Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Pomalý notebook

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
maicuss
Návštěvník
Návštěvník
Příspěvky: 65
Registrován: 29 čer 2011 08:15

Pomalý notebook

#1 Příspěvek od maicuss »

Dobrý večer, chtěl bych vás požádat o pomoc. Poslední dobou pozoruji, že notebook pracuje pomaleji a je to čím dál tím horší...některé programy, včetně internetových prohlížečů se načítají velmi dlouho a sekají se....
Přikládám log z RSIT:

info.txt logfile of random's system information tool 1.10 2016-06-14 22:26:40

======MBR======

0x33C08ED0BC007C8EC08ED8BE007CBF0006B90002FCF3A450681C06CBFBB90400BDBE07807E00007C0B0F850E0183C510E2F1CD1888560055C6461105C6461000B441BBAA55CD135D720F81FB55AA7509F7C101007403FE46106660807E1000742666680000000066FF760868000068007C680100681000B4428A56008BF4CD139F83C4109EEB14B80102BB007C8A56008A76018A4E028A6E03CD136661731CFE4E11750C807E00800F848A00B280EB845532E48A5600CD135DEB9E813EFE7D55AA756EFF7600E88D007517FAB0D1E664E88300B0DFE660E87C00B0FFE664E87500FBB800BBCD1A6623C0753B6681FB54435041753281F90201722C666807BB00006668000200006668080000006653665366556668000000006668007C0000666168000007CD1A5A32F6EA007C0000CD18A0B707EB08A0B607EB03A0B50732E40500078BF0AC3C007409BB0700B40ECD10EBF2F4EBFD2BC9E464EB002402E0F82402C3496E76616C696420706172746974696F6E207461626C65004572726F72206C6F6164696E67206F7065726174696E672073797374656D004D697373696E67206F7065726174696E672073797374656D000000637B9A5BCA752B00008020210007DF130C000800000020030000DF140C07FEFFFF002803000030353A000000000000000000000000000000000000000000000000000000000000000055AA

======Uninstall list======

-->"C:\Program Files (x86)\InstallShield Installation Information\{BB8AE808-F003-4C7F-B56B-8C80EEAFFE23}\setup.exe" --u:{BB8AE808-F003-4C7F-B56B-8C80EEAFFE23}
-->C:\Program Files (x86)\Nero\Nero 7\\nero\uninstall\UNNERO.exe /UNINSTALL
-->C:\ProgramData\{5EBCE76E-C69D-4C20-AF60-2E9DA59F03C8}\Kontakt 4 Setup PC.exe
-->C:\ProgramData\{9EA9F3B6-4422-49A7-8BC0-B8C3C310B956}\Battery 3 Setup PC.exe
-->C:\ProgramData\{AE681438-D566-42AE-BBB8-7141C47E0985}\Komplete 7 Setup PC.exe
-->C:\ProgramData\{C78336EC-F2EB-4640-99A4-DFE96581B90B}\Service Center Setup PC.exe
-->C:\ProgramData\{E26B3878-7CEC-469C-B449-5CAA336DF8CD}\Massive Setup PC.exe
-->C:\ProgramData\{E2937431-E60E-4C65-BD1B-280017DB2B28}\Battery 4 Setup PC.exe
-->C:\Windows\UNNeroBackItUp.exe /UNINSTALL
-->C:\Windows\UNNeroMediaHome.exe /UNINSTALL
-->C:\Windows\UNNeroShowTime.exe /UNINSTALL
-->C:\Windows\UNNeroVision.exe /UNINSTALL
-->C:\Windows\UNRecode.exe /UNINSTALL
-->MsiExec /X{8A809006-C25A-4A3A-9DAB-94659BCDB107}
µTorrent-->"C:\Program Files (x86)\uTorrent\uTorrent.exe" /UNINSTALL
1st Atomic Time 3.0 (30-day trial)-->"C:\Program Files (x86)\1st Atomic Time\unins000.exe"
Ableton Live 9 Suite-->MsiExec.exe /X{A7C273D4-3F82-4A08-94DC-7492FC151F15}
Ableton Live 9 Suite-->MsiExec.exe /X{CBFFFADF-30D3-49B2-806C-237EDDBFA0B3}
Adobe AIR-->C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Resources\Adobe AIR Updater.exe -arp:uninstall
Adobe AIR-->MsiExec.exe /I{46C045BF-2B3F-4BC4-8E4C-00E0CF8BD9DB}
Adobe Audition CS5.5-->C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\core\PDApp.exe --appletID="DWA_UI" --appletVersion="1.0" --mode="Uninstall" --mediaSignature="{D5B1535A-FDFC-4B40-B2E2-21DA83D9CB57}"
Adobe Community Help-->msiexec /qb /x {3521BDBD-D453-5D9F-AA55-44B75D214629}
Adobe Community Help-->MsiExec.exe /I{3521BDBD-D453-5D9F-AA55-44B75D214629}
Adobe Flash Player 21 NPAPI-->C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_21_0_0_242_Plugin.exe -maintain plugin
Adobe Photoshop CS6-->C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\core\PDApp.exe --appletID="DWA_UI" --appletVersion="2.0" --mode="Uninstall" --mediaSignature="{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}"
Adobe Reader XI (11.0.16) - Czech-->MsiExec.exe /I{AC76BA86-7AD7-1029-7B44-AB0000000001}
Adobe Refresh Manager-->MsiExec.exe /I{AC76BA86-0804-1033-1959-001824184103}
All Video Fixer 8.9-->"C:\Program Files (x86)\All Video Fixer\unins000.exe"
Apple Application Support-->MsiExec.exe /I{5D09C772-ECB3-442B-9CC6-B4341C78FDC2}
Apple Software Update-->MsiExec.exe /I{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}
ArtsAcoustic Reverb 1.5.0.5-->C:\Program Files (x86)\Vstplugins\Reverb\ArtsAcoustic Reverb\uninst.exe
ASIO4ALL-->C:\Program Files (x86)\ASIO4ALL v2\uninstall.exe
aTube Catcher verze 3.8-->"C:\Program Files (x86)\DsNET Corp\aTube Catcher 2.0\unins000.exe"
Audacity 1.3.11 (Unicode)-->"C:\Program Files (x86)\Audacity 1.3 Beta (Unicode)\unins000.exe"
Audio Damage DeVerb VST v1.0-->C:\PROGRA~1\VSTPLU~1\AUDIOD~1\VSTPLU~1\AUDIOD~1\UNWISE.EXE C:\PROGRA~1\VSTPLU~1\AUDIOD~1\VSTPLU~1\AUDIOD~1\INSTALL.LOG
Audio.Damage.Ronin.v1.0.VST-DAC-->C:\PROGRA~1\VSTPLU~1\AUDIOD~1\UNWISE.EXE C:\PROGRA~1\VSTPLU~1\AUDIOD~1\INSTALL.LOG
Balíček ovladače systému Windows - Focusrite USB 2.0 Audio Driver (09/25/2013 2.5.128.1)-->C:\PROGRA~1\DIFX\4A7292F75FEBBD3C\dpinst.exe /u C:\Windows\System32\DriverStore\FileRepository\ffusb2audio.inf_amd64_neutral_dc63e000f42fc052\ffusb2audio.inf
Balíček ovladače systému Windows - Focusrite USB 2.0 Audio Driver (10/13/2011 2.2.128.0)-->C:\PROGRA~1\DIFX\4A7292F75FEBBD3C\dpinst.exe /u C:\Windows\System32\DriverStore\FileRepository\ffusb2audio.inf_amd64_neutral_064a3c07d59acb85\ffusb2audio.inf
BiFilter v2.3-->"C:\Program Files\Vstplugins\Tone2\unins004.exe"
BlazeDTV 6.0-->"C:\Program Files (x86)\BlazeVideo\BlazeDTV 6.0\unins000.exe"
Bonjour-->MsiExec.exe /X{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}
Broadcom 802.11 Network Adapter-->"C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\Driver\bcmwlu00.exe" verbose /rootkey="Software\Broadcom\802.11\UninstallInfo" /rootdir="C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\Driver"
Camel Audio Alchemy-->C:\Program Files (x86)\Camel Audio\Alchemy\AlchemyUninstall.exe
Camel Audio CamelCrusher-->C:\Program Files (x86)\Camel Audio\CamelCrusher\CamelCrusherUninstall.exe
Cisco EAP-FAST Module-->MsiExec.exe /I{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}
Cisco LEAP Module-->MsiExec.exe /I{51C7AD07-C3F6-4635-8E8A-231306D810FE}
Cisco PEAP Module-->MsiExec.exe /I{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}
Comodo Dragon-->"C:\Program Files (x86)\Comodo\Dragon\uninstall.exe"
Cool Edit Pro 2.1-->C:\Program Files (x86)\coolpro2\cep2unin.exe
Custom Shop version 1.5.0-->"C:\Program Files\IK Multimedia\Custom Shop\unins000.exe"
CyberLink PowerDirector 14-->C:\Program Files (x86)\NSIS Uninstall Information\{6BADCD73-E925-46F7-A295-FF2448632728}\Setup.exe _?=C:\Program Files (x86)\NSIS Uninstall Information\{6BADCD73-E925-46F7-A295-FF2448632728}
Decimort 1.4.0 (32bit)-->MsiExec.exe /I{DBA88E1F-1662-4615-8E00-82A8593BF374}
Decimort 1.4.0 (64bit)-->MsiExec.exe /I{F0A0EB8E-D410-4CFC-A238-B95373198BCD}
Devastor 1.4.0 (32bit)-->MsiExec.exe /I{C8B66E95-70FC-4C02-B653-2B38BE779174}
Devastor 1.4.0 (64bit)-->MsiExec.exe /I{04B26700-1160-43CE-A42F-85D875A51625}
doPDF 7.3 printer-->"C:\Program Files\Softland\doPDF 7\unins000.exe"
Drumazon 1.6.0 (32bit)-->MsiExec.exe /I{52B8173A-1230-4438-B076-DDC6E2131BC8}
Drumazon 1.6.0 (64bit)-->MsiExec.exe /I{60A0EF9F-2F5B-4076-87A9-97DF488F18AF}
DUNE 2-->"C:\Program Files (x86)\VstPlugIns\Synapse Audio\unins000.exe"
Effectrix-->C:\PROGRA~2\VSTPLU~1\SUGARB~1\EFFECT~1\UNWISE.EXE C:\PROGRA~2\VSTPLU~1\SUGARB~1\EFFECT~1\INSTALL.LOG
ElectraX Dance and Trance Soundset-->"C:\Program Files (x86)\Vstplugins\Tone2\unins001.exe"
ElectraX full-->"C:\Program Files\Vstplugins\Tone2\unins000.exe"
ElectraX Morphing Soundset-->"C:\Program Files (x86)\Vstplugins\Tone2\unins002.exe"
ElectraX Vintage Soundset-->"C:\Program Files (x86)\Vstplugins\Tone2\unins003.exe"
ElectraX Voltage Soundset-->"C:\Program Files (x86)\Vstplugins\Tone2\unins004.exe"
ElectraX Wavetables Expansion-->"C:\Program Files (x86)\Vstplugins\Tone2\unins005.exe"
eLicenser Control-->C:\Program Files (x86)\eLicenser\Uninstaller\Uninstall eLicenser Control.exe
ESET Smart Security-->MsiExec.exe /I{B7DE9695-00B8-4935-97B5-A2CBFBA6A3F8}
FabFilter Total Bundle (64-bit)-->C:\Program Files\FabFilter\Uninst.exe
FabFilter Total Bundle-->C:\Program Files (x86)\FabFilter\Uninst.exe
Fazortan 1.4.0 (64bit)-->MsiExec.exe /I{C2627533-4EC7-4D86-B4AF-DE588F4515FE}
File Repair-->"C:\Program Files (x86)\Repair File\File Repair\unins000.exe"
FilterBank v3.3 X64-->"C:\Program Files\VSTPlugins\Tone2\unins005.exe"
FilterBank v3.3-->"C:\Program Files (x86)\Vstplugins\Tone2\Vstplugins\unins000.exe"
FireBird plus v1.11.2-->"C:\Program Files (x86)\Vstplugins\Tone2\unins008.exe"
FL Studio 11-->C:\Program Files (x86)\FL Studio 11\uninstall.exe
FlowStone FL 3.0-->"C:\Program Files (x86)\DSPRobotics\FlowStone\uninstall fl version.exe"
Focusrite USB 2.0 Audio Driver 2.5.1-->"C:\Program Files\Focusrite\USB 2.0 Audio Driver\unins000.exe"
FormatFactory 3.7.0.0-->C:\Program Files (x86)\FormatFactory\uninst.exe
Foxit Reader-->"C:\Program Files (x86)\Foxit Software\Foxit Reader\unins000.exe"
Gladiator full-->"C:\Program Files\Vstplugins\Tone2\unins001.exe"
Google Earth Plug-in-->MsiExec.exe /X{4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}
Google Chrome-->"C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.84\Installer\setup.exe" --uninstall --multi-install --chrome --system-level
Google Update Helper-->MsiExec.exe /I{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}
Hydra VSTi/DXi v1.2-->"C:\Program Files (x86)\Vstplugins\Synapse Audio DUNE\Hydra\unins000.exe"
IK Multimedia Authorization Manager version 1.0.9-->"C:\Program Files\IK Multimedia\Authorization Manager\unins000.exe"
IL Shared Libraries-->C:\Program Files (x86)\Image-Line\Shared\uninstall.exe
Intel Security True Key-->C:\Program Files\TrueKey\Mcafee.TrueKey.Uninstaller.Exe
Intel(R) Biometric and Context Agent Redistributables-->MsiExec.exe /X{E6D505B9-1A18-4F67-9BE0-D37B5164D581}
Intel(R) Biometric and Context Agent-->MsiExec.exe /X{526002E5-7D5B-4703-A4E3-BA566AED5D8A}
Intel® RealSense™ SDK 2014 Runtime (x64): Core-->MsiExec.exe /X{37D41A97-6B02-4C30-8753-85107BE1D674}
InterVideo DeviceService-->MsiExec.exe /I{521AAD14-5030-44BB-8B0E-5CE65FCE57E0}
IT9130 Driver v10.2.3.2-->C:\Users\Michal\AppData\Local\Temp\DriverInstall64.exe /uninstall
iZotope Stutter Edit-->"C:\Program Files\VSTPlugins\Izotope\Stutter Edit\unins000.exe"
iZotope Trash 2-->"C:\Program Files (x86)\Vstplugins\iZotope\Trash 2\unins000.exe"
iZotope Trash-->"C:\Program Files (x86)\Vstplugins\iZotope\Trash\unins000.exe"
JBridge-->C:\Program Files\JBridge\Uninstall.exe
LAME v3.99.3 (for Windows)-->"C:\Program Files (x86)\Lame For Audacity\unins000.exe"
LuSH-101 1.1.3 (64bit)-->MsiExec.exe /I{38666E88-8DD7-4223-8DCF-1EB25D53A48B}
Mathematica Extras 9.0 (4055459)-->"C:\Program Files\Extras\UninstallFiles\Windows\unins000.exe"
Max 5.1.7-->MsiExec.exe /I{A4BD55F5-65F5-44A6-A130-5FC39433EE9C}
Maximus-->C:\Program Files\Maximus\uninstall.exe
McAfee Security Scan Plus-->"C:\Program Files\McAfee Security Scan\uninstall.exe"
MFM2 2.0.1-->"C:\Program Files (x86)\VstPlugIns\u-he\unins000.exe"
Microsoft .NET Framework 4.5.2 (CSY)-->MsiExec.exe /X{C48AF3CF-C632-3C19-838E-7DAB7283D46A}
Microsoft .NET Framework 4.5.2 (čeština)-->C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\v4.5.51209\CSY\\Setup.exe /repair /x86 /x64 /lcid 1029
Microsoft .NET Framework 4.5.2-->C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\v4.5.51209\\Setup.exe /repair /x86 /x64
Microsoft .NET Framework 4.5.2-->MsiExec.exe /X{26784146-6E05-3FF9-9335-786C7C0FB5BE}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-0015-0409-0000-0000000FF1CE} /uninstall {AAA19365-932B-49BD-8138-BE28CEE9C4B4}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-0016-0409-0000-0000000FF1CE} /uninstall {AAA19365-932B-49BD-8138-BE28CEE9C4B4}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-0018-0409-0000-0000000FF1CE} /uninstall {AAA19365-932B-49BD-8138-BE28CEE9C4B4}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-0019-0409-0000-0000000FF1CE} /uninstall {AAA19365-932B-49BD-8138-BE28CEE9C4B4}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-001A-0409-0000-0000000FF1CE} /uninstall {AAA19365-932B-49BD-8138-BE28CEE9C4B4}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-001B-0409-0000-0000000FF1CE} /uninstall {AAA19365-932B-49BD-8138-BE28CEE9C4B4}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-002A-0000-1000-0000000FF1CE} /uninstall {664655D8-B9BB-455D-8A58-7EAF7B0B2862}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-002A-0409-1000-0000000FF1CE} /uninstall {98333358-268C-4164-B6D4-C96DF5153727}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {6E107EB7-8B55-48BF-ACCB-199F86A2CD93}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-0044-0409-0000-0000000FF1CE} /uninstall {AAA19365-932B-49BD-8138-BE28CEE9C4B4}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-006E-0409-0000-0000000FF1CE} /uninstall {98333358-268C-4164-B6D4-C96DF5153727}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-00A1-0409-0000-0000000FF1CE} /uninstall {AAA19365-932B-49BD-8138-BE28CEE9C4B4}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-00BA-0409-0000-0000000FF1CE} /uninstall {AAA19365-932B-49BD-8138-BE28CEE9C4B4}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-0114-0409-0000-0000000FF1CE} /uninstall {AAA19365-932B-49BD-8138-BE28CEE9C4B4}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-0115-0409-0000-0000000FF1CE} /uninstall {98333358-268C-4164-B6D4-C96DF5153727}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-0116-0409-1000-0000000FF1CE} /uninstall {98333358-268C-4164-B6D4-C96DF5153727}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-0117-0409-0000-0000000FF1CE} /uninstall {AAA19365-932B-49BD-8138-BE28CEE9C4B4}
Microsoft Office Access MUI (English) 2007-->MsiExec.exe /X{90120000-0015-0409-0000-0000000FF1CE}
Microsoft Office Access Setup Metadata MUI (English) 2007-->MsiExec.exe /X{90120000-0117-0409-0000-0000000FF1CE}
Microsoft Office Enterprise 2007-->"C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall ENTERPRISE /dll OSETUP.DLL
Microsoft Office Enterprise 2007-->MsiExec.exe /X{90120000-0030-0000-0000-0000000FF1CE}
Microsoft Office Excel MUI (English) 2007-->MsiExec.exe /X{90120000-0016-0409-0000-0000000FF1CE}
Microsoft Office File Validation Add-In-->MsiExec.exe /I{90140000-2005-0000-0000-0000000FF1CE}
Microsoft Office Groove MUI (English) 2007-->MsiExec.exe /X{90120000-00BA-0409-0000-0000000FF1CE}
Microsoft Office Groove Setup Metadata MUI (English) 2007-->MsiExec.exe /X{90120000-0114-0409-0000-0000000FF1CE}
Microsoft Office InfoPath MUI (English) 2007-->MsiExec.exe /X{90120000-0044-0409-0000-0000000FF1CE}
Microsoft Office Office 64-bit Components 2007-->MsiExec.exe /X{90120000-002A-0000-1000-0000000FF1CE}
Microsoft Office OneNote MUI (English) 2007-->MsiExec.exe /X{90120000-00A1-0409-0000-0000000FF1CE}
Microsoft Office Outlook MUI (English) 2007-->MsiExec.exe /X{90120000-001A-0409-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (English) 2007-->MsiExec.exe /X{90120000-0018-0409-0000-0000000FF1CE}
Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
Microsoft Office Proof (French) 2007-->MsiExec.exe /X{90120000-001F-040C-0000-0000000FF1CE}
Microsoft Office Proof (Spanish) 2007-->MsiExec.exe /X{90120000-001F-0C0A-0000-0000000FF1CE}
Microsoft Office Proofing (English) 2007-->MsiExec.exe /X{90120000-002C-0409-0000-0000000FF1CE}
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-001F-0409-0000-0000000FF1CE} /uninstall {1FF96026-A04A-4C3E-B50A-BB7022654D0F}
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-001F-040C-0000-0000000FF1CE} /uninstall {71F055E8-E2C6-4214-BB3D-BFE03561B89E}
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-001F-0C0A-0000-0000000FF1CE} /uninstall {2314F9A1-126F-45CC-8A5E-DFAF866F3FBC}
Microsoft Office Publisher MUI (English) 2007-->MsiExec.exe /X{90120000-0019-0409-0000-0000000FF1CE}
Microsoft Office Shared 64-bit MUI (English) 2007-->MsiExec.exe /X{90120000-002A-0409-1000-0000000FF1CE}
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007-->MsiExec.exe /X{90120000-0116-0409-1000-0000000FF1CE}
Microsoft Office Shared MUI (English) 2007-->MsiExec.exe /X{90120000-006E-0409-0000-0000000FF1CE}
Microsoft Office Shared Setup Metadata MUI (English) 2007-->MsiExec.exe /X{90120000-0115-0409-0000-0000000FF1CE}
Microsoft Office Word MUI (English) 2007-->MsiExec.exe /X{90120000-001B-0409-0000-0000000FF1CE}
Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft Visual C++ 2005 Redistributable (x64)-->MsiExec.exe /X{071c9b48-7c32-4621-a0ac-3f809523288f}
Microsoft Visual C++ 2005 Redistributable (x64)-->MsiExec.exe /X{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17-->MsiExec.exe /X{8220EEFE-38CD-377E-8595-13398D740ACE}
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148-->MsiExec.exe /X{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161-->MsiExec.exe /X{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729-->MsiExec.exe /X{2DFD8316-9EF1-3210-908C-4CB61961C1AC}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148-->MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161-->MsiExec.exe /X{9BE518E6-ECC6-35A9-88E4-87755C07200F}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729-->MsiExec.exe /X{527BBE2F-1FED-3D8B-91CB-4DB0F838E69E}
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219-->MsiExec.exe /X{1D8E6291-B0D5-35EC-8441-6616F567A0F7}
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219-->MsiExec.exe /X{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030-->"C:\ProgramData\Package Cache\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}\vcredist_x64.exe" /uninstall
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030-->"C:\ProgramData\Package Cache\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}\vcredist_x86.exe" /uninstall
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030-->MsiExec.exe /X{37B8F9C7-03FB-3253-8781-2517C99D7C00}
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030-->MsiExec.exe /X{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030-->MsiExec.exe /X{B175520C-86A2-35A7-8619-86DC379688B9}
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030-->MsiExec.exe /X{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501-->"C:\ProgramData\Package Cache\{050d4fc8-5d48-4b8f-8972-47c82c46020f}\vcredist_x64.exe" /uninstall
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005-->MsiExec.exe /X{929FBD26-9020-399B-9A7A-751D61F0B942}
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005-->MsiExec.exe /X{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}
Microsoft_VC80_CRT_x86-->MsiExec.exe /I{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}
Microsoft_VC90_ATL_x86-->MsiExec.exe /I{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}
Microsoft_VC90_CRT_x86-->MsiExec.exe /I{08D2E121-7F6A-43EB-97FD-629B44903403}
Microsoft_VC90_MFC_x86-->MsiExec.exe /I{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}
Microsoft_VC90_MFCLOC_x86-->MsiExec.exe /I{B6D38690-755E-4F40-A35A-23F8BC2B86AC}
Moog Modular V 2.5-->"C:\Program Files (x86)\Vstplugins\Arturia\Moog Modular V 2\unins000.exe"
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
MSXML 4.0 SP2 (KB973688)-->MsiExec.exe /I{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
Native Instruments Battery 3-->"C:\ProgramData\{9EA9F3B6-4422-49A7-8BC0-B8C3C310B956}\Battery 3 Setup PC.exe" REMOVE=TRUE MODIFY=FALSE
Native Instruments Battery 4-->"C:\ProgramData\{E2937431-E60E-4C65-BD1B-280017DB2B28}\Battery 4 Setup PC.exe" REMOVE=TRUE MODIFY=FALSE
Native Instruments Komplete 7-->"C:\ProgramData\{AE681438-D566-42AE-BBB8-7141C47E0985}\Komplete 7 Setup PC.exe" REMOVE=TRUE MODIFY=FALSE
Native Instruments Kontakt 4-->"C:\ProgramData\{5EBCE76E-C69D-4C20-AF60-2E9DA59F03C8}\Kontakt 4 Setup PC.exe" REMOVE=TRUE MODIFY=FALSE
Native Instruments Massive-->"C:\ProgramData\{E26B3878-7CEC-469C-B449-5CAA336DF8CD}\Massive Setup PC.exe" REMOVE=TRUE MODIFY=FALSE
Native Instruments Service Center-->"C:\ProgramData\{C78336EC-F2EB-4640-99A4-DFE96581B90B}\Service Center Setup PC.exe" REMOVE=TRUE MODIFY=FALSE
Nepheton 1.6.0 (64bit)-->MsiExec.exe /I{1D0B532A-A69A-48B2-9702-FA89E12DA2B2}
Nero 7 Ultra Edition-->MsiExec.exe /I{4F2CE68F-EDBB-4592-BF07-5AC930A51029}
neroxml-->MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B}
NewBlue Titler Pro for Windows-->"C:\Program Files (x86)\NewBlue\Titler Pro for Windows\Uninstall.exe"
NewBlue Video Essentials for Windows-->"C:\Program Files (x86)\NewBlue\Video Essentials for Windows\Uninstall.exe"
NewBlue Video Essentials V for Windows-->"C:\Program Files (x86)\NewBlue\Video Essentials V for Windows\Uninstall.exe"
NewBlue Video Essentials VI for Windows-->"C:\Program Files (x86)\NewBlue\Video Essentials VI for Windows\Uninstall.exe"
NewBlue Video Essentials VII for Windows-->"C:\Program Files (x86)\NewBlue\Video Essentials VII for Windows\Uninstall.exe"
Nithonat 1.6.0 (64bit)-->MsiExec.exe /I{E6143735-CD6A-4CB7-8155-EA3CE58E873B}
NVIDIA Display Control Panel-->C:\Program Files\NVIDIA Corporation\Uninstall\nvuninst.exe DisplayControlPanel
NVIDIA Drivers-->C:\Program Files\NVIDIA Corporation\Uninstall\nvuninst.exe UninstallGUI
NVIDIA PhysX-->MsiExec.exe /X{8A809006-C25A-4A3A-9DAB-94659BCDB107}
Ohm Force - Ohmicide VST-->C:\Windows\unvise32.exe C:\Program Files (x86)\Vstplugins\Ohmforce\Ohm Force\Ohmicide VST\uninstal.log
Ovladače videa společnosti Pinnacle-->MsiExec.exe /X{6DE721A5-5E89-4D74-994C-652BB3C0672E}
PACE License Support Win64-->"C:\Program Files (x86)\InstallShield Installation Information\{1CC8C2F8-5CA6-45ca-9186-CF77033125F0}\setup.exe" -runfromtemp -l0x0409 -removeonly
PACE License Support Win64-->MsiExec.exe /X{1CC8C2F8-5CA6-45ca-9186-CF77033125F0}
PCM Native Reverb VST Plug-in-->"C:\ProgramData\{A97DA822-7B29-4F18-A64A-BF94FFFE77FB}\Setup_PCM_Native_VST.exe" REMOVE=TRUE MODIFY=FALSE
PCM Native Reverb VST Plug-in-->C:\ProgramData\{A97DA822-7B29-4F18-A64A-BF94FFFE77FB}\Setup_PCM_Native_VST.exe
PDF Recovery Toolbox 1.0-->"C:\Program Files (x86)\PDF Recovery Toolbox\unins000.exe"
PDF Settings CS6-->MsiExec.exe /I{BFEAAE77-BD7F-4534-B286-9C5CB4697EB1}
PhaseTwo VST plug-in-->C:\Windows\PhaseTwo VST plug-in Uninstaller.exe
Phoscyon 1.9.5 (64bit)-->MsiExec.exe /I{D32B89DD-B8E6-4443-9BB2-97290BA4B8A8}
Pinnacle Studio 16 - Install Manager-->MsiExec.exe /X{F1886CD7-9F73-417A-92E9-7E0AB0F0E099}
Pinnacle Studio 16-->MsiExec.exe /I{284BFDBC-DAC6-43EC-85A8-E1CEC0D3A114}
proDAD Adorage 3.0 (64bit)-->"C:\Program Files\proDAD\Adorage-3.0\uninstall.exe" uninstall spcp PATHVERSION "3.0" MAINNAME "Adorage"
PSP VintageMeter 1.0-->C:\Windows\iun506.exe C:\Program Files (x86)\Vstplugins\PSPaudioware\PSP VintageMeter\irunin.ini
PSP VintageMeter 32bit-->"C:\Program Files (x86)\Vstplugins\PSPaudioware\uninstall.exe" "/U:C:\Program Files (x86)\Vstplugins\PSPaudioware\irunin.xml"
PSP VintageWarmer2 2.5.1 32bit-->"C:\Program Files (x86)\Vstplugins\PSPaudioware\uninstall.exe" "/U:C:\Program Files (x86)\Vstplugins\PSPaudioware\irunin.xml"
QuickTime-->MsiExec.exe /I{B67BAFBA-4C9F-48FA-9496-933E3B255044}
Realtek Ethernet Controller Driver-->C:\Program Files (x86)\InstallShield Installation Information\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}\Setup.exe -runfromtemp -removeonly
Recovery Toolbox for PDF 2.0-->"C:\Program Files (x86)\Recovery Toolbox for PDF\unins000.exe"
Recuva-->"C:\Program Files\Recuva\uninst.exe"
Redoptor 1.4.0 (64bit)-->MsiExec.exe /I{6F537CC2-B20E-4EA3-9D08-9043F724A4BE}
reFX Nexus 2.6.5 (64-bit)-->"C:\Program Files (x86)\reFX\Nexus\Uninstall\unins000.exe"
reFX Nexus VSTi RTAS v2.2.0-->"C:\Program Files (x86)\VstPlugIns\Nexus2\Uninstall Nexus\unins000.exe"
reFX Vanguard VSTi RTAS v1.8.0-->"C:\Program Files (x86)\Vstplugins\Vanguard\Vanguard\Uninstall\unins000.exe"
rekordbox 2.0.7-->C:\Program Files (x86)\Pioneer\rekordbox 2.0.7\Uninstall rekordbox 2.0.7.exe
Repair Video Master 2.61-->"C:\Program Files (x86)\Repair Video Master\unins000.exe"
Replicant VST plug-in-->C:\Windows\Replicant VST plug-in Uninstaller.exe
Scarlett MixControl 1.6.1-->"C:\Program Files (x86)\Focusrite\Scarlett MixControl\unins001.exe"
Security Update for Microsoft .NET Framework 4.5.2 (KB3122656)-->C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\v4.5.51209\setup.exe /uninstallpatch {0401CD26-A8CB-33EA-8338-9340FC8515BD}
Security Update for Microsoft .NET Framework 4.5.2 (KB3127229)-->C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\v4.5.51209\setup.exe /uninstallpatch {D21BF446-9101-3327-BA36-0C74701B77DC}
Security Update for Microsoft .NET Framework 4.5.2 (KB3135996)-->C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\v4.5.51209\setup.exe /uninstallpatch {0CA47C4C-98A6-3D92-8A97-E87DC34DB81A}
Security Update for Microsoft .NET Framework 4.5.2 (KB3142033)-->C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\v4.5.51209\setup.exe /uninstallpatch {357704F6-271F-3C50-B28A-039EA02C5D65}
Security Update for Microsoft Office 2007 suites (KB2596650) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {DF2F5DAC-93D7-434B-96B1-EAF4D891AD24}
Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {B145DBBB-7778-4A5D-9D2B-DA6569F02391}
Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {E34960DB-2A93-45DB-A208-02650F7AB09C}
Security Update for Microsoft Office 2007 suites (KB2596825) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {B7727B4D-5EA3-4C11-9D30-15E47616DCAF}
Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {293FB6BE-D3EB-4162-B522-F9108040B9FE}
Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {2B3C041A-A7F2-4A24-968D-4BEB6A123D15}
Security Update for Microsoft Office 2007 suites (KB2687409) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {A33F3451-9AD4-46C0-9CDB-AA38071CDAB5}
Security Update for Microsoft Office 2007 suites (KB2825645) 32-Bit Edition -->msiexec /package {90120000-002A-0000-1000-0000000FF1CE} /uninstall {BF11577A-6876-45AA-86C9-2BA4CFB8B019}
Security Update for Microsoft Office 2007 suites (KB2825645) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {BF11577A-6876-45AA-86C9-2BA4CFB8B019}
Security Update for Microsoft Office 2007 suites (KB2850022) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {6B4A3804-666A-4DD8-84A7-B97701416784}
Security Update for Microsoft Office 2007 suites (KB2880507) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {36842896-D83B-4C92-8261-6312B7DEB562}
Security Update for Microsoft Office 2007 suites (KB2880508) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {4C1BE82B-9AC0-4AB9-B76D-5467131955E1}
Security Update for Microsoft Office 2007 suites (KB2881067) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {08F2015D-61E9-4252-9355-AB8D15C73C96}
Security Update for Microsoft Office 2007 suites (KB2881069) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {FC572B0C-6356-46CC-A01E-CCCEC4340BF5}
Security Update for Microsoft Office 2007 suites (KB2956110) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {488CDF0A-098C-4CF5-8552-DA5F2F7B7829}
Security Update for Microsoft Office 2007 suites (KB2984938) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {E359D786-B101-4545-B8AB-8652323CF3CA}
Security Update for Microsoft Office 2007 suites (KB2984943) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {800D1A82-D1B0-4ED4-89B4-C666B570ABA5}
Security Update for Microsoft Office 2007 suites (KB3085549) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {8D2CDFAB-0079-43CC-A289-2F7A67F0A4DE}
Security Update for Microsoft Office 2007 suites (KB3085620) 32-Bit Edition -->msiexec /package {90120000-006E-0409-0000-0000000FF1CE} /uninstall {F0F88DC7-C283-4BFB-B806-CCF0B7BF9699}
Security Update for Microsoft Office 2007 suites (KB3114542) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {EA74D645-C66D-4B50-9806-57A3CB294365}
Security Update for Microsoft Office 2007 suites (KB3114742) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {338CAB95-B75C-4A6E-92D8-7CA7BA4EE3D0}
Security Update for Microsoft Office Access 2007 (KB2596614) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {7F774C8A-B1CE-486C-A64E-EA96AE48B813}
Security Update for Microsoft Office Compatibility Pack Service Pack 3 (KB3114895) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {A749C6FE-3DD9-4D3E-AA9A-64095F4CD0CD}
Security Update for Microsoft Office Compatibility Pack Service Pack 3 (KB3115115) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {84F2FDE1-DCF6-4480-984D-FFF6E0B3547E}
Security Update for Microsoft Office Excel 2007 (KB3114892) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {DDB4509D-37F2-428E-A256-4E20EDF38338}
Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {8F311D6C-D8DD-4C32-9457-1A129CABD1A5}
Security Update for Microsoft Office InfoPath 2007 (KB3114426) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {26C5C75F-E1FD-4F95-AA29-CA221C3AFEEE}
Security Update for Microsoft Office OneNote 2007 (KB2889915) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {26BD5742-76C6-460F-97CB-356F0DB338FE}
Security Update for Microsoft Office Outlook 2007 (KB2880510) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {6D4A2CBC-38B2-4835-AEAB-3CD6F104A8B9}
Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {0EF0D4FB-BB23-4515-AAEA-1240AC2DA525}
Security Update for Microsoft Office PowerPoint 2007 (KB3114429) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {B9E85A9D-2565-4DDC-A21D-34DACF7D716A}
Security Update for Microsoft Office Publisher 2007 (KB2880506) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {724051CF-E09E-4F84-9946-F5014AB7389B}
Security Update for Microsoft Office Word 2007 (KB3115116) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {35DBC484-3E2A-40CD-87D3-FF76A7EAECD7}
Sigmund 1.1.2 (64bit)-->MsiExec.exe /I{F130BECD-2276-4465-8ACD-7C8D32FE830D}
SiSoftware Sandra Lite 2013a-->"C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2013a\unins000.exe"
Skype Click to Call-->MsiExec.exe /X{6D1221A9-17BF-4EC0-81F2-27D30EC30701}
Skype™ 7.18-->MsiExec.exe /X{FC965A47-4839-40CA-B618-18F486F042C6}
Sonnox Oxford Inflator Native VST v1.5.1-->"C:\Program Files (x86)\Sonnox\Uninstall\Sonnox Oxford Inflator Native VST\unins000.exe"
Sony PC Companion 2.10.228-->"C:\Program Files (x86)\InstallShield Installation Information\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}\setup.exe" -runfromtemp -l0x0409 -removeonly
Spire-1.1 Plug-In (x64)-->MsiExec.exe /X{A08E471A-3749-462C-8729-03516E3746B6}
Sugar Bytes Effectrix 1.4.2-->"C:\Program Files\Sugar Bytes\Effectrix\unins000.exe"
Sylenth1 v2.21-->"C:\Program Files\VSTPlugins\Sylenth1\unins000.exe"
Synthation Vanguard Essentials Soundbank-->C:\PROGRA~2\VSTPLU~1\Vanguard\UNWISE.EXE C:\PROGRA~2\VSTPLU~1\Vanguard\INSTALL.LOG
SynthMaster 2.5 VST/VSTi (x64) version 2.5.3.109-->"C:\Program Files\VstPlugIns\KV331 Audio\unins000.exe"
Syntorus 1.4.0 (64bit)-->MsiExec.exe /I{6E3E13E9-F55B-4A91-9D46-9766BF057289}
The KMPlayer (remove only)-->"C:\Program Files (x86)\The KMPlayer\uninstall.exe"
Tone2 AkustiX Enhancer v1.0 X64-->"C:\Program Files\VSTPlugins\Tone2\unins003.exe"
Tone2 AkustiX Enhancer v1.0-->"C:\Program Files (x86)\Vstplugins\Tone2\unins006.exe"
Tone2 Warmverb multi-FX full-->"C:\Program Files\Vstplugins\Tone2\unins002.exe"
Toraverb 1.4.0 (64bit)-->MsiExec.exe /I{F915E9F5-13F9-487A-A7E2-AC71EBE31231}
TOSHIBA PC Diagnostic Tool-->C:\Program Files (x86)\InstallShield Installation Information\{2C38F661-26B7-445D-B87D-B53FE2D3BD42}\setup.exe -runfromtemp -l0x0409
Total Commander 64-bit (Remove or Repair)-->C:\Program Files (x86)\totalcmd\tcunin64.exe
T-RackS CS version 4.6.0-->"C:\Program Files\IK Multimedia\T-RackS CS\unins000.exe"
Ulead VideoStudio 11-->C:\Program Files (x86)\InstallShield Installation Information\{F99F9E24-EE2F-47FD-AEB0-FDB82859B5C9}\setup.exe -runfromtemp -l0x0409
Update for 2007 Microsoft Office System (KB967642)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {C444285D-5E4F-48A4-91DD-47AAAA68E92D}
Update for Microsoft Office 2007 Help for Common Features (KB963673)-->msiexec /package {90120000-006E-0409-0000-0000000FF1CE} /uninstall {AB365889-0395-4FAD-B702-CA5985D53D42}
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {A024FC7B-77DE-45DE-A058-1C049A17BFB3}
Update for Microsoft Office 2007 suites (KB2596787) 32-Bit Edition-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {02206DCC-0CAF-46BB-8EDC-6C281AA21EFA}
Update for Microsoft Office 2007 suites (KB2596787) 32-Bit Edition-->msiexec /package {90120000-006E-0409-0000-0000000FF1CE} /uninstall {02206DCC-0CAF-46BB-8EDC-6C281AA21EFA}
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}
Update for Microsoft Office 2007 suites (KB2965286) 32-Bit Edition-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {7C3337E5-1294-4270-A64F-DCEF812159E5}
Update for Microsoft Office Access 2007 Help (KB963663)-->msiexec /package {90120000-0015-0409-0000-0000000FF1CE} /uninstall {6B76A18A-AA1E-42AB-A7AD-6C84BBB43987}
Update for Microsoft Office Excel 2007 Help (KB963678)-->msiexec /package {90120000-0016-0409-0000-0000000FF1CE} /uninstall {199DF7B6-169C-448C-B511-1054101BE9C9}
Update for Microsoft Office Infopath 2007 Help (KB963662)-->msiexec /package {90120000-0044-0409-0000-0000000FF1CE} /uninstall {716B81B8-B13C-41DF-8EAC-7A2F656CAB63}
Update for Microsoft Office OneNote 2007 Help (KB963670)-->msiexec /package {90120000-00A1-0409-0000-0000000FF1CE} /uninstall {2744EF05-38E1-4D5D-B333-E021EDAEA245}
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition-->msiexec /package {90120000-001A-0409-0000-0000000FF1CE} /uninstall {ED38F8A3-4F61-494E-8BCA-E3AC7760C924}
Update for Microsoft Office Outlook 2007 Help (KB963677)-->msiexec /package {90120000-001A-0409-0000-0000000FF1CE} /uninstall {0451F231-E3E3-4943-AB9F-58EB96171784}
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB3115110) 32-Bit Edition-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {4DE3F288-79BE-4BFC-BEAB-C8F55BAA1DAB}
Update for Microsoft Office Powerpoint 2007 Help (KB963669)-->msiexec /package {90120000-0018-0409-0000-0000000FF1CE} /uninstall {397B1D4F-ED7B-4ACA-A637-43B670843876}
Update for Microsoft Office Publisher 2007 Help (KB963667)-->msiexec /package {90120000-0019-0409-0000-0000000FF1CE} /uninstall {2E40DE55-B289-4C8B-8901-5D369B16814F}
Update for Microsoft Office Script Editor Help (KB963671)-->msiexec /package {90120000-006E-0409-0000-0000000FF1CE} /uninstall {CD11C6A2-FFC6-4271-8EAB-79C3582F505C}
Update for Microsoft Office Word 2007 Help (KB963665)-->msiexec /package {90120000-001B-0409-0000-0000000FF1CE} /uninstall {80E762AA-C921-4839-9D7D-DB62A72C0726}
ValhallaRoom 1.1.0-->"C:\ProgramData\Valhalla DSP, LLC\ValhallaRoom\InstallerFiles\unins000.exe"
Venm 1.3-->C:\Program Files (x86)\VstPlugins\Goliath Sounds\Venm\uninst.exe
VirtualDJ PRO Full-->MsiExec.exe /I{4769E972-2E92-49C5-B6F9-465EFD0C4D94}
VLC media player 1.1.7-->C:\Program Files (x86)\VideoLAN\VLC\uninstall.exe
Voxengo SPAN Plus-->"C:\Program Files\Voxengo\Voxengo SPAN Plus\unins000.exe"
Wave Arts MasterVerb-->C:\PROGRA~2\WAVEAR~1\MASTER~1\UNWISE.EXE C:\PROGRA~2\WAVEAR~1\MASTER~1\INSTALL.LOG
Waves Complete V9r25-->"C:\Program Files (x86)\InstallShield Installation Information\{93000001-C561-4E32-99EB-3C5AD3683A70}\setup.exe" -runfromtemp -l0x0009 -removeonly
Waves Complete VST RTAS TDM v7.1.16-->"C:\Program Files\Waves\Uninstall\unins000.exe"
WinRAR 4.20 (64-bit)-->C:\Program Files\WinRAR\uninstall.exe
Wolfram Mathematica 9 (M-WIN-L 9.0.1 4055652)-->"C:\Program Files\Wolfram Research\Mathematica\9.0\SystemFiles\UninstallFiles\Windows\unins000.exe"
WOW-->C:\PROGRA~2\SUGARB~1\WOW\UNWISE.EXE C:\PROGRA~2\SUGARB~1\WOW\INSTALL.LOG

======Hosts File======

127.0.0.1 hl2rcv.adobe.com
127.0.0.1 t3dns.adobe.com
127.0.0.1 3dns-1.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-4.adobe.com
127.0.0.1 activate.adobe.com
127.0.0.1 activate-sea.adobe.com
127.0.0.1 activate-sjc0.adobe.com
127.0.0.1 activate.wip.adobe.com

======System event log======

Computer Name: Michal-PC
Event Code: 7
Message: Zařízení \Device\Harddisk0\DR0 má chybný blok.
Record Number: 281187
Source Name: Disk
Time Written: 20160101154323.500801-000
Event Type: Chyba
User:

Computer Name: Michal-PC
Event Code: 7
Message: Zařízení \Device\Harddisk0\DR0 má chybný blok.
Record Number: 281186
Source Name: Disk
Time Written: 20160101154321.410397-000
Event Type: Chyba
User:

Computer Name: Michal-PC
Event Code: 7
Message: Zařízení \Device\Harddisk0\DR0 má chybný blok.
Record Number: 281185
Source Name: Disk
Time Written: 20160101154319.288793-000
Event Type: Chyba
User:

Computer Name: Michal-PC
Event Code: 7036
Message: Stav služby Mapovač zjišťování topologie linkové vrstvy byl změněn na: Zastaveno
Record Number: 281184
Source Name: Service Control Manager
Time Written: 20160101154319.023593-000
Event Type: Informace
User:

Computer Name: Michal-PC
Event Code: 7
Message: Zařízení \Device\Harddisk0\DR0 má chybný blok.
Record Number: 281183
Source Name: Disk
Time Written: 20160101154317.135990-000
Event Type: Chyba
User:

=====Application event log=====

Computer Name: Michal-PC
Event Code: 1001
Message: Chybný blok , typ 0
Název události: BlueScreen
Reakce: Není k dispozici
ID souboru CAB: 0

Podpis problému:
P1:
P2:
P3:
P4:
P5:
P6:
P7:
P8:
P9:
P10:

Připojené soubory:
C:\Windows\Minidump\062913-20763-01.dmp
C:\Users\Michal\AppData\Local\Temp\WER-38329-0.sysdata.xml
C:\Users\Michal\AppData\Local\Temp\WERBCD4.tmp.WERInternalMetadata.xml

Tyto soubory mohou být k dispozici zde:
C:\ProgramData\Microsoft\Windows\WER\ReportQueue\Kernel_0_0_cab_09c8bcd8

Symbol analýzy:
Opětovné hledání řešení: 0
ID hlášení: 062913-20763-01
Stav hlášení: 0
Record Number: 48463
Source Name: Windows Error Reporting
Time Written: 20150811175301.000000-000
Event Type: Informace
User:

Computer Name: Michal-PC
Event Code: 1001
Message: Chybný blok , typ 0
Název události: BlueScreen
Reakce: Není k dispozici
ID souboru CAB: 0

Podpis problému:
P1:
P2:
P3:
P4:
P5:
P6:
P7:
P8:
P9:
P10:

Připojené soubory:
C:\Windows\Minidump\102513-26598-01.dmp
C:\Users\Michal\AppData\Local\Temp\WER-46363-0.sysdata.xml
C:\Users\Michal\AppData\Local\Temp\WERAED0.tmp.WERInternalMetadata.xml

Tyto soubory mohou být k dispozici zde:
C:\ProgramData\Microsoft\Windows\WER\ReportQueue\Kernel_0_0_cab_0971aed4

Symbol analýzy:
Opětovné hledání řešení: 0
ID hlášení: 102513-26598-01
Stav hlášení: 0
Record Number: 48462
Source Name: Windows Error Reporting
Time Written: 20150811175301.000000-000
Event Type: Informace
User:

Computer Name: Michal-PC
Event Code: 1001
Message: Chybný blok , typ 0
Název události: AppTermFailureEvent
Reakce: Není k dispozici
ID souboru CAB: 0

Podpis problému:
P1:
P2:
P3:
P4:
P5:
P6:
P7:
P8:
P9:
P10:

Připojené soubory:
C:\Windows\Temp\WER5906.tmpatk.kdmp
C:\Windows\Temp\WER5916.tmp.appcompat.txt
C:\Windows\Temp\WER5917.tmp.xml

Tyto soubory mohou být k dispozici zde:
C:\ProgramData\Microsoft\Windows\WER\ReportQueue\Kernel_0_0_116259a2

Symbol analýzy:
Opětovné hledání řešení: 0
ID hlášení: f5b64e5f-be6a-11e2-b260-88ae1d527f02
Stav hlášení: 0
Record Number: 48461
Source Name: Windows Error Reporting
Time Written: 20150811175301.000000-000
Event Type: Informace
User:

Computer Name: Michal-PC
Event Code: 902
Message: Služba Ochrana softwaru byla spuštěna.
6.1.7601.17514
Record Number: 48460
Source Name: Microsoft-Windows-Security-SPP
Time Written: 20150811175002.000000-000
Event Type: Informace
User:

Computer Name: Michal-PC
Event Code: 1003
Message: Služba Ochrana softwaru dokončila kontrolu stavu licencování.
ID aplikace=55c92734-d682-4d71-983e-d6ec3f16059f
Stav licencování=
1: 01f5fc37-a99e-45c5-b65e-d762f3518ead, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
2: 2e7d060d-4714-40f2-9896-1e4f15b612ad, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
3: 3b965dfc-31d9-4903-886f-873a0382776c, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
4: 586bc076-c93d-429a-afe5-a69fbc644e88, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
5: 5e017a8a-f3f9-4167-b1bd-ba3e236a4d8f, 1, 1 [(0 [0x00000000, 1, 0], [(?)(?)( 1 0x00000000 3 0 msft:rm/algorithm/hwid/4.0 0x00000000 0)(?)(?)(?)])(1 )(2 )]
6: 5e35dc43-389b-47c5-b889-2088b06738cb, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
7: 6a7d5d8a-92af-4e6a-af4b-8fddaec800e5, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
8: 9ab82e0c-ffc9-4107-baa1-c65a8bd3ccc3, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
9: 9f83d90f-a151-4665-ae69-30b3f63ec659, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
10: a63275f4-530c-48a7-b0d3-4f00d688d151, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
11: b8a4bb91-69b1-460d-93f8-40e0670af04a, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
12: d2c04e90-c3dd-4260-b0f3-f845f5d27d64, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
13: e68b141f-4dfa-4387-b3b7-e65c4889216e, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
14: ee4e1629-bcdc-4b42-a68f-b92e135f78d7, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
15: 4a8149bb-7d61-49f4-8822-82c7bf88d64b, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
16: afd5f68f-b70f-4000-a21d-28dbc8be8b07, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]


Record Number: 48459
Source Name: Microsoft-Windows-Security-SPP
Time Written: 20150811175002.000000-000
Event Type: Informace
User:

=====Security event log=====

Computer Name: Michal-PC
Event Code: 5061
Message: Kryptografická operace.

Předmět:
ID zabezpečení: S-1-5-18
Název účtu: MICHAL-PC$
Doména účtu: WORKGROUP
ID přihlášení: 0x3e7

Kryptografické parametry:
Název poskytovatele: Microsoft Software Key Storage Provider
Název algoritmu: RSA
Název klíče: 320-00005082428EEE34-NodSSL
Typ klíče: Klíč počítače

Kryptografická operace:
Operace: Otevřít klíč
Návratový kód: 0x0
Record Number: 204804
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20160609160347.572134-000
Event Type: Úspěšný audit
User:

Computer Name: Michal-PC
Event Code: 5058
Message: Operace se souborem klíče.

Předmět:
ID zabezpečení: S-1-5-18
Název účtu: MICHAL-PC$
Doména účtu: WORKGROUP
ID přihlášení: 0x3e7

Kryptografické parametry:
Název poskytovatele: Microsoft Software Key Storage Provider
Název algoritmu: Není k dispozici.
Název klíče: 320-00005082428EEE34-NodSSL
Typ klíče: Klíč počítače

Informace o operaci se souborem klíče:
Cesta k souboru: C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\34affc1907f59b453782c271213781a3_4b92aacf-0764-4100-ab3c-408a6ceda5b0
Operace: Čtení trvalého klíče ze souboru
Návratový kód: 0x0
Record Number: 204803
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20160609160347.571134-000
Event Type: Úspěšný audit
User:

Computer Name: Michal-PC
Event Code: 5061
Message: Kryptografická operace.

Předmět:
ID zabezpečení: S-1-5-18
Název účtu: MICHAL-PC$
Doména účtu: WORKGROUP
ID přihlášení: 0x3e7

Kryptografické parametry:
Název poskytovatele: Microsoft Software Key Storage Provider
Název algoritmu: RSA
Název klíče: 320-000050813F5F68E8-NodSSL
Typ klíče: Klíč počítače

Kryptografická operace:
Operace: Otevřít klíč
Návratový kód: 0x0
Record Number: 204802
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20160609160345.517016-000
Event Type: Úspěšný audit
User:

Computer Name: Michal-PC
Event Code: 5058
Message: Operace se souborem klíče.

Předmět:
ID zabezpečení: S-1-5-18
Název účtu: MICHAL-PC$
Doména účtu: WORKGROUP
ID přihlášení: 0x3e7

Kryptografické parametry:
Název poskytovatele: Microsoft Software Key Storage Provider
Název algoritmu: Není k dispozici.
Název klíče: 320-000050813F5F68E8-NodSSL
Typ klíče: Klíč počítače

Informace o operaci se souborem klíče:
Cesta k souboru: C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\1b324f53caf210ab32d5893c5e2f7e96_4b92aacf-0764-4100-ab3c-408a6ceda5b0
Operace: Čtení trvalého klíče ze souboru
Návratový kód: 0x0
Record Number: 204801
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20160609160345.516016-000
Event Type: Úspěšný audit
User:

Computer Name: Michal-PC
Event Code: 5061
Message: Kryptografická operace.

Předmět:
ID zabezpečení: S-1-5-18
Název účtu: MICHAL-PC$
Doména účtu: WORKGROUP
ID přihlášení: 0x3e7

Kryptografické parametry:
Název poskytovatele: Microsoft Software Key Storage Provider
Název algoritmu: RSA
Název klíče: 320-0000507FBAEDBF99-NodSSL
Typ klíče: Klíč počítače

Kryptografická operace:
Operace: Otevřít klíč
Návratový kód: 0x0
Record Number: 204800
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20160609160342.911867-000
Event Type: Úspěšný audit
User:

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"Path"=c:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\Driver;C:\Program Files (x86)\Common Files\Ulead Systems\MPEG;C:\Program Files (x86)\Skype\Phone\;C:\Program Files (x86)\QuickTime\QTSystem\
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PROCESSOR_ARCHITECTURE"=AMD64
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"USERNAME"=SYSTEM
"windir"=%SystemRoot%
"PSModulePath"=%SystemRoot%\system32\WindowsPowerShell\v1.0\Modules\
"NUMBER_OF_PROCESSORS"=4
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=Intel64 Family 6 Model 37 Stepping 5, GenuineIntel
"PROCESSOR_REVISION"=2505
"SAN_DIR"=C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2013a
"KMP_DUPLICATE_LIB_OK"=TRUE
"CLASSPATH"=.;C:\Program Files (x86)\QuickTime\QTSystem\QTJava.zip
"QTJAVA"=C:\Program Files (x86)\QuickTime\QTSystem\QTJava.zip

-----------------EOF-----------------
Nahoru
maicuss
Návštěvník
Návštěvník
Příspěvky: 65
Registrován: 29 čer 2011 08:15

Re: Pomalý notebook

#2 Příspěvek od maicuss »

teďka na to koukám a nevím jestli jsem zkopíroval správný soubor....


tak ještě připojuji log.txt:


Logfile of random's system information tool 1.10 (written by random/random)
Run by Michal at 2016-06-14 22:26:22
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 86 GB (18%) free of 477 GB
Total RAM: 3955 MB (54% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:26:34, on 14.6.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18315)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe
C:\Users\Michal\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
C:\Program Files\JBridge\auxhost.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Michal.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBUTxkij9_BzVqASLW90uzABgdil3cdfjWS4eT4OE6v0mzP7VYdJkPKlCgWK7ljDTtlfBF6E6yTdQFbP_5oSLd0LWc1KzSBIBoyf6Vg4wO5X3UVm73qZSqftGD_rAs-6zjaQ3smYudkhx-Y9m1BkvKozxeV5wuewcTHyarf&q={searchTerms}
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBUTxkij9_BzVqASLW90uzABgdil3cdfjWS4eT4OE6v0mzP7VYdJkPKlCgWK7ljDTtlfBF6E6yTdQFbP_5oSLd0LWc1KzSBIBoyf6Vg4wO5X3UVm73qZSqftGD_rAs-6zjaQ3smYudkhx-Y9m1BkvKozxeV5wuewcTHyarf&q={searchTerms}
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBUTxkij9_BzVqASLW90uzABgdil3cdfjWS4eT4OE6v0mzP7VYdJkPKlCgWK7ljDTtlfBF6E6yTdQFbP_5oSLd0LWc1KzSBIBoyf6Vg4wO5X3UVm73qZSqftGD_rAs-6zjaQ3smYudkhx-Y9m1BkvKozxeV5wuewcTHyarf&q={searchTerms}
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/?clid=13554
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBUTxkij9_BzVqASLW90uzABgdil3cdfjWS4eT4OE6v0mzP7VYdJkPKlCgWK7ljDTtlfBF6E6yTdQFbP_5oSLd0LWc1KzSBIBoyf6Vg4wO5X3UVm73qZSqftGD_rAs-6zjaQ3smYudkhx-Y9m1BkvKozxeV5wuewcTHyarf&q={searchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O1 - Hosts: 0.0.0.1 mssplus.mcafee.com127.0.0.1 cap.cyberlink.com
O2 - BHO: True Key Helper - {0F4B8786-5502-4803-8EBC-F652A1153BB6} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll
O2 - BHO: Deal Maverick - {40d79e05-f304-4d9e-840e-73a30a57c838} - C:\Program Files (x86)\Deal Maverick\Extensions\40d79e05-f304-4d9e-840e-73a30a57c838.dll (file missing)
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O3 - Toolbar: True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [UVS11 Preload] C:\Program Files (x86)\Ulead Systems\Ulead VideoStudio 11\uvPL.exe
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\Michal\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\Michal\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKCU\..\RunOnce: [Application Restart #0] C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --flag-switches-begin --flag-switches-end --restore-last-session --flag-switches-begin --flag-switches-end http://%66%65%65%64.%68%65%6C%70erbar.com/?publisher=PRRed&dpid=general&searchtype=pr&barcodeid=163867
O4 - HKCU\..\RunOnce: [SeznamInstall-uninstall:5cc80ce8bdce19a8030b6cb754b67b82] "C:\Users\Michal\AppData\Local\Temp\\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe" -c "C:\Users\Michal\AppData\Roaming\Seznam.cz"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\3.11.309\SSScheduler.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~1\MICROS~2\Office15\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Capture Device Service - InterVideo Inc. - C:\Program Files (x86)\Common Files\InterVideo\DeviceService\DevSvc.exe
O23 - Service: COMODO Dragon Update Service (DragonUpdater) - Comodo Security Solutions, Inc. - C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: 1st Atomic Time Adjust Time Service (GPAdjustTimeService) - Green Parrots Software - C:\Program Files (x86)\1st Atomic Time\1stAtomicTimeAdjustTimeSvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Service Installer TrueKey (InstallerService) - Unknown owner - C:\Program Files\TrueKey\Mcafee.TrueKey.InstallerService.exe (file missing)
O23 - Service: Intel(R) Biometric and Context Agent Service (IntelBCAsvc) - Intel(R) Corporation - C:\Program Files\Intel\BCA\pabeSvc64.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\3.11.309\McCHSvc.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: NBService - Nero AG - C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NMIndexingService - Nero AG - C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: PACE License Services (PaceLicenseDServices) - PACE Anti-Piracy, Inc. - C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Cyberlink RichVideo64 Service(CRVS) (RichVideo64) - CyberLink - C:\Program Files\CyberLink\Shared files\RichVideo64.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: SiSoftware Deployment Agent Service (SandraAgentSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2013a\RpcAgentSrv.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: Intel Security True Key (TrueKey) - McAfee, Inc. - C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe
O23 - Service: Intel Security True Key Scheduler (TrueKeyScheduler) - McAfee, Inc. - C:\Program Files\TrueKey\McTkSchedulerService.exe
O23 - Service: TrueKeyServiceHelper - McAfee, Inc. - C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 14279 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Program Files\ESET\ESET Smart Security\ekrn.exe"
winlogon.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe 31580608
\??\C:\Windows\system32\conhost.exe "48940488710844205261171289769205511616320846003076509939471487210915-830961173
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\Windows\system32\nvvsvc.exe -session -first
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe" /service
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe" /service
"C:\Program Files (x86)\Common Files\InterVideo\DeviceService\DevSvc.exe"
"C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files\McAfee Security Scan\3.11.309\SSScheduler.exe"
szndesktop.exe default start
"C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe"
"C:\Users\Michal\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe"
\??\C:\Windows\system32\conhost.exe "-559657275416591887-1557219765-18235312011746932008191640834-1254391210-979411232
"C:\Windows\system32\GWX\GWX.exe"
"C:\Program Files (x86)\1st Atomic Time\1stAtomicTimeAdjustTimeSvc.exe"
"C:\Program Files\Intel\BCA\pabeSvc64.exe"
"C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe" -u https://activation.paceap.com/InitiateActivation
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe"
"C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe" -Embedding
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-ccf2a0ed-1e58-4b06-b198-761ca2c814eb -SystemEventPortName:HostProcess-fc65b340-0bc0-4854-b15f-498ad58b3598 -IoCancelEventPortName:HostProcess-eda5140e-cb48-4181-ac2b-57e39c180c3f -NonStateChangingEventPortName:HostProcess-dbd28968-9533-40a2-9f8b-85270b5ef4b4 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:1cdf25db-6d78-4aaa-a237-44cdfe477ddb -DeviceGroupId:WpdFsGroup
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\CyberLink\Shared files\RichVideo64.exe"
"C:\Program Files\TrueKey\McTkSchedulerService.exe"
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\servicing\TrustedInstaller.exe
"C:\Program Files\JBridge\auxhost.exe" 3430467735

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" http://%66%65%65%64.%68%65%6C%70erbar.com/?publisher=PRRed&dpid=general&searchtype=pr&barcodeid=163867
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 --no-rate-limit "--database=C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Crashpad" --url=https://clients2.google.com/cr/report --annotation=channel=m --annotation=plat=Win32 --annotation=prod=Chrome --annotation=ver=51.0.2704.84 --handshake-handle=0xe0
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,IncidentReportingModuleLoadAnalysis<SafeBrowsingIncidentReportingServiceFeatures,IncidentReportingSuspiciousModuleReporting<SafeBrowsingIncidentReportingServiceFeatures,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup,*UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow,WebFontsIntervention<WebFontsIntervention,*WebRTC-EnableWebRtcEcdsa<WebRTC-EnableWebRtcEcdsa,brotli-encoding<BrotliEncoding --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,RenderingPipelineThrottling<RenderingPipelineThrottling --force-fieldtrials=AppBannerTriggering/Aggressive/AutofillProfileOrderByFrecency/Enabled/AutomaticTabDiscarding/Enabled_Once_10-gen2/*BrotliEncoding/Enabled/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ClientSideDetectionModel/Model0/CrossDevicePromo/1DaySingleProfile/DirectWriteFontProxy/UseDirectWriteFontProxy/DisallowFetchForDocWrittenScriptsInMainFrame/Default/EnableMediaRouter/Disabled/ExtensionActionRedesign/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/*NetworkQualityEstimator/Enabled/OmniboxBundledExperimentV1/Unused_2/OutOfProcessPac/Default/PageRevisitInstrumentation/Default/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Default/PreRead/Default/*QUIC/EnabledNoId/RenderingPipelineThrottling/Disabled/ReportCertificateErrors/ShowAndPossiblySend/ResourcePriorities/Launch50pct_11011_1_1_10/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/SafeBrowsingIncidentReportingService/Default/SafeBrowsingIncidentReportingServiceFeatures/WithSuspiciousModuleReporting/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SyncHttpContentCompression/Enabled/TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_13/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_17/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/WebFontsIntervention/Enabled/WebRTC-EnableWebRtcEcdsa/Default/ --type=gpu-process --channel="1768.0.1154332112\2129113036" --disable-d3d11 --disable-direct-composition --supports-dual-gpus=false --gpu-driver-bug-workarounds=4,10,12,13,25,54,69 --gpu-vendor-id=0x10de --gpu-device-id=0x0a29 --gpu-driver-vendor=NVIDIA --gpu-driver-version=8.17.12.5897 --mojo-platform-channel-handle=1092 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,IncidentReportingModuleLoadAnalysis<SafeBrowsingIncidentReportingServiceFeatures,IncidentReportingSuspiciousModuleReporting<SafeBrowsingIncidentReportingServiceFeatures,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup,*UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow,WebFontsIntervention<WebFontsIntervention,*WebRTC-EnableWebRtcEcdsa<WebRTC-EnableWebRtcEcdsa,brotli-encoding<BrotliEncoding --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,RenderingPipelineThrottling<RenderingPipelineThrottling --force-fieldtrials=AppBannerTriggering/Aggressive/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_10-gen2/*BrotliEncoding/Enabled/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/CrossDevicePromo/1DaySingleProfile/DirectWriteFontProxy/UseDirectWriteFontProxy/DisallowFetchForDocWrittenScriptsInMainFrame/Default/*EnableMediaRouter/Disabled/*ExtensionActionRedesign/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/*NetworkQualityEstimator/Enabled/OmniboxBundledExperimentV1/Unused_2/*OutOfProcessPac/Default/*PageRevisitInstrumentation/Default/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Default/PreRead/Default/*QUIC/EnabledNoId/RenderingPipelineThrottling/Disabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Launch50pct_11011_1_1_10/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/*SafeBrowsingIncidentReportingServiceFeatures/WithSuspiciousModuleReporting/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SyncHttpContentCompression/Enabled/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_13/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_17/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/WebFontsIntervention/Enabled/WebRTC-EnableWebRtcEcdsa/Default/ --primordial-pipe-token=3A8AA6E8632BC6A7D6465ACDB5077F62 --lang=cs --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=fetchDeferLateScripts=true,fetchIncreaseFontPriority=true,fetchIncreasePriorities=true --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --channel="1768.1.1387723385\1733121836" --mojo-platform-channel-handle=1756 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,IncidentReportingModuleLoadAnalysis<SafeBrowsingIncidentReportingServiceFeatures,IncidentReportingSuspiciousModuleReporting<SafeBrowsingIncidentReportingServiceFeatures,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup,*UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow,WebFontsIntervention<WebFontsIntervention,*WebRTC-EnableWebRtcEcdsa<WebRTC-EnableWebRtcEcdsa,brotli-encoding<BrotliEncoding --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,RenderingPipelineThrottling<RenderingPipelineThrottling --force-fieldtrials=AppBannerTriggering/Aggressive/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_10-gen2/*BrotliEncoding/Enabled/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/CrossDevicePromo/1DaySingleProfile/DirectWriteFontProxy/UseDirectWriteFontProxy/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/*EnableMediaRouter/Disabled/*ExtensionActionRedesign/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/*NetworkQualityEstimator/Enabled/OmniboxBundledExperimentV1/Unused_2/*OutOfProcessPac/Default/*PageRevisitInstrumentation/Default/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Default/PreRead/Default/*QUIC/EnabledNoId/RenderingPipelineThrottling/Disabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Launch50pct_11011_1_1_10/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/*SafeBrowsingIncidentReportingServiceFeatures/WithSuspiciousModuleReporting/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SyncHttpContentCompression/Enabled/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_13/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_17/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/WebFontsIntervention/Enabled/WebRTC-EnableWebRtcEcdsa/Default/ --primordial-pipe-token=E7692CA2116286AFA56B0F6E513F13A0 --lang=cs --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=fetchDeferLateScripts=true,fetchIncreaseFontPriority=true,fetchIncreasePriorities=true --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --channel="1768.2.954970141\1192952746" --mojo-platform-channel-handle=1816 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,IncidentReportingModuleLoadAnalysis<SafeBrowsingIncidentReportingServiceFeatures,IncidentReportingSuspiciousModuleReporting<SafeBrowsingIncidentReportingServiceFeatures,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup,*UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow,WebFontsIntervention<WebFontsIntervention,*WebRTC-EnableWebRtcEcdsa<WebRTC-EnableWebRtcEcdsa,brotli-encoding<BrotliEncoding --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,RenderingPipelineThrottling<RenderingPipelineThrottling --force-fieldtrials=AppBannerTriggering/Aggressive/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_10-gen2/*BrotliEncoding/Enabled/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/CrossDevicePromo/1DaySingleProfile/DirectWriteFontProxy/UseDirectWriteFontProxy/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/*EnableMediaRouter/Disabled/*ExtensionActionRedesign/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Unused_2/*OutOfProcessPac/Default/*PageRevisitInstrumentation/Default/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Default/PreRead/Default/*QUIC/EnabledNoId/*RenderingPipelineThrottling/Disabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Launch50pct_11011_1_1_10/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/*SafeBrowsingIncidentReportingServiceFeatures/WithSuspiciousModuleReporting/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SyncHttpContentCompression/Enabled/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_13/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_17/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*WebFontsIntervention/Enabled/WebRTC-EnableWebRtcEcdsa/Default/ --primordial-pipe-token=25D9BCA24A2136CC0B692FE2ABA79CC8 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=fetchDeferLateScripts=true,fetchIncreaseFontPriority=true,fetchIncreasePriorities=true --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --channel="1768.13.1035069391\367569886" --mojo-platform-channel-handle=3576 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,IncidentReportingModuleLoadAnalysis<SafeBrowsingIncidentReportingServiceFeatures,IncidentReportingSuspiciousModuleReporting<SafeBrowsingIncidentReportingServiceFeatures,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup,*UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow,WebFontsIntervention<WebFontsIntervention,*WebRTC-EnableWebRtcEcdsa<WebRTC-EnableWebRtcEcdsa,brotli-encoding<BrotliEncoding --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,RenderingPipelineThrottling<RenderingPipelineThrottling --force-fieldtrials=AppBannerTriggering/Aggressive/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_10-gen2/*BrotliEncoding/Enabled/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*CrossDevicePromo/1DaySingleProfile/DirectWriteFontProxy/UseDirectWriteFontProxy/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/*EnableMediaRouter/Disabled/*ExtensionActionRedesign/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Unused_2/*OutOfProcessPac/Default/*PageRevisitInstrumentation/Default/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Default/PreRead/Default/*QUIC/EnabledNoId/*RenderingPipelineThrottling/Disabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Launch50pct_11011_1_1_10/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/*SafeBrowsingIncidentReportingServiceFeatures/WithSuspiciousModuleReporting/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SyncHttpContentCompression/Enabled/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_13/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_17/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*WebFontsIntervention/Enabled/WebRTC-EnableWebRtcEcdsa/Default/ --primordial-pipe-token=B19F07BF03A8FA2811A921B9CD0D7317 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=fetchDeferLateScripts=true,fetchIncreaseFontPriority=true,fetchIncreasePriorities=true --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --channel="1768.15.970361513\1218696596" --mojo-platform-channel-handle=4536 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,IncidentReportingModuleLoadAnalysis<SafeBrowsingIncidentReportingServiceFeatures,IncidentReportingSuspiciousModuleReporting<SafeBrowsingIncidentReportingServiceFeatures,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup,*UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow,WebFontsIntervention<WebFontsIntervention,*WebRTC-EnableWebRtcEcdsa<WebRTC-EnableWebRtcEcdsa,brotli-encoding<BrotliEncoding --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,RenderingPipelineThrottling<RenderingPipelineThrottling --force-fieldtrials=AppBannerTriggering/Aggressive/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_10-gen2/*BrotliEncoding/Enabled/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*CrossDevicePromo/1DaySingleProfile/DirectWriteFontProxy/UseDirectWriteFontProxy/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/*EnableMediaRouter/Disabled/*ExtensionActionRedesign/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Unused_2/*OutOfProcessPac/Default/*PageRevisitInstrumentation/Default/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Default/PreRead/Default/*QUIC/EnabledNoId/*RenderingPipelineThrottling/Disabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Launch50pct_11011_1_1_10/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/*SafeBrowsingIncidentReportingServiceFeatures/WithSuspiciousModuleReporting/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SyncHttpContentCompression/Enabled/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_13/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_17/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*WebFontsIntervention/Enabled/WebRTC-EnableWebRtcEcdsa/Default/ --primordial-pipe-token=B4AB91C9D976CA2CC5D6E85B7C0FDBEF --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=fetchDeferLateScripts=true,fetchIncreaseFontPriority=true,fetchIncreasePriorities=true --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --channel="1768.17.1731717373\942364147" --mojo-platform-channel-handle=4716 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,IncidentReportingModuleLoadAnalysis<SafeBrowsingIncidentReportingServiceFeatures,IncidentReportingSuspiciousModuleReporting<SafeBrowsingIncidentReportingServiceFeatures,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup,*UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow,WebFontsIntervention<WebFontsIntervention,*WebRTC-EnableWebRtcEcdsa<WebRTC-EnableWebRtcEcdsa,brotli-encoding<BrotliEncoding --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,RenderingPipelineThrottling<RenderingPipelineThrottling --force-fieldtrials=AppBannerTriggering/Aggressive/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_10-gen2/*BrotliEncoding/Enabled/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*CrossDevicePromo/1DaySingleProfile/DirectWriteFontProxy/UseDirectWriteFontProxy/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/*EnableMediaRouter/Disabled/*ExtensionActionRedesign/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Unused_2/*OutOfProcessPac/Default/*PageRevisitInstrumentation/Default/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Default/PreRead/Default/*QUIC/EnabledNoId/*RenderingPipelineThrottling/Disabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Launch50pct_11011_1_1_10/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/*SafeBrowsingIncidentReportingServiceFeatures/WithSuspiciousModuleReporting/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SyncHttpContentCompression/Enabled/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_13/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_17/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*WebFontsIntervention/Enabled/WebRTC-EnableWebRtcEcdsa/Default/ --primordial-pipe-token=7D7E6EC785A759ADADAF96D0CB42E01A --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=fetchDeferLateScripts=true,fetchIncreaseFontPriority=true,fetchIncreasePriorities=true --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --channel="1768.18.1496598669\2140814155" --mojo-platform-channel-handle=5672 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,IncidentReportingModuleLoadAnalysis<SafeBrowsingIncidentReportingServiceFeatures,IncidentReportingSuspiciousModuleReporting<SafeBrowsingIncidentReportingServiceFeatures,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup,*UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow,WebFontsIntervention<WebFontsIntervention,*WebRTC-EnableWebRtcEcdsa<WebRTC-EnableWebRtcEcdsa,brotli-encoding<BrotliEncoding --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,RenderingPipelineThrottling<RenderingPipelineThrottling --force-fieldtrials=AppBannerTriggering/Aggressive/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_10-gen2/*BrotliEncoding/Enabled/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*CrossDevicePromo/1DaySingleProfile/DirectWriteFontProxy/UseDirectWriteFontProxy/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/*EnableMediaRouter/Disabled/*ExtensionActionRedesign/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Unused_2/*OutOfProcessPac/Default/*PageRevisitInstrumentation/Default/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Default/*PreRead/Default/*QUIC/EnabledNoId/*RenderingPipelineThrottling/Disabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Launch50pct_11011_1_1_10/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/*SafeBrowsingIncidentReportingServiceFeatures/WithSuspiciousModuleReporting/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SyncHttpContentCompression/Enabled/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_13/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_17/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*WebFontsIntervention/Enabled/WebRTC-EnableWebRtcEcdsa/Default/ --primordial-pipe-token=A02C890F640C845318978643BA6BF2A5 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=fetchDeferLateScripts=true,fetchIncreaseFontPriority=true,fetchIncreasePriorities=true --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --channel="1768.20.680946204\1504184807" --mojo-platform-channel-handle=6224 /prefetch:1
"C:\Users\Michal\Downloads\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\APSnotifierPP1.job - C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe --notifier 3A
C:\Windows\tasks\APSnotifierPP2.job - C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe --notifier 4
C:\Windows\tasks\APSnotifierPP3.job - C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe --notifier 6
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\SnH5f2e6QugB7YV.job - C:\Users\Michal\AppData\Roaming\SnH5f2e6QugB7YV.exe --c=oeV+2iRbalf2TgMKXjolExeV4ztD5qzu0IkhY70nbw8O2qNyUWHN0Lu/p+E25Gu4ke5wS75aqCk13rbO7QEn+k6rMBfpSJtTg7o5AKJwrNhVpBNwJ60vWXp4f4fJt+3PxmR5hfj0uOXjSR7DN1bmuUHmcyQRSGij/g1w4OwoS+ljFAIcdrEZY26VtmToedK3vw6Diuln93FNeyF+GfHS6Ixnv+k4wUZfkXaPu/REdyp/lahr94bLpLxu65mcMgb4HWvvFvWiiyaQM+Ru7XahLNH6/OObBOZ0ShSbczubw5SEzcMFqo5PUmMI2w+Gcm8+Zn5kTvnaJBvnFeaF7oegkQ==
C:\Windows\tasks\wj325D9i.job - C:\Users\Michal\AppData\Roaming\wj325D9i.exe --c=A0xRJLbKL2yWPHOSuQmCforar/C1b7yzD5R3CTh9iUcNGZx8QkM4GAZz8AIkiuBXwALWOrMNoumCRP0kr//eDq3GM0IcmcaOQ/BTkmrxLcSOyWqF5f3Bz/k01nq8/Xl6n/Hes2eSIZi7ToaOLlXy0xYodSLDI1fbosS75NYZ5zBmP79ZLKQI7Gf17Gyjytf+XmmmFSynD34Jxhz6073Bbo7itwXvo83oEzONm20d8+8p1OJnp5AomfIWzAnoQXA6VaOVrDA22iu8ahZ70HF6iTaVJ3TWLvetOOzPIzbgVNxI/MDWkLOYgYnDrh+x13fiDexZKg4FIVoUPPKGFk9pWg==

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-05-25 2111616]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0F4B8786-5502-4803-8EBC-F652A1153BB6}]
True Key Helper - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-05-17 987888]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{40d79e05-f304-4d9e-840e-73a30a57c838}]
Deal Maverick - C:\Program Files (x86)\Deal Maverick\Extensions\40d79e05-f304-4d9e-840e-73a30a57c838.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-05-25 1637504]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - True Key - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-05-17 987888]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Logitech Download Assistant"=C:\Windows\System32\LogiLDA.dll [2012-09-20 1832760]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04 446392]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe [2007-03-12 153136]
"AdobeBridge"= []
"cz.seznam.software.autoupdate"=C:\Users\Michal\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
"cz.seznam.software.szndesktop"=C:\Users\Michal\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2015-05-26 103080]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Application Restart #0"=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2016-06-04 941720]
"SeznamInstall-uninstall:5cc80ce8bdce19a8030b6cb754b67b82"=C:\Users\Michal\AppData\Local\Temp\\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe [2016-06-14 534528]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS6ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [2012-03-09 1073312]
"gmsd_re_021010082"= []
"UVS11 Preload"=C:\Program Files (x86)\Ulead Systems\Ulead VideoStudio 11\uvPL.exe [2007-03-03 341488]
"seznam-listicka-distribuce"=C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-04-21 59720]
"QuickTime Task"=C:\Program Files (x86)\QuickTime\QTTask.exe [2013-05-01 421888]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
McAfee Security Scan Plus.lnk - C:\Program Files\McAfee Security Scan\3.11.309\SSScheduler.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux4"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"vidc.pDAD"=prodad-codec.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2016-06-14 22:26:23 ----D---- C:\Program Files\trend micro
2016-06-14 22:26:22 ----D---- C:\rsit
2016-06-10 18:56:21 ----D---- C:\Program Files (x86)\iLok License Manager
2016-06-10 18:51:03 ----D---- C:\Program Files\Bonjour
2016-06-10 18:51:03 ----D---- C:\Program Files (x86)\Bonjour
2016-05-29 02:30:47 ----D---- C:\Users\Michal\AppData\Roaming\proDAD
2016-05-29 02:30:47 ----A---- C:\Windows\system32\drivers\CLMirrorDriver.sys
2016-05-29 02:30:47 ----A---- C:\Windows\system32\CLMirrorDriver.dll
2016-05-29 02:30:46 ----A---- C:\Windows\system32\prodad-codec.dll
2016-05-29 02:30:43 ----D---- C:\ProgramData\proDAD
2016-05-29 02:30:43 ----A---- C:\Windows\system32\proDAD-PA-Support.dll
2016-05-29 02:30:42 ----D---- C:\Program Files\proDAD
2016-05-29 02:28:22 ----D---- C:\Program Files (x86)\CyberLink
2016-05-29 02:19:42 ----D---- C:\ProgramData\Temp
2016-05-28 16:40:35 ----D---- C:\Users\Michal\AppData\Roaming\Apple Computer
2016-05-28 14:57:17 ----D---- C:\Users\Michal\AppData\Roaming\CyberLink
2016-05-28 14:53:35 ----D---- C:\Program Files (x86)\QuickTime
2016-05-28 14:53:34 ----D---- C:\ProgramData\Apple Computer
2016-05-28 14:52:12 ----D---- C:\Program Files (x86)\Apple Software Update
2016-05-28 14:51:03 ----D---- C:\Program Files\Common Files\NewBlue
2016-05-28 14:50:52 ----D---- C:\Program Files\NewBlue
2016-05-28 14:50:37 ----D---- C:\Program Files (x86)\NewBlue
2016-05-28 14:50:27 ----D---- C:\Program Files (x86)\NSIS Uninstall Information
2016-05-28 14:46:54 ----D---- C:\Program Files\CyberLink
2016-05-28 14:34:43 ----D---- C:\ProgramData\SUPPORTDIR
2016-05-28 14:34:43 ----D---- C:\ProgramData\install_clap
2016-05-28 14:31:38 ----D---- C:\Program Files (x86)\CyberLink PowerDirector
2016-05-28 02:30:50 ----D---- C:\ProgramData\ESET
2016-05-28 02:30:16 ----D---- C:\Program Files\ESET
2016-05-27 19:25:33 ----D---- C:\ProgramData\PCTV Systems

======List of files/folders modified in the last 1 month======

2016-06-14 22:26:26 ----D---- C:\Windows\Temp
2016-06-14 22:26:23 ----RD---- C:\Program Files
2016-06-14 22:15:25 ----D---- C:\ProgramData\ValhallaRoom
2016-06-14 21:22:54 ----D---- C:\Users\Michal\AppData\Roaming\Seznam.cz
2016-06-14 20:13:33 ----D---- C:\Windows\system32\config
2016-06-14 15:03:01 ----D---- C:\Windows\system32\catroot2
2016-06-14 15:03:00 ----SHD---- C:\System Volume Information
2016-06-14 12:11:16 ----D---- C:\Users\Michal\AppData\Roaming\uTorrent
2016-06-11 17:31:48 ----ASD---- C:\ProgramData\Microsoft
2016-06-10 19:53:55 ----SHD---- C:\Windows\Installer
2016-06-10 18:57:11 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2016-06-10 18:56:26 ----D---- C:\Windows\System32
2016-06-10 18:56:21 ----D---- C:\Program Files (x86)\Common Files
2016-06-10 18:56:21 ----D---- C:\Program Files (x86)
2016-06-10 18:51:04 ----D---- C:\Windows\SysWOW64
2016-06-09 18:25:17 ----D---- C:\Users\Michal\AppData\Roaming\Skype
2016-06-07 12:51:58 ----D---- C:\Windows\winsxs
2016-06-03 23:24:23 ----D---- C:\Windows\inf
2016-06-03 23:24:23 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-06-03 23:24:12 ----D---- C:\Windows\Prefetch
2016-06-03 10:50:47 ----D---- C:\Windows\Minidump
2016-06-03 10:50:37 ----D---- C:\Windows
2016-05-29 02:32:19 ----D---- C:\ProgramData\CyberLink
2016-05-29 02:31:33 ----D---- C:\Windows\system32\Tasks
2016-05-29 02:30:55 ----D---- C:\Windows\system32\drivers
2016-05-29 02:30:53 ----D---- C:\Windows\system32\DriverStore
2016-05-29 02:30:43 ----HD---- C:\ProgramData
2016-05-28 16:35:13 ----D---- C:\Program Files (x86)\McAfee
2016-05-28 16:33:35 ----D---- C:\Program Files\TrueKey
2016-05-28 14:54:45 ----D---- C:\Program Files\Internet Explorer
2016-05-28 14:51:03 ----D---- C:\Program Files\Common Files
2016-05-28 14:46:51 ----D---- C:\ProgramData\Package Cache
2016-05-28 14:35:02 ----D---- C:\Program Files (x86)\Seznam.cz
2016-05-28 10:35:05 ----A---- C:\Users\Michal\AppData\Roaming\MICHAL-PC.MTBF.txt
2016-05-28 02:34:15 ----SD---- C:\Windows\system32\Microsoft
2016-05-27 19:36:45 ----D---- C:\ProgramData\Pinnacle
2016-05-27 19:36:45 ----D---- C:\Program Files (x86)\Pinnacle
2016-05-27 12:35:09 ----SD---- C:\Windows\SYSWOW64\GWX
2016-05-27 12:35:09 ----SD---- C:\Windows\system32\GWX
2016-05-27 10:41:14 ----RD---- C:\Program Files (x86)\Skype
2016-05-20 09:18:32 ----D---- C:\ProgramData\McAfee

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2016-04-14 84800]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2013-03-23 834544]
R0 Tpkd;Tpkd; C:\Windows\system32\drivers\Tpkd.sys [2013-04-11 106704]
R0 TVALZ;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Driver; C:\Windows\system32\DRIVERS\TVALZ_O.SYS [2007-11-09 26968]
R1 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2016-04-14 264552]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2016-04-14 186784]
R1 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2016-04-14 198096]
R1 EpfwLWF;ESET Personal Firewall; C:\Windows\system32\DRIVERS\EpfwLWF.sys [2016-04-14 53384]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 ekbdflt;ekbdflt; C:\Windows\system32\DRIVERS\ekbdflt.sys [2016-04-14 142976]
R3 BCM43XX;Ovladač síťového adaptéru Broadcom 802.11; C:\Windows\system32\DRIVERS\bcmwl664.sys [2013-03-19 3058168]
R3 CLMirrorDriver;CLMirrorDriver; C:\Windows\system32\DRIVERS\CLMirrorDriver.sys [2015-09-17 21264]
R3 ffusb2audio;Focusrite USB 2.0 Audio Driver; C:\Windows\system32\DRIVERS\ffusb2audio.sys [2013-09-25 127280]
R3 HECIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
R3 MarvinBus;Pinnacle Marvin Bus 64; C:\Windows\system32\DRIVERS\MarvinBus64.sys [2005-09-23 261120]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2010-11-30 412264]
S3 a5dggs00;a5dggs00; C:\Windows\system32\drivers\a5dggs00.sys []
S3 IT9135BDA;IT9135 BDA Devices; C:\Windows\System32\Drivers\IT9135BDA.sys [2013-05-04 113280]
S3 JMCR;JMCR; C:\Windows\system32\DRIVERS\jmcr.sys [2011-05-26 174680]
S3 SANDRA;SANDRA; \??\C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2013a\WNt500x64\Sandra.sys [2009-08-07 23112]
S3 sdbus;sdbus; C:\Windows\system32\drivers\sdbus.sys [2010-11-20 109056]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 usb_rndisx;Adaptér USB RNDIS; C:\Windows\system32\DRIVERS\usb8023x.sys [2013-02-12 19968]
S3 WinUsb;YunOS USB Driver; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-04-22 82128]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]
R2 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2016-05-25 1364096]
R2 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2016-05-25 1687680]
R2 Capture Device Service;Capture Device Service; C:\Program Files (x86)\Common Files\InterVideo\DeviceService\DevSvc.exe [2007-03-06 198168]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DragonUpdater;COMODO Dragon Update Service; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2014-05-27 2139328]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2016-03-03 2520928]
R2 GPAdjustTimeService;1st Atomic Time Adjust Time Service; C:\Program Files (x86)\1st Atomic Time\1stAtomicTimeAdjustTimeSvc.exe [2009-06-19 467968]
R2 IntelBCAsvc;Intel(R) Biometric and Context Agent Service; C:\Program Files\Intel\BCA\pabeSvc64.exe [2015-11-25 3020440]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2010-07-11 159336]
R2 PaceLicenseDServices;PACE License Services; C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe [2016-05-08 45692456]
R2 RichVideo64;Cyberlink RichVideo64 Service(CRVS); C:\Program Files\CyberLink\Shared files\RichVideo64.exe [2014-10-20 614664]
R2 TrueKey;Intel Security True Key; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [2016-05-16 878904]
R2 TrueKeyScheduler;Intel Security True Key Scheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [2016-05-16 15736]
R3 NMIndexingService;NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [2007-03-12 271920]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-12 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27 144200]
S2 InstallerService;Service Installer TrueKey; C:\Program Files\TrueKey\Mcafee.TrueKey.InstallerService.exe []
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-05-13 269504]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27 144200]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2016-04-23 114688]
S3 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program Files\McAfee Security Scan\3.11.309\McCHSvc.exe [2016-03-11 293128]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 NBService;NBService; C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-01-15 774144]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 SandraAgentSrv;SiSoftware Deployment Agent Service; C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2013a\RpcAgentSrv.exe [2008-12-07 68760]
S3 Sony PC Companion;Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [2013-02-04 155824]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 TrueKeyServiceHelper;TrueKeyServiceHelper; C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe [2016-05-16 86864]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-03-20 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]

-----------------EOF-----------------
Nahoru
altrok
Moderátor
Moderátor
Příspěvky: 7322
Registrován: 15 lis 2012 22:26
Bydliště: Znojmo

Re: Pomalý notebook

#3 Příspěvek od altrok »

Krasny den Vam preju :bye:

maicuss píše:Computer Name: Michal-PC
Event Code: 7
Message: Zařízení \Device\Harddisk0\DR0 má chybný blok.
Record Number: 281187
Source Name: Disk
Time Written: 20160101154323.500801-000
Event Type: Chyba
User:
Pocitac je zavirovany, ale zrejme vam i odchazi disk - jeste zkontrolujeme.


:arrow: Odinstalujte
:arrow: V ramci cisteni Vam budou vyprazdneny docasne adresare (vcetne Kose).


:arrow: Ulozte na plochu AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/ (nebo http://www.bleepingcomputer.com/download/adwcleaner/ )
  • ukoncete vsechny programy
  • kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
  • kliknete na Scan (Skenovani), pote na Cleaning (Cisteni)
  • po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\AdwCleaner[Cx].txt), jehoz obsah zkopirujte do pristi odpovedi
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Nahoru
maicuss
Návštěvník
Návštěvník
Příspěvky: 65
Registrován: 29 čer 2011 08:15

Re: Pomalý notebook

#4 Příspěvek od maicuss »

tak zde tedy prikladam log z AdwCleaneru:

# AdwCleaner v5.200 - Log vytvořen 15/06/2016 v 10:27:02
# Aktualizováno 14/06/2016 by ToolsLib
# Databáze : 2016-06-14.1 [Server]
# Operační system : Windows 7 Home Premium Service Pack 1 (X64)
# Uživatelské jméno : Michal - MICHAL-PC
# Spuštěno z : C:\Users\Michal\Downloads\adwcleaner_5.200.exe
# Nastavení : Čištění
# Podpora : https://toolslib.net/forum

***** [ Služby ] *****


***** [ Složky ] *****

[-] Složka Smazáno : C:\ProgramData\ExtTags
[-] Složka Smazáno : C:\ProgramData\Saophases
[-] Složka Smazáno : C:\ProgramData\7WdsManPro7
[-] Složka Smazáno : C:\ProgramData\FWdsManProF
[-] Složka Smazáno : C:\ProgramData\yWdsManProy
[#] Složka Smazáno : C:\ProgramData\Application Data\ExtTags
[#] Složka Smazáno : C:\ProgramData\Application Data\Saophases
[#] Složka Smazáno : C:\ProgramData\Application Data\7WdsManPro7
[#] Složka Smazáno : C:\ProgramData\Application Data\FWdsManProF
[#] Složka Smazáno : C:\ProgramData\Application Data\yWdsManProy
[-] Složka Smazáno : C:\Program Files (x86)\AnyProtectEx
[-] Složka Smazáno : C:\Program Files (x86)\globalUpdate
[-] Složka Smazáno : C:\Program Files (x86)\GUPlayer
[-] Složka Smazáno : C:\Program Files (x86)\predm
[-] Složka Smazáno : C:\Program Files (x86)\0F462C6F-1441631531-DF11-B980-88AE1D527F02
[-] Složka Smazáno : C:\Program Files (x86)\gmsd_re_021010082
[#] Složka Smazáno : C:\Program Files (x86)\gmsd_re_021010082
[-] Složka Smazáno : C:\Users\Michal\AppData\Local\Crossbrowse
[-] Složka Smazáno : C:\Users\Michal\AppData\Local\globalUpdate
[-] Složka Smazáno : C:\Users\Michal\AppData\Local\Systweak
[-] Složka Smazáno : C:\Users\Michal\AppData\Local\gmsd_re_021010082
[-] Složka Smazáno : C:\Users\Michal\AppData\Local\0F462C6F-1441638784-DF11-B980-88AE1D527F02
[#] Složka Smazáno : C:\Users\Michal\AppData\Local\gmsd_re_021010082
[-] Složka Smazáno : C:\Users\Michal\AppData\Roaming\AnyProtectEx
[-] Složka Smazáno : C:\Users\Michal\AppData\Roaming\IHlpr
[-] Složka Smazáno : C:\Users\Michal\AppData\Roaming\OpenCandy
[-] Složka Smazáno : C:\Users\Michal\AppData\Roaming\Systweak
[-] Složka Smazáno : C:\Users\Michal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VOPackage
[-] Složka Smazáno : C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\shwi2ft9.default\extensions\389579c4-efa9-4d96-a1dd-3c86f7bd1a51@gmail.com
[-] Složka Smazáno : C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\shwi2ft9.default\extensions\defsearchp@gmail.com
[-] Složka Smazáno : C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\shwi2ft9.default\extensions\deskCutv2@gmail.com
[#] Složka Smazáno : C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\shwi2ft9.default\extensions\389579c4-efa9-4d96-a1dd-3c86f7bd1a51@gmail.com
[-] Složka Smazáno : C:\Users\Michal\AppData\Local\Chromium\User Data\Default\Extensions\ddlhogjgfofpgmkognopimmilcldcepb
[-] Složka Smazáno : C:\Users\Michal\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\cmaiofennmphjldldcpphcechfnnohja
[-] Složka Smazáno : C:\Users\Michal\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\aaaalipaokhkccgmgkdglfinfnfhflko
[-] Složka Smazáno : C:\Program Files\NixSrv

***** [ Soubory ] *****

[-] Soubor Smazáno : C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat
[#] Soubor Smazáno : C:\ProgramData\Application Data\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat
[-] Soubor Smazáno : C:\Windows\Reimage.ini
[-] Soubor Smazáno : C:\Users\Michal\AppData\Local\Temp\ReimageRepair.exe
[-] Soubor Smazáno : C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\shwi2ft9.default\extensions\staged\yahooprotected@gmail.com.json
[-] Soubor Smazáno : C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\shwi2ft9.default\searchplugins\mystartsearch.xml
[-] Soubor Smazáno : C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\shwi2ft9.default\searchplugins\findit.xml
[-] Soubor Smazáno : C:\Users\Michal\AppData\Local\Comodo\Dragon\User Data\Default\Local Storage\chrome-extension_cmaiofennmphjldldcpphcechfnnohja_0.localstorage
[-] Soubor Smazáno : C:\Users\Michal\AppData\Local\Comodo\Dragon\User Data\Default\Local Storage\chrome-extension_cmaiofennmphjldldcpphcechfnnohja_0.localstorage-journal
[-] Soubor Smazáno : C:\Users\Michal\AppData\Local\Comodo\Dragon\User Data\Default\Local Storage\chrome-extension_aaaalipaokhkccgmgkdglfinfnfhflko_0.localstorage
[-] Soubor Smazáno : C:\Users\Michal\AppData\Local\Comodo\Dragon\User Data\Default\Local Storage\chrome-extension_aaaalipaokhkccgmgkdglfinfnfhflko_0.localstorage-journal

***** [ DLLs ] *****


***** [ WMI ] *****


***** [ Zástupci ] *****


***** [ Naplánované úlohy ] *****

[-] Úloha Smazáno : APSnotifierPP1
[-] Úloha Smazáno : APSnotifierPP2
[-] Úloha Smazáno : APSnotifierPP3
[-] Úloha Smazáno : ASP
[-] Úloha Smazáno : runTask
[-] Úloha Smazáno : updateTask

***** [ Registry ] *****

[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\REI_AxControl.DLL
[-] Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\SEARCHSCOPES\IELNKSRCH
[-] Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\Stpro.exe
[-] Klíč Smazáno : HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{ielnksrch}
[-] Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\GLOBALUPDATE.EXE
[-] Hodnota Smazáno : HKCU\Environment [SNF]
[-] Hodnota Smazáno : HKCU\Environment [SNP]
[-] Hodnota Smazáno : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [defsearchp@gmail.com]
[-] Hodnota Smazáno : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [deskCutv2@gmail.com]
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\REI_AxControl.ReiEngine
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\REI_AxControl.ReiEngine.1
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{459DD0F7-0D55-D3DC-67BC-E6BE37E9D762}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{F83D1872-D9FF-47F8-B5A0-49CC51E24EE8}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{237FDFDB-3722-470E-8BA8-90196DABE967}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{F126C9FC-9299-40F2-BD42-C59023AD1E7F}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}
[-] Klíč Smazáno : HKCU\Software\AnyProtect
[-] Klíč Smazáno : HKCU\Software\Appscion
[-] Klíč Smazáno : HKCU\Software\ArenaHD
[-] Klíč Smazáno : HKCU\Software\Crossbrowse
[-] Klíč Smazáno : HKCU\Software\DAILYPCCLEAN
[-] Klíč Smazáno : HKCU\Software\GAMESDESKTOP
[-] Klíč Smazáno : HKCU\Software\GlobalUpdate
[-] Klíč Smazáno : HKCU\Software\HighDefAction
[-] Klíč Smazáno : HKCU\Software\Microsoft\Tinstalls
[-] Klíč Smazáno : HKCU\Software\Mozilla\Extends
[-] Klíč Smazáno : HKCU\Software\OB
[-] Klíč Smazáno : HKCU\Software\Reg\Clean
[-] Klíč Smazáno : HKCU\Software\Reimage
[-] Klíč Smazáno : HKCU\Software\Softonic
[-] Klíč Smazáno : HKCU\Software\TutoTag
[-] Klíč Smazáno : HKCU\Software\YorkNewCin
[-] Klíč Smazáno : HKCU\Software\Local AppWizard-Generated Applications\Reimage - Windows Problem Relief.
[-] Klíč Smazáno : HKCU\Software\DC3_FEXEC
[-] Klíč Smazáno : HKCU\Software\systweak
[-] Klíč Smazáno : HKCU\Software\INSTALLPATH\STATUS
[-] Klíč Smazáno : HKCU\Software\AppDataLow\Software\Crossrider
[-] Klíč Smazáno : HKLM\SOFTWARE\AppDataLow\SOFTWARE\_CrossriderRegNamePlaceHolder_
[-] Klíč Smazáno : HKLM\SOFTWARE\AppDataLow\SOFTWARE\Crossrider
[-] Klíč Smazáno : HKLM\SOFTWARE\ArenaHD
[-] Klíč Smazáno : HKLM\SOFTWARE\Crossbrowse
[-] Klíč Smazáno : HKLM\SOFTWARE\downchecker
[-] Klíč Smazáno : HKLM\SOFTWARE\dt soft\daemon tools toolbar
[-] Klíč Smazáno : HKLM\SOFTWARE\FFPluginHp
[-] Klíč Smazáno : HKLM\SOFTWARE\GlobalUpdate
[-] Klíč Smazáno : HKLM\SOFTWARE\HighDefAction
[-] Klíč Smazáno : HKLM\SOFTWARE\istartsurfSoftware
[-] Klíč Smazáno : HKLM\SOFTWARE\mystartsearchSoftware
[-] Klíč Smazáno : HKLM\SOFTWARE\PIP
[-] Klíč Smazáno : HKLM\SOFTWARE\Reg\Clean
[-] Klíč Smazáno : HKLM\SOFTWARE\Tutorials
[-] Klíč Smazáno : HKLM\SOFTWARE\WdsManPro
[-] Klíč Smazáno : HKLM\SOFTWARE\YorkNewCin
[-] Klíč Smazáno : HKLM\SOFTWARE\systweak
[-] Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{7ADF667E-E14D-4D2C-827C-B0108F0D93BC}
[-] Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SU
[-] Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\VOPackage
[-] Klíč Smazáno : [x64] HKLM\SOFTWARE\ArenaHD
[-] Klíč Smazáno : [x64] HKLM\SOFTWARE\downchecker
[-] Klíč Smazáno : [x64] HKLM\SOFTWARE\HighDefAction
[-] Klíč Smazáno : [x64] HKLM\SOFTWARE\Reimage
[-] Klíč Smazáno : [x64] HKLM\SOFTWARE\YorkNewCin
[-] Klíč Smazáno : HKU\.DEFAULT\Software\AppDataLow\Software\_CrossriderRegNamePlaceHolder_
[-] Klíč Smazáno : HKU\.DEFAULT\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\windows_ie_ac_001\Software\_CrossriderRegNamePlaceHolder_
[-] Klíč Smazáno : HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\WdsManPro

***** [ Prohlížeče ] *****

[-] [C:\Users\Michal\AppData\Local\Chromium\User Data\Default\Secure Preferences] [Extension] Smazáno : ddlhogjgfofpgmkognopimmilcldcepb

*************************

:: "Tracing" klíče smazány
:: Nastavení Winsock vyčištěno

*************************

C:\AdwCleaner\AdwCleaner[C1].txt - [9861 bytů] - [15/06/2016 10:27:02]
C:\AdwCleaner\AdwCleaner[S1].txt - [11867 bytů] - [15/06/2016 10:23:46]

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [10008 bytů] ##########
Nahoru
altrok
Moderátor
Moderátor
Příspěvky: 7322
Registrován: 15 lis 2012 22:26
Bydliště: Znojmo

Re: Pomalý notebook

#5 Příspěvek od altrok »

  • Stahnete Crystal Disk Info (CDI) https://osdn.jp/frs/redir.php?m=cznic&f ... o6_7_5.zip
  • archiv extrahujte a spustte vyextrahovany soubor DiskInfo.exe
  • ve spustenem programu kliknete nahore na Upravy -> Kopirovat (log mate nyni zkopirovany ve schrance)
  • log vlozte do dalsi odpovedi (Ctrl + V)


:arrow: Dejte logy FRST.txt a Addition.txt - http://forum.viry.cz/viewtopic.php?f=30&t=133101
Pozn. pri druhem a dalsim spusteni FRST je pro vytvoreni logu Addition.txt nutne tuto volbu explicitne zatrhnout pred zacatkem skenu.
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Nahoru
maicuss
Návštěvník
Návštěvník
Příspěvky: 65
Registrován: 29 čer 2011 08:15

Re: Pomalý notebook

#6 Příspěvek od maicuss »

Log z CrystalDiskInfo:


----------------------------------------------------------------------------
CrystalDiskInfo 6.7.5 (C) 2008-2016 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows 7 Home Premium SP1 [6.1 Build 7601] (x64)
Date : 2016/06/15 11:37:12

-- Controller Map ----------------------------------------------------------
- ATA Channel 0 (0) [ATA]
+ ATA Channel 1 (1) [ATA]
- WDC WD5000BPKT-00PK4T0 ATA Device
+ ATA Channel 0 (0) [ATA]
- HL-DT-ST DVDRAM GT30N ATA Device
- ATA Channel 1 (1) [ATA]
+ PCI Standardní dvoukanálový řadič IDE [ATA]
- ATA Channel 0 (0)
- ATA Channel 1 (1)
+ PCI Standardní dvoukanálový řadič IDE [ATA]
- ATA Channel 0 (0)
- ATA Channel 1 (1)
+ A6NHBEYG IDE Controller [SCSI]
- MVKDQBU GP6FO9AF8LQ SCSI CdRom Device

-- Disk List ---------------------------------------------------------------
(1) WDC WD5000BPKT-00PK4T0 : 500,1 GB [0/1/0, pd1] - wd
(2) ST1000LM024 HN-M101MBB : 1000,2 GB [1/X/X, sa1] (V=174C, P=55AA) - st

----------------------------------------------------------------------------
(1) WDC WD5000BPKT-00PK4T0
----------------------------------------------------------------------------
Model : WDC WD5000BPKT-00PK4T0
Firmware : 01.01A01
Serial Number : WD-WXK1E72CNAF8
Disk Size : 500,1 GB (8,4/137,4/500,1/500,1)
Buffer Size : 16384 KB
Queue Depth : 32
# of Sectors : 976773168
Rotation Rate : 7200 RPM
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ----
Transfer Mode : ---- | SATA/300
Power On Hours : 8441 hod.
Power On Count : 2101 krát
Temperature : 44 C (111 F)
Health Status : Pozor
Features : S.M.A.R.T., APM, 48bit LBA, NCQ
APM Level : 0080h [ON]
AAM Level : ----

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 200 199 _51 00000000363E Počet chyb čtení
03 194 182 _21 000000000503 Čas na roztočení ploten
04 _98 _98 __0 00000000087F Počet spuštění/zastavení
05 200 200 140 000000000000 Počet přemapovaných sektorů
07 200 200 __0 000000000000 Počet chybných hledání
09 _89 _89 __0 0000000020F9 Hodin v činnosti
0A 100 100 __0 000000000000 Počet opakovaných pokusů o roztočení ploten
0B 100 100 __0 000000000000 Počet pokusů o překalibrování
0C _98 _98 __0 000000000835 Počet cyklů zapnutí zařízení
C0 200 200 __0 000000000064 Počet vypnutí disku
C1 194 194 __0 000000004F4C Počet cyklů načítání/vymazání
C2 103 _94 __0 00000000002C Teplota
C4 200 200 __0 000000000000 Počet udalostí s číslem realokování sektorů
C5 200 200 __0 000000000004 Počet podezřelých sektorů
C6 100 253 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
C8 100 253 __0 000000000000 Počet chyb při zápisu sektorů

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 427A 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 2020 2020 2057 442D 5758 4B31 4537 3243 4E41 4638
020: 0000 8000 0032 3031 2E30 3141 3031 5744 4320 5744
030: 3530 3030 4250 4B54 2D30 3050 4B34 5430 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 0000 2F00
050: 4001 0000 0000 0007 3FFF 0010 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 001F 1F06 0000 004C 0040
080: 01FE 0000 746B 7D09 6123 7469 BC09 6123 407F 002D
090: 002D 0080 FFFE 0000 0000 0000 0000 0000 0000 0000
100: 6030 3A38 0000 0000 0000 0000 6003 0000 5001 4EE6
110: 588B 8982 0000 0000 0000 0000 0000 0000 0000 4018
120: 4018 0000 0000 0000 0000 0000 0000 0000 0029 0000
130: 0000 0000 0000 16FE 013E 0000 0000 0000 0000 0000
140: 0000 0000 0004 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 7035 0000 0000 4000
210: 0000 0000 0000 0000 0000 0000 0000 1C20 0000 0000
220: 0000 0000 101E 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 1000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 11A5

-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 2F 00 C8 C7 3E 36 00 00 00 00 00 03 27
010: 00 C2 B6 03 05 00 00 00 00 00 04 32 00 62 62 7F
020: 08 00 00 00 00 00 05 33 00 C8 C8 00 00 00 00 00
030: 00 00 07 2E 00 C8 C8 00 00 00 00 00 00 00 09 32
040: 00 59 59 F9 20 00 00 00 00 00 0A 32 00 64 64 00
050: 00 00 00 00 00 00 0B 32 00 64 64 00 00 00 00 00
060: 00 00 0C 32 00 62 62 35 08 00 00 00 00 00 C0 32
070: 00 C8 C8 64 00 00 00 00 00 00 C1 32 00 C2 C2 4C
080: 4F 00 00 00 00 00 C2 22 00 67 5E 2C 00 00 00 00
090: 00 00 C4 32 00 C8 C8 00 00 00 00 00 00 00 C5 32
0A0: 00 C8 C8 04 00 00 00 00 00 00 C6 30 00 64 FD 00
0B0: 00 00 00 00 00 00 C7 32 00 C8 C8 00 00 00 00 00
0C0: 00 00 C8 08 00 64 FD 00 00 00 00 00 00 00 00 00
0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 28 23 01 7B
170: 03 00 01 00 02 5B 05 00 00 00 00 00 00 00 00 00
180: 00 00 01 03 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 97

-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 33 C8 C8 C8 00 00 00 00 00 00 00 03 15
010: 00 00 00 00 00 00 00 00 00 00 04 00 00 00 00 00
020: 00 00 00 00 00 00 05 8C 00 00 00 00 00 00 00 00
030: 00 00 07 00 C8 C8 C8 00 00 00 00 00 00 00 09 00
040: 00 00 00 00 00 00 00 00 00 00 0A 00 00 00 00 00
050: 00 00 00 00 00 00 0B 00 00 00 00 00 00 00 00 00
060: 00 00 0C 00 00 00 00 00 00 00 00 00 00 00 C0 00
070: 00 00 00 00 00 00 00 00 00 00 C1 00 00 00 00 00
080: 00 00 00 00 00 00 C2 00 00 00 00 00 00 00 00 00
090: 00 00 C4 00 00 00 00 00 00 00 00 00 00 00 C5 00
0A0: 00 00 00 00 00 00 00 00 00 00 C6 00 00 00 00 00
0B0: 00 00 00 00 00 00 C7 00 00 00 00 00 00 00 00 00
0C0: 00 00 C8 00 00 00 00 00 00 00 00 00 00 00 00 00
0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 0D

----------------------------------------------------------------------------
(2) ST1000LM024 HN-M101MBB
----------------------------------------------------------------------------
Enclosure : PHD 3.0 Silicon-Power USB Device (V=174C, P=55AA, sa1) - st
Model : ST1000LM024 HN-M101MBB
Firmware : 2BA30001
Serial Number : S318J9EF141820
Disk Size : 1000,2 GB (8,4/137,4/1000,2/1000,2)
Buffer Size : 16384 KB
Queue Depth : 32
# of Sectors : 1953525168
Rotation Rate : 5400 RPM
Interface : USB (Serial ATA)
Major Version : ATA8-ACS
Minor Version : ATA8-ACS version 6
Transfer Mode : SATA/300 | SATA/600
Power On Hours : 905 hod.
Power On Count : 1043 krát
Temperature : 32 C (89 F)
Health Status : Dobrý
Features : S.M.A.R.T., APM, AAM, 48bit LBA, NCQ
APM Level : 0080h [OFF]
AAM Level : FE00h [OFF]

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 100 100 _51 000000000000 Počet chyb čtení
02 252 252 __0 000000000000 Průchodnost disku
03 _90 _90 _25 000000000CA7 Čas na roztočení ploten
04 _89 _89 __0 000000002CD6 Počet spuštění/zastavení
05 252 252 _10 000000000000 Počet přemapovaných sektorů
07 252 252 _51 000000000000 Počet chybných hledání
08 252 252 _15 000000000000 Čas potřebný na vyhledání
09 100 100 __0 000000000389 Hodin v činnosti
0A 252 252 _51 000000000000 Počet opakovaných pokusů o roztočení ploten
0B 100 100 __0 000000000006 Počet pokusů o překalibrování
0C _99 _99 __0 000000000413 Počet cyklů zapnutí zařízení
BF 252 252 __0 000000000000 Počet udalostí zaznamenaných otřesovým senzorem
C0 252 252 __0 000000000000 Počet vypnutí disku
C2 _64 _64 __0 002800100020 Teplota
C3 100 100 __0 000000000000 Počet oprav chybného čtení
C4 252 252 __0 000000000000 Počet udalostí s číslem realokování sektorů
C5 252 252 __0 000000000000 Počet podezřelých sektorů
C6 252 252 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
C8 100 100 __0 0000000000A9 Počet chyb při zápisu sektorů
DF 100 100 __0 000000000006 Zatížení budiče magnetických hlav způsobené opakovanými úkony
E1 _96 _96 __0 00000000B623 Počet cyklů načítání/vymazání

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0040 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 5333 3138 4A39 4546 3134 3138 3230 2020 2020 2020
020: 0000 8000 0004 3242 4133 3030 3031 5354 3130 3030
030: 4C4D 3032 3420 484E 2D4D 3130 314D 4242 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 4000 2F00
050: 4000 0200 0200 0007 3FFF 0010 003F FC10 00FB 0000
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 001F 1D0E 0004 004C 0040
080: 01FF 0028 746B 7F69 6123 7469 BC41 6123 407F 0068
090: 0068 0080 FFFE 0000 FE00 0000 0000 0000 0000 0000
100: 6DB0 7470 0000 0000 0000 0000 6003 0000 5000 4CF2
110: 0C5A 8074 0000 0000 0000 0000 0000 0000 0000 401C
120: 401C 0000 0000 0000 0000 0000 0000 0000 0021 0000
130: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
140: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0003 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 003F 0000 0000 4000
210: 0000 0000 0000 0000 0000 0000 0000 1518 0000 0000
220: 0000 0000 103F 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 0400 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 5AA5

-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 2F 00 64 64 00 00 00 00 00 00 00 02 26
010: 00 FC FC 00 00 00 00 00 00 00 03 23 00 5A 5A A7
020: 0C 00 00 00 00 00 04 32 00 59 59 D6 2C 00 00 00
030: 00 00 05 33 00 FC FC 00 00 00 00 00 00 00 07 2E
040: 00 FC FC 00 00 00 00 00 00 00 08 24 00 FC FC 00
050: 00 00 00 00 00 00 09 32 00 64 64 89 03 00 00 00
060: 00 00 0A 32 00 FC FC 00 00 00 00 00 00 00 0B 32
070: 00 64 64 06 00 00 00 00 00 00 0C 32 00 63 63 13
080: 04 00 00 00 00 00 BF 22 00 FC FC 00 00 00 00 00
090: 00 00 C0 22 00 FC FC 00 00 00 00 00 00 00 C2 02
0A0: 00 40 40 20 00 10 00 28 00 00 C3 3A 00 64 64 00
0B0: 00 00 00 00 00 00 C4 32 00 FC FC 00 00 00 00 00
0C0: 00 00 C5 32 00 FC FC 00 00 00 00 00 00 00 C6 30
0D0: 00 FC FC 00 00 00 00 00 00 00 C7 36 00 C8 C8 00
0E0: 00 00 00 00 00 00 C8 2A 00 64 64 A9 00 00 00 00
0F0: 00 00 DF 32 00 64 64 06 00 00 00 00 00 00 E1 32
100: 00 60 60 23 B6 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 DC 32 00 5B
170: 03 00 01 00 02 D9 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 55

-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 33 00 00 00 00 00 00 00 00 00 00 02 00
010: 00 00 00 00 00 00 00 00 00 00 03 19 00 00 00 00
020: 00 00 00 00 00 00 04 00 00 00 00 00 00 00 00 00
030: 00 00 05 0A 00 00 00 00 00 00 00 00 00 00 07 33
040: 00 00 00 00 00 00 00 00 00 00 08 0F 00 00 00 00
050: 00 00 00 00 00 00 09 00 00 00 00 00 00 00 00 00
060: 00 00 0A 33 00 00 00 00 00 00 00 00 00 00 0B 00
070: 00 00 00 00 00 00 00 00 00 00 0C 00 00 00 00 00
080: 00 00 00 00 00 00 BF 00 00 00 00 00 00 00 00 00
090: 00 00 C0 00 00 00 00 00 00 00 00 00 00 00 C2 00
0A0: 00 00 00 00 00 00 00 00 00 00 C3 00 00 00 00 00
0B0: 00 00 00 00 00 00 C4 00 00 00 00 00 00 00 00 00
0C0: 00 00 C5 00 00 00 00 00 00 00 00 00 00 00 C6 00
0D0: 00 00 00 00 00 00 00 00 00 00 C7 00 00 00 00 00
0E0: 00 00 00 00 00 00 C8 00 00 00 00 00 00 00 00 00
0F0: 00 00 DF 00 00 00 00 00 00 00 00 00 00 00 E1 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 3B
Nahoru
maicuss
Návštěvník
Návštěvník
Příspěvky: 65
Registrován: 29 čer 2011 08:15

Re: Pomalý notebook

#7 Příspěvek od maicuss »

log z FRST:



Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:13-06-2016
Ran by Michal (administrator) on MICHAL-PC (15-06-2016 11:31:37)
Running from C:\Users\Michal\Desktop
Loaded Profiles: Michal (Available Profiles: Michal)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(InterVideo Inc.) C:\Program Files (x86)\Common Files\InterVideo\DeviceService\DevSvc.exe
(Nero AG) C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe
(Comodo Security Solutions, Inc.) C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
(Green Parrots Software) C:\Program Files (x86)\1st Atomic Time\1stAtomicTimeAdjustTimeSvc.exe
(Intel(R) Corporation) C:\Program Files\Intel\BCA\pabeSvc64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(McAfee, Inc.) C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Nero AG) C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
(Nero AG) C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(CyberLink) C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(McAfee, Inc.) C:\Program Files\TrueKey\McTkSchedulerService.exe
(Ableton) C:\Program Files\Ableton\Program\Ableton Live 9 Suite.exe
() C:\Program Files\Ableton\Resources\Extensions\Index\Ableton Index.exe
() C:\Program Files\JBridge\auxhost.exe
() C:\Program Files\JBridge\auxhost.exe
() C:\Program Files\JBridge\auxhost.exe
() C:\Program Files\JBridge\auxhost.exe
() C:\Program Files\JBridge\auxhost.exe
() C:\Program Files\Intel Security\True Key\Application\truekey.exe
() C:\Program Files\Intel Security\True Key\Application\truekey.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(forum.viry.cz) C:\Users\Michal\Desktop\FRSTLauncher.exe
(Microsoft Corporation) C:\Windows\System32\consent.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [gmsd_re_021010082] => [X]
HKLM-x32\...\Run: [UVS11 Preload] => C:\Program Files (x86)\Ulead Systems\Ulead VideoStudio 11\uvPL.exe [341488 2007-03-03] (InterVideo Digital Technology Corporation)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKU\S-1-5-21-2581228697-3019390296-4131092421-1000\...\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] => C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe [153136 2007-03-12] (Nero AG)
HKU\S-1-5-21-2581228697-3019390296-4131092421-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-2581228697-3019390296-4131092421-1000\...\RunOnce: [Application Restart #0] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [941720 2016-06-04] (Google Inc.)
HKU\S-1-5-21-2581228697-3019390296-4131092421-1000\...\MountPoints2: {a5b664a5-aa55-11e2-8524-88ae1d527f02} - F:\Startme.exe
HKU\S-1-5-21-2581228697-3019390296-4131092421-1000\...\MountPoints2: {bab3ac1f-93cd-11e2-ad5f-88ae1d527f02} - E:\setup.exe
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2013-04-05] (Microsoft Corporation)
Lsa: [Notification Packages] scecli C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{6B465337-8CA0-495A-B6EA-3199A93B973C}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{7CB8F598-2FFE-4FE7-8376-A1C5ACD1216F}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
HKU\S-1-5-21-2581228697-3019390296-4131092421-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBUTxkij9_BzVqASLW90uzABgdil3cdfjWS4eT4OE6v0mzP7VYdJkPKlCgWK7ljDTtlfBF6E6yTdQFbP_5oSLd0LWc1KzSBIBoyf6Vg4wO5X3UVm73qZSqftGD_rAs-6zjaQ3smYudkhx-Y9m1BkvKozxeV5wuewcTHyarf&q={searchTerms}
HKU\S-1-5-21-2581228697-3019390296-4131092421-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/p/?LinkId=619797&pc=UE07&ocid=UE07DHP
HKU\S-1-5-21-2581228697-3019390296-4131092421-1000\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBUTxkij9_BzVqASLW90uzABgdil3cdfjWS4eT4OE6v0mzP7VYdJkPKlCgWK7ljDTtlfBF6E6yTdQFbP_5oSLd0LWc1KzSBIBoyf6Vg4wO5X3UVm73qZSqftGD_rAs-6zjaQ3smYudkhx-Y9m1BkvKozxeV5wuewcTHyarf&q={searchTerms}
HKU\S-1-5-21-2581228697-3019390296-4131092421-1000\Software\Microsoft\Internet Explorer\Main,SearchAssistant = hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBUTxkij9_BzVqASLW90uzABgdil3cdfjWS4eT4OE6v0mzP7VYdJkPKlCgWK7ljDTtlfBF6E6yTdQFbP_5oSLd0LWc1KzSBIBoyf6Vg4wO5X3UVm73qZSqftGD_rAs-6zjaQ3smYudkhx-Y9m1BkvKozxeV5wuewcTHyarf&q={searchTerms}
HKU\S-1-5-21-2581228697-3019390296-4131092421-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/?pc=UE07&ocid=UE07DHP
SearchScopes: HKLM-x32 -> DefaultScope {ielnksrch} URL =
SearchScopes: HKU\S-1-5-21-2581228697-3019390296-4131092421-1000 -> {F52FCCB0-AE6A-4D91-A0EB-B5846E359936} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_13554
BHO-x32: True Key Helper -> {0F4B8786-5502-4803-8EBC-F652A1153BB6} -> C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-05-17] (Intel Security)
BHO-x32: Deal Maverick -> {40d79e05-f304-4d9e-840e-73a30a57c838} -> C:\Program Files (x86)\Deal Maverick\Extensions\40d79e05-f304-4d9e-840e-73a30a57c838.dll => No File
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
Toolbar: HKLM-x32 - True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-05-17] (Intel Security)
Toolbar: HKU\S-1-5-21-2581228697-3019390296-4131092421-1000 -> No Name - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - No File
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe hxxp://www.istartsurf.com/?type=sc&ts=14416309 ... CNAF8CNAF8

FireFox:
========
FF ProfilePath: C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\shwi2ft9.default
FF NewTab: chrome://quick_start/content/index.html
FF DefaultSearchEngine: findit
FF SelectedSearchEngine: mystartsearch
FF Homepage: hxxp://www.mystartsearch.com/?type=hp&ts=14417 ... CNAF8CNAF8
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_21_0_0_242.dll [2016-05-13] ()
FF Plugin: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll [2013-03-20] (Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_242.dll [2016-05-13] ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin-x32: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll [2013-03-20] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-12] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-12] (Google Inc.)
FF Plugin-x32: @wolfram.com/Mathematica -> C:\Program Files (x86)\Common Files\Wolfram Research\Browser\9.0.1.4055459\npmathplugin.dll [2013-01-24] (Wolfram Research, Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2016-04-23] (Adobe Systems Inc.)
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird => not found
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird => not found

Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com/
CHR Session Restore: Default -> is enabled.
CHR Profile: C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Dokumenty Google) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-06]
CHR Extension: (Disk Google) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-22]
CHR Extension: (Seznam Lištička - Email) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2016-05-30]
CHR Extension: (Seznam Lištička - Slovník) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2016-05-30]
CHR Extension: (YouTube) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25]
CHR Extension: (Vyhledávání Google) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-26]
CHR Extension: (Dokumenty Google offline) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-16]
CHR Extension: (TinEye Reverse Image Search) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\haebnnbpedcbhciplfhjjkbafijpncjl [2014-07-25]
CHR Extension: (Facebook Invite All) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\inmmhkeajgflmokoaaoadgkhhmibjbpj [2016-06-14]
CHR Extension: (Words in your browser) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\jnkjpbjfcjifnnojmcokbkppabkkkhgf [2015-12-11]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-03]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2016-05-30]
CHR Extension: (Gmail) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-29]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 Capture Device Service; C:\Program Files (x86)\Common Files\InterVideo\DeviceService\DevSvc.exe [198168 2007-03-06] (InterVideo Inc.)
R2 DragonUpdater; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2139328 2014-05-27] (Comodo Security Solutions, Inc.)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2520928 2016-03-03] (ESET)
R2 GPAdjustTimeService; C:\Program Files (x86)\1st Atomic Time\1stAtomicTimeAdjustTimeSvc.exe [467968 2009-06-19] (Green Parrots Software) [File not signed]
R2 IntelBCAsvc; C:\Program Files\Intel\BCA\pabeSvc64.exe [3020440 2015-11-25] (Intel(R) Corporation)
S3 NBService; C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe [774144 2007-01-15] (Nero AG) [File not signed]
R3 NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [271920 2007-03-12] (Nero AG)
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [614664 2014-10-20] (CyberLink)
S3 SandraAgentSrv; C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2013a\RpcAgentSrv.exe [68760 2008-12-07] (SiSoftware) [File not signed]
S3 Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [155824 2013-02-04] (Avanquest Software) [File not signed]
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
R2 TrueKey; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [878904 2016-05-16] (McAfee, Inc.)
R2 TrueKeyScheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [15736 2016-05-16] (McAfee, Inc.)
S3 TrueKeyServiceHelper; C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe [86864 2016-05-16] (McAfee, Inc.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
S2 InstallerService; "C:\Program Files\TrueKey\Mcafee.TrueKey.InstallerService.exe" [X]

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 CLMirrorDriver; C:\Windows\System32\DRIVERS\CLMirrorDriver.sys [21264 2015-09-17] (CyberLink)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [264552 2016-04-14] (ESET)
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [186784 2016-04-14] (ESET)
R2 ekbdflt; C:\Windows\System32\DRIVERS\ekbdflt.sys [142976 2016-04-14] (ESET)
R1 epfw; C:\Windows\System32\DRIVERS\epfw.sys [198096 2016-04-14] (ESET)
R1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [53384 2016-04-14] (ESET)
R0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [84800 2016-04-14] (ESET)
R3 ffusb2audio; C:\Windows\System32\DRIVERS\ffusb2audio.sys [127280 2013-09-25] (Focusrite Audio Engineering Limited.)
S3 IT9135BDA; C:\Windows\System32\Drivers\IT9135BDA.sys [113280 2013-05-04] (ITE )
S3 SANDRA; C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2013a\WNt500x64\Sandra.sys [23112 2009-08-07] (SiSoftware)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [834544 2013-03-23] () [File not signed]
U3 a6nhbeyg; C:\Windows\System32\Drivers\a6nhbeyg.sys [0 ] (Microsoft Corporation) <==== ATTENTION (zero byte File/Folder)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-06-15 11:31 - 2016-06-15 11:32 - 00017216 _____ C:\Users\Michal\Desktop\FRST.txt
2016-06-15 11:31 - 2016-06-15 11:31 - 00000000 ____D C:\FRST
2016-06-15 11:29 - 2016-06-15 11:29 - 00112640 _____ (forum.viry.cz) C:\Users\Michal\Desktop\FRSTLauncher.exe
2016-06-15 11:15 - 2016-06-15 11:15 - 02385920 _____ (Farbar) C:\Users\Michal\Desktop\FRST64.exe
2016-06-15 11:07 - 2016-06-15 11:08 - 04669119 _____ C:\Users\Michal\Downloads\CrystalDiskInfo6_7_5.zip
2016-06-15 10:23 - 2016-06-15 10:27 - 00000000 ____D C:\AdwCleaner
2016-06-15 10:22 - 2016-06-15 10:22 - 03703360 _____ C:\Users\Michal\Downloads\adwcleaner_5.200.exe
2016-06-15 00:23 - 2016-05-18 18:10 - 00312832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2016-06-15 00:23 - 2016-05-18 18:09 - 00405504 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2016-06-15 00:23 - 2016-05-12 19:15 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2016-06-15 00:23 - 2016-05-12 17:18 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2016-06-15 00:22 - 2016-06-06 18:58 - 00041704 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-06-15 00:22 - 2016-06-06 18:50 - 01204224 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-06-15 00:22 - 2016-06-03 15:05 - 01413120 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-06-15 00:22 - 2016-05-27 15:06 - 00569856 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2016-06-15 00:22 - 2016-05-27 15:06 - 00544256 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-06-15 00:22 - 2016-05-27 15:06 - 00276480 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-06-15 00:22 - 2016-05-27 15:06 - 00265216 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll
2016-06-15 00:22 - 2016-05-22 15:06 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-06-15 00:22 - 2016-05-14 00:15 - 00382184 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2016-06-15 00:22 - 2016-05-14 00:09 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2016-06-15 00:22 - 2016-05-14 00:09 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2016-06-15 00:22 - 2016-05-14 00:09 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2016-06-15 00:22 - 2016-05-14 00:09 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2016-06-15 00:22 - 2016-05-13 23:54 - 00308456 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2016-06-15 00:22 - 2016-05-13 23:50 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2016-06-15 00:22 - 2016-05-13 23:49 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2016-06-15 00:22 - 2016-05-13 23:49 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2016-06-15 00:22 - 2016-05-13 23:27 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2016-06-15 00:22 - 2016-05-12 19:20 - 00154856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-06-15 00:22 - 2016-05-12 19:20 - 00095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2016-06-15 00:22 - 2016-05-12 19:15 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2016-06-15 00:22 - 2016-05-12 19:15 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2016-06-15 00:22 - 2016-05-12 19:15 - 00105472 _____ (Microsoft Corporation) C:\Windows\system32\winipsec.dll
2016-06-15 00:22 - 2016-05-12 19:15 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2016-06-15 00:22 - 2016-05-12 19:15 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2016-06-15 00:22 - 2016-05-12 19:14 - 01464320 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-06-15 00:22 - 2016-05-12 19:14 - 01212928 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-06-15 00:22 - 2016-05-12 19:14 - 00794624 _____ (Microsoft Corporation) C:\Windows\system32\gpsvc.dll
2016-06-15 00:22 - 2016-05-12 19:14 - 00730624 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-06-15 00:22 - 2016-05-12 19:14 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2016-06-15 00:22 - 2016-05-12 19:14 - 00502272 _____ (Microsoft Corporation) C:\Windows\system32\IPSECSVC.DLL
2016-06-15 00:22 - 2016-05-12 19:14 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2016-06-15 00:22 - 2016-05-12 19:14 - 00373760 _____ (Microsoft Corporation) C:\Windows\system32\polstore.dll
2016-06-15 00:22 - 2016-05-12 19:14 - 00344064 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-06-15 00:22 - 2016-05-12 19:14 - 00316416 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2016-06-15 00:22 - 2016-05-12 19:14 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2016-06-15 00:22 - 2016-05-12 19:14 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2016-06-15 00:22 - 2016-05-12 19:14 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2016-06-15 00:22 - 2016-05-12 19:14 - 00096256 _____ (Microsoft Corporation) C:\Windows\system32\gpapi.dll
2016-06-15 00:22 - 2016-05-12 19:14 - 00075776 _____ (Microsoft Corporation) C:\Windows\system32\FwRemoteSvr.dll
2016-06-15 00:22 - 2016-05-12 19:14 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2016-06-15 00:22 - 2016-05-12 19:14 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2016-06-15 00:22 - 2016-05-12 19:14 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2016-06-15 00:22 - 2016-05-12 19:14 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2016-06-15 00:22 - 2016-05-12 17:18 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2016-06-15 00:22 - 2016-05-12 17:18 - 00666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2016-06-15 00:22 - 2016-05-12 17:18 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2016-06-15 00:22 - 2016-05-12 17:18 - 00342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2016-06-15 00:22 - 2016-05-12 17:18 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\polstore.dll
2016-06-15 00:22 - 2016-05-12 17:18 - 00260608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2016-06-15 00:22 - 2016-05-12 17:18 - 00251392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2016-06-15 00:22 - 2016-05-12 17:18 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2016-06-15 00:22 - 2016-05-12 17:18 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2016-06-15 00:22 - 2016-05-12 17:18 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2016-06-15 00:22 - 2016-05-12 17:18 - 00141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2016-06-15 00:22 - 2016-05-12 17:18 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2016-06-15 00:22 - 2016-05-12 17:18 - 00079360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpapi.dll
2016-06-15 00:22 - 2016-05-12 17:18 - 00070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winipsec.dll
2016-06-15 00:22 - 2016-05-12 17:18 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2016-06-15 00:22 - 2016-05-12 17:18 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2016-06-15 00:22 - 2016-05-12 17:18 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FwRemoteSvr.dll
2016-06-15 00:22 - 2016-05-12 17:18 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2016-06-15 00:22 - 2016-05-12 17:18 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2016-06-15 00:22 - 2016-05-12 17:05 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2016-06-15 00:22 - 2016-05-12 17:03 - 03217408 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-06-15 00:22 - 2016-05-12 16:58 - 00464896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2016-06-15 00:22 - 2016-05-12 16:58 - 00405504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2016-06-15 00:22 - 2016-05-12 16:58 - 00291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2016-06-15 00:22 - 2016-05-12 16:58 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2016-06-15 00:22 - 2016-05-12 16:58 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2016-06-15 00:22 - 2016-05-12 16:58 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2016-06-15 00:22 - 2016-05-12 16:57 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2016-06-15 00:22 - 2016-05-12 16:56 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2016-06-15 00:22 - 2016-05-12 16:51 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2016-06-15 00:22 - 2016-05-12 15:05 - 00459640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2016-06-15 00:22 - 2016-05-12 15:05 - 00297984 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll
2016-06-15 00:22 - 2016-05-12 15:04 - 00249352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll
2016-06-15 00:22 - 2016-05-11 19:02 - 00483840 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2016-06-15 00:22 - 2016-05-11 19:02 - 00444928 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2016-06-15 00:22 - 2016-05-11 19:02 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2016-06-15 00:22 - 2016-05-11 19:02 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\ws2_32.dll
2016-06-15 00:22 - 2016-05-11 17:19 - 00363520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll
2016-06-15 00:22 - 2016-05-11 17:19 - 00351744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll
2016-06-15 00:22 - 2016-05-11 17:19 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2016-06-15 00:22 - 2016-05-11 17:19 - 00206336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ws2_32.dll
2016-06-15 00:22 - 2016-05-11 17:11 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\netbtugc.exe
2016-06-15 00:22 - 2016-05-11 17:01 - 00026624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netbtugc.exe
2016-06-15 00:22 - 2016-05-11 16:58 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbt.sys
2016-06-15 00:22 - 2016-03-09 21:00 - 00396800 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2016-06-15 00:22 - 2016-03-09 20:40 - 00316416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2016-06-15 00:21 - 2016-04-14 18:46 - 00114408 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2016-06-15 00:21 - 2016-04-14 18:42 - 03243520 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2016-06-15 00:21 - 2016-04-14 18:42 - 01941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2016-06-15 00:21 - 2016-04-14 18:42 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2016-06-15 00:21 - 2016-04-14 18:42 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2016-06-15 00:21 - 2016-04-14 18:42 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll
2016-06-15 00:21 - 2016-04-14 17:33 - 02365440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2016-06-15 00:21 - 2016-04-14 17:33 - 01806848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2016-06-15 00:21 - 2016-04-14 17:33 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2016-06-15 00:21 - 2016-04-14 17:33 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimsg.dll
2016-06-15 00:21 - 2016-04-14 17:19 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
2016-06-15 00:21 - 2016-04-14 17:11 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msiexec.exe
2016-06-15 00:21 - 2016-04-09 08:58 - 14186496 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2016-06-15 00:21 - 2016-04-09 08:57 - 01867776 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2016-06-15 00:21 - 2016-04-09 08:54 - 12881408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2016-06-15 00:21 - 2016-04-09 08:54 - 01499648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2016-06-15 00:21 - 2016-04-09 07:53 - 03231232 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2016-06-15 00:21 - 2016-04-09 07:44 - 02973184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2016-06-15 00:19 - 2016-05-24 01:37 - 00394960 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-06-15 00:19 - 2016-05-24 00:54 - 00346312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2016-06-15 00:19 - 2016-05-21 19:28 - 25802752 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-06-15 00:19 - 2016-05-21 18:57 - 20341248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-06-15 00:19 - 2016-05-21 00:27 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2016-06-15 00:19 - 2016-05-21 00:27 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2016-06-15 00:19 - 2016-05-21 00:14 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2016-06-15 00:19 - 2016-05-21 00:10 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2016-06-15 00:19 - 2016-05-21 00:09 - 00572416 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-06-15 00:19 - 2016-05-21 00:09 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2016-06-15 00:19 - 2016-05-21 00:09 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2016-06-15 00:19 - 2016-05-21 00:08 - 02895360 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-06-15 00:19 - 2016-05-21 00:08 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2016-06-15 00:19 - 2016-05-21 00:02 - 06051328 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-06-15 00:19 - 2016-05-21 00:00 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2016-06-15 00:19 - 2016-05-20 23:59 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2016-06-15 00:19 - 2016-05-20 23:57 - 00497664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-06-15 00:19 - 2016-05-20 23:57 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2016-06-15 00:19 - 2016-05-20 23:57 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2016-06-15 00:19 - 2016-05-20 23:56 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2016-06-15 00:19 - 2016-05-20 23:56 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2016-06-15 00:19 - 2016-05-20 23:55 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2016-06-15 00:19 - 2016-05-20 23:54 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-06-15 00:19 - 2016-05-20 23:54 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2016-06-15 00:19 - 2016-05-20 23:54 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2016-06-15 00:19 - 2016-05-20 23:54 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2016-06-15 00:19 - 2016-05-20 23:50 - 02287104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-06-15 00:19 - 2016-05-20 23:49 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2016-06-15 00:19 - 2016-05-20 23:48 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2016-06-15 00:19 - 2016-05-20 23:45 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2016-06-15 00:19 - 2016-05-20 23:45 - 00476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2016-06-15 00:19 - 2016-05-20 23:44 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-06-15 00:19 - 2016-05-20 23:44 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2016-06-15 00:19 - 2016-05-20 23:43 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2016-06-15 00:19 - 2016-05-20 23:41 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2016-06-15 00:19 - 2016-05-20 23:33 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2016-06-15 00:19 - 2016-05-20 23:33 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-06-15 00:19 - 2016-05-20 23:32 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2016-06-15 00:19 - 2016-05-20 23:29 - 13815808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-06-15 00:19 - 2016-05-20 23:28 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2016-06-15 00:19 - 2016-05-20 23:27 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-06-15 00:19 - 2016-05-20 23:27 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2016-06-15 00:19 - 2016-05-20 23:26 - 00091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2016-06-15 00:19 - 2016-05-20 23:25 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2016-06-15 00:19 - 2016-05-20 23:23 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2016-06-15 00:19 - 2016-05-20 23:23 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2016-06-15 00:19 - 2016-05-20 23:22 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2016-06-15 00:19 - 2016-05-20 23:21 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2016-06-15 00:19 - 2016-05-20 23:19 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2016-06-15 00:19 - 2016-05-20 23:14 - 04610048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-06-15 00:19 - 2016-05-20 23:12 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2016-06-15 00:19 - 2016-05-20 23:11 - 15420928 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-06-15 00:19 - 2016-05-20 23:11 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2016-06-15 00:19 - 2016-05-20 23:09 - 00725504 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-06-15 00:19 - 2016-05-20 23:09 - 00693248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-06-15 00:19 - 2016-05-20 23:08 - 02055680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-06-15 00:19 - 2016-05-20 23:08 - 00806400 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-06-15 00:19 - 2016-05-20 23:07 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2016-06-15 00:19 - 2016-05-20 23:07 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2016-06-15 00:19 - 2016-05-20 23:06 - 02131968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-06-15 00:19 - 2016-05-20 22:46 - 02597888 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-06-15 00:19 - 2016-05-20 22:42 - 02121216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-06-15 00:19 - 2016-05-20 22:38 - 01310208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-06-15 00:19 - 2016-05-20 22:38 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2016-06-15 00:19 - 2016-05-20 22:34 - 01544192 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-06-15 00:19 - 2016-05-20 22:23 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-06-14 22:26 - 2016-06-14 22:50 - 00000000 ____D C:\Program Files\trend micro
2016-06-14 22:26 - 2016-06-14 22:26 - 00000000 ____D C:\rsit
2016-06-14 22:24 - 2016-06-14 22:25 - 01222144 _____ C:\Users\Michal\Downloads\RSITx64.exe
2016-06-14 16:19 - 2016-06-14 16:19 - 06120125 _____ C:\Users\Michal\Downloads\Rozdělovník ADGPC (3).xlsx
2016-06-14 12:09 - 2016-06-14 12:09 - 00352374 _____ C:\Users\Michal\Downloads\image (7).jpeg
2016-06-14 12:09 - 2016-06-14 12:09 - 00199735 _____ C:\Users\Michal\Downloads\image (8).jpeg
2016-06-14 10:59 - 2016-06-14 10:59 - 00160369 _____ C:\Users\Michal\Downloads\image (6).jpeg
2016-06-14 10:58 - 2016-06-14 10:59 - 02624858 _____ C:\Users\Michal\Downloads\image (5).jpeg
2016-06-14 10:58 - 2016-06-14 10:58 - 00160369 _____ C:\Users\Michal\Downloads\image (4).jpeg
2016-06-12 22:01 - 2016-06-12 22:09 - 674457540 _____ C:\Users\Michal\Downloads\Tera Sweet.mp4
2016-06-12 22:01 - 2016-06-12 22:01 - 00052195 _____ C:\Users\Michal\Downloads\LegalPorno - Tera Sweet - Tera Sweet PissMyAssOff Porno SZ121 mp4-[rarbg.com].torrent
2016-06-12 21:58 - 2016-06-12 23:16 - 00000000 ____D C:\Users\Michal\Downloads\LegalPorno.Balls.Deep.with.July.Sun.Olivia.Devine.1st.TP
2016-06-12 21:57 - 2016-06-12 21:57 - 00110003 _____ C:\Users\Michal\Downloads\LegalPorno.Balls.Deep.with.July.Sun.Olivia.Devine.1st.TP.mp4-[rarbg.com].torrent
2016-06-12 21:46 - 2016-06-12 21:46 - 00020711 _____ C:\Users\Michal\Downloads\LegalPorno - Christine Courtney 4on1 mini gangbang with DP pee-[rarbg.com].torrent
2016-06-12 21:46 - 2016-06-12 21:46 - 00000000 ____D C:\Users\Michal\Downloads\LegalPorno - Christine Courtney 4on1 mini gangbang with DP pee SZ853 XXX 07.June.2016
2016-06-11 18:16 - 2016-06-11 18:17 - 01753061 _____ C:\Users\Michal\Downloads\image (3).jpeg
2016-06-10 20:00 - 2016-06-10 20:00 - 00000000 ____D C:\Users\Michal\AppData\Local\PaceAP
2016-06-10 18:57 - 2016-06-10 19:53 - 00001977 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iLok License Manager.lnk
2016-06-10 18:57 - 2016-06-10 19:53 - 00001965 _____ C:\Users\Public\Desktop\iLok License Manager.lnk
2016-06-10 18:56 - 2016-06-10 18:56 - 00000000 ____D C:\Program Files (x86)\iLok License Manager
2016-06-10 18:51 - 2016-06-10 18:51 - 00000000 ____D C:\Program Files\Bonjour
2016-06-10 18:51 - 2016-06-10 18:51 - 00000000 ____D C:\Program Files (x86)\Bonjour
2016-06-10 18:48 - 2016-06-10 18:49 - 89709157 _____ C:\Users\Michal\Downloads\LicenseSupportInstallerWin64 (1).zip
2016-06-09 20:19 - 2016-06-11 18:03 - 2417629133 ____R C:\Users\Michal\Downloads\LP_Diana_Dali_MD.mp4
2016-06-09 20:14 - 2016-06-14 12:11 - 2505920146 _____ C:\Users\Michal\Downloads\Kitana_Lure_finally_got_Giorgio_s_treatment_5_on_1_Pissing_Drinking_GIO030_1.mp4
2016-06-09 20:13 - 2016-06-12 21:57 - 3011598247 ____R C:\Users\Michal\Downloads\Piss_drinking_sluts_Susan_Ayn_Samantha_Joons_SZ547.mp4
2016-06-09 20:13 - 2016-06-09 20:13 - 00012722 _____ C:\Users\Michal\Downloads\LegalPorno - Diana Dali - 4 on 1, Pissing, Drinking First DAP Double Penetration, Creampiee And Multiple Facial Cumshots - GIO24 720p mp4-[rarbg.com].torrent
2016-06-09 20:12 - 2016-06-14 10:02 - 2774502050 ____R C:\Users\Michal\Downloads\Linda_Sweet_Meg_Magic_piss_drinking_sluts_in_extreme_anal_foursome_SZ567.mp4
2016-06-09 20:12 - 2016-06-09 20:12 - 00029375 _____ C:\Users\Michal\Downloads\MONOVA.ORG Susan Ayn, Samantha Joons (Piss drinking sluts Susan Ayn & Samantha Joons SZ547) (2015) HD 1080p.torrent
2016-06-09 20:12 - 2016-06-09 20:12 - 00012759 _____ C:\Users\Michal\Downloads\MONOVA.ORG LegalPorno - Kitana Lure finally got Giorgio 39 s treatment 5 on 1 Pissing Drinking GIO030 - 720p.torrent
2016-06-09 20:11 - 2016-06-09 20:11 - 00027139 _____ C:\Users\Michal\Downloads\MONOVA.ORG Linda Sweet, Meg Magic (Piss Drinking Sluts In Extreme Anal Foursome - SZ567) (2015) HD 1080p.torrent
2016-06-09 20:10 - 2016-06-09 20:42 - 2470791529 ____R C:\Users\Michal\Downloads\Lola's Perverted Fantasy Rough Anal Gangbang with lots of Piss Drinking SZ617 (720p).mp4
2016-06-09 20:10 - 2016-06-09 20:10 - 00012840 _____ C:\Users\Michal\Downloads\LegalPorno - Lola Taylor - Lolas Perverted Fantasy Rough Anal Gangbang with lots of Piss Drinking 720p hd-[rarbg.com].torrent
2016-06-09 20:10 - 2016-06-09 20:10 - 00012840 _____ C:\Users\Michal\Downloads\LegalPorno - Lola Taylor - Lolas Perverted Fantasy Rough Anal Gangbang with lots of Piss Drinking 720p hd-[rarbg.com] (1).torrent
2016-06-09 20:08 - 2016-06-09 20:20 - 00000000 ____D C:\Users\Michal\Downloads\[Legalporno] LP Queen Timea Bella XXXMAS present 4on1+DAP+8ia+Piss Drinking Slut! SZ701 - 720p + Photoset
2016-06-09 20:06 - 2016-06-11 18:12 - 2279212970 _____ C:\Users\Michal\Downloads\7 on 1 Gang Bang. Pissing Drinking Prolapse DAP. Brittany Love got Plastered.mp4
2016-06-09 20:06 - 2016-06-09 20:19 - 00000000 ____D C:\Users\Michal\Downloads\VRXS-135
2016-06-09 20:06 - 2016-06-09 20:06 - 00022881 _____ C:\Users\Michal\Downloads\MONOVA.ORG Legalporno LP Queen Timea Bella XXXMAS present 4on1+DAP+8ia+Piss Drinking Slut SZ701 - 720p + Photoset.torrent
2016-06-09 20:06 - 2016-06-09 20:06 - 00012393 _____ C:\Users\Michal\Downloads\MONOVA.ORG VRXS-135 Forced Piss Drinking Lesbian Facesitting.torrent
2016-06-09 20:05 - 2016-06-09 20:05 - 00012385 _____ C:\Users\Michal\Downloads\7 on 1 gang bang pissing drinking prolapse dap brittany love got plastered mp4.torrent
2016-06-09 20:04 - 2016-06-09 20:52 - 1763040168 ____R C:\Users\Michal\Downloads\Piss_drinking_sluts_Timea_Antala_Nikky_Dream_got_DAP_ed_big_butt_sluts_anal_SZ800_1.mp4
2016-06-09 20:04 - 2016-06-09 20:04 - 00017465 _____ C:\Users\Michal\Downloads\MONOVA.ORG [LegalPorno] Timea Antala, Nikky Dream (Piss drinking sluts Timea Antala