Zdravím potřeboval bych pomoc zda nemám v PC nějaký vir. PC se mi občas sekne tak na 15 vtěřin a pak se odsekne, když se zasekne tak nejde hýbat ani s myší prostě zásek celého PC. Dále mám další problém s tím, že když potřebuju otevřít soubor pdf tak se neotevře protože tam "není" program který tam je to samí mi dělá se zazipovanýma souborama tenhle problém pozoruji od té doby co se PC zasekává nevím zda to má na to nějaký vliv, ale třeba mi s tím pomůžete. A celý PC je prostě tak nějak zpomalený. Zdá se mi, že se občas i docela hřeje. Všimnul jsem si že při startu běží nějaké procesy, které vytěžují docela CPU, ale nevím zda procesy nejsou nějak potřebné k chodu PC. Budu doufat, že mi s tím nějak pomůžete.
FRST:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:04-03-2016
Ran by Tom (administrator) on TOM (04-03-2016 17:58:43)
Running from C:\Users\Tomáš\Desktop
Loaded Profiles: Tom (Available Profiles: Tom)
Platform: Windows 8 Pro (X64) Language: Čeština (Česká republika)
Internet Explorer Version 10 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(IObit) C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(Microsoft Corporation) C:\Windows\slsvc.exe
() C:\Windows\PersonalizeEnabler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.5\GoogleCrashHandler.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.5\GoogleCrashHandler64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SynptSync64.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe
(ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
(ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ArcCon.ac
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe
(forum.viry.cz) C:\Users\Tomáš\Desktop\FRSTLauncher.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2539304 2015-08-03] (Synaptics Incorporated)
HKLM\...\Run: [SynAsusAcpi] => C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe [95016 2015-08-03] (Synaptics Incorporated)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2787264 2016-01-12] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16408320 2016-02-22] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1407104 2016-02-22] (Realtek Semiconductor)
HKLM-x32\...\Run: [ArcSoft Connection Service] => C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [207424 2010-10-27] (ArcSoft Inc.)
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596016 2016-01-29] (Oracle Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-714427804-3161757390-1116284539-1001\...\Run: [Steam] => D:\Hry\Steam\steam.exe [3014224 2016-02-04] (Valve Corporation)
HKU\S-1-5-21-714427804-3161757390-1116284539-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8461224 2015-09-16] (Piriform Ltd)
HKU\S-1-5-21-714427804-3161757390-1116284539-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [50615936 2016-01-18] (Skype Technologies S.A.)
HKU\S-1-5-21-714427804-3161757390-1116284539-1001\...\Run: [Advanced SystemCare 9] => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe [2010912 2015-11-06] (IObit)
HKU\S-1-5-21-714427804-3161757390-1116284539-1001\...\Run: [2f74e756dc20979c1b07764e28bc8bfc] => "C:\Users\Tomáš\AppData\Roaming\windowsupdater.exe" ..
HKU\S-1-5-21-714427804-3161757390-1116284539-1001\...\MountPoints2: F - "F:\Setup.exe"
HKU\S-1-5-21-714427804-3161757390-1116284539-1001\...\MountPoints2: G - "G:\RunGame.exe"
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [175368 2016-02-09] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [153208 2016-02-09] (NVIDIA Corporation)
Startup: C:\Users\Tomáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\2f74e756dc20979c1b07764e28bc8bfc.exe [2016-02-29] ()
Startup: C:\Users\Tomáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\2f74e756dc20979c1b07764e28bc8bfc.exe [2016-02-29] ()
GroupPolicy: Restriction - Chrome <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{D303714E-BA93-4821-A335-685B7D175DD9}: [DhcpNameServer] 192.168.2.1
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-714427804-3161757390-1116284539-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.seznam.cz/
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_74\bin\ssv.dll [2016-02-22] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_74\bin\jp2ssv.dll [2016-02-22] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_74\bin\ssv.dll [2016-02-22] (Oracle Corporation)
BHO-x32: Advanced SystemCare Surfing Protection -> {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} -> C:\Program Files (x86)\IObit\Surfing Protection\BrowerProtect\ASCPlugin_Protection.dll [2015-07-09] (IObit)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_74\bin\jp2ssv.dll [2016-02-22] (Oracle Corporation)
FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.74.2 -> C:\Program Files\Java\jre1.8.0_74\bin\dtplugin\npDeployJava1.dll [2016-02-22] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.74.2 -> C:\Program Files\Java\jre1.8.0_74\bin\plugin2\npjp2.dll [2016-02-22] (Oracle Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.74.2 -> C:\Program Files (x86)\Java\jre1.8.0_74\bin\dtplugin\npDeployJava1.dll [2016-02-22] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.74.2 -> C:\Program Files (x86)\Java\jre1.8.0_74\bin\plugin2\npjp2.dll [2016-02-22] (Oracle Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-03] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-03] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-12-18] (Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Steam inventory helper) - C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmeakgjggjdlcpncigglobpjbkabhmjl [2016-02-24]
CHR Extension: (LoungeDestroyer) - C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghahcnmfjfckcedfajbhekgknjdplfcl [2016-02-28]
CHR Extension: (Infinite HD App) - C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\laealigljflmglcgncipdbmbjgjdpiim [2016-02-05]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-10-28]
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
R2 AdvancedSystemCareService9; C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe [827680 2015-11-04] (IObit)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1314848 2016-01-19] ()
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1163200 2016-01-12] (NVIDIA Corporation)
R2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2934048 2015-11-10] (IObit)
S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [3916368 2016-01-09] (INCA Internet Co., Ltd.)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1879488 2016-01-12] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [6308288 2016-01-12] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [4812736 2016-01-12] (NVIDIA Corporation)
R2 slsvc; C:\Windows\slsvc.exe [10240 2012-09-25] (Microsoft Corporation) [File not signed]
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16056 2015-07-06] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 BthHFAud; C:\Windows\system32\DRIVERS\BthHfAud.sys [30720 2013-02-02] (Microsoft Corporation)
R3 btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [1419576 2015-10-20] (Motorola Solutions, Inc.)
S3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2015-10-23] (Disc Soft Ltd)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3265256 2012-09-20] (Broadcom Corporation)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-08-03] (REALiX(tm))
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [26560 2016-01-12] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [47760 2015-12-18] (NVIDIA Corporation)
S3 RTSUER; C:\Windows\system32\Drivers\RtsUer.sys [404184 2015-12-03] (Realsil Semiconductor Corporation)
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44560 2015-07-06] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [281944 2015-07-06] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-03-04 17:58 - 2016-03-04 17:58 - 00013412 _____ C:\Users\Tomáš\Desktop\FRST.txt
2016-03-04 17:46 - 2016-03-04 17:58 - 00000000 ____D C:\FRST
2016-03-04 17:46 - 2016-03-04 17:46 - 00112640 _____ (forum.viry.cz) C:\Users\Tomáš\Desktop\FRSTLauncher.exe
2016-03-04 17:45 - 2016-03-04 17:45 - 02374144 _____ (Farbar) C:\Users\Tomáš\Desktop\FRST64.exe
2016-03-03 21:40 - 2016-03-03 21:41 - 00000000 ____D C:\Users\Tomáš\AppData\Roaming\.technic
2016-03-03 21:40 - 2016-03-03 21:40 - 00001878 _____ C:\Users\Public\Desktop\MC Titan Launcher.lnk
2016-03-02 19:05 - 2016-03-02 19:05 - 00281440 _____ C:\Windows\system32\FNTCACHE.DAT
2016-03-02 19:04 - 2016-03-02 19:04 - 00000000 ____H C:\asc_rdflag
2016-02-29 19:59 - 2016-02-29 22:00 - 00000000 ____D C:\Users\Tomáš\AppData\Roaming\.minecraft
2016-02-29 19:59 - 2016-02-29 19:59 - 00001961 _____ C:\Users\Public\Desktop\Hrát na MC Titan www.mctitan.cz.lnk
2016-02-27 22:34 - 2016-02-27 22:34 - 00000000 ____D C:\Users\Tomáš\AppData\Roaming\SmartSteamEmu
2016-02-27 22:34 - 2016-02-27 22:34 - 00000000 ____D C:\Users\Tomáš\AppData\Local\Personal_use_only_(Darean
2016-02-27 22:33 - 2014-02-01 23:42 - 00000000 ____D C:\Users\Tomáš\AppData\Roaming\SpinTires
2016-02-26 21:24 - 2016-02-28 20:58 - 00000000 ____D C:\Users\Tomáš\Desktop\Random
2016-02-22 20:11 - 2016-02-23 22:48 - 00000000 ____D C:\Windows\SysWOW64\NV
2016-02-22 20:11 - 2016-02-23 22:48 - 00000000 ____D C:\Windows\system32\NV
2016-02-22 20:09 - 2016-02-22 20:10 - 00000000 ____D C:\Windows\LastGood
2016-02-22 20:08 - 2016-02-09 09:39 - 42982336 _____ C:\Windows\system32\nvcompiler.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 37616696 _____ C:\Windows\SysWOW64\nvcompiler.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 31081920 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 24916536 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 21193032 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 20733832 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 18758400 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 17625136 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 17218792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 16995576 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 16327896 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 14016576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 12383288 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2016-02-22 20:08 - 2016-02-09 09:39 - 03684072 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 03259688 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 03145272 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 02722872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 01924152 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6436191.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 01571776 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6436191.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 00950328 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 00880576 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 00747064 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 00691256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 00469144 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 00388560 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 00175368 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 00153208 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 00151368 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 00128696 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 00038336 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvpciflt.sys
2016-02-22 20:08 - 2016-02-09 09:39 - 00034905 _____ C:\Windows\system32\nvinfo.pb
2016-02-22 19:37 - 2016-02-22 19:37 - 00097888 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2016-02-22 19:37 - 2016-02-22 19:14 - 00110176 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-64.dll
2016-02-22 19:14 - 2016-02-22 19:14 - 00110176 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2016-02-22 19:01 - 2016-02-22 19:02 - 00000000 ____D C:\Windows\LastGood.Tmp
2016-02-22 19:00 - 2016-02-22 19:00 - 72203792 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat
2016-02-22 19:00 - 2016-02-22 19:00 - 14057256 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 13120760 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO3064.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 12986520 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO4064.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 10521552 _____ (Intel Corporation) C:\Windows\system32\IntelSSTAPO.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 07172920 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 07096192 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64A.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 06264640 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64AF3.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 05776688 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICV2apo.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 05338936 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOv211.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 05289952 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOlfx.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 04705536 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2016-02-22 19:00 - 2016-02-22 19:00 - 04486133 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2016-02-22 19:00 - 2016-02-22 19:00 - 03299832 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE2.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 03282032 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 03271912 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 03195648 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 03152591 _____ C:\Windows\system32\Drivers\rtkSSTsetting.dat
2016-02-22 19:00 - 2016-02-22 19:00 - 03052880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 02893568 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2016-02-22 19:00 - 2016-02-22 19:00 - 02823280 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO7064.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 02692848 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RltkAPO.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 02437144 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOv201.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 02190992 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 02110600 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 02050184 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 02030208 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 01965816 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64A.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 01959608 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64AF3.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 01928632 _____ (DTS, Inc.) C:\Windows\system32\sltech64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 01780624 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 01601952 _____ (Conexant Systems Inc.) C:\Windows\system32\CX64APO.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 01591064 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 01508936 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 01435144 _____ (Synopsys, Inc.) C:\Windows\system32\SRRPTR64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 01421104 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO6064.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 01382240 _____ (TOSHIBA Corporation) C:\Windows\system32\tosade.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 01356512 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 01334384 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxSpeechAPO64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 01286152 _____ (DTS, Inc.) C:\Windows\system32\slcnt64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 01211840 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO5064.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 01186168 _____ (Intel Corporation) C:\Windows\system32\IntelSstCApoPropPage.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 01164336 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO4064.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 01008360 _____ (DTS, Inc.) C:\Windows\system32\sl3apo64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 01003864 _____ (Nahimic Inc) C:\Windows\system32\NahimicAPONSControl.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00998032 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO2064.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00965032 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00952984 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOProp.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00933640 _____ (Sound Research, Corp.) C:\Windows\system32\SEHDRA64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00931624 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00923752 _____ (Sony Corporation) C:\Windows\system32\MISS_APO.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00888472 _____ (TOSHIBA Corporation) C:\Windows\system32\tossaeapo64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00873472 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo264.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00743968 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00727440 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00716112 _____ (Sound Research, Corp.) C:\Windows\system32\SECOMN64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00708320 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00689888 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00678192 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00677680 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00618192 _____ (Knowles Acoustics ) C:\Windows\system32\KAAPORT64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00596120 _____ (TOSHIBA Corporation) C:\Windows\system32\tosasfapo64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00589072 _____ (Sound Research, Corp.) C:\Windows\SysWOW64\SECOMN32.DLL
