechanismu magnetických hlav
DF 100 100 __0 000000000000 Zatížení budiče magnetických hlav způsobené opakovanými úkony
E0 100 100 __0 000000000000 Zatížení budiče magnetických hlav způsobené napětím mechanických částí
E2 100 100 __0 0000000000B5 Celkový čas zatížení budiče magnetických hlav
F0 100 100 __1 000000000000 Čas nastavování hlaviček - v hodinách

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0040 3FFF C837 0010 0000 003F 003F 0000 0000 0000
010: 2020 2020 2020 2020 2020 344F 344F 3350 4A45 5154
020: 0000 4000 0000 4158 3041 2020 2020 544F 5348 4942
030: 4120 4D51 3031 4142 4430 2020 2020 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 0000 2F00
050: 4000 0200 0000 0007 3FFF 003F 003F FC10 00FB 0110
060: FFFF 0FFF 0007 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 0F06 0F06 0004 004C 004C
080: 01F8 0000 746B 7D09 6163 BC09 BC09 6163 203F 005A
090: 005A 0080 FFFE 0000 0000 0000 0000 0000 0000 0000
100: 66F0 5754 0000 0000 0000 4000 4000 0000 5000 0395
110: 5228 828E 0000 0000 0000 0000 0000 0000 0000 401C
120: 401C 0000 0000 0000 0000 0000 0000 0000 0021 0000
130: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
140: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0003 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 003D 003D 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 1518 0000 0000
220: 0000 0000 101F 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 0000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 31A5

abdul99 · #4 Příspěvek od **abdul99** » 17 srp 2015 14:28

# AdwCleaner v5.000 - Logfile created 17/08/2015 at 14:59:58
# Updated 14/08/2015 by Xplode
# Database : 2015-08-16.2 [Server]
# Operating system : Windows 8.1 (x64)
# Username : Adrian - OCHMANEK
# Running from : C:\Users\Adrian\Desktop\adwcleaner_5.000.exe
# Option : Cleaning

***** [ Services ] *****

***** [ Folders ] *****

***** [ Files ] *****

***** [ Shortcuts ] *****

***** [ Scheduled tasks ] *****

***** [ Registry ] *****

***** [ Web browsers ] *****

*************************

:: Proxy settings cleared
:: Winsock settings cleared

*************************

C:\AdwCleaner[C3].txt - [623 octets] - [17/08/2015 14:59:58]
C:\AdwCleaner[S3].txt - [662 octets] - [17/08/2015 14:59:04]

########## EOF - C:\AdwCleaner[C3].txt - [747 octets] ##########

abdul99 · #5 Příspěvek od **abdul99** » 17 srp 2015 19:24

Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 17. 8. 2015
Čas skenování: 15:32
Protokol: mbam log.txt
Správce: Ano

Verze: 2.1.8.1057
Databáze malwaru: v2015.08.17.05
Databáze rootkitů: v2015.08.16.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto

OS: Windows 8.1
CPU: x64
Souborový systém: NTFS
Uživatel: Adrian

Typ skenu: Vlastní sken
Výsledek: Dokončeno
Prohledaných objektů: 685383
Uplynulý čas: 4 hod, 31 min, 16 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Zapnuto
Sken hloubkových rootkitů: Zapnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 0
(Nenalezeny žádné škodlivé položky)

Moduly: 0
(Nenalezeny žádné škodlivé položky)

Klíče registru: 0
(Nenalezeny žádné škodlivé položky)

Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)

Data registru: 0
(Nenalezeny žádné škodlivé položky)

Složky: 0
(Nenalezeny žádné škodlivé položky)

Soubory: 1
PUP.Optional.APNToolBar.A, C:\Program Files (x86)\FreeTime\FormatFactory\FFModules\Package\Ask\AskPIP_FF_.exe, , [d118b455fc8fe551aa6e198e06fb6799],

Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)

(end)

#6 Příspěvek od **Márty84** » 17 srp 2015 21:20

Nalez MBAM nechte odstranit, pak muzete MBAM odinstalovat.

Dejte logy podle tohoto navodu http://forum.viry.cz/viewtopic.php?f=13&t=133100 - vypnete na chvili antivir, je mozne, ze to bude blokovat jako skodnou, ale pouzivame to porad, jedna se o falesny poplach

abdul99 · #7 Příspěvek od **abdul99** » 18 srp 2015 14:05

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:17-08-2015
Ran by Adrian (administrator) on OCHMANEK (18-08-2015 15:03:18)
Running from C:\Users\Adrian\Desktop
Loaded Profiles: Adrian (Available Profiles: Adrian)
Platform: Windows 8.1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
() C:\Program Files (x86)\TOSHIBA\PasswordUtility\GFNEXSrv.exe
(Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
() C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_service.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(TOSHIBA Corporation) C:\Windows\System32\TODDSrv.exe
(Toshiba Corporation) C:\Program Files\TOSHIBA\Teco\TecoService.exe
(Avast Software) C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(MAGIX AG) C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
(Toshiba Europe GmbH) C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\Teco\TecoResident.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe
(Alcor Micro Corp.) C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
(Nico Mak Computing) C:\Program Files\WinZip\FAH\FAHWindow64.exe
(WinZip Computing, S.L.) C:\Program Files\WinZip\WzPreloader.exe
(TOSHIBA) C:\Program Files (x86)\TOSHIBA\PasswordUtility\readLM.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Společnost TOSHIBA Corporation) C:\Program Files\TOSHIBA\TPHM\TPCHWMsg.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(forum.viry.cz) C:\Users\Adrian\Desktop\FRSTLauncher.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.17709_none_fa7932f59afc2e40\TiWorker.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [TSSSrv] => C:\Program Files (x86)\TOSHIBA\System Setting\TSSSrv.exe [296520 2013-09-12] (TOSHIBA Corporation)
HKLM\...\Run: [TecoResident] => C:\Program Files\TOSHIBA\Teco\TecoResident.exe [178016 2013-08-21] (TOSHIBA Corporation)
HKLM\...\Run: [TosWaitSrv] => C:\Program Files\TOSHIBA\TPHM\TosWaitSrv.exe [354144 2013-08-14] (TOSHIBA Corporation)
HKLM\...\Run: [TCrdMain] => C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe [2556768 2013-08-18] (TOSHIBA Corporation)
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [161984 2014-04-20] (IvoSoft)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2634896 2015-07-24] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [AmIcoSinglun64] => C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [383768 2002-04-12] (Alcor Micro Corp.)
HKLM-x32\...\Run: [1.TPUReg] => C:\Program Files (x86)\TOSHIBA\PasswordUtility\readLM.exe [2216800 2013-03-27] (TOSHIBA)
HKLM-x32\...\Run: [TSVU] => c:\Program Files\TOSHIBA\TOSHIBA Smart View Utility\TosSmartViewLauncher.exe [516512 2013-07-23] (TOSHIBA)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [6109776 2015-08-09] (AVAST Software)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKU\S-1-5-21-3809139199-386801105-3546470006-1002\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-3809139199-386801105-3546470006-1002\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8418584 2015-07-17] (Piriform Ltd)
HKU\S-1-5-21-3809139199-386801105-3546470006-1002\...\Run: [Zoner Photo Studio Autoupdate] => C:\PROGRAM FILES\ZONER\PHOTO STUDIO 17\Program32\ZPSTRAY.EXE [437248 2014-09-12] (ZONER software)
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [177088 2015-08-07] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [155792 2015-08-07] (NVIDIA Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\FAH.lnk [2015-07-03]
ShortcutTarget: FAH.lnk -> C:\Program Files\WinZip\FAH\FAHConsole.exe (Nico Mak Computing)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WinZip Preloader.lnk [2015-07-03]
ShortcutTarget: WinZip Preloader.lnk -> C:\Program Files\WinZip\WzPreloader.exe (WinZip Computing, S.L.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-08-09] (AVAST Software)
ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-04-20] (IvoSoft)
ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20] (IvoSoft)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-21-3809139199-386801105-3546470006-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://seznam.cz/
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3809139199-386801105-3546470006-1002 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-04-20] (IvoSoft)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-08-09] (AVAST Software)
BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2014-04-20] (IvoSoft)
BHO-x32: AcroIEHlprObj Class -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files (x86)\Adobe\Acrobat 6.0 CE\Reader\ActiveX\AcroIEHelper.dll [2003-05-12] (Adobe Systems Incorporated)
BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20] (IvoSoft)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-08-09] (AVAST Software)
BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2014-04-20] (IvoSoft)
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-04-20] (IvoSoft)
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20] (IvoSoft)
Tcpip\Parameters: [DhcpNameServer] 192.168.15.1
Tcpip\..\Interfaces\{68EB3AC8-98E7-4D02-A1E3-5115D466C3DE}: [DhcpNameServer] 192.168.15.1
Tcpip\..\Interfaces\{DB459016-6743-4528-A3FC-E9067B2141E3}: [DhcpNameServer] 192.168.160.1

FireFox:
========
FF ProfilePath: C:\Users\Adrian\AppData\Roaming\Mozilla\Firefox\Profiles\idumb2aa.default
FF Homepage: https://www.seznam.cz/
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll [2015-08-16] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll [2015-08-16] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-04] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-04] (Intel Corporation)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2012-05-12] ()
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-01-02]

Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-07-21]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [312448 2013-10-01] (Windows (R) Win 7 DDK provider) [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600 2015-08-09] (AVAST Software)
R3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [4047768 2015-07-21] (Avast Software)
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-10-29] (Microsoft Corporation)
R2 dts_apo_service; C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_service.exe [19792 2013-09-10] ()
R2 Fabs; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [1858048 2012-01-23] (MAGIX AG) [File not signed]
S3 FirebirdServerMAGIXInstance; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [2702848 2011-04-26] (MAGIX®) [File not signed]
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1155216 2015-07-24] (NVIDIA Corporation)
R2 GFNEXSrv; C:\Program Files (x86)\TOSHIBA\PasswordUtility\GFNEXSrv.exe [163168 2013-03-27] ()
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-12] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-12] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-09-04] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-04] (Intel Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1871504 2015-07-24] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5544592 2015-07-24] (NVIDIA Corporation)
S2 ssinstall; C:\Windows\SysWOW64\ssins.exe [2324216 2015-01-08] (PS Media s.r.o.)
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [339456 2013-08-16] (IDT, Inc.) [File not signed]
R3 TemproMonitoringService; C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe [116088 2013-07-19] (Toshiba Europe GmbH)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

U0 amkgibo; C:\Windows\System32\drivers\vbfandrc.sys [79064 2015-08-17] (Malwarebytes Corporation)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-08-09] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [90968 2015-08-09] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-08-09] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-08-09] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1048344 2015-08-16] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [447944 2015-08-09] (AVAST Software)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [150672 2015-08-09] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [274808 2015-08-09] (AVAST Software)
R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3859968 2013-08-16] (Qualcomm Atheros Communications, Inc.)
S2 athsgt; C:\Windows\System32\DRIVERS\athsgt.sys [210944 2015-05-25] () [File not signed]
R3 BthLEEnum; C:\Windows\System32\drivers\BthLEEnum.sys [226304 2013-12-04] (Microsoft Corporation)
U3 dtscsidrv; C:\Windows\System32\Drivers\dtscsidrv.sys [309248 2015-01-12] (Disc Soft Ltd)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2015-01-12] (Disc Soft Ltd)
S2 limsgt; C:\Windows\System32\DRIVERS\limsgt.sys [22528 2015-05-25] () [File not signed]
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-04] (Intel Corporation)
R0 ngvss; C:\Windows\System32\Drivers\ngvss.sys [115152 2015-08-09] (AVAST Software)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-07-24] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [47976 2015-07-03] (NVIDIA Corporation)
R2 PEGAGFN; C:\Program Files (x86)\TOSHIBA\PasswordUtility\PEGAGFN.sys [14344 2009-09-11] (PEGATRON)
S3 RTWlanE; C:\Windows\system32\DRIVERS\rtwlane.sys [1936088 2013-07-31] (Realtek Semiconductor Corporation )
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [34544 2013-08-22] (Synaptics Incorporated)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [386680 2015-01-12] (Duplex Secure Ltd.)
R3 Thotkey; C:\Windows\System32\drivers\Thotkey.sys [32624 2013-08-19] (Windows (R) Win 7 DDK provider)
R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [273824 2015-07-21] (Avast Software)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-08-18 15:03 - 2015-08-18 15:03 - 00017100 _____ C:\Users\Adrian\Desktop\FRST.txt
2015-08-18 15:02 - 2015-08-18 15:03 - 00000000 ____D C:\FRST
2015-08-18 14:59 - 2015-08-18 15:01 - 00112640 _____ (forum.viry.cz) C:\Users\Adrian\Desktop\FRSTLauncher.exe
2015-08-18 14:58 - 2015-08-18 14:58 - 02173440 _____ (Farbar) C:\Users\Adrian\Desktop\FRST64.exe
2015-08-17 22:58 - 2015-08-17 22:58 - 00079064 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\vbfandrc.sys
2015-08-17 21:34 - 2015-08-17 22:11 - 182267538 _____ ( ) C:\Users\Adrian\Desktop\HappyFoto-Designer.exe.part
2015-08-17 14:59 - 2015-08-17 15:00 - 00000815 _____ C:\AdwCleaner[C3].txt
2015-08-17 14:59 - 2015-08-17 14:59 - 00000662 _____ C:\AdwCleaner[S3].txt
2015-08-17 14:58 - 2015-08-17 14:58 - 01563648 _____ C:\Users\Adrian\Desktop\adwcleaner_5.000.exe
2015-08-17 14:57 - 2015-08-17 14:57 - 00000194 _____ C:\Users\Adrian\Desktop\DiskInfo.ini
2015-08-17 14:57 - 2015-08-17 14:57 - 00000000 ____D C:\Users\Adrian\Desktop\Smart
2015-08-17 14:56 - 2012-06-15 14:08 - 01149912 _____ (Crystal Dew World) C:\Users\Adrian\Desktop\DiskInfo.exe
2015-08-17 14:56 - 2012-05-27 20:28 - 00000000 ____D C:\Users\Adrian\Desktop\CdiResource
2015-08-17 14:56 - 2012-01-05 07:02 - 00001268 _____ C:\Users\Adrian\Desktop\COPYRIGHT.txt
2015-08-17 14:56 - 2012-01-05 07:02 - 00001122 _____ C:\Users\Adrian\Desktop\COPYRIGHT-ja.txt
2015-08-16 23:54 - 2015-08-16 23:54 - 00000000 ____D C:\rsit
2015-08-16 23:53 - 2015-08-16 23:53 - 01222144 _____ C:\Users\Adrian\Desktop\RSITx64.exe
2015-08-16 23:49 - 2015-08-16 23:49 - 00000000 ____D C:\Windows\SysWOW64\NV
2015-08-16 23:49 - 2015-08-16 23:49 - 00000000 ____D C:\Windows\system32\NV
2015-08-16 23:46 - 2015-08-16 23:47 - 00000000 ____D C:\Windows\LastGood.Tmp
2015-08-16 23:43 - 2015-08-07 13:06 - 42840184 _____ C:\Windows\system32\nvcompiler.dll
2015-08-16 23:43 - 2015-08-07 13:06 - 37819000 _____ C:\Windows\SysWOW64\nvcompiler.dll
2015-08-16 23:43 - 2015-08-07 13:06 - 22520624 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2015-08-16 23:43 - 2015-08-07 13:06 - 18540336 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2015-08-16 23:43 - 2015-08-07 13:06 - 17124832 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2015-08-16 23:43 - 2015-08-07 13:06 - 16630096 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2015-08-16 23:43 - 2015-08-07 13:06 - 15510112 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2015-08-16 23:43 - 2015-08-07 13:06 - 14928048 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2015-08-16 23:43 - 2015-08-07 13:06 - 14673920 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2015-08-16 23:43 - 2015-08-07 13:06 - 13656016 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2015-08-16 23:43 - 2015-08-07 13:06 - 12179496 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2015-08-16 23:43 - 2015-08-07 13:06 - 11076216 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2015-08-16 23:43 - 2015-08-07 13:06 - 02937648 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2015-08-16 23:43 - 2015-08-07 13:06 - 02624816 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2015-08-16 23:43 - 2015-08-07 13:06 - 01898104 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6435560.dll
2015-08-16 23:43 - 2015-08-07 13:06 - 01558832 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6435560.dll
2015-08-16 23:43 - 2015-08-07 13:06 - 01063216 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2015-08-16 23:43 - 2015-08-07 13:06 - 01059960 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2015-08-16 23:43 - 2015-08-07 13:06 - 00985208 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2015-08-16 23:43 - 2015-08-07 13:06 - 00931448 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2015-08-16 23:43 - 2015-08-07 13:06 - 00512720 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2015-08-16 23:43 - 2015-08-07 13:06 - 00421544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2015-08-16 23:43 - 2015-08-07 13:06 - 00408184 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2015-08-16 23:43 - 2015-08-07 13:06 - 00364152 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2015-08-16 23:43 - 2015-08-07 13:06 - 00150648 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2015-08-16 23:43 - 2015-08-07 13:06 - 00128512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2015-08-16 23:43 - 2015-08-07 13:06 - 00033050 _____ C:\Windows\system32\nvinfo.pb
2015-08-16 23:43 - 2015-08-07 13:06 - 00031352 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvpciflt.sys
2015-08-16 23:03 - 2015-08-16 23:32 - 00007122 _____ C:\Windows\PFRO.log
2015-08-16 22:38 - 2015-08-17 21:59 - 00001276 _____ C:\Windows\setupact.log
2015-08-16 22:38 - 2015-08-16 22:38 - 00000000 _____ C:\Windows\setuperr.log
2015-08-16 22:25 - 2015-07-30 16:04 - 00124624 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-08-16 22:25 - 2015-07-30 15:48 - 00103120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-08-16 21:30 - 2015-07-16 02:29 - 07458648 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-08-16 21:30 - 2015-07-16 02:29 - 01735000 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-08-16 21:30 - 2015-07-16 02:29 - 00101720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2015-08-16 21:30 - 2015-07-16 02:28 - 01499920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-08-16 21:30 - 2015-07-10 19:54 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2015-08-16 21:29 - 2015-07-19 03:58 - 00136904 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-08-16 21:29 - 2015-07-18 20:51 - 03704320 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-08-16 21:29 - 2015-07-18 20:31 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-08-16 21:29 - 2015-07-18 20:31 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-08-16 21:29 - 2015-07-18 20:31 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-08-16 21:29 - 2015-07-18 20:29 - 00409088 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll
2015-08-16 21:29 - 2015-07-18 20:29 - 00124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-08-16 21:29 - 2015-07-18 20:29 - 00029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-08-16 21:29 - 2015-07-18 20:28 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-08-16 21:29 - 2015-07-18 20:12 - 02228736 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-08-16 21:29 - 2015-07-18 20:10 - 00891904 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-08-16 21:29 - 2015-07-18 20:09 - 00721920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-08-16 21:28 - 2015-07-16 23:14 - 25192448 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-08-16 21:28 - 2015-07-16 22:36 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-08-16 21:28 - 2015-07-16 22:36 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-08-16 21:28 - 2015-07-16 22:35 - 02885632 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-08-16 21:28 - 2015-07-16 22:26 - 05923328 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-08-16 21:28 - 2015-07-16 22:23 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-08-16 21:28 - 2015-07-16 22:21 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-08-16 21:28 - 2015-07-16 22:20 - 19870208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-08-16 21:28 - 2015-07-16 21:53 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2015-08-16 21:28 - 2015-07-16 21:51 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-08-16 21:28 - 2015-07-16 21:50 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-08-16 21:28 - 2015-07-16 21:45 - 02279424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-08-16 21:28 - 2015-07-16 21:45 - 01032704 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2015-08-16 21:28 - 2015-07-16 21:41 - 00479232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-08-16 21:28 - 2015-07-16 21:39 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-08-16 21:28 - 2015-07-16 21:38 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2015-08-16 21:28 - 2015-07-16 21:36 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-08-16 21:28 - 2015-07-16 21:34 - 14451200 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-08-16 21:28 - 2015-07-16 21:32 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-08-16 21:28 - 2015-07-16 21:14 - 02880000 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2015-08-16 21:28 - 2015-07-16 21:13 - 00880128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2015-08-16 21:28 - 2015-07-16 21:12 - 04520448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-08-16 21:28 - 2015-07-16 21:12 - 02427904 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-08-16 21:28 - 2015-07-16 21:10 - 12856832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-08-16 21:28 - 2015-07-16 21:06 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-08-16 21:28 - 2015-07-16 21:01 - 01545728 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-08-16 21:28 - 2015-07-16 20:52 - 01048576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll
2015-08-16 21:28 - 2015-07-16 20:49 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-08-16 21:28 - 2015-07-16 20:42 - 01951232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-08-16 21:28 - 2015-07-16 20:38 - 01310720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-08-16 21:28 - 2015-07-16 20:37 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-08-16 21:28 - 2015-06-09 20:27 - 00411133 _____ C:\Windows\system32\ApnDatabase.xml
2015-08-16 21:27 - 2015-07-29 01:24 - 00025776 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2015-08-16 21:27 - 2015-07-28 16:24 - 01148416 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-08-16 21:27 - 2015-07-28 16:24 - 01116160 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-08-16 21:27 - 2015-07-28 16:24 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-08-16 21:27 - 2015-07-28 16:24 - 00743424 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-08-16 21:27 - 2015-07-28 16:24 - 00437248 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-08-16 21:27 - 2015-07-28 16:24 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-08-16 21:27 - 2015-07-02 00:19 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2015-08-16 21:27 - 2015-07-02 00:16 - 00104448 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2015-08-16 21:27 - 2015-07-01 23:37 - 00198656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2015-08-16 21:27 - 2015-07-01 23:35 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2015-08-16 21:27 - 2015-06-12 19:03 - 18823680 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2015-08-16 21:27 - 2015-06-12 18:36 - 15159296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2015-08-16 21:26 - 2015-07-29 16:37 - 01994752 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-08-16 21:26 - 2015-07-29 16:30 - 01381888 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2015-08-16 21:26 - 2015-07-29 16:23 - 01559552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2015-08-16 21:26 - 2015-07-24 20:57 - 04177408 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-08-16 21:26 - 2015-07-24 20:57 - 00358912 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-08-16 21:26 - 2015-07-24 20:52 - 00044032 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-08-16 21:26 - 2015-07-24 19:27 - 00301568 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2015-08-16 21:26 - 2015-07-24 19:23 - 00035840 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2015-08-16 21:26 - 2015-07-14 23:59 - 01113944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2015-08-16 21:26 - 2015-07-14 23:59 - 00487256 _____ (Microsoft Corporation) C:\Windows\system32\netcfgx.dll
2015-08-16 21:26 - 2015-07-14 23:59 - 00393560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcfgx.dll
2015-08-16 21:26 - 2015-07-14 05:22 - 02529880 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2015-08-16 21:26 - 2015-07-14 05:21 - 01901776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2015-08-16 21:26 - 2015-07-13 21:46 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-08-16 21:26 - 2015-07-13 21:45 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\basesrv.dll
2015-08-16 21:26 - 2015-07-10 20:19 - 01101824 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2015-08-16 21:26 - 2015-07-10 19:42 - 02345472 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-08-16 21:26 - 2015-07-10 19:14 - 00856064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2015-08-16 21:26 - 2015-07-10 19:13 - 07032320 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2015-08-16 21:26 - 2015-07-10 18:47 - 01556992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2015-08-16 21:26 - 2015-07-10 18:31 - 06213120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2015-08-16 21:26 - 2015-07-09 19:13 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\notepad.exe
2015-08-16 21:26 - 2015-07-09 19:13 - 00221184 _____ (Microsoft Corporation) C:\Windows\notepad.exe
2015-08-16 21:26 - 2015-07-09 18:30 - 00212992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
2015-08-16 21:26 - 2015-07-07 11:40 - 00270168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdFilter.sys
2015-08-16 21:26 - 2015-07-07 11:40 - 00114520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdNisDrv.sys
2015-08-16 21:26 - 2015-07-07 11:40 - 00044560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdBoot.sys
2015-08-16 21:26 - 2015-06-11 22:12 - 02476376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2015-08-16 21:26 - 2015-06-11 22:12 - 00428888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2015-08-10 07:19 - 2015-08-18 15:03 - 01344403 _____ C:\Windows\WindowsUpdate.log
2015-08-09 23:40 - 2015-07-03 06:28 - 00065896 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2015-08-09 23:40 - 2015-07-03 06:28 - 00047976 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2015-08-09 21:42 - 2015-08-16 21:06 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-08-09 21:22 - 2015-08-09 21:22 - 00378880 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2015-08-09 21:22 - 2015-08-09 21:22 - 00043112 _____ (AVAST Software) C:\Windows\avastSS.scr
2015-07-28 22:45 - 2015-07-28 22:45 - 00000000 ____D C:\Users\Adrian\AppData\Roaming\Bentley
2015-07-28 22:45 - 2015-07-28 22:45 - 00000000 ____D C:\Users\Adrian\AppData\Local\Bentley
2015-07-28 22:31 - 2015-07-28 22:45 - 00000000 ____D C:\ProgramData\Bentley
2015-07-28 22:31 - 2015-07-28 22:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bentley
2015-07-28 22:31 - 2015-07-28 22:31 - 00000000 ____D C:\Program Files (x86)\Bentley
2015-07-28 20:39 - 2015-07-28 20:39 - 00000000 ____D C:\Users\Adrian\AppData\Roaming\calibre
2015-07-28 20:39 - 2015-07-28 20:39 - 00000000 ____D C:\ProgramData\Epubsoft
2015-07-28 20:04 - 2015-07-28 20:05 - 00000000 ____D C:\Users\Adrian\Documents\Image Converter Plus
2015-07-28 20:04 - 2015-07-28 20:04 - 00000000 ____D C:\Users\Public\Documents\ImageConverter Plus
2015-07-28 20:04 - 2015-07-28 20:04 - 00000000 ____D C:\Program Files\ImageConverter Plus
2015-07-28 20:04 - 2014-10-29 18:15 - 00246800 _____ (fCoder Group International) C:\Windows\system32\cnvshell.dll
2015-07-28 20:04 - 2014-10-29 18:03 - 00375296 _____ (TODO: <Company name>) C:\Windows\system32\ucinput.dll
2015-07-28 19:47 - 2015-07-28 20:41 - 00000000 ____D C:\Users\Adrian\Desktop\Joe Dever - Gamebooky
2015-07-21 21:53 - 2015-07-21 21:53 - 00003371 _____ C:\Users\Adrian\Desktop\you shook me all night long solo tab.txt
2015-07-21 20:39 - 2015-07-05 12:08 - 00300704 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2015-07-21 20:23 - 2015-07-21 20:23 - 00000000 ____D C:\Windows\%LOCALAPPDATA%
2015-07-21 20:12 - 2015-08-09 21:21 - 00115152 _____ (AVAST Software) C:\Windows\system32\Drivers\ngvss.sys

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-08-18 15:03 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\AppReadiness
2015-08-18 15:00 - 2014-12-10 22:13 - 00000000 ____D C:\Users\Adrian\AppData\Roaming\ClassicShell
2015-08-18 15:00 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\sru
2015-08-18 14:59 - 2013-11-28 18:56 - 01745984 _____ C:\Windows\system32\PerfStringBackup.INI
2015-08-18 14:59 - 2013-08-28 16:02 - 00739924 _____ C:\Windows\system32\perfh005.dat
2015-08-18 14:59 - 2013-08-28 16:02 - 00151610 _____ C:\Windows\system32\perfc005.dat
2015-08-17 22:58 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\Resources
2015-08-17 21:58 - 2014-12-10 19:08 - 00003974 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{FE3A5D4E-4A52-446E-8C5A-03B0B574B1D7}
2015-08-17 18:35 - 2014-12-10 18:54 - 00003598 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3809139199-386801105-3546470006-1002
2015-08-17 15:26 - 2015-01-08 02:26 - 00000000 _____ C:\Windows\SysWOW64\sinstall.log
2015-08-17 15:23 - 2013-08-22 16:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-08-17 05:35 - 2014-12-14 21:22 - 00000000 ____D C:\Users\Adrian\AppData\Roaming\uTorrent
2015-08-17 01:07 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\rescache
2015-08-16 23:54 - 2015-01-08 01:31 - 00000000 ____D C:\Program Files\trend micro
2015-08-16 23:49 - 2015-02-23 19:09 - 00000000 ____D C:\Users\Adrian\AppData\Local\CrashDumps
2015-08-16 23:49 - 2014-03-22 19:47 - 00000000 ____D C:\ProgramData\NVIDIA
2015-08-16 23:49 - 2014-03-22 19:46 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-08-16 23:33 - 2013-08-22 16:44 - 00550888 _____ C:\Windows\system32\FNTCACHE.DAT
2015-08-16 23:32 - 2013-08-22 15:25 - 00262144 ___SH C:\Windows\system32\config\BBI
2015-08-16 23:28 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-08-16 23:26 - 2015-04-18 13:09 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-08-16 23:26 - 2013-08-28 15:54 - 00000000 ____D C:\Program Files (x86)\MSBuild
2015-08-16 23:25 - 2013-08-22 21:11 - 00000000 ____D C:\Windows\ShellNew
2015-08-16 23:25 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Common Files\System
2015-08-16 23:25 - 2013-08-22 15:25 - 00000108 _____ C:\Windows\win.ini
2015-08-16 23:10 - 2015-01-02 23:36 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2015-08-16 23:03 - 2015-01-08 02:27 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-08-16 23:00 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-08-16 23:00 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-16 23:00 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-08-16 23:00 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-16 23:00 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Windows Defender
2015-08-16 23:00 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2015-08-16 22:40 - 2014-12-28 01:03 - 00000000 ____D C:\Users\Adrian\AppData\Roaming\MPC-HC
2015-08-16 22:26 - 2014-12-10 18:47 - 00000000 ____D C:\Users\Adrian\AppData\Local\Packages
2015-08-16 22:26 - 2013-08-22 17:20 - 00000000 ____D C:\Windows\CbsTemp
2015-08-16 22:25 - 2014-12-10 23:26 - 00000000 ____D C:\Windows\system32\MRT
2015-08-16 22:20 - 2014-12-10 23:26 - 132483416 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-08-16 22:18 - 2015-04-19 07:53 - 00000000 ___SD C:\Windows\system32\CompatTel
2015-08-16 22:18 - 2015-04-19 07:53 - 00000000 ____D C:\Windows\system32\appraiser
2015-08-16 21:10 - 2015-06-22 23:25 - 00000000 ____D C:\Users\Adrian\Documents\ttt
2015-08-16 21:10 - 2014-12-14 21:46 - 00000000 ____D C:\Users\Adrian\Documents\Torrent
2015-08-16 20:59 - 2015-01-02 23:36 - 01048344 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2015-08-10 01:26 - 2015-07-04 10:44 - 00000000 ____D C:\ProgramData\VSO
2015-08-10 01:22 - 2015-05-14 19:25 - 00000845 _____ C:\Users\Public\Desktop\CCleaner.lnk
2015-08-10 01:22 - 2015-05-14 19:25 - 00000000 ____D C:\Program Files\CCleaner
2015-08-09 23:41 - 2014-12-14 15:17 - 00001404 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2015-08-09 22:08 - 2013-11-29 19:31 - 00000000 ____D C:\Windows\Panther
2015-08-09 22:03 - 2015-07-10 18:25 - 00000000 ___HD C:\$Windows.~BT
2015-08-09 21:22 - 2015-01-02 23:36 - 00447944 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2015-08-09 21:22 - 2015-01-02 23:36 - 00274808 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2015-08-09 21:22 - 2015-01-02 23:36 - 00150672 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2015-08-09 21:22 - 2015-01-02 23:36 - 00093528 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2015-08-09 21:22 - 2015-01-02 23:36 - 00090968 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2015-08-09 21:22 - 2015-01-02 23:36 - 00065224 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2015-08-09 21:22 - 2015-01-02 23:36 - 00028656 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2015-08-08 15:55 - 2015-06-19 20:26 - 00794088 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-08-08 15:55 - 2015-06-19 20:26 - 00179688 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-08-07 13:06 - 2015-06-22 17:15 - 03106384 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2015-08-07 13:06 - 2015-03-20 21:33 - 03518248 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2015-08-07 13:06 - 2014-03-22 19:45 - 12513288 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2015-08-07 13:06 - 2014-03-22 19:45 - 01104440 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2015-08-07 13:06 - 2014-03-22 19:45 - 00942688 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2015-08-07 13:06 - 2014-03-22 19:45 - 00177088 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2015-08-07 13:06 - 2014-03-22 19:45 - 00155792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2015-08-07 06:34 - 2014-03-22 19:46 - 06883448 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2015-08-07 06:34 - 2014-03-22 19:46 - 03492144 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2015-08-07 06:34 - 2014-03-22 19:46 - 02558768 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2015-08-07 06:34 - 2014-03-22 19:46 - 01061168 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2015-08-07 06:34 - 2014-03-22 19:46 - 00937592 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2015-08-07 06:34 - 2014-03-22 19:46 - 00385328 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2015-08-07 06:34 - 2014-03-22 19:46 - 00074872 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2015-08-07 06:34 - 2014-03-22 19:46 - 00062768 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2015-08-03 12:12 - 2014-03-22 19:46 - 05133709 _____ C:\Windows\system32\nvcoproc.bin
2015-07-28 21:08 - 2013-11-28 19:50 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2015-07-28 19:37 - 2015-04-19 07:53 - 00000000 ___SD C:\Windows\system32\GWX
2015-07-24 06:21 - 2014-12-14 15:13 - 01756608 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2015-07-24 06:21 - 2014-12-14 15:13 - 01710568 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2015-07-24 06:21 - 2014-12-14 15:13 - 01423304 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2015-07-24 06:21 - 2014-12-14 15:13 - 01316000 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2015-07-22 18:54 - 2013-08-22 15:25 - 00262144 ___SH C:\Windows\system32\config\ELAM
2015-07-21 23:30 - 2015-01-02 23:39 - 00000000 ____D C:\Windows\SysWOW64\vbox
2015-07-21 23:30 - 2015-01-02 23:39 - 00000000 ____D C:\Windows\system32\vbox
2015-07-21 20:38 - 2015-07-04 12:58 - 00000000 ____D C:\Users\Adrian\Documents\ConvertXtoDVD

==================== Files in the root of some directories =======

2015-07-04 10:44 - 2015-07-04 10:44 - 0099384 _____ () C:\Users\Adrian\AppData\Roaming\inst.exe
2015-07-04 10:44 - 2015-07-04 10:44 - 0007859 _____ () C:\Users\Adrian\AppData\Roaming\pcouffin.cat
2015-07-04 10:44 - 2015-07-04 10:44 - 0001167 _____ () C:\Users\Adrian\AppData\Roaming\pcouffin.inf
2015-07-04 10:44 - 2015-07-04 10:44 - 0000055 _____ () C:\Users\Adrian\AppData\Roaming\pcouffin.log
2015-07-04 10:44 - 2015-07-04 10:44 - 0082816 _____ (VSO Software) C:\Users\Adrian\AppData\Roaming\pcouffin.sys
2015-03-23 21:55 - 2015-03-23 22:09 - 0003072 _____ () C:\Users\Adrian\AppData\Local\file__0.localstorage
2015-06-08 22:06 - 2015-06-08 22:06 - 0007602 _____ () C:\Users\Adrian\AppData\Local\Resmon.ResmonCfg

Some files in TEMP:
====================
C:\Users\Adrian\AppData\Local\Temp\sqlite3.dll

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2015-08-16 22:14

===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

Drive c: (TI31254900A) (Fixed) (Total:687.03 GB) (Free:203.15 GB) NTFS

Available physical RAM: 2097.31 MB
Total physical RAM: 3971.27 MB
Percentage of memory in use: 47%

==================== MBR and Partition Table ==================

MAGIX Music Maker 2014 Premium (Synthesizer and effects) (HKLM-x32\...\MX.{F33DA3A6-4AA8-4DCD-9707-944599BF54E2}) (Version: 1.0.1.0 - MAGIX Software GmbH)
MAGIX Music Maker 2014 Premium (Synthesizer and effects) (Version: 1.0.1.0 - MAGIX Software GmbH) Hidden
Disk: 0 (Size: 698.6 GB) (Disk ID: 00000000)

==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

==================== Alternate Data Streams (whitelisted) ==================

AlternateDataStreams: C:\ProgramData:gs5sys
AlternateDataStreams: C:\Users\Adrian:gs5sys
AlternateDataStreams: C:\Users\All Users:gs5sys
AlternateDataStreams: C:\Users\Adrian\Data aplikací:gs5sys
AlternateDataStreams: C:\Users\Adrian\Local Settings:gs5sys
AlternateDataStreams: C:\Users\Adrian\Soubory cookie:gs5sys
AlternateDataStreams: C:\Users\Adrian\Šablony:gs5sys
AlternateDataStreams: C:\Users\Adrian\Desktop\desktop.ini:gs5sys
AlternateDataStreams: C:\Users\Adrian\AppData\Local:gs5sys
AlternateDataStreams: C:\Users\Adrian\AppData\Roaming:gs5sys
AlternateDataStreams: C:\Users\Adrian\AppData\Local\Data aplikací:gs5sys
AlternateDataStreams: C:\Users\Adrian\AppData\Local\History:gs5sys
AlternateDataStreams: C:\Users\Adrian\Documents\desktop.ini:gs5sys
AlternateDataStreams: C:\ProgramData\Application Data:gs5sys
AlternateDataStreams: C:\Users\Public\Documents\desktop.ini:gs5sys

==================== Security Center ==================

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: avast! Antivirus (Disabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}

===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)

***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Adrian\Desktop" je 241 MB.

***** Startup Programs *****

***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000

==================== End Of Log ==============================

#8 Příspěvek od **Márty84** » 18 srp 2015 15:02

Otevrete si poznamkovy blok a zkopirujte do nej tento skript

Kód: Vybrat vše

Start
CloseProcesses:
CreateRestorePoint:

HKU\S-1-5-21-3809139199-386801105-3546470006-1002\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-3809139199-386801105-3546470006-1002\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8418584 2015-07-17] (Piriform Ltd)
HKU\S-1-5-21-3809139199-386801105-3546470006-1002\...\Run: [Zoner Photo Studio Autoupdate] => C:\PROGRAM FILES\ZONER\PHOTO STUDIO 17\Program32\ZPSTRAY.EXE [437248 2014-09-12] (ZONER software)

AlternateDataStreams: C:\ProgramData:gs5sys
AlternateDataStreams: C:\Users\Adrian:gs5sys
AlternateDataStreams: C:\Users\All Users:gs5sys
AlternateDataStreams: C:\Users\Adrian\Data aplikací:gs5sys
AlternateDataStreams: C:\Users\Adrian\Local Settings:gs5sys
AlternateDataStreams: C:\Users\Adrian\Soubory cookie:gs5sys
AlternateDataStreams: C:\Users\Adrian\Šablony:gs5sys
AlternateDataStreams: C:\Users\Adrian\Desktop\desktop.ini:gs5sys
AlternateDataStreams: C:\Users\Adrian\AppData\Local:gs5sys
AlternateDataStreams: C:\Users\Adrian\AppData\Roaming:gs5sys
AlternateDataStreams: C:\Users\Adrian\AppData\Local\Data aplikací:gs5sys
AlternateDataStreams: C:\Users\Adrian\AppData\Local\History:gs5sys
AlternateDataStreams: C:\Users\Adrian\Documents\desktop.ini:gs5sys
AlternateDataStreams: C:\ProgramData\Application Data:gs5sys
AlternateDataStreams: C:\Users\Public\Documents\desktop.ini:gs5sys

Hosts:
EmptyTemp:
Reboot:
End

Vlevo nahore kliknete na napis Soubor
Kliknete na napis Ulozit jako...
Napiste spravne ten cerveny nazev fixlist a ulozte na plochu.
Vypnete antivir i dalsi pripadne zabezpeceni.
Spustte FRST jako spravce, kliknete na napis Fix a program vykona prikazy.
Po restartu pc by se mel objevit novy log - s nazvem fixlog, ten mi sem zase zkopirujte.

abdul99 · #9 Příspěvek od **abdul99** » 18 srp 2015 15:24

Fix result of Farbar Recovery Scan Tool (x64) Version:17-08-2015
Ran by Adrian (2015-08-18 16:07:58) Run:1
Running from C:\Users\Adrian\Desktop
Loaded Profiles: Adrian (Available Profiles: Adrian)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:

HKU\S-1-5-21-3809139199-386801105-3546470006-1002\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-3809139199-386801105-3546470006-1002\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8418584 2015-07-17] (Piriform Ltd)
HKU\S-1-5-21-3809139199-386801105-3546470006-1002\...\Run: [Zoner Photo Studio Autoupdate] => C:\PROGRAM FILES\ZONER\PHOTO STUDIO 17\Program32\ZPSTRAY.EXE [437248 2014-09-12] (ZONER software)

AlternateDataStreams: C:\ProgramData:gs5sys
AlternateDataStreams: C:\Users\Adrian:gs5sys
AlternateDataStreams: C:\Users\All Users:gs5sys
AlternateDataStreams: C:\Users\Adrian\Data aplikací:gs5sys
AlternateDataStreams: C:\Users\Adrian\Local Settings:gs5sys
AlternateDataStreams: C:\Users\Adrian\Soubory cookie:gs5sys
AlternateDataStreams: C:\Users\Adrian\Šablony:gs5sys
AlternateDataStreams: C:\Users\Adrian\Desktop\desktop.ini:gs5sys
AlternateDataStreams: C:\Users\Adrian\AppData\Local:gs5sys
AlternateDataStreams: C:\Users\Adrian\AppData\Roaming:gs5sys
AlternateDataStreams: C:\Users\Adrian\AppData\Local\Data aplikací:gs5sys
AlternateDataStreams: C:\Users\Adrian\AppData\Local\History:gs5sys
AlternateDataStreams: C:\Users\Adrian\Documents\desktop.ini:gs5sys
AlternateDataStreams: C:\ProgramData\Application Data:gs5sys
AlternateDataStreams: C:\Users\Public\Documents\desktop.ini:gs5sys

Hosts:
EmptyTemp:
Reboot:
End
*****************

Processes closed successfully.
Restore point was successfully created.
HKU\S-1-5-21-3809139199-386801105-3546470006-1002\Software\Microsoft\Windows\CurrentVersion\Run\\DAEMON Tools Lite => value removed successfully
HKU\S-1-5-21-3809139199-386801105-3546470006-1002\Software\Microsoft\Windows\CurrentVersion\Run\\CCleaner Monitoring => value removed successfully
HKU\S-1-5-21-3809139199-386801105-3546470006-1002\Software\Microsoft\Windows\CurrentVersion\Run\\Zoner Photo Studio Autoupdate => value removed successfully
C:\ProgramData => ":gs5sys" ADS removed successfully.
C:\Users\Adrian => ":gs5sys" ADS removed successfully.
"C:\Users\All Users" => ":gs5sys" ADS not found.
"C:\Users\Adrian\Data aplikací" => ":gs5sys" ADS not found.
"C:\Users\Adrian\Local Settings" => ":gs5sys" ADS not found.
"C:\Users\Adrian\Soubory cookie" => ":gs5sys" ADS not found.
"C:\Users\Adrian\Šablony" => ":gs5sys" ADS not found.
C:\Users\Adrian\Desktop\desktop.ini => ":gs5sys" ADS removed successfully.
C:\Users\Adrian\AppData\Local => ":gs5sys" ADS removed successfully.
C:\Users\Adrian\AppData\Roaming => ":gs5sys" ADS removed successfully.
"C:\Users\Adrian\AppData\Local\Data aplikací" => ":gs5sys" ADS not found.
"C:\Users\Adrian\AppData\Local\History" => ":gs5sys" ADS not found.
C:\Users\Adrian\Documents\desktop.ini => ":gs5sys" ADS removed successfully.
"C:\ProgramData\Application Data" => ":gs5sys" ADS not found.
C:\Users\Public\Documents\desktop.ini => ":gs5sys" ADS removed successfully.
C:\Windows\System32\Drivers\etc\hosts => moved successfully.
Hosts restored successfully.
EmptyTemp: => 1.3 GB temporary data Removed.

The system needed a reboot..

==== End of Fixlog 16:09:11 ====

#10 Příspěvek od **Márty84** » 18 srp 2015 22:15

Vsechny tyto programy - vcetne pripadne instalace - spoustejte jako spravce (kliknete na ne pravym mysidlem a zvolte - Spustit jako spravce)

vyosek píše: DelFix https://toolslib.net/downloads/finish/2/
Stahnete a spustte

Ponechte zatrzitkou pouze u volby Remove disinfection tools

Kliknete na Run

Stahnete Ccleaner http://www.filehippo.com/download_ccleaner a spustte.
Pri instalaci pozor na toolbar (ci jine doplnky), jestli vam nabidne jeho instalaci, tak zruste zatrzitko.
Po spusteni se ocitnete ve funkci Cistic. Vlevo je spousta zatrzitek. Pozor dejte hlavne na kos, pokud nechate zatrzene, vzdy ho vysype.
Dale, podle toho jak je nastaven, smaze vsechna hesla ulozena na netu!!! Takze jestli mate nastavene, at si pocitac hesla pamatuje (coz neni pro bezpecnost dobre), budete je muset pak napsat znova rucne (napr mail, facebook, ruzna fora atd.)
Kliknete na Analyzovat a az dokonci analyzu, kliknete na Spustit Cleaner.
Potom kliknete vlevo na funkci Registry
Kliknete na Hledej problemy, kdyz najde, kliknete na Opravit problemy. Nabidne Vam zalohu, tu udelejte a ulozte ji tak, at ji v pripade potreby najdete.
Funkce Nastroje umoznuje odinstalovani programu. Je dukladnejsi nez samotny windows!
(Pokud je v pc vice uzivatelskych uctu, pouzijte program i v nich)

Defragmentujte disk(y) (SSD Disky ne!)
Stahnete program Defraggler https://www.piriform.com/defraggler/download/standard
Pri instalaci opet pozor na toolbar a dalsi nesmysly.
Po nainstalovani program spustte a kliknete na Analyzovat, po analyze kliknete na Defragmentovat a programek odvede svou praci.

Pak napiste, jak to s pc vypada.

abdul99 · #11 Příspěvek od **abdul99** » 20 srp 2015 19:50

NTB ná mnohem rychlejší naběhnutí systému, i odezva je podstatně rychlejší. Moc děkuju! Velkej respekt!

#12 Příspěvek od **Márty84** » 20 srp 2015 21:25

Nemate zac!

Hlidejte velikost adresare plochy, cim mensi, tim lepe pro pc.

Mejte se a treba zase nekdy

VIRY.CZ

Moc prosím o preventivku

Moc prosím o preventivku

Re: Moc prosím o preventivku

Re: Moc prosím o preventivku

Re: Moc prosím o preventivku

Re: Moc prosím o preventivku

Re: Moc prosím o preventivku

Re: Moc prosím o preventivku

Re: Moc prosím o preventivku

Re: Moc prosím o preventivku

Re: Moc prosím o preventivku

Re: Moc prosím o preventivku

Re: Moc prosím o preventivku