2016-02-22 19:00 - 2016-02-22 19:00 - 00574760 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00532384 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00514528 _____ (DTS) C:\Windows\system32\DTSU2PLFX64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00504312 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00500560 _____ (DTS) C:\Windows\system32\DTSU2PGFX64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00467168 _____ (Synopsys, Inc.) C:\Windows\system32\SRAPO64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00448592 _____ (Sound Research, Corp.) C:\Windows\system32\SEAPO64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00447728 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00445408 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00441272 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00428232 _____ (DTS) C:\Windows\system32\DTSU2PREC64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00387320 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00381416 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00369304 _____ (Dolby Laboratories) C:\Windows\system32\HiFiDAX2API.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00362056 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64AF3.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00343712 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00341160 _____ (Synopsys, Inc.) C:\Windows\SysWOW64\SRCOM.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00341160 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00340648 _____ (ICEpower a/s) C:\Windows\system32\ICEsoundAPO64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00330568 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00327464 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64A.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00321720 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00321720 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00310424 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64F3.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00272720 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00258504 _____ (TODO: <Company name>) C:\Windows\system32\slprp64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00253904 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00253872 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00252880 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00231920 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00224264 _____ (TOSHIBA Corporation) C:\Windows\system32\tossaemaxapo64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00221976 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00214840 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00209544 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00192992 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00172584 _____ (TOSHIBA Corporation) C:\Windows\system32\toseaeapo64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00166208 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00158704 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00151792 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00134208 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00122328 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00118600 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00118592 _____ C:\Windows\system32\AcpiServiceVnA64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00110992 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00105312 _____ C:\Windows\system32\audioLibVc.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00090920 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00088352 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00088328 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00084616 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00083632 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00075544 _____ (TOSHIBA CORPORATION.) C:\Windows\system32\tepeqapo64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00023696 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2016-02-21 15:08 - 2016-02-21 15:08 - 02297878 _____ C:\Users\Tomáš\Downloads\crack.zip
2016-02-21 15:05 - 2016-02-21 15:05 - 01820430 _____ C:\Users\Tomáš\Downloads\Need-For-Speed-Underground-2-CRACK (1).rar
2016-02-21 15:03 - 2016-02-21 15:03 - 00154610 _____ C:\Users\Tomáš\Downloads\Need-For-Speed-Underground-2-crack.rar
2016-02-19 22:13 - 2016-02-19 22:13 - 00000206 _____ C:\Users\Tomáš\Desktop\H1Z1 King of the Kill.url
2016-02-17 18:59 - 2016-02-17 18:59 - 00002471 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-02-09 19:46 - 2016-01-15 02:24 - 00033456 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-02-09 19:46 - 2016-01-15 01:54 - 00696320 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-02-09 19:46 - 2016-01-15 01:54 - 00677376 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2016-02-09 19:46 - 2016-01-15 01:54 - 00499200 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-02-09 19:46 - 2016-01-15 01:53 - 01362944 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-02-09 19:46 - 2016-01-15 01:53 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-02-09 19:46 - 2016-01-10 05:43 - 01162240 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-02-03 21:48 - 2016-02-20 17:26 - 00000000 ____D C:\Users\Tomáš\Documents\American Truck Simulator
2016-02-03 20:36 - 2016-03-04 17:41 - 00000968 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-02-03 20:36 - 2016-03-04 17:40 - 00000964 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-02-03 19:50 - 2016-02-03 19:50 - 00000000 ____D C:\Users\Tomáš\AppData\Roaming\Origin
2016-02-03 19:48 - 2016-02-03 19:52 - 00000000 ____D C:\ProgramData\Origin
2016-02-03 19:47 - 2016-02-03 19:52 - 00000000 ____D C:\Program Files (x86)\Origin
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-03-04 17:57 - 2012-07-26 11:01 - 00727488 _____ C:\Windows\system32\perfh005.dat
2016-03-04 17:57 - 2012-07-26 11:01 - 00148006 _____ C:\Windows\system32\perfc005.dat
2016-03-04 17:57 - 2012-07-26 08:28 - 01714430 _____ C:\Windows\system32\PerfStringBackup.INI
2016-03-04 17:57 - 2012-07-26 06:37 - 00000000 ____D C:\Windows\Inf
2016-03-04 17:54 - 2015-10-02 21:39 - 00080896 ___SH C:\Users\Tomáš\Downloads\Thumbs.db
2016-03-04 17:53 - 2015-12-15 14:16 - 00000000 ____D C:\Users\Tomáš\AppData\Roaming\vlc
2016-03-04 17:43 - 2016-02-01 19:02 - 00003228 _____ C:\Windows\System32\Tasks\Driver Booster Scheduler
2016-03-04 17:43 - 2016-02-01 19:02 - 00002860 _____ C:\Windows\System32\Tasks\Driver Booster SkipUAC (Tom)
2016-03-04 17:40 - 2015-10-19 13:28 - 00000810 _____ C:\Windows\Tasks\mediaplayervideos_1.2_updating_service.job
2016-03-04 17:40 - 2015-10-19 13:28 - 00000572 _____ C:\Windows\Tasks\mediaplayervideos_1.2_helper_service.job
2016-03-03 20:40 - 2015-10-09 10:59 - 00000000 ____D C:\Users\Tomáš\AppData\Local\CrashDumps
2016-03-03 19:06 - 2015-12-15 12:19 - 00002266 _____ C:\Users\Public\Desktop\Advanced SystemCare 9.lnk
2016-03-02 19:05 - 2012-07-26 08:22 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-03-02 19:04 - 2015-08-03 22:01 - 79724544 _____ C:\Windows\system32\config\SOFTWARE.iodefrag.bak
2016-03-02 19:04 - 2015-08-03 22:01 - 00409600 _____ C:\Windows\system32\config\DEFAULT.iodefrag.bak
2016-03-02 19:04 - 2015-08-03 22:01 - 00036864 _____ C:\Windows\system32\config\SAM.iodefrag.bak
2016-03-02 19:04 - 2015-08-03 22:01 - 00028672 _____ C:\Windows\system32\config\SECURITY.iodefrag.bak
2016-03-01 22:23 - 2012-07-26 06:26 - 00262144 ___SH C:\Windows\system32\config\BBI
2016-03-01 21:52 - 2015-08-14 09:36 - 00592896 ___SH C:\Users\Tomáš\Desktop\Thumbs.db
2016-03-01 18:00 - 2015-10-25 11:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OCCT
2016-02-27 23:43 - 2015-08-03 12:49 - 00000000 ____D C:\ProgramData\ProductData
2016-02-27 22:29 - 2015-08-03 12:46 - 00000000 ____D C:\Users\Tomáš\AppData\Roaming\uTorrent
2016-02-27 20:14 - 2015-08-10 00:59 - 00000000 ____D C:\Users\Tomáš\AppData\Roaming\Skype
2016-02-26 19:35 - 2015-11-05 16:05 - 00000000 ____D C:\ProgramData\TEMP
2016-02-23 20:05 - 2015-08-03 12:48 - 00003598 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-714427804-3161757390-1116284539-1001
2016-02-22 20:11 - 2015-08-03 13:17 - 00000000 ____D C:\ProgramData\NVIDIA
2016-02-22 19:37 - 2015-10-10 12:02 - 00000000 ____D C:\Users\Tomáš\.oracle_jre_usage
2016-02-22 19:37 - 2015-10-10 12:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-02-22 19:37 - 2015-10-10 12:01 - 00000000 ____D C:\ProgramData\Oracle
2016-02-22 19:36 - 2015-10-10 12:01 - 00000000 ____D C:\Program Files (x86)\Java
2016-02-22 19:13 - 2015-10-10 12:04 - 00000000 ____D C:\Program Files\Java
2016-02-22 19:02 - 2016-02-01 19:02 - 00002160 _____ C:\Users\Public\Desktop\Driver Booster 3.lnk
2016-02-22 19:02 - 2015-10-20 11:18 - 00000000 ____D C:\Windows\system32\DAX2
2016-02-22 19:01 - 2015-08-07 23:45 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2016-02-20 11:43 - 2015-09-26 16:24 - 00002214 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-02-20 11:43 - 2015-09-26 16:24 - 00002185 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-02-19 22:13 - 2015-08-03 13:14 - 00000000 ____D C:\Users\Tomáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2016-02-18 20:13 - 2015-08-08 13:09 - 00000000 ____D C:\ProgramData\Package Cache
2016-02-11 19:32 - 2015-08-14 07:49 - 00000000 ____D C:\Windows\system32\appraiser
2016-02-11 19:32 - 2015-08-05 13:35 - 00000000 ____D C:\Windows\system32\MRT
2016-02-11 19:32 - 2012-07-26 08:59 - 00000000 ____D C:\Windows\CbsTemp
2016-02-11 19:29 - 2015-08-05 13:35 - 146614896 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-02-10 19:35 - 2012-07-26 09:12 - 00000000 ___HD C:\Program Files\WindowsApps
2016-02-10 19:35 - 2012-07-26 09:12 - 00000000 ____D C:\Windows\AUInstallAgent
2016-02-09 06:41 - 2016-01-29 18:20 - 00081856 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2016-02-09 06:41 - 2015-08-03 13:16 - 06368824 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2016-02-09 06:41 - 2015-08-03 13:16 - 02993720 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2016-02-09 06:41 - 2015-08-03 13:16 - 02563128 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2016-02-09 06:41 - 2015-08-03 13:16 - 01264696 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2016-02-09 06:41 - 2015-08-03 13:16 - 00530368 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2016-02-09 06:41 - 2015-08-03 13:16 - 00392128 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2016-02-09 06:41 - 2015-08-03 13:16 - 00069568 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2016-02-06 14:13 - 2015-09-14 11:19 - 00000000 ____D C:\Users\Tomáš\AppData\Local\Battle.net
2016-02-06 02:49 - 2015-08-03 13:16 - 06154909 _____ C:\Windows\system32\nvcoproc.bin
2016-02-03 20:36 - 2015-09-26 16:24 - 00003940 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-02-03 20:36 - 2015-09-26 16:23 - 00003704 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
==================== Files in the root of some directories =======
2015-08-08 23:22 - 2015-08-08 23:22 - 0000000 ___SH () C:\Users\Tomáš\AppData\Local\LumaEmu
2015-10-20 11:18 - 2015-10-20 11:18 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2016-02-29 18:58
==================== End of FRST.txt ============================
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
Drive c: () (Fixed) (Total:149.95 GB) (Free:97.95 GB) NTFS
Drive d: () (Fixed) (Total:445.88 GB) (Free:77.17 GB) NTFS
Available physical RAM: 4175.87 MB
Total physical RAM: 6054.69 MB
Percentage of memory in use: 31%
==================== MBR and Partition Table ==================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 596.2 GB) (Disk ID: 496B9619)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=150 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=445.9 GB) - (Type=07 NTFS)
==================== Scheduled Tasks (whitelisted) ==================
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\mediaplayervideos_1.2_helper_service.job => C:\Program Files (x86)\MediaPlayerVideos 1.2\mediaplayervideos_1.2_helper_service.exe <==== ATTENTION
Task: C:\Windows\Tasks\mediaplayervideos_1.2_updating_service.job => C:\Program Files (x86)\MediaPlayerVideos 1.2\mediaplayervideos_1.2_updating_service.exeÖ /campid=002858 /verid=1 /url=hxxp:/update.gencloudex.com/static/@CAMPID@/@VER@/data.info /appid=72523 /taskname=mediaplayervideos_1.2_updating_service /funurl= /statsdomain=hxxp:/logs.gencloudex.com/marker.gif <==== ATTENTION
Task: C:\Windows\Tasks\Uninstaller_SkipUac_Tomáš.job => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe
==================== Alternate Data Streams (whitelisted) ==================
AlternateDataStreams: C:\ProgramData\TEMP:FB6A21E3 [430]
==================== Security Center ==================
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\Tom��\Desktop" je 457 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR"=dword:00000000
==================== End Of Log ==============================
Addition:
Additional scan result of Farbar Recovery Scan Tool (x64) Version:04-03-2016
Ran by Tom (2016-03-04 17:59:07)
Running from C:\Users\Tomáš\Desktop
Windows 8 Pro (X64) (2015-08-03 11:39:56)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-714427804-3161757390-1116284539-500 - Administrator - Disabled)
Guest (S-1-5-21-714427804-3161757390-1116284539-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-714427804-3161757390-1116284539-1003 - Limited - Enabled)
Tom (S-1-5-21-714427804-3161757390-1116284539-1001 - Administrator - Enabled) => C:\Users\Tomáš
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
7-Zip 15.12 (x64) (HKLM\...\7-Zip) (Version: 15.12 - Igor Pavlov)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 15.010.20059 - Adobe Systems Incorporated)
Advanced SystemCare 9 (HKLM-x32\...\Advanced SystemCare_is1) (Version: 9.0.3 - IObit)
Aktualizace NVIDIA 2.9.1.22 (Version: 2.9.1.22 - NVIDIA Corporation) Hidden
ASUS LifeFrame3 (HKLM-x32\...\{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}) (Version: 3.0.20 - ASUS)
ASUS Virtual Camera (HKLM-x32\...\{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}) (Version: 1.0.21 - asus)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0023 - ASUS)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Beard and Hairstyle Set (HKLM-x32\...\Beard and Hairstyle Set_is1) (Version: 1.0.0.0 - GOG.com)
Blade & Soul (HKLM-x32\...\InstallShield_{C3F383C1-D050-4A40-843F-8171A6A02C3A}) (Version: 1.0.63.237 - NC Interactive, LLC)
Blade & Soul (x32 Version: 1.0.63.237 - NC Interactive, LLC) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.10 - Piriform)
City Car Driving Home Edition (HKLM\...\Q2l0eUNhckRyaXZpbmc=_is1) (Version: 1 - )
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve)
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
Driver Booster 3.2 (HKLM-x32\...\Driver Booster_is1) (Version: 3.2 - IObit)
Driver San Francisco (HKLM-x32\...\Driver San Francisco) (Version: 1.1.0.0 - Ubisoft)
Driver San Francisco 1.01 (HKLM-x32\...\Driver San Francisco 1.01) (Version: - )
Dungeon Defenders II (HKLM-x32\...\Steam App 236110) (Version: - Trendy Entertainment)
Euro Truck Simulator 2 (HKLM-x32\...\Steam App 227300) (Version: - SCS Software)
Fallout 4 (HKLM-x32\...\Fallout 4_is1) (Version: - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 48.0.2564.116 - Google Inc.)
Google Update Helper (x32 Version: 1.3.29.5 - Google Inc.) Hidden
Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.00.0000" - Rockstar Games)
Guild Wars 2 (HKLM-x32\...\Guild Wars 2) (Version: - NCsoft Corporation, Ltd.)
H1Z1 (HKLM-x32\...\Steam App 295110) (Version: - Daybreak Games)
H1Z1: King of the Kill (HKLM-x32\...\Steam App 433850) (Version: - Daybreak Game Company)
Hacknet (HKLM-x32\...\1439474400_is1) (Version: 2.0.0.1 - GOG.com)
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.4229 - Intel Corporation)
IObit Uninstaller (HKLM-x32\...\IObitUninstall) (Version: 5.1.0.20 - IObit)
Java 8 Update 71 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418071F0}) (Version: 8.0.710.15 - Oracle Corporation)
Java 8 Update 71 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218071F0}) (Version: 8.0.710.15 - Oracle Corporation)
Java 8 Update 72 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418072F0}) (Version: 8.0.720.15 - Oracle Corporation)
Java 8 Update 72 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218072F0}) (Version: 8.0.720.15 - Oracle Corporation)
Java 8 Update 74 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418074F0}) (Version: 8.0.740.2 - Oracle Corporation)
Java 8 Update 74 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218074F0}) (Version: 8.0.740.2 - Oracle Corporation)
Metro 2033 (HKLM-x32\...\Steam App 43110) (Version: - 4A Games)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506 (HKLM-x32\...\{3ee5e5bb-b7cc-4556-8861-a00a82977d6c}) (Version: 14.0.23506.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23506 (HKLM-x32\...\{23daf363-3020-4059-b3ae-dc4ad39fed19}) (Version: 14.0.23506.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
NCSOFT Game Launcher (HKLM-x32\...\NCLauncher_NCWest) (Version: - NCSOFT)
Need for Speed Underground 2 (HKLM-x32\...\{909F8EBC-EC7F-48FF-0085-475D818F0F31}) (Version: - )
NVIDIA GeForce Experience 2.9.1.22 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.9.1.22 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 361.91 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 361.91 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
Ovládací panel NVIDIA 361.91 (Version: 361.91 - NVIDIA Corporation) Hidden
Papers, Please (HKLM-x32\...\Papers, Please_is1) (Version: - )
Parrot Software Update Tool (HKLM-x32\...\Parrot Flash Update Wizard) (Version: - )
PAYDAY 2 (HKLM-x32\...\Steam App 218620) (Version: - OVERKILL - a Starbreeze Studio.)
PdfMerge (HKLM-x32\...\{238BE990-A412-4129-A434-D03B1A9E396E}) (Version: 1.22.0 - PdfMerge)
Project CARS (HKLM-x32\...\UHJvamVjdENBUlM=_is1) (Version: 1 - )
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7687 - Realtek Semiconductor Corp.)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.6.8 - Rockstar Games)
Rust Klient Devblog 72 (HKLM-x32\...\Rust Klient Devblog 72) (Version: Devblog 72 - Rusted.cz)
SCANIA Truck Driving Simulator 1.0.0 (HKLM-x32\...\SCANIA Truck Driving Simulator) (Version: 1.0.0 - SCS Software)
SHIELD Streaming (Version: 4.1.0260 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.9.1.22 - NVIDIA Corporation) Hidden
Skype™ 7.18 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.18.109 - Skype Technologies S.A.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Surfing Protection (HKLM-x32\...\IObit Surfing Protection_is1) (Version: 1.3 - IObit)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.2.8.0 - Synaptics Incorporated)
Temerian Armor Set (HKLM-x32\...\Temerian Armor Set_is1) (Version: 1.0.0.0 - GOG.com)
The Witcher 3: Wild Hunt (Not-cracked Repack) (HKLM-x32\...\The Witcher 3: Wild Hunt (Not-cracked Repack)_is1) (Version: - )
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {031BCB3C-1E1D-4B14-A9D0-66BCFE2BB10E} - System32\Tasks\Driver Booster SkipUAC (Tom) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe [2016-01-18] (IObit)
Task: {0C17A91C-9F77-4212-B0E6-3EC71080CF62} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2016-02-11] (Microsoft Corporation)
Task: {0F3A67B6-F10C-4E05-9F22-67209CBE7773} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-26] (Google Inc.)
Task: {13E0C7BD-B954-4BC0-852E-1E5B95D610AD} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2016-02-22] (Realtek Semiconductor)
Task: {15840FC4-4F45-4EE8-9076-B5F3275866A4} - System32\Tasks\Uninstaller_SkipUac_Tom => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2015-10-30] (IObit)
Task: {24A1FD21-01C2-43B6-A155-281A2A4B297E} - System32\Tasks\ASC9_SkipUac_Tom => C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe [2015-11-10] (IObit)
Task: {43C1C257-7CBB-4F06-9496-AB246562E076} - System32\Tasks\mediaplayervideos_1.2_helper_service => C:\Program Files (x86)\MediaPlayerVideos 1.2\mediaplayervideos_1.2_helper_service.exe <==== ATTENTION
Task: {4D8A2725-5EC8-42C4-BC07-F382FF902588} - System32\Tasks\Microsoft\Windows\Windows Activation Technologies\WatTask => C:\Windows Activation Technologies\wat.exe [2006-04-21] ()
Task: {56551050-62E0-47C2-B216-E2CD6B6F1AB8} - System32\Tasks\Uninstaller_SkipUac_Tomáš => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2015-10-30] (IObit)
Task: {644DFEA6-F37D-4ACE-8377-7B14E3C39869} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-09-16] (Piriform Ltd)
Task: {75021869-203D-4C72-AFA1-4EDB92798C0A} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2016-02-22] (Realtek Semiconductor)
Task: {7D75649A-1A58-4BC0-B1A4-E17BFDAB2B80} - System32\Tasks\{CD416F40-733A-485F-AC67-38B2DA480DCF} => pcalua.exe -a C:\Users\Tomáš\Downloads\Camera_Azurewave_VS010_Win7_64_Z5855133208\PNPINST64.exe -d C:\Users\Tomáš\Downloads\Camera_Azurewave_VS010_Win7_64_Z5855133208
Task: {8BA0002E-3B05-40FC-B895-DDE0030D1F5C} - System32\Tasks\{F4573601-8B3A-4231-BFCE-3B9C0E964D9E} => Iexplore.exe hxxp://ui.skype.com/ui/0/7.17.85.105/cs/abandoninstall?page=tsProgressBar
Task: {907EC5E2-7AE1-4864-9DB6-62E93D722868} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-13] (Adobe Systems Incorporated)
Task: {A6FC44D1-AC73-4D9E-94A7-3F16C6DC9A10} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-26] (Google Inc.)
Task: {AF5A07AF-0347-4840-930C-7EB536247318} - System32\Tasks\Driver Booster SkipUAC (Tomáš) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe [2016-01-18] (IObit)
Task: {CDFB2039-CDBD-4C76-8C06-AB7F46C197C8} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\Scheduler.exe [2016-01-13] (IObit)
Task: {F58F4388-CADC-4656-9A02-A6B321F03AFB} - System32\Tasks\mediaplayervideos_1.2_updating_service => C:\Program Files (x86)\MediaPlayerVideos 1.2\mediaplayervideos_1.2_updating_service.exe <==== ATTENTION
Task: {F5D8CEAA-D760-4385-B797-115F493F4730} - System32\Tasks\ASC9_PerformanceMonitor => C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe [2015-12-15] (IObit)
Task: {FA138E92-D531-4A14-962E-9274080C0B9C} - System32\Tasks\{5D4ADCA6-8E7A-400D-BCBD-31D8BCDD14FB} => pcalua.exe -a D:\Stažené\Software\CAMERA\AW010\PNPINST64.exe -d D:\Stažené\Software\CAMERA\AW010
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\mediaplayervideos_1.2_helper_service.job => C:\Program Files (x86)\MediaPlayerVideos 1.2\mediaplayervideos_1.2_helper_service.exe <==== ATTENTION
Task: C:\Windows\Tasks\mediaplayervideos_1.2_updating_service.job => C:\Program Files (x86)\MediaPlayerVideos 1.2\mediaplayervideos_1.2_updating_service.exeÖ /campid=002858 /verid=1 /url=hxxp:/update.gencloudex.com/static/@CAMPID@/@VER@/data.info /appid=72523 /taskname=mediaplayervideos_1.2_updating_service /funurl= /statsdomain=hxxp:/logs.gencloudex.com/marker.gif <==== ATTENTION
Task: C:\Windows\Tasks\Uninstaller_SkipUac_Tomáš.job => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe
==================== Shortcuts =============================
(The entries could be listed to be restored or removed.)
==================== Loaded Modules (Whitelisted) ==============
2016-01-29 18:10 - 2016-01-12 05:43 - 00291264 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamBase.dll
2015-08-03 12:54 - 2012-09-28 02:26 - 00087040 _____ () C:\Windows\PersonalizeEnabler.exe
2015-08-03 12:54 - 2012-09-27 00:31 - 00084992 _____ () C:\Windows\SLCHook.dll
2015-08-03 12:54 - 2009-03-07 06:02 - 00102912 _____ () C:\Windows\EasyHook64.dll
2015-08-03 13:16 - 2016-02-09 06:41 - 00134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-06-01 20:00 - 2015-06-01 20:00 - 00102912 _____ () C:\Windows\System32\IccLibDll_x64.dll
2011-01-07 01:50 - 2015-08-03 13:03 - 00057640 _____ () C:\Program Files\Synaptics\SynTP\SynTPEnhPS.dll
2015-08-03 12:50 - 2014-10-16 09:26 - 00622880 _____ () C:\Program Files (x86)\IObit\LiveUpdate\ProductStatistics.dll
2015-12-15 12:19 - 2013-01-15 18:48 - 00348992 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare\madExcept_.bpl
2015-12-15 12:19 - 2013-01-15 18:48 - 00183616 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare\madBasic_.bpl
2015-12-15 12:19 - 2013-01-15 18:48 - 00051008 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare\madDisAsm_.bpl
2015-12-15 12:19 - 2013-01-15 18:47 - 00893248 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare\webres.dll
2015-12-15 12:19 - 2014-10-16 10:26 - 00622880 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare\ProductStatistics.dll
2015-12-15 12:19 - 2013-01-15 18:48 - 00348992 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madExcept_.bpl
2015-12-15 12:19 - 2013-01-15 18:48 - 00183616 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madBasic_.bpl
2015-12-15 12:19 - 2013-01-15 18:48 - 00051008 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madDisAsm_.bpl
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\ProgramData\TEMP:FB6A21E3 [430]
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\str => ""="service"
==================== EXE Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\S-1-5-21-714427804-3161757390-1116284539-1001\...\citroen.com -> hxxps://citroen.com
IE trusted site: HKU\S-1-5-21-714427804-3161757390-1116284539-1001\...\citroen.com -> hxxp://citroen.com
IE trusted site: HKU\S-1-5-21-714427804-3161757390-1116284539-1001\...\inetpsa.com -> hxxp://inetpsa.com
IE trusted site: HKU\S-1-5-21-714427804-3161757390-1116284539-1001\...\mpsa.com -> hxxp://mpsa.com
IE trusted site: HKU\S-1-5-21-714427804-3161757390-1116284539-1001\...\mpsa.com -> hxxps://mpsa.com
IE trusted site: HKU\S-1-5-21-714427804-3161757390-1116284539-1001\...\peugeot.com -> hxxps://peugeot.com
IE trusted site: HKU\S-1-5-21-714427804-3161757390-1116284539-1001\...\peugeot.com -> hxxp://peugeot.com
IE restricted site: HKU\S-1-5-21-714427804-3161757390-1116284539-1001\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-714427804-3161757390-1116284539-1001\...\008k.com -> 008k.com
IE restricted site: HKU\S-1-5-21-714427804-3161757390-1116284539-1001\...\00hq.com -> 00hq.com
IE restricted site: HKU\S-1-5-21-714427804-3161757390-1116284539-1001\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-714427804-3161757390-1116284539-1001\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-714427804-3161757390-1116284539-1001\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-714427804-3161757390-1116284539-1001\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-714427804-3161757390-1116284539-1001\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-714427804-3161757390-1116284539-1001\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-714427804-3161757390-1116284539-1001\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-714427804-3161757390-1116284539-1001\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-714427804-3161757390-1116284539-1001\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-714427804-3161757390-1116284539-1001\...\0scan.com -> 0scan.com
IE restricted site: HKU\S-1-5-21-714427804-3161757390-1116284539-1001\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com
IE restricted site: HKU\S-1-5-21-714427804-3161757390-1116284539-1001\...\1-domains-registrations.com -> 1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-714427804-3161757390-1116284539-1001\...\1-se.com -> 1-se.com
IE restricted site: HKU\S-1-5-21-714427804-3161757390-1116284539-1001\...\1001movie.com -> 1001movie.com
IE restricted site: HKU\S-1-5-21-714427804-3161757390-1116284539-1001\...\1001night.biz -> 1001night.biz
IE restricted site: HKU\S-1-5-21-714427804-3161757390-1116284539-1001\...\100gal.net -> 100gal.net
IE restricted site: HKU\S-1-5-21-714427804-3161757390-1116284539-1001\...\100sexlinks.com -> 100sexlinks.com
There are 4788 more sites.
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2012-07-26 06:26 - 2012-07-26 06:26 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-714427804-3161757390-1116284539-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(Currently there is no automatic fix for this section.)
HKLM\...\StartupApproved\Run32: => "PWRISOVM.EXE"
HKLM\...\StartupApproved\Run32: => "seznam-listicka-distribuce"
HKU\S-1-5-21-714427804-3161757390-1116284539-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-714427804-3161757390-1116284539-1001\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-714427804-3161757390-1116284539-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-714427804-3161757390-1116284539-1001\...\StartupApproved\Run: => "cz.seznam.software.autoupdate"
HKU\S-1-5-21-714427804-3161757390-1116284539-1001\...\StartupApproved\Run: => "cz.seznam.software.szndesktop"
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [TCP Query User{8671129B-5AFC-4F98-823D-0653288B89CF}C:\users\tomáš\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\tomáš\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{FE8308AC-AE03-45AD-8AB2-94056259D26D}C:\users\tomáš\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\tomáš\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [{8EB86DA4-48D0-4AA6-A015-B2E7A514C9A4}] => (Allow) D:\Hry\Steam\Steam.exe
FirewallRules: [{8FC87EB3-09A3-445E-9C0C-5E4ACEB0453D}] => (Allow) D:\Hry\Steam\Steam.exe
FirewallRules: [{A8FE4E63-7EC2-47C4-B4C6-0929ED51CE19}] => (Allow) D:\Hry\Steam\bin\steamwebhelper.exe
FirewallRules: [{6CA8CE46-727F-4A83-96B6-00FDB3513E30}] => (Allow) D:\Hry\Steam\bin\steamwebhelper.exe
FirewallRules: [{428E3904-E2EE-4E72-890A-706EE71FB8FD}] => (Allow) D:\Hry\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{50B5BAC8-D75A-4488-93BC-4112099C2906}] => (Allow) D:\Hry\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{2D82D547-6427-41EE-B84C-D5B0CE9ABEFF}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{8AFD6730-622A-416B-AA07-A649F78B5885}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{F00448D0-CC72-43EC-90A4-84F629C6A562}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{555E6022-F399-4725-AFBD-94207514577B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{32E25B5C-882C-4B3B-8ADE-2853DDD860A8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{612AF6D9-45BB-4105-AF40-C939E5C6024A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{354D57F2-6646-4667-B3D6-7C48FDF7B008}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{FB69BF45-F11D-44EA-9D65-E430A5DAA1F8}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{12C31D83-0570-4243-9FB0-204D659195D4}] => (Allow) D:\Hry\Steam\steamapps\common\Metro 2033\metro2033.exe
FirewallRules: [{1C36CD6C-F7DE-46E9-8512-051859B4C314}] => (Allow) D:\Hry\Steam\steamapps\common\Metro 2033\metro2033.exe
FirewallRules: [{7B567749-7B8D-4570-ABFC-AF6755BD00D8}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [{B003B00C-1C7D-4DAB-9916-D5EDC2710386}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [TCP Query User{D4D1A82F-2E4E-4D86-9896-68851D53D08F}D:\hry\driver san francisco\driver.exe] => (Block) D:\hry\driver san francisco\driver.exe
FirewallRules: [UDP Query User{12460CD9-CA97-487B-B78F-61AD20FB1876}D:\hry\driver san francisco\driver.exe] => (Block) D:\hry\driver san francisco\driver.exe
FirewallRules: [TCP Query User{7D3596B7-4B92-444B-A47B-1D5CC5380DEF}D:\hry\diablo iii\diablo iii.exe] => (Allow) D:\hry\diablo iii\diablo iii.exe
FirewallRules: [UDP Query User{F27E6BA6-AAAF-4639-B17D-4E7164CF350D}D:\hry\diablo iii\diablo iii.exe] => (Allow) D:\hry\diablo iii\diablo iii.exe
FirewallRules: [{91BB514B-670E-43F1-BDA1-010B76E86857}] => (Allow) C:\Users\Tomáš\AppData\Roaming\uTorrent\utorrent.exe
FirewallRules: [{439CDD8B-CDFE-4A71-B58B-DD0B8E1987D3}] => (Allow) C:\Users\Tomáš\AppData\Roaming\uTorrent\utorrent.exe
FirewallRules: [{1BF37915-A79C-45D1-9485-9BAA7B185A62}] => (Allow) D:\Hry\Steam\steamapps\common\H1Z1\LaunchPad.exe
FirewallRules: [{1A2B2D61-9A36-4358-BFE3-532B5D5E381E}] => (Allow) D:\Hry\Steam\steamapps\common\H1Z1\LaunchPad.exe
FirewallRules: [TCP Query User{D2AD4382-4258-4331-A316-E8C1007B3E2E}D:\hry\steam\steamapps\common\h1z1\h1z1.exe] => (Allow) D:\hry\steam\steamapps\common\h1z1\h1z1.exe
FirewallRules: [UDP Query User{0D6EB1B5-8EE6-4037-A00A-9B776055F5D0}D:\hry\steam\steamapps\common\h1z1\h1z1.exe] => (Allow) D:\hry\steam\steamapps\common\h1z1\h1z1.exe
FirewallRules: [{0E5EC7A1-218E-4E8E-B087-E4107F47C1D2}] => (Allow) D:\Hry\Steam\steamapps\common\Dungeon Defenders 2\DunDefLauncher.exe
FirewallRules: [{75E98FAC-6863-4203-BDD5-C40BB1C53377}] => (Allow) D:\Hry\Steam\steamapps\common\Dungeon Defenders 2\DunDefLauncher.exe
FirewallRules: [TCP Query User{898B106B-441C-48B4-92EA-6E65FAE7B1D7}D:\hry\gtav\gta5.exe] => (Allow) D:\hry\gtav\gta5.exe
FirewallRules: [UDP Query User{AAAE31F0-5CE9-49A6-A14C-C659D0BF6191}D:\hry\gtav\gta5.exe] => (Allow) D:\hry\gtav\gta5.exe
FirewallRules: [TCP Query User{116DBC1F-88EA-4B6F-BE84-EA7CD10F268F}D:\hry\city car driving\bin\win32\starter.exe] => (Block) D:\hry\city car driving\bin\win32\starter.exe
FirewallRules: [UDP Query User{83DA6632-5D78-43E6-8291-B9DFEDC95540}D:\hry\city car driving\bin\win32\starter.exe] => (Block) D:\hry\city car driving\bin\win32\starter.exe
FirewallRules: [TCP Query User{9C925BA2-D685-4BB0-8267-59F530162A45}D:\hry\city car driving\bin\win32\starter.exe] => (Block) D:\hry\city car driving\bin\win32\starter.exe
FirewallRules: [UDP Query User{C3AECF19-DC01-4A2B-B928-2622F86B4F9E}D:\hry\city car driving\bin\win32\starter.exe] => (Block) D:\hry\city car driving\bin\win32\starter.exe
FirewallRules: [TCP Query User{05CCF331-35B5-49D8-B334-35F2A9AF07E0}D:\hry\hearthstone\hearthstone.exe] => (Allow) D:\hry\hearthstone\hearthstone.exe
FirewallRules: [UDP Query User{B42B9EB1-C983-4837-9F8A-EC10582A491E}D:\hry\hearthstone\hearthstone.exe] => (Allow) D:\hry\hearthstone\hearthstone.exe
FirewallRules: [{8CD9EA17-549E-42AD-9EEF-480BE7B378AC}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe
FirewallRules: [{4B6964E2-5BC3-45D9-B277-F6474589F372}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe
FirewallRules: [{3BF0CDE6-EAF9-4647-9699-4E476528F0E9}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DBDownloader.exe
FirewallRules: [{53F34523-C5AA-4134-BEE9-F6A3AAD15D2F}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DBDownloader.exe
FirewallRules: [{3C45C6CA-917A-4893-8C60-C9A0D362FD89}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe
FirewallRules: [{6A3F0C88-3F71-4D47-BD95-2E2B1925C6EB}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe
FirewallRules: [{F4992880-B132-45FB-93CA-9D5341FF983C}] => (Allow) D:\Hry\Steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{69F43B1F-827A-40E6-95B4-D6E9215CABE9}] => (Allow) D:\Hry\Steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [TCP Query User{C6058103-C3C3-4B7C-992B-B988FF847842}C:\program files\java\jre1.8.0_71\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_71\bin\javaw.exe
FirewallRules: [UDP Query User{1EFA3AE8-D37B-49D6-8ECA-5930B4D2738F}C:\program files\java\jre1.8.0_71\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_71\bin\javaw.exe
FirewallRules: [{EC945624-D2AF-4C18-887B-641E220592FF}] => (Allow) D:\Hry\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{E9E80103-0FB0-4581-849B-B9ECBE81F92E}] => (Allow) D:\Hry\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{251DBC48-47AA-4823-93D3-591DAF5113B5}] => (Allow) D:\Hry\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{48183B0C-CF62-4D75-8A2D-25161C554804}] => (Allow) D:\Hry\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{F5E7BAC9-BC34-4FC6-9ECD-94385ECDAD28}] => (Allow) D:\Hry\Steam\steamapps\common\H1Z1 King of the Kill\LaunchPad.exe
FirewallRules: [{31DE6274-060D-4E16-A0B4-2A1A294AC216}] => (Allow) D:\Hry\Steam\steamapps\common\H1Z1 King of the Kill\LaunchPad.exe
FirewallRules: [{65FF28D7-68FB-4668-8C71-1E19D36F82AC}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{FEBF744D-F8D7-46E3-B41B-197CD1E7C52B}C:\program files\java\jre1.8.0_74\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_74\bin\javaw.exe
FirewallRules: [UDP Query User{F2B579D9-EFF0-413A-AEFC-9CD1F8AA0AFC}C:\program files\java\jre1.8.0_74\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_74\bin\javaw.exe
FirewallRules: [TCP Query User{39ED22BC-071E-4EC8-8F59-78D9F1BD9896}D:\stažené\igg-spintires.build 25.12.2015\client\spintires.exe] => (Allow) D:\stažené\igg-spintires.build 25.12.2015\client\spintires.exe
FirewallRules: [UDP Query User{FA63266F-FB92-42FC-A4B4-DE82D8D44265}D:\stažené\igg-spintires.build 25.12.2015\client\spintires.exe] => (Allow) D:\stažené\igg-spintires.build 25.12.2015\client\spintires.exe
==================== Restore Points =========================
18-02-2016 20:12:44 Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23506
18-02-2016 20:13:22 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506
22-02-2016 18:59:54 Driver Booster : Realtek High Definition Audio
01-03-2016 17:49:27 Naplánovaný kontrolní bod
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (03/04/2016 05:58:32 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: NT AUTHORITY)
Description: Systém Windows nemůže načíst soubor registru tříd.
PODROBNOSTI – Je poškozena databáze konfiguračního registru.
Error: (03/04/2016 05:58:32 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1508) (User: NT AUTHORITY)
Description: Systém Windows nemohl načíst registr. Tento problém je často způsoben nedostatkem paměti nebo nedostatečnými zabezpečovacími právy.
PODROBNOSTI – Je poškozena databáze konfiguračního registru.
pro: C:\Users\Tomáš\AppData\Local\Microsoft\Windows\\UsrClass.dat
Error: (03/04/2016 05:58:32 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: NT AUTHORITY)
Description: Systém Windows nemůže načíst soubor registru tříd.
PODROBNOSTI – Je poškozena databáze konfiguračního registru.
Error: (03/04/2016 05:58:32 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1508) (User: NT AUTHORITY)
Description: Systém Windows nemohl načíst registr. Tento problém je často způsoben nedostatkem paměti nebo nedostatečnými zabezpečovacími právy.
PODROBNOSTI – Je poškozena databáze konfiguračního registru.
pro: C:\Users\Tomáš\AppData\Local\Microsoft\Windows\\UsrClass.dat
Error: (03/04/2016 05:56:32 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: NT AUTHORITY)
Description: Systém Windows nemůže načíst soubor registru tříd.
PODROBNOSTI – Je poškozena databáze konfiguračního registru.
Error: (03/04/2016 05:56:32 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1508) (User: NT AUTHORITY)
Description: Systém Windows nemohl načíst registr. Tento problém je často způsoben nedostatkem paměti nebo nedostatečnými zabezpečovacími právy.
PODROBNOSTI – Je poškozena databáze konfiguračního registru.
pro: C:\Users\Tomáš\AppData\Local\Microsoft\Windows\\UsrClass.dat
Error: (03/04/2016 05:56:32 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: NT AUTHORITY)
Description: Systém Windows nemůže načíst soubor registru tříd.
PODROBNOSTI – Je poškozena databáze konfiguračního registru.
Error: (03/04/2016 05:56:32 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1508) (User: NT AUTHORITY)
Description: Systém Windows nemohl načíst registr. Tento problém je často způsoben nedostatkem paměti nebo nedostatečnými zabezpečovacími právy.
PODROBNOSTI – Je poškozena databáze konfiguračního registru.
pro: C:\Users\Tomáš\AppData\Local\Microsoft\Windows\\UsrClass.dat
Error: (03/04/2016 05:48:20 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: NT AUTHORITY)
Description: Systém Windows nemůže načíst soubor registru tříd.
PODROBNOSTI – Je poškozena databáze konfiguračního registru.
Error: (03/04/2016 05:48:20 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1508) (User: NT AUTHORITY)
Description: Systém Windows nemohl načíst registr. Tento problém je často způsoben nedostatkem paměti nebo nedostatečnými zabezpečovacími právy.
PODROBNOSTI – Je poškozena databáze konfiguračního registru.
pro: C:\Users\Tomáš\AppData\Local\Microsoft\Windows\\UsrClass.dat
System errors:
=============
Error: (03/02/2016 07:10:15 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x800706be): Aktualizace definic pro Windows Defender - KB2267602 (definice 1.213.7751.0).
Error: (03/02/2016 07:05:53 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Pomocník pro připojení k síti závisí na službě Pomocná služba protokolu IP, která neuspěla při spuštění v důsledku následující chyby:
%%1058
Error: (03/02/2016 07:05:06 PM) (Source: volmgr) (EventID: 46) (User: )
Description: Inicializace výpisu stavu systému se nezdařila.
Error: (03/02/2016 07:04:42 PM) (Source: Microsoft-Windows-Kernel-General) (EventID: 6) (User: NT AUTHORITY)
Description: 0xc000014d0
Error: (03/01/2016 10:23:00 PM) (Source: DCOM) (EventID: 10010) (User: Tom)
Description: {F9717507-6651-4EDB-BFF7-AE615179BCCF}
Error: (02/29/2016 09:52:20 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Pomocník pro připojení k síti závisí na službě Pomocná služba protokolu IP, která neuspěla při spuštění v důsledku následující chyby:
%%1058
Error: (02/29/2016 06:45:00 PM) (Source: DCOM) (EventID: 10016) (User: Tom)
Description: specifické pro aplikaciMístníAktivace{B77C4C36-0154-4C52-AB49-FAA03837E47F}{EA022610-0748-4C24-B229-6C507EBDFDBB}TomTomS-1-5-21-714427804-3161757390-1116284539-1001LocalHost (pomocí LRPC)Není k dispoziciNení k dispozici
Error: (02/29/2016 06:44:59 PM) (Source: DCOM) (EventID: 10016) (User: Tom)
Description: specifické pro aplikaciMístníAktivace{A188DB29-2ABC-46CB-9A38-40B82CF5D051}{EA022610-0748-4C24-B229-6C507EBDFDBB}TomTomS-1-5-21-714427804-3161757390-1116284539-1001LocalHost (pomocí LRPC)Není k dispoziciNení k dispozici
Error: (02/26/2016 05:39:06 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Pomocník pro připojení k síti závisí na službě Pomocná služba protokolu IP, která neuspěla při spuštění v důsledku následující chyby:
%%1058
Error: (02/26/2016 05:38:27 PM) (Source: volmgr) (EventID: 46) (User: )
Description: Inicializace výpisu stavu systému se nezdařila.
CodeIntegrity:
===================================
Date: 2016-03-02 19:05:26.106
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\smss.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\shell32.dll with signing level Unsigned while the system requires signing level Windows or better to load.
Date: 2016-02-29 21:51:59.054
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\smss.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\shell32.dll with signing level Unsigned while the system requires signing level Windows or better to load.
Date: 2016-02-26 17:38:47.275
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\smss.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\shell32.dll with signing level Unsigned while the system requires signing level Windows or better to load.
Date: 2016-02-23 19:34:37.544
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\smss.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\shell32.dll with signing level Unsigned while the system requires signing level Windows or better to load.
Date: 2016-02-22 19:04:41.811
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\smss.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\shell32.dll with signing level Unsigned while the system requires signing level Windows or better to load.
Date: 2016-02-05 20:15:21.316
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\smss.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\shell32.dll with signing level Unsigned while the system requires signing level Windows or better to load.
Date: 2016-02-01 19:29:27.034
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\smss.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\shell32.dll with signing level Unsigned while the system requires signing level Windows or better to load.
Date: 2016-02-01 18:59:18.483
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\smss.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\shell32.dll with signing level Unsigned while the system requires signing level Windows or better to load.
Date: 2016-01-31 11:18:58.840
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\smss.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\shell32.dll with signing level Unsigned while the system requires signing level Windows or better to load.
Date: 2016-01-28 17:16:54.758
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\smss.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\shell32.dll with signing level Unsigned while the system requires signing level Windows or better to load.
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i5-2430M CPU @ 2.40GHz
Percentage of memory in use: 31%
Total physical RAM: 6054.69 MB
Available physical RAM: 4175.87 MB
Total Virtual: 7206.69 MB
Available Virtual: 5229.81 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:149.95 GB) (Free:97.95 GB) NTFS
Drive d: () (Fixed) (Total:445.88 GB) (Free:77.17 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 596.2 GB) (Disk ID: 496B9619)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=150 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=445.9 GB) - (Type=07 NTFS)
==================== End of Addition.txt ============================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Zpomalený PC, zamrzání a problémy.
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119379
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zpomalený PC, zamrzání a problémy.
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Zpomalený PC, zamrzání a problémy.
# AdwCleaner v5.014 - Logfile created 20/10/2015 at 16:56:55
# Updated 18/10/2015 by Xplode
# Database : 2015-10-18.5 [Server]
# Operating system : Windows 8 Pro (x64)
# Username : Tom - TOM
# Running from : C:\Users\Tomáš\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Z864DYFV\adwcleaner_5.014.exe
# Option : Cleaning
# Support : http://toolslib.net/forum
***** [ Services ] *****
[-] Service Deleted : ReimageRealTimeProtector
***** [ Folders ] *****
[-] Folder Deleted : C:\rei
[-] Folder Deleted : C:\ftb
[-] Folder Deleted : C:\Program Files\Reimage
[-] Folder Deleted : C:\Program Files (x86)\MediaPlayerVideos 1.2
[!] Folder Not Deleted : C:\Program Files (x86)\MediaPlayerVideos 1.2
[-] Folder Deleted : C:\ProgramData\Reimage Protector
[-] Folder Deleted : C:\Users\Tomáš\AppData\Local\gmsd_re_004010007
[-] Folder Deleted : C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\jecgbfoconhopjngaaijjgffhokohlac
[!] Folder Not Deleted : C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\jecgbfoconhopjngaaijjgffhokohlac
***** [ Files ] *****
[-] File Deleted : C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_jecgbfoconhopjngaaijjgffhokohlac_0.localstorage
[-] File Deleted : C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_jecgbfoconhopjngaaijjgffhokohlac_0.localstorage
[-] File Deleted : C:\Windows\Reimage.ini
***** [ DLLs ] *****
***** [ Shortcuts ] *****
***** [ Scheduled tasks ] *****
[-] Task Deleted : ReimageUpdater
[-] Task Deleted : LaunchPreSignup
***** [ Registry ] *****
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\REI_AxControl.DLL
[-] Key Deleted : HKLM\SOFTWARE\Classes\REI_AxControl.ReiEngine
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\Reimage.exe
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{10921475-03CE-4E04-90CE-E2E7EF20C814}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{10ECCE17-29B5-4880-A8F5-EAD298611484}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{801B440B-1EE3-49B0-B05D-2AB076D4E8CB}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{10921475-03CE-4E04-90CE-E2E7EF20C814}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}
[-] Key Deleted : HKCU\Software\Reimage
[-] Key Deleted : HKLM\SOFTWARE\Uniblue
[-] Key Deleted : HKLM\SOFTWARE\MediaPlayerVideos 1.2
[!] Key Not Deleted : [x64] HKCU\Software\Reimage
[-] Key Deleted : [x64] HKLM\SOFTWARE\Reimage
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Reimage Repair
***** [ Web browsers ] *****
[-] [C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : jecgbfoconhopjngaaijjgffhokohlac
[-] [C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : jecgbfoconhopjngaaijjgffhokohlac
*************************
:: Winsock settings cleared
########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [4134 bytes] ##########
# AdwCleaner v5.037 - Logfile created 04/03/2016 at 20:28:10
# Updated 28/02/2016 by Xplode
# Database : 2016-02-28.2 [Local]
# Operating system : Windows 8 Pro (x64)
# Username : Tom - TOM
# Running from : C:\Users\Tomáš\Desktop\adwcleaner_5.037.exe
# Option : Clean
# Support : http://toolslib.net/forum
***** [ Services ] *****
***** [ Folders ] *****
[-] Folder Deleted : C:\Users\Tomáš\AppData\Local\FileViewPro
[-] Folder Deleted : C:\Users\Tomáš\AppData\Roaming\OpenCandy
[-] Folder Deleted : C:\Users\Tomáš\AppData\Roaming\RHEng
[-] Folder Deleted : C:\Users\Tomáš\AppData\Roaming\Solvusoft
***** [ Files ] *****
[-] File Deleted : C:\Windows\SysNative\roboot64.exe
***** [ DLLs ] *****
***** [ Shortcuts ] *****
***** [ Scheduled tasks ] *****
[-] Task Deleted : mediaplayervideos_1.2_updating_service
[-] Task Deleted : mediaplayervideos_1.2_helper_service
***** [ Registry ] *****
[-] Key Deleted : HKCU\Software\2f74e756dc20979c1b07764e28bc8bfc
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F83D1872-D9FF-47F8-B5A0-49CC51E24EE8}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
[-] Key Deleted : HKCU\Software\Local AppWizard-Generated Applications\Reimage - Windows Problem Relief.
***** [ Web browsers ] *****
*************************
:: "Tracing" keys removed
:: Winsock settings cleared
*************************
C:\AdwCleaner\AdwCleaner[C1].txt - [6058 bytes] - [20/10/2015 15:56:55]
C:\AdwCleaner\AdwCleaner[S1].txt - [5788 bytes] - [20/10/2015 15:56:11]
########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [6204 bytes] ##########
# Updated 18/10/2015 by Xplode
# Database : 2015-10-18.5 [Server]
# Operating system : Windows 8 Pro (x64)
# Username : Tom - TOM
# Running from : C:\Users\Tomáš\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Z864DYFV\adwcleaner_5.014.exe
# Option : Cleaning
# Support : http://toolslib.net/forum
***** [ Services ] *****
[-] Service Deleted : ReimageRealTimeProtector
***** [ Folders ] *****
[-] Folder Deleted : C:\rei
[-] Folder Deleted : C:\ftb
[-] Folder Deleted : C:\Program Files\Reimage
[-] Folder Deleted : C:\Program Files (x86)\MediaPlayerVideos 1.2
[!] Folder Not Deleted : C:\Program Files (x86)\MediaPlayerVideos 1.2
[-] Folder Deleted : C:\ProgramData\Reimage Protector
[-] Folder Deleted : C:\Users\Tomáš\AppData\Local\gmsd_re_004010007
[-] Folder Deleted : C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\jecgbfoconhopjngaaijjgffhokohlac
[!] Folder Not Deleted : C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\jecgbfoconhopjngaaijjgffhokohlac
***** [ Files ] *****
[-] File Deleted : C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_jecgbfoconhopjngaaijjgffhokohlac_0.localstorage
[-] File Deleted : C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_jecgbfoconhopjngaaijjgffhokohlac_0.localstorage
[-] File Deleted : C:\Windows\Reimage.ini
***** [ DLLs ] *****
***** [ Shortcuts ] *****
***** [ Scheduled tasks ] *****
[-] Task Deleted : ReimageUpdater
[-] Task Deleted : LaunchPreSignup
***** [ Registry ] *****
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\REI_AxControl.DLL
[-] Key Deleted : HKLM\SOFTWARE\Classes\REI_AxControl.ReiEngine
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\Reimage.exe
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{10921475-03CE-4E04-90CE-E2E7EF20C814}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{10ECCE17-29B5-4880-A8F5-EAD298611484}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{801B440B-1EE3-49B0-B05D-2AB076D4E8CB}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{10921475-03CE-4E04-90CE-E2E7EF20C814}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}
[-] Key Deleted : HKCU\Software\Reimage
[-] Key Deleted : HKLM\SOFTWARE\Uniblue
[-] Key Deleted : HKLM\SOFTWARE\MediaPlayerVideos 1.2
[!] Key Not Deleted : [x64] HKCU\Software\Reimage
[-] Key Deleted : [x64] HKLM\SOFTWARE\Reimage
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Reimage Repair
***** [ Web browsers ] *****
[-] [C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : jecgbfoconhopjngaaijjgffhokohlac
[-] [C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : jecgbfoconhopjngaaijjgffhokohlac
*************************
:: Winsock settings cleared
########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [4134 bytes] ##########
# AdwCleaner v5.037 - Logfile created 04/03/2016 at 20:28:10
# Updated 28/02/2016 by Xplode
# Database : 2016-02-28.2 [Local]
# Operating system : Windows 8 Pro (x64)
# Username : Tom - TOM
# Running from : C:\Users\Tomáš\Desktop\adwcleaner_5.037.exe
# Option : Clean
# Support : http://toolslib.net/forum
***** [ Services ] *****
***** [ Folders ] *****
[-] Folder Deleted : C:\Users\Tomáš\AppData\Local\FileViewPro
[-] Folder Deleted : C:\Users\Tomáš\AppData\Roaming\OpenCandy
[-] Folder Deleted : C:\Users\Tomáš\AppData\Roaming\RHEng
[-] Folder Deleted : C:\Users\Tomáš\AppData\Roaming\Solvusoft
***** [ Files ] *****
[-] File Deleted : C:\Windows\SysNative\roboot64.exe
***** [ DLLs ] *****
***** [ Shortcuts ] *****
***** [ Scheduled tasks ] *****
[-] Task Deleted : mediaplayervideos_1.2_updating_service
[-] Task Deleted : mediaplayervideos_1.2_helper_service
***** [ Registry ] *****
[-] Key Deleted : HKCU\Software\2f74e756dc20979c1b07764e28bc8bfc
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F83D1872-D9FF-47F8-B5A0-49CC51E24EE8}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
[-] Key Deleted : HKCU\Software\Local AppWizard-Generated Applications\Reimage - Windows Problem Relief.
***** [ Web browsers ] *****
*************************
:: "Tracing" keys removed
:: Winsock settings cleared
*************************
C:\AdwCleaner\AdwCleaner[C1].txt - [6058 bytes] - [20/10/2015 15:56:55]
C:\AdwCleaner\AdwCleaner[S1].txt - [5788 bytes] - [20/10/2015 15:56:11]
########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [6204 bytes] ##########
-
Rudy
- Site Admin
- Příspěvky: 119379
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zpomalený PC, zamrzání a problémy.
Dejte nový log FRST.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Zpomalený PC, zamrzání a problémy.
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:04-03-2016
Ran by Tom (administrator) on TOM (04-03-2016 20:53:16)
Running from C:\Users\Tomáš\Desktop
Loaded Profiles: Tom (Available Profiles: Tom)
Platform: Windows 8 Pro (X64) Language: Čeština (Česká republika)
Internet Explorer Version 10 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SynptSync64.exe
(ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(IObit) C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.5\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Windows\slsvc.exe
() C:\Windows\PersonalizeEnabler.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe
(ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
(ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ArcCon.ac
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2539304 2015-08-03] (Synaptics Incorporated)
HKLM\...\Run: [SynAsusAcpi] => C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe [95016 2015-08-03] (Synaptics Incorporated)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2787264 2016-01-12] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16408320 2016-02-22] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1407104 2016-02-22] (Realtek Semiconductor)
HKLM-x32\...\Run: [ArcSoft Connection Service] => C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [207424 2010-10-27] (ArcSoft Inc.)
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596016 2016-01-29] (Oracle Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-714427804-3161757390-1116284539-1001\...\Run: [Steam] => D:\Hry\Steam\steam.exe [3014224 2016-02-04] (Valve Corporation)
HKU\S-1-5-21-714427804-3161757390-1116284539-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8461224 2015-09-16] (Piriform Ltd)
HKU\S-1-5-21-714427804-3161757390-1116284539-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [50615936 2016-01-18] (Skype Technologies S.A.)
HKU\S-1-5-21-714427804-3161757390-1116284539-1001\...\Run: [Advanced SystemCare 9] => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe [2010912 2015-11-06] (IObit)
HKU\S-1-5-21-714427804-3161757390-1116284539-1001\...\Run: [2f74e756dc20979c1b07764e28bc8bfc] => "C:\Users\Tomáš\AppData\Roaming\windowsupdater.exe" ..
HKU\S-1-5-21-714427804-3161757390-1116284539-1001\...\MountPoints2: F - "F:\Setup.exe"
HKU\S-1-5-21-714427804-3161757390-1116284539-1001\...\MountPoints2: G - "G:\RunGame.exe"
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [175368 2016-02-09] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [153208 2016-02-09] (NVIDIA Corporation)
Startup: C:\Users\Tomáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\2f74e756dc20979c1b07764e28bc8bfc.exe [2016-02-29] ()
Startup: C:\Users\Tomáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\2f74e756dc20979c1b07764e28bc8bfc.exe [2016-02-29] ()
GroupPolicy: Restriction - Chrome <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{D303714E-BA93-4821-A335-685B7D175DD9}: [DhcpNameServer] 192.168.2.1
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-714427804-3161757390-1116284539-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.seznam.cz/
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_74\bin\ssv.dll [2016-02-22] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_74\bin\jp2ssv.dll [2016-02-22] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_74\bin\ssv.dll [2016-02-22] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_74\bin\jp2ssv.dll [2016-02-22] (Oracle Corporation)
FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.74.2 -> C:\Program Files\Java\jre1.8.0_74\bin\dtplugin\npDeployJava1.dll [2016-02-22] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.74.2 -> C:\Program Files\Java\jre1.8.0_74\bin\plugin2\npjp2.dll [2016-02-22] (Oracle Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.74.2 -> C:\Program Files (x86)\Java\jre1.8.0_74\bin\dtplugin\npDeployJava1.dll [2016-02-22] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.74.2 -> C:\Program Files (x86)\Java\jre1.8.0_74\bin\plugin2\npjp2.dll [2016-02-22] (Oracle Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-03] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-03] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-12-18] (Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Steam inventory helper) - C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmeakgjggjdlcpncigglobpjbkabhmjl [2016-02-24]
CHR Extension: (LoungeDestroyer) - C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghahcnmfjfckcedfajbhekgknjdplfcl [2016-02-28]
CHR Extension: (Infinite HD App) - C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\laealigljflmglcgncipdbmbjgjdpiim [2016-02-05]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-10-28]
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
R2 AdvancedSystemCareService9; C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe [827680 2015-11-04] (IObit)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1314848 2016-01-19] ()
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1163200 2016-01-12] (NVIDIA Corporation)
R2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2934048 2015-11-10] (IObit)
S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [3916368 2016-01-09] (INCA Internet Co., Ltd.)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1879488 2016-01-12] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [6308288 2016-01-12] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [4812736 2016-01-12] (NVIDIA Corporation)
R2 slsvc; C:\Windows\slsvc.exe [10240 2012-09-25] (Microsoft Corporation) [File not signed]
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16056 2015-07-06] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 BthHFAud; C:\Windows\system32\DRIVERS\BthHfAud.sys [30720 2013-02-02] (Microsoft Corporation)
R3 btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [1419576 2015-10-20] (Motorola Solutions, Inc.)
S3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2015-10-23] (Disc Soft Ltd)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3265256 2012-09-20] (Broadcom Corporation)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-08-03] (REALiX(tm))
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [26560 2016-01-12] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [47760 2015-12-18] (NVIDIA Corporation)
S3 RTSUER; C:\Windows\system32\Drivers\RtsUer.sys [404184 2015-12-03] (Realsil Semiconductor Corporation)
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44560 2015-07-06] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [281944 2015-07-06] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-03-04 20:53 - 2016-03-04 20:53 - 00012968 _____ C:\Users\Tomáš\Desktop\FRST.txt
2016-03-04 20:22 - 2016-03-04 20:22 - 01518592 _____ C:\Users\Tomáš\Desktop\adwcleaner_5.037.exe
2016-03-04 17:46 - 2016-03-04 20:53 - 00000000 ____D C:\FRST
2016-03-04 17:46 - 2016-03-04 17:46 - 00112640 _____ (forum.viry.cz) C:\Users\Tomáš\Desktop\FRSTLauncher.exe
2016-03-04 17:45 - 2016-03-04 17:45 - 02374144 _____ (Farbar) C:\Users\Tomáš\Desktop\FRST64.exe
2016-03-03 21:40 - 2016-03-03 21:41 - 00000000 ____D C:\Users\Tomáš\AppData\Roaming\.technic
2016-03-03 21:40 - 2016-03-03 21:40 - 00001878 _____ C:\Users\Public\Desktop\MC Titan Launcher.lnk
2016-03-02 19:05 - 2016-03-02 19:05 - 00281440 _____ C:\Windows\system32\FNTCACHE.DAT
2016-03-02 19:04 - 2016-03-02 19:04 - 00000000 ____H C:\asc_rdflag
2016-02-29 19:59 - 2016-02-29 22:00 - 00000000 ____D C:\Users\Tomáš\AppData\Roaming\.minecraft
2016-02-29 19:59 - 2016-02-29 19:59 - 00001961 _____ C:\Users\Public\Desktop\Hrát na MC Titan www.mctitan.cz.lnk
2016-02-27 22:34 - 2016-02-27 22:34 - 00000000 ____D C:\Users\Tomáš\AppData\Roaming\SmartSteamEmu
2016-02-27 22:34 - 2016-02-27 22:34 - 00000000 ____D C:\Users\Tomáš\AppData\Local\Personal_use_only_(Darean
2016-02-27 22:33 - 2014-02-01 23:42 - 00000000 ____D C:\Users\Tomáš\AppData\Roaming\SpinTires
2016-02-26 21:24 - 2016-02-28 20:58 - 00000000 ____D C:\Users\Tomáš\Desktop\Random
2016-02-22 20:11 - 2016-02-23 22:48 - 00000000 ____D C:\Windows\SysWOW64\NV
2016-02-22 20:11 - 2016-02-23 22:48 - 00000000 ____D C:\Windows\system32\NV
2016-02-22 20:09 - 2016-02-22 20:10 - 00000000 ____D C:\Windows\LastGood
2016-02-22 20:08 - 2016-02-09 09:39 - 42982336 _____ C:\Windows\system32\nvcompiler.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 37616696 _____ C:\Windows\SysWOW64\nvcompiler.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 31081920 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 24916536 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 21193032 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 20733832 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 18758400 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 17625136 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 17218792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 16995576 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 16327896 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 14016576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 12383288 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2016-02-22 20:08 - 2016-02-09 09:39 - 03684072 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 03259688 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 03145272 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 02722872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 01924152 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6436191.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 01571776 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6436191.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 00950328 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 00880576 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 00747064 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 00691256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 00469144 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 00388560 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 00175368 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 00153208 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 00151368 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 00128696 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 00038336 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvpciflt.sys
2016-02-22 20:08 - 2016-02-09 09:39 - 00034905 _____ C:\Windows\system32\nvinfo.pb
2016-02-22 19:37 - 2016-02-22 19:37 - 00097888 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2016-02-22 19:37 - 2016-02-22 19:14 - 00110176 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-64.dll
2016-02-22 19:14 - 2016-02-22 19:14 - 00110176 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2016-02-22 19:01 - 2016-02-22 19:02 - 00000000 ____D C:\Windows\LastGood.Tmp
2016-02-22 19:00 - 2016-02-22 19:00 - 72203792 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat
2016-02-22 19:00 - 2016-02-22 19:00 - 14057256 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 13120760 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO3064.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 12986520 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO4064.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 10521552 _____ (Intel Corporation) C:\Windows\system32\IntelSSTAPO.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 07172920 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 07096192 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64A.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 06264640 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64AF3.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 05776688 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICV2apo.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 05338936 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOv211.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 05289952 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOlfx.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 04705536 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2016-02-22 19:00 - 2016-02-22 19:00 - 04486133 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2016-02-22 19:00 - 2016-02-22 19:00 - 03299832 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE2.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 03282032 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 03271912 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 03195648 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 03152591 _____ C:\Windows\system32\Drivers\rtkSSTsetting.dat
2016-02-22 19:00 - 2016-02-22 19:00 - 03052880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 02893568 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2016-02-22 19:00 - 2016-02-22 19:00 - 02823280 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO7064.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 02692848 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RltkAPO.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 02437144 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOv201.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 02190992 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 02110600 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 02050184 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 02030208 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 01965816 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64A.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 01959608 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64AF3.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 01928632 _____ (DTS, Inc.) C:\Windows\system32\sltech64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 01780624 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 01601952 _____ (Conexant Systems Inc.) C:\Windows\system32\CX64APO.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 01591064 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 01508936 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 01435144 _____ (Synopsys, Inc.) C:\Windows\system32\SRRPTR64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 01421104 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO6064.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 01382240 _____ (TOSHIBA Corporation) C:\Windows\system32\tosade.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 01356512 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 01334384 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxSpeechAPO64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 01286152 _____ (DTS, Inc.) C:\Windows\system32\slcnt64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 01211840 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO5064.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 01186168 _____ (Intel Corporation) C:\Windows\system32\IntelSstCApoPropPage.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 01164336 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO4064.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 01008360 _____ (DTS, Inc.) C:\Windows\system32\sl3apo64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 01003864 _____ (Nahimic Inc) C:\Windows\system32\NahimicAPONSControl.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00998032 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO2064.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00965032 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00952984 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOProp.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00933640 _____ (Sound Research, Corp.) C:\Windows\system32\SEHDRA64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00931624 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00923752 _____ (Sony Corporation) C:\Windows\system32\MISS_APO.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00888472 _____ (TOSHIBA Corporation) C:\Windows\system32\tossaeapo64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00873472 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo264.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00743968 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00727440 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00716112 _____ (Sound Research, Corp.) C:\Windows\system32\SECOMN64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00708320 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00689888 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00678192 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00677680 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00618192 _____ (Knowles Acoustics ) C:\Windows\system32\KAAPORT64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00596120 _____ (TOSHIBA Corporation) C:\Windows\system32\tosasfapo64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00589072 _____ (Sound Research, Corp.) C:\Windows\SysWOW64\SECOMN32.DLL
2016-02-22 19:00 - 2016-02-22 19:00 - 00574760 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00532384 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00514528 _____ (DTS) C:\Windows\system32\DTSU2PLFX64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00504312 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00500560 _____ (DTS) C:\Windows\system32\DTSU2PGFX64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00467168 _____ (Synopsys, Inc.) C:\Windows\system32\SRAPO64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00448592 _____ (Sound Research, Corp.) C:\Windows\system32\SEAPO64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00447728 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00445408 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00441272 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00428232 _____ (DTS) C:\Windows\system32\DTSU2PREC64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00387320 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00381416 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00369304 _____ (Dolby Laboratories) C:\Windows\system32\HiFiDAX2API.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00362056 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64AF3.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00343712 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00341160 _____ (Synopsys, Inc.) C:\Windows\SysWOW64\SRCOM.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00341160 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00340648 _____ (ICEpower a/s) C:\Windows\system32\ICEsoundAPO64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00330568 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00327464 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64A.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00321720 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00321720 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00310424 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64F3.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00272720 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00258504 _____ (TODO: <Company name>) C:\Windows\system32\slprp64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00253904 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00253872 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00252880 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00231920 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00224264 _____ (TOSHIBA Corporation) C:\Windows\system32\tossaemaxapo64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00221976 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00214840 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00209544 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00192992 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00172584 _____ (TOSHIBA Corporation) C:\Windows\system32\toseaeapo64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00166208 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00158704 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00151792 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00134208 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00122328 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00118600 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00118592 _____ C:\Windows\system32\AcpiServiceVnA64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00110992 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00105312 _____ C:\Windows\system32\audioLibVc.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00090920 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00088352 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00088328 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00084616 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00083632 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00075544 _____ (TOSHIBA CORPORATION.) C:\Windows\system32\tepeqapo64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00023696 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2016-02-21 15:08 - 2016-02-21 15:08 - 02297878 _____ C:\Users\Tomáš\Downloads\crack.zip
2016-02-21 15:05 - 2016-02-21 15:05 - 01820430 _____ C:\Users\Tomáš\Downloads\Need-For-Speed-Underground-2-CRACK (1).rar
2016-02-21 15:03 - 2016-02-21 15:03 - 00154610 _____ C:\Users\Tomáš\Downloads\Need-For-Speed-Underground-2-crack.rar
2016-02-19 22:13 - 2016-02-19 22:13 - 00000206 _____ C:\Users\Tomáš\Desktop\H1Z1 King of the Kill.url
2016-02-17 18:59 - 2016-02-17 18:59 - 00002471 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-02-09 19:46 - 2016-01-15 02:24 - 00033456 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-02-09 19:46 - 2016-01-15 01:54 - 00696320 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-02-09 19:46 - 2016-01-15 01:54 - 00677376 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2016-02-09 19:46 - 2016-01-15 01:54 - 00499200 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-02-09 19:46 - 2016-01-15 01:53 - 01362944 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-02-09 19:46 - 2016-01-15 01:53 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-02-09 19:46 - 2016-01-10 05:43 - 01162240 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-02-03 21:48 - 2016-02-20 17:26 - 00000000 ____D C:\Users\Tomáš\Documents\American Truck Simulator
2016-02-03 20:36 - 2016-03-04 20:41 - 00000968 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-02-03 20:36 - 2016-03-04 20:41 - 00000964 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-02-03 19:50 - 2016-02-03 19:50 - 00000000 ____D C:\Users\Tomáš\AppData\Roaming\Origin
2016-02-03 19:48 - 2016-02-03 19:52 - 00000000 ____D C:\ProgramData\Origin
2016-02-03 19:47 - 2016-02-03 19:52 - 00000000 ____D C:\Program Files (x86)\Origin
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-03-04 20:32 - 2016-02-01 19:02 - 00003228 _____ C:\Windows\System32\Tasks\Driver Booster Scheduler
2016-03-04 20:32 - 2016-02-01 19:02 - 00002860 _____ C:\Windows\System32\Tasks\Driver Booster SkipUAC (Tom)
2016-03-04 20:29 - 2012-07-26 08:22 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-03-04 20:23 - 2015-10-20 15:56 - 00000000 ____D C:\AdwCleaner
2016-03-04 17:57 - 2012-07-26 11:01 - 00727488 _____ C:\Windows\system32\perfh005.dat
2016-03-04 17:57 - 2012-07-26 11:01 - 00148006 _____ C:\Windows\system32\perfc005.dat
2016-03-04 17:57 - 2012-07-26 08:28 - 01714430 _____ C:\Windows\system32\PerfStringBackup.INI
2016-03-04 17:57 - 2012-07-26 06:37 - 00000000 ____D C:\Windows\Inf
2016-03-04 17:54 - 2015-10-02 21:39 - 00080896 ___SH C:\Users\Tomáš\Downloads\Thumbs.db
2016-03-04 17:53 - 2015-12-15 14:16 - 00000000 ____D C:\Users\Tomáš\AppData\Roaming\vlc
2016-03-03 20:40 - 2015-10-09 10:59 - 00000000 ____D C:\Users\Tomáš\AppData\Local\CrashDumps
2016-03-03 19:06 - 2015-12-15 12:19 - 00002266 _____ C:\Users\Public\Desktop\Advanced SystemCare 9.lnk
2016-03-02 19:04 - 2015-08-03 22:01 - 79724544 _____ C:\Windows\system32\config\SOFTWARE.iodefrag.bak
2016-03-02 19:04 - 2015-08-03 22:01 - 00409600 _____ C:\Windows\system32\config\DEFAULT.iodefrag.bak
2016-03-02 19:04 - 2015-08-03 22:01 - 00036864 _____ C:\Windows\system32\config\SAM.iodefrag.bak
2016-03-02 19:04 - 2015-08-03 22:01 - 00028672 _____ C:\Windows\system32\config\SECURITY.iodefrag.bak
2016-03-01 22:23 - 2012-07-26 06:26 - 00262144 ___SH C:\Windows\system32\config\BBI
2016-03-01 21:52 - 2015-08-14 09:36 - 00592896 ___SH C:\Users\Tomáš\Desktop\Thumbs.db
2016-03-01 18:00 - 2015-10-25 11:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OCCT
2016-02-27 23:43 - 2015-08-03 12:49 - 00000000 ____D C:\ProgramData\ProductData
2016-02-27 22:29 - 2015-08-03 12:46 - 00000000 ____D C:\Users\Tomáš\AppData\Roaming\uTorrent
2016-02-27 20:14 - 2015-08-10 00:59 - 00000000 ____D C:\Users\Tomáš\AppData\Roaming\Skype
2016-02-26 19:35 - 2015-11-05 16:05 - 00000000 ____D C:\ProgramData\TEMP
2016-02-23 20:05 - 2015-08-03 12:48 - 00003598 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-714427804-3161757390-1116284539-1001
2016-02-22 20:11 - 2015-08-03 13:17 - 00000000 ____D C:\ProgramData\NVIDIA
2016-02-22 19:37 - 2015-10-10 12:02 - 00000000 ____D C:\Users\Tomáš\.oracle_jre_usage
2016-02-22 19:37 - 2015-10-10 12:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-02-22 19:37 - 2015-10-10 12:01 - 00000000 ____D C:\ProgramData\Oracle
2016-02-22 19:36 - 2015-10-10 12:01 - 00000000 ____D C:\Program Files (x86)\Java
2016-02-22 19:13 - 2015-10-10 12:04 - 00000000 ____D C:\Program Files\Java
2016-02-22 19:02 - 2016-02-01 19:02 - 00002160 _____ C:\Users\Public\Desktop\Driver Booster 3.lnk
2016-02-22 19:02 - 2015-10-20 11:18 - 00000000 ____D C:\Windows\system32\DAX2
2016-02-22 19:01 - 2015-08-07 23:45 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2016-02-20 11:43 - 2015-09-26 16:24 - 00002214 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-02-20 11:43 - 2015-09-26 16:24 - 00002185 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-02-19 22:13 - 2015-08-03 13:14 - 00000000 ____D C:\Users\Tomáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2016-02-18 20:13 - 2015-08-08 13:09 - 00000000 ____D C:\ProgramData\Package Cache
2016-02-11 19:32 - 2015-08-14 07:49 - 00000000 ____D C:\Windows\system32\appraiser
2016-02-11 19:32 - 2015-08-05 13:35 - 00000000 ____D C:\Windows\system32\MRT
2016-02-11 19:32 - 2012-07-26 08:59 - 00000000 ____D C:\Windows\CbsTemp
2016-02-11 19:29 - 2015-08-05 13:35 - 146614896 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-02-10 19:35 - 2012-07-26 09:12 - 00000000 ___HD C:\Program Files\WindowsApps
2016-02-10 19:35 - 2012-07-26 09:12 - 00000000 ____D C:\Windows\AUInstallAgent
2016-02-09 06:41 - 2016-01-29 18:20 - 00081856 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2016-02-09 06:41 - 2015-08-03 13:16 - 06368824 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2016-02-09 06:41 - 2015-08-03 13:16 - 02993720 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2016-02-09 06:41 - 2015-08-03 13:16 - 02563128 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2016-02-09 06:41 - 2015-08-03 13:16 - 01264696 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2016-02-09 06:41 - 2015-08-03 13:16 - 00530368 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2016-02-09 06:41 - 2015-08-03 13:16 - 00392128 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2016-02-09 06:41 - 2015-08-03 13:16 - 00069568 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2016-02-06 14:13 - 2015-09-14 11:19 - 00000000 ____D C:\Users\Tomáš\AppData\Local\Battle.net
2016-02-06 02:49 - 2015-08-03 13:16 - 06154909 _____ C:\Windows\system32\nvcoproc.bin
2016-02-03 20:36 - 2015-09-26 16:24 - 00003940 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-02-03 20:36 - 2015-09-26 16:23 - 00003704 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
==================== Files in the root of some directories =======
2015-08-08 23:22 - 2015-08-08 23:22 - 0000000 ___SH () C:\Users\Tomáš\AppData\Local\LumaEmu
2015-10-20 11:18 - 2015-10-20 11:18 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
Some files in TEMP:
====================
C:\Users\Tomáš\AppData\Local\Temp\sqlite3.dll
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2016-02-29 18:58
==================== End of FRST.txt ============================
Ran by Tom (administrator) on TOM (04-03-2016 20:53:16)
Running from C:\Users\Tomáš\Desktop
Loaded Profiles: Tom (Available Profiles: Tom)
Platform: Windows 8 Pro (X64) Language: Čeština (Česká republika)
Internet Explorer Version 10 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SynptSync64.exe
(ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(IObit) C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.5\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Windows\slsvc.exe
() C:\Windows\PersonalizeEnabler.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe
(ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
(ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ArcCon.ac
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2539304 2015-08-03] (Synaptics Incorporated)
HKLM\...\Run: [SynAsusAcpi] => C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe [95016 2015-08-03] (Synaptics Incorporated)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2787264 2016-01-12] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16408320 2016-02-22] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1407104 2016-02-22] (Realtek Semiconductor)
HKLM-x32\...\Run: [ArcSoft Connection Service] => C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [207424 2010-10-27] (ArcSoft Inc.)
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596016 2016-01-29] (Oracle Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-714427804-3161757390-1116284539-1001\...\Run: [Steam] => D:\Hry\Steam\steam.exe [3014224 2016-02-04] (Valve Corporation)
HKU\S-1-5-21-714427804-3161757390-1116284539-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8461224 2015-09-16] (Piriform Ltd)
HKU\S-1-5-21-714427804-3161757390-1116284539-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [50615936 2016-01-18] (Skype Technologies S.A.)
HKU\S-1-5-21-714427804-3161757390-1116284539-1001\...\Run: [Advanced SystemCare 9] => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe [2010912 2015-11-06] (IObit)
HKU\S-1-5-21-714427804-3161757390-1116284539-1001\...\Run: [2f74e756dc20979c1b07764e28bc8bfc] => "C:\Users\Tomáš\AppData\Roaming\windowsupdater.exe" ..
HKU\S-1-5-21-714427804-3161757390-1116284539-1001\...\MountPoints2: F - "F:\Setup.exe"
HKU\S-1-5-21-714427804-3161757390-1116284539-1001\...\MountPoints2: G - "G:\RunGame.exe"
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [175368 2016-02-09] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [153208 2016-02-09] (NVIDIA Corporation)
Startup: C:\Users\Tomáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\2f74e756dc20979c1b07764e28bc8bfc.exe [2016-02-29] ()
Startup: C:\Users\Tomáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\2f74e756dc20979c1b07764e28bc8bfc.exe [2016-02-29] ()
GroupPolicy: Restriction - Chrome <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{D303714E-BA93-4821-A335-685B7D175DD9}: [DhcpNameServer] 192.168.2.1
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-714427804-3161757390-1116284539-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.seznam.cz/
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_74\bin\ssv.dll [2016-02-22] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_74\bin\jp2ssv.dll [2016-02-22] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_74\bin\ssv.dll [2016-02-22] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_74\bin\jp2ssv.dll [2016-02-22] (Oracle Corporation)
FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.74.2 -> C:\Program Files\Java\jre1.8.0_74\bin\dtplugin\npDeployJava1.dll [2016-02-22] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.74.2 -> C:\Program Files\Java\jre1.8.0_74\bin\plugin2\npjp2.dll [2016-02-22] (Oracle Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.74.2 -> C:\Program Files (x86)\Java\jre1.8.0_74\bin\dtplugin\npDeployJava1.dll [2016-02-22] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.74.2 -> C:\Program Files (x86)\Java\jre1.8.0_74\bin\plugin2\npjp2.dll [2016-02-22] (Oracle Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-03] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-03] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-12-18] (Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Steam inventory helper) - C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmeakgjggjdlcpncigglobpjbkabhmjl [2016-02-24]
CHR Extension: (LoungeDestroyer) - C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghahcnmfjfckcedfajbhekgknjdplfcl [2016-02-28]
CHR Extension: (Infinite HD App) - C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\laealigljflmglcgncipdbmbjgjdpiim [2016-02-05]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-10-28]
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
R2 AdvancedSystemCareService9; C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe [827680 2015-11-04] (IObit)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1314848 2016-01-19] ()
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1163200 2016-01-12] (NVIDIA Corporation)
R2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2934048 2015-11-10] (IObit)
S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [3916368 2016-01-09] (INCA Internet Co., Ltd.)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1879488 2016-01-12] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [6308288 2016-01-12] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [4812736 2016-01-12] (NVIDIA Corporation)
R2 slsvc; C:\Windows\slsvc.exe [10240 2012-09-25] (Microsoft Corporation) [File not signed]
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16056 2015-07-06] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 BthHFAud; C:\Windows\system32\DRIVERS\BthHfAud.sys [30720 2013-02-02] (Microsoft Corporation)
R3 btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [1419576 2015-10-20] (Motorola Solutions, Inc.)
S3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2015-10-23] (Disc Soft Ltd)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3265256 2012-09-20] (Broadcom Corporation)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-08-03] (REALiX(tm))
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [26560 2016-01-12] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [47760 2015-12-18] (NVIDIA Corporation)
S3 RTSUER; C:\Windows\system32\Drivers\RtsUer.sys [404184 2015-12-03] (Realsil Semiconductor Corporation)
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44560 2015-07-06] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [281944 2015-07-06] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-03-04 20:53 - 2016-03-04 20:53 - 00012968 _____ C:\Users\Tomáš\Desktop\FRST.txt
2016-03-04 20:22 - 2016-03-04 20:22 - 01518592 _____ C:\Users\Tomáš\Desktop\adwcleaner_5.037.exe
2016-03-04 17:46 - 2016-03-04 20:53 - 00000000 ____D C:\FRST
2016-03-04 17:46 - 2016-03-04 17:46 - 00112640 _____ (forum.viry.cz) C:\Users\Tomáš\Desktop\FRSTLauncher.exe
2016-03-04 17:45 - 2016-03-04 17:45 - 02374144 _____ (Farbar) C:\Users\Tomáš\Desktop\FRST64.exe
2016-03-03 21:40 - 2016-03-03 21:41 - 00000000 ____D C:\Users\Tomáš\AppData\Roaming\.technic
2016-03-03 21:40 - 2016-03-03 21:40 - 00001878 _____ C:\Users\Public\Desktop\MC Titan Launcher.lnk
2016-03-02 19:05 - 2016-03-02 19:05 - 00281440 _____ C:\Windows\system32\FNTCACHE.DAT
2016-03-02 19:04 - 2016-03-02 19:04 - 00000000 ____H C:\asc_rdflag
2016-02-29 19:59 - 2016-02-29 22:00 - 00000000 ____D C:\Users\Tomáš\AppData\Roaming\.minecraft
2016-02-29 19:59 - 2016-02-29 19:59 - 00001961 _____ C:\Users\Public\Desktop\Hrát na MC Titan www.mctitan.cz.lnk
2016-02-27 22:34 - 2016-02-27 22:34 - 00000000 ____D C:\Users\Tomáš\AppData\Roaming\SmartSteamEmu
2016-02-27 22:34 - 2016-02-27 22:34 - 00000000 ____D C:\Users\Tomáš\AppData\Local\Personal_use_only_(Darean
2016-02-27 22:33 - 2014-02-01 23:42 - 00000000 ____D C:\Users\Tomáš\AppData\Roaming\SpinTires
2016-02-26 21:24 - 2016-02-28 20:58 - 00000000 ____D C:\Users\Tomáš\Desktop\Random
2016-02-22 20:11 - 2016-02-23 22:48 - 00000000 ____D C:\Windows\SysWOW64\NV
2016-02-22 20:11 - 2016-02-23 22:48 - 00000000 ____D C:\Windows\system32\NV
2016-02-22 20:09 - 2016-02-22 20:10 - 00000000 ____D C:\Windows\LastGood
2016-02-22 20:08 - 2016-02-09 09:39 - 42982336 _____ C:\Windows\system32\nvcompiler.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 37616696 _____ C:\Windows\SysWOW64\nvcompiler.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 31081920 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 24916536 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 21193032 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 20733832 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 18758400 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 17625136 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 17218792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 16995576 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 16327896 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 14016576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 12383288 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2016-02-22 20:08 - 2016-02-09 09:39 - 03684072 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 03259688 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 03145272 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 02722872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 01924152 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6436191.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 01571776 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6436191.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 00950328 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 00880576 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 00747064 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 00691256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 00469144 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 00388560 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 00175368 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 00153208 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 00151368 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 00128696 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2016-02-22 20:08 - 2016-02-09 09:39 - 00038336 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvpciflt.sys
2016-02-22 20:08 - 2016-02-09 09:39 - 00034905 _____ C:\Windows\system32\nvinfo.pb
2016-02-22 19:37 - 2016-02-22 19:37 - 00097888 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2016-02-22 19:37 - 2016-02-22 19:14 - 00110176 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-64.dll
2016-02-22 19:14 - 2016-02-22 19:14 - 00110176 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2016-02-22 19:01 - 2016-02-22 19:02 - 00000000 ____D C:\Windows\LastGood.Tmp
2016-02-22 19:00 - 2016-02-22 19:00 - 72203792 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat
2016-02-22 19:00 - 2016-02-22 19:00 - 14057256 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 13120760 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO3064.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 12986520 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO4064.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 10521552 _____ (Intel Corporation) C:\Windows\system32\IntelSSTAPO.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 07172920 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 07096192 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64A.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 06264640 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64AF3.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 05776688 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICV2apo.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 05338936 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOv211.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 05289952 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOlfx.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 04705536 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2016-02-22 19:00 - 2016-02-22 19:00 - 04486133 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2016-02-22 19:00 - 2016-02-22 19:00 - 03299832 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE2.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 03282032 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 03271912 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 03195648 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 03152591 _____ C:\Windows\system32\Drivers\rtkSSTsetting.dat
2016-02-22 19:00 - 2016-02-22 19:00 - 03052880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 02893568 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2016-02-22 19:00 - 2016-02-22 19:00 - 02823280 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO7064.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 02692848 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RltkAPO.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 02437144 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOv201.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 02190992 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 02110600 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 02050184 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 02030208 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 01965816 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64A.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 01959608 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64AF3.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 01928632 _____ (DTS, Inc.) C:\Windows\system32\sltech64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 01780624 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 01601952 _____ (Conexant Systems Inc.) C:\Windows\system32\CX64APO.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 01591064 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 01508936 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 01435144 _____ (Synopsys, Inc.) C:\Windows\system32\SRRPTR64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 01421104 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO6064.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 01382240 _____ (TOSHIBA Corporation) C:\Windows\system32\tosade.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 01356512 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 01334384 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxSpeechAPO64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 01286152 _____ (DTS, Inc.) C:\Windows\system32\slcnt64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 01211840 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO5064.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 01186168 _____ (Intel Corporation) C:\Windows\system32\IntelSstCApoPropPage.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 01164336 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO4064.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 01008360 _____ (DTS, Inc.) C:\Windows\system32\sl3apo64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 01003864 _____ (Nahimic Inc) C:\Windows\system32\NahimicAPONSControl.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00998032 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO2064.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00965032 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00952984 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOProp.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00933640 _____ (Sound Research, Corp.) C:\Windows\system32\SEHDRA64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00931624 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00923752 _____ (Sony Corporation) C:\Windows\system32\MISS_APO.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00888472 _____ (TOSHIBA Corporation) C:\Windows\system32\tossaeapo64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00873472 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo264.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00743968 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00727440 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00716112 _____ (Sound Research, Corp.) C:\Windows\system32\SECOMN64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00708320 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00689888 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00678192 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00677680 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00618192 _____ (Knowles Acoustics ) C:\Windows\system32\KAAPORT64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00596120 _____ (TOSHIBA Corporation) C:\Windows\system32\tosasfapo64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00589072 _____ (Sound Research, Corp.) C:\Windows\SysWOW64\SECOMN32.DLL
2016-02-22 19:00 - 2016-02-22 19:00 - 00574760 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00532384 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00514528 _____ (DTS) C:\Windows\system32\DTSU2PLFX64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00504312 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00500560 _____ (DTS) C:\Windows\system32\DTSU2PGFX64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00467168 _____ (Synopsys, Inc.) C:\Windows\system32\SRAPO64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00448592 _____ (Sound Research, Corp.) C:\Windows\system32\SEAPO64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00447728 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00445408 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00441272 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00428232 _____ (DTS) C:\Windows\system32\DTSU2PREC64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00387320 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00381416 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00369304 _____ (Dolby Laboratories) C:\Windows\system32\HiFiDAX2API.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00362056 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64AF3.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00343712 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00341160 _____ (Synopsys, Inc.) C:\Windows\SysWOW64\SRCOM.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00341160 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00340648 _____ (ICEpower a/s) C:\Windows\system32\ICEsoundAPO64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00330568 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00327464 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64A.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00321720 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00321720 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00310424 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64F3.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00272720 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00258504 _____ (TODO: <Company name>) C:\Windows\system32\slprp64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00253904 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00253872 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00252880 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00231920 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00224264 _____ (TOSHIBA Corporation) C:\Windows\system32\tossaemaxapo64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00221976 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00214840 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00209544 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00192992 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00172584 _____ (TOSHIBA Corporation) C:\Windows\system32\toseaeapo64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00166208 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00158704 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00151792 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00134208 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00122328 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00118600 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00118592 _____ C:\Windows\system32\AcpiServiceVnA64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00110992 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00105312 _____ C:\Windows\system32\audioLibVc.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00090920 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00088352 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00088328 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00084616 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00083632 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00075544 _____ (TOSHIBA CORPORATION.) C:\Windows\system32\tepeqapo64.dll
2016-02-22 19:00 - 2016-02-22 19:00 - 00023696 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2016-02-21 15:08 - 2016-02-21 15:08 - 02297878 _____ C:\Users\Tomáš\Downloads\crack.zip
2016-02-21 15:05 - 2016-02-21 15:05 - 01820430 _____ C:\Users\Tomáš\Downloads\Need-For-Speed-Underground-2-CRACK (1).rar
2016-02-21 15:03 - 2016-02-21 15:03 - 00154610 _____ C:\Users\Tomáš\Downloads\Need-For-Speed-Underground-2-crack.rar
2016-02-19 22:13 - 2016-02-19 22:13 - 00000206 _____ C:\Users\Tomáš\Desktop\H1Z1 King of the Kill.url
2016-02-17 18:59 - 2016-02-17 18:59 - 00002471 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-02-09 19:46 - 2016-01-15 02:24 - 00033456 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-02-09 19:46 - 2016-01-15 01:54 - 00696320 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-02-09 19:46 - 2016-01-15 01:54 - 00677376 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2016-02-09 19:46 - 2016-01-15 01:54 - 00499200 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-02-09 19:46 - 2016-01-15 01:53 - 01362944 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-02-09 19:46 - 2016-01-15 01:53 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-02-09 19:46 - 2016-01-10 05:43 - 01162240 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-02-03 21:48 - 2016-02-20 17:26 - 00000000 ____D C:\Users\Tomáš\Documents\American Truck Simulator
2016-02-03 20:36 - 2016-03-04 20:41 - 00000968 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-02-03 20:36 - 2016-03-04 20:41 - 00000964 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-02-03 19:50 - 2016-02-03 19:50 - 00000000 ____D C:\Users\Tomáš\AppData\Roaming\Origin
2016-02-03 19:48 - 2016-02-03 19:52 - 00000000 ____D C:\ProgramData\Origin
2016-02-03 19:47 - 2016-02-03 19:52 - 00000000 ____D C:\Program Files (x86)\Origin
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-03-04 20:32 - 2016-02-01 19:02 - 00003228 _____ C:\Windows\System32\Tasks\Driver Booster Scheduler
2016-03-04 20:32 - 2016-02-01 19:02 - 00002860 _____ C:\Windows\System32\Tasks\Driver Booster SkipUAC (Tom)
2016-03-04 20:29 - 2012-07-26 08:22 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-03-04 20:23 - 2015-10-20 15:56 - 00000000 ____D C:\AdwCleaner
2016-03-04 17:57 - 2012-07-26 11:01 - 00727488 _____ C:\Windows\system32\perfh005.dat
2016-03-04 17:57 - 2012-07-26 11:01 - 00148006 _____ C:\Windows\system32\perfc005.dat
2016-03-04 17:57 - 2012-07-26 08:28 - 01714430 _____ C:\Windows\system32\PerfStringBackup.INI
2016-03-04 17:57 - 2012-07-26 06:37 - 00000000 ____D C:\Windows\Inf
2016-03-04 17:54 - 2015-10-02 21:39 - 00080896 ___SH C:\Users\Tomáš\Downloads\Thumbs.db
2016-03-04 17:53 - 2015-12-15 14:16 - 00000000 ____D C:\Users\Tomáš\AppData\Roaming\vlc
2016-03-03 20:40 - 2015-10-09 10:59 - 00000000 ____D C:\Users\Tomáš\AppData\Local\CrashDumps
2016-03-03 19:06 - 2015-12-15 12:19 - 00002266 _____ C:\Users\Public\Desktop\Advanced SystemCare 9.lnk
2016-03-02 19:04 - 2015-08-03 22:01 - 79724544 _____ C:\Windows\system32\config\SOFTWARE.iodefrag.bak
2016-03-02 19:04 - 2015-08-03 22:01 - 00409600 _____ C:\Windows\system32\config\DEFAULT.iodefrag.bak
2016-03-02 19:04 - 2015-08-03 22:01 - 00036864 _____ C:\Windows\system32\config\SAM.iodefrag.bak
2016-03-02 19:04 - 2015-08-03 22:01 - 00028672 _____ C:\Windows\system32\config\SECURITY.iodefrag.bak
2016-03-01 22:23 - 2012-07-26 06:26 - 00262144 ___SH C:\Windows\system32\config\BBI
2016-03-01 21:52 - 2015-08-14 09:36 - 00592896 ___SH C:\Users\Tomáš\Desktop\Thumbs.db
2016-03-01 18:00 - 2015-10-25 11:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OCCT
2016-02-27 23:43 - 2015-08-03 12:49 - 00000000 ____D C:\ProgramData\ProductData
2016-02-27 22:29 - 2015-08-03 12:46 - 00000000 ____D C:\Users\Tomáš\AppData\Roaming\uTorrent
2016-02-27 20:14 - 2015-08-10 00:59 - 00000000 ____D C:\Users\Tomáš\AppData\Roaming\Skype
2016-02-26 19:35 - 2015-11-05 16:05 - 00000000 ____D C:\ProgramData\TEMP
2016-02-23 20:05 - 2015-08-03 12:48 - 00003598 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-714427804-3161757390-1116284539-1001
2016-02-22 20:11 - 2015-08-03 13:17 - 00000000 ____D C:\ProgramData\NVIDIA
2016-02-22 19:37 - 2015-10-10 12:02 - 00000000 ____D C:\Users\Tomáš\.oracle_jre_usage
2016-02-22 19:37 - 2015-10-10 12:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-02-22 19:37 - 2015-10-10 12:01 - 00000000 ____D C:\ProgramData\Oracle
2016-02-22 19:36 - 2015-10-10 12:01 - 00000000 ____D C:\Program Files (x86)\Java
2016-02-22 19:13 - 2015-10-10 12:04 - 00000000 ____D C:\Program Files\Java
2016-02-22 19:02 - 2016-02-01 19:02 - 00002160 _____ C:\Users\Public\Desktop\Driver Booster 3.lnk
2016-02-22 19:02 - 2015-10-20 11:18 - 00000000 ____D C:\Windows\system32\DAX2
2016-02-22 19:01 - 2015-08-07 23:45 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2016-02-20 11:43 - 2015-09-26 16:24 - 00002214 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-02-20 11:43 - 2015-09-26 16:24 - 00002185 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-02-19 22:13 - 2015-08-03 13:14 - 00000000 ____D C:\Users\Tomáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2016-02-18 20:13 - 2015-08-08 13:09 - 00000000 ____D C:\ProgramData\Package Cache
2016-02-11 19:32 - 2015-08-14 07:49 - 00000000 ____D C:\Windows\system32\appraiser
2016-02-11 19:32 - 2015-08-05 13:35 - 00000000 ____D C:\Windows\system32\MRT
2016-02-11 19:32 - 2012-07-26 08:59 - 00000000 ____D C:\Windows\CbsTemp
2016-02-11 19:29 - 2015-08-05 13:35 - 146614896 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-02-10 19:35 - 2012-07-26 09:12 - 00000000 ___HD C:\Program Files\WindowsApps
2016-02-10 19:35 - 2012-07-26 09:12 - 00000000 ____D C:\Windows\AUInstallAgent
2016-02-09 06:41 - 2016-01-29 18:20 - 00081856 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2016-02-09 06:41 - 2015-08-03 13:16 - 06368824 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2016-02-09 06:41 - 2015-08-03 13:16 - 02993720 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2016-02-09 06:41 - 2015-08-03 13:16 - 02563128 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2016-02-09 06:41 - 2015-08-03 13:16 - 01264696 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2016-02-09 06:41 - 2015-08-03 13:16 - 00530368 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2016-02-09 06:41 - 2015-08-03 13:16 - 00392128 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2016-02-09 06:41 - 2015-08-03 13:16 - 00069568 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2016-02-06 14:13 - 2015-09-14 11:19 - 00000000 ____D C:\Users\Tomáš\AppData\Local\Battle.net
2016-02-06 02:49 - 2015-08-03 13:16 - 06154909 _____ C:\Windows\system32\nvcoproc.bin
2016-02-03 20:36 - 2015-09-26 16:24 - 00003940 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-02-03 20:36 - 2015-09-26 16:23 - 00003704 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
==================== Files in the root of some directories =======
2015-08-08 23:22 - 2015-08-08 23:22 - 0000000 ___SH () C:\Users\Tomáš\AppData\Local\LumaEmu
2015-10-20 11:18 - 2015-10-20 11:18 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
Some files in TEMP:
====================
C:\Users\Tomáš\AppData\Local\Temp\sqlite3.dll
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2016-02-29 18:58
==================== End of FRST.txt ============================
-
Rudy
- Site Admin
- Příspěvky: 119379
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zpomalený PC, zamrzání a problémy.
Otevřte poznámkový blok a zkopírujte do něj:
Doporučuji odinstalovat AdvancadSystemCare. Tento rádoby čistící program vidí problémy tam, kde nejsou a laik si jím může snadno poškodit systém.
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596016 2016-01-29] (Oracle Corporation)
HKU\S-1-5-21-714427804-3161757390-1116284539-1001\...\Run: [2f74e756dc20979c1b07764e28bc8bfc] => "C:\Users\Tomáš\AppData\Roaming\windowsupdater.exe"
HKU\S-1-5-21-714427804-3161757390-1116284539-1001\...\MountPoints2: F - "F:\Setup.exe"
HKU\S-1-5-21-714427804-3161757390-1116284539-1001\...\MountPoints2: G - "G:\RunGame.exe"
C:\Users\Tomáš\AppData\Roaming\windowsupdater.exe
GroupPolicy: Restriction - Chrome <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
C:\ProgramData\DP45977C.lfl
C:\Users\Tomáš\AppData\Local\Temp
End
Doporučuji odinstalovat AdvancadSystemCare. Tento rádoby čistící program vidí problémy tam, kde nejsou a laik si jím může snadno poškodit systém.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Zpomalený PC, zamrzání a problémy.
Dobře, popřípadě doporučil by jste mi nějaký podobný program ?
Fix result of Farbar Recovery Scan Tool (x64) Version:04-03-2016
Ran by Tom (2016-03-04 22:43:27) Run:1
Running from C:\Users\Tomáš\Desktop
Loaded Profiles: Tom (Available Profiles: Tom)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596016 2016-01-29] (Oracle Corporation)
HKU\S-1-5-21-714427804-3161757390-1116284539-1001\...\Run: [2f74e756dc20979c1b07764e28bc8bfc] => "C:\Users\Tomáš\AppData\Roaming\windowsupdater.exe"
HKU\S-1-5-21-714427804-3161757390-1116284539-1001\...\MountPoints2: F - "F:\Setup.exe"
HKU\S-1-5-21-714427804-3161757390-1116284539-1001\...\MountPoints2: G - "G:\RunGame.exe"
C:\Users\Tomáš\AppData\Roaming\windowsupdater.exe
GroupPolicy: Restriction - Chrome <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
C:\ProgramData\DP45977C.lfl
C:\Users\Tomáš\AppData\Local\Temp
End
*****************
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => value removed successfully
HKU\S-1-5-21-714427804-3161757390-1116284539-1001\Software\Microsoft\Windows\CurrentVersion\Run\\2f74e756dc20979c1b07764e28bc8bfc => value removed successfully
"HKU\S-1-5-21-714427804-3161757390-1116284539-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\F" => key removed successfully
"HKU\S-1-5-21-714427804-3161757390-1116284539-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\G" => key removed successfully
"C:\Users\Tomáš\AppData\Roaming\windowsupdater.exe" => not found.
C:\Windows\system32\GroupPolicy\Machine => moved successfully
C:\Windows\system32\GroupPolicy\GPT.ini => moved successfully
"HKLM\SOFTWARE\Policies\Google" => key removed successfully
"HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => key removed successfully
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully
C:\ProgramData\DP45977C.lfl => moved successfully
C:\Users\Tomáš\AppData\Local\Temp => moved successfully
The system needed a reboot.
==== End of Fixlog 22:43:28 ====
Fix result of Farbar Recovery Scan Tool (x64) Version:04-03-2016
Ran by Tom (2016-03-04 22:43:27) Run:1
Running from C:\Users\Tomáš\Desktop
Loaded Profiles: Tom (Available Profiles: Tom)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596016 2016-01-29] (Oracle Corporation)
HKU\S-1-5-21-714427804-3161757390-1116284539-1001\...\Run: [2f74e756dc20979c1b07764e28bc8bfc] => "C:\Users\Tomáš\AppData\Roaming\windowsupdater.exe"
HKU\S-1-5-21-714427804-3161757390-1116284539-1001\...\MountPoints2: F - "F:\Setup.exe"
HKU\S-1-5-21-714427804-3161757390-1116284539-1001\...\MountPoints2: G - "G:\RunGame.exe"
C:\Users\Tomáš\AppData\Roaming\windowsupdater.exe
GroupPolicy: Restriction - Chrome <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
C:\ProgramData\DP45977C.lfl
C:\Users\Tomáš\AppData\Local\Temp
End
*****************
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => value removed successfully
HKU\S-1-5-21-714427804-3161757390-1116284539-1001\Software\Microsoft\Windows\CurrentVersion\Run\\2f74e756dc20979c1b07764e28bc8bfc => value removed successfully
"HKU\S-1-5-21-714427804-3161757390-1116284539-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\F" => key removed successfully
"HKU\S-1-5-21-714427804-3161757390-1116284539-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\G" => key removed successfully
"C:\Users\Tomáš\AppData\Roaming\windowsupdater.exe" => not found.
C:\Windows\system32\GroupPolicy\Machine => moved successfully
C:\Windows\system32\GroupPolicy\GPT.ini => moved successfully
"HKLM\SOFTWARE\Policies\Google" => key removed successfully
"HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => key removed successfully
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully
C:\ProgramData\DP45977C.lfl => moved successfully
C:\Users\Tomáš\AppData\Local\Temp => moved successfully
The system needed a reboot.
==== End of Fixlog 22:43:28 ====
-
Rudy
- Site Admin
- Příspěvky: 119379
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zpomalený PC, zamrzání a problémy.
Smazáno. Nastala nějaká změna? Mohu doporučit CCleaner: http://forum.viry.cz/viewtopic.php?f=46&t=7478 .
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Zpomalený PC, zamrzání a problémy.
CCleaner také používám. Změna nastala hned při spuštění PC nehučí a nehřeje se PC je vytížené na minimum. Jen mi začala nabíhat hláška od WindowsDefender nebo tak nějak se to jmenuje, že byl nalezen škodlivý mallware. Jinak zase šlape jak hodinky díky za pomoc.
-
Rudy
- Site Admin
- Příspěvky: 119379
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zpomalený PC, zamrzání a problémy.
Pokud už ta hláška nenabíhá, mělo by to být OK.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Zpomalený PC, zamrzání a problémy.
Tak hláška při startu PC o zjištění malweru hází pořád. WidowsDefender píše že se ho snaží najít a vyčistit. Ale při vyčištění a restartování PC naskočí znova.
-
Rudy
- Site Admin
- Příspěvky: 119379
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zpomalený PC, zamrzání a problémy.
Udělejte kompletní sken MBAM: http://www.malwarebytes.org/mbam.php a dejte log. Předem nic nemažte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Zpomalený PC, zamrzání a problémy.
Nevím zda je to to co jste chtěl.
Malwarebytes Anti-Malware
www.malwarebytes.org
Datum skenování: 8. 3. 2016
Čas skenování: 18:29
Protokol: log.txt
Správce: Ano
Verze: 2.2.0.1024
Databáze malwaru: v2016.03.08.05
Databáze rootkitů: v2016.02.27.01
Licence: Zkušební verze
Ochrana proti malwaru: Zapnuto
Ochrana proti škodlivým webovým stránkám: Zapnuto
Ochrana programu: Vypnuto
OS: Windows 8
CPU: x64
Souborový systém: NTFS
Uživatel: Tom
Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 361843
Uplynulý čas: 23 min, 44 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 0
(Nenalezeny žádné škodlivé položky)
Moduly: 0
(Nenalezeny žádné škodlivé položky)
Klíče registru: 3
PUP.Optional.BrowserWeb, HKLM\SOFTWARE\MICROSOFT\TRACING\BrowserWeb_RASAPI32, , [73e2c5c0504988aea0a9b2ac7a8aed13],
PUP.Optional.BrowserWeb, HKLM\SOFTWARE\MICROSOFT\TRACING\BrowserWeb_RASMANCS, , [7bda671e0b8e6fc7a8a1b0ae0df747b9],
PUP.Optional.PriceFountain, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{B9A59B53-BDEE-4602-B247-27EA99F5246D}, , [cb8a097ca7f2ae88e5bc81fb10f4c739],
Hodnoty registru: 1
PUP.Optional.PriceFountain, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{B9A59B53-BDEE-4602-B247-27EA99F5246D}|Path, \Microsoft\Windows\Setup\8.1 auto install v2, , [cb8a097ca7f2ae88e5bc81fb10f4c739]
Data registru: 0
(Nenalezeny žádné škodlivé položky)
Složky: 0
(Nenalezeny žádné škodlivé položky)
Soubory: 1
Trojan.Agent.GenX, C:\Users\Tomáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\2f74e756dc20979c1b07764e28bc8bfc.exe, , [f560ed98e9b050e62675ee89bf42d12f],
Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)
(end)
Malwarebytes Anti-Malware
www.malwarebytes.org
Datum skenování: 8. 3. 2016
Čas skenování: 18:29
Protokol: log.txt
Správce: Ano
Verze: 2.2.0.1024
Databáze malwaru: v2016.03.08.05
Databáze rootkitů: v2016.02.27.01
Licence: Zkušební verze
Ochrana proti malwaru: Zapnuto
Ochrana proti škodlivým webovým stránkám: Zapnuto
Ochrana programu: Vypnuto
OS: Windows 8
CPU: x64
Souborový systém: NTFS
Uživatel: Tom
Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 361843
Uplynulý čas: 23 min, 44 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 0
(Nenalezeny žádné škodlivé položky)
Moduly: 0
(Nenalezeny žádné škodlivé položky)
Klíče registru: 3
PUP.Optional.BrowserWeb, HKLM\SOFTWARE\MICROSOFT\TRACING\BrowserWeb_RASAPI32, , [73e2c5c0504988aea0a9b2ac7a8aed13],
PUP.Optional.BrowserWeb, HKLM\SOFTWARE\MICROSOFT\TRACING\BrowserWeb_RASMANCS, , [7bda671e0b8e6fc7a8a1b0ae0df747b9],
PUP.Optional.PriceFountain, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{B9A59B53-BDEE-4602-B247-27EA99F5246D}, , [cb8a097ca7f2ae88e5bc81fb10f4c739],
Hodnoty registru: 1
PUP.Optional.PriceFountain, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{B9A59B53-BDEE-4602-B247-27EA99F5246D}|Path, \Microsoft\Windows\Setup\8.1 auto install v2, , [cb8a097ca7f2ae88e5bc81fb10f4c739]
Data registru: 0
(Nenalezeny žádné škodlivé položky)
Složky: 0
(Nenalezeny žádné škodlivé položky)
Soubory: 1
Trojan.Agent.GenX, C:\Users\Tomáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\2f74e756dc20979c1b07764e28bc8bfc.exe, , [f560ed98e9b050e62675ee89bf42d12f],
Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)
(end)
-
Rudy
- Site Admin
- Příspěvky: 119379
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zpomalený PC, zamrzání a problémy.
Všechny nalezené položky smažte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Zpomalený PC, zamrzání a problémy.
Odstraněno a už to nic nehlásí. Děkuji za pomoc.
Přispějete na provoz fóra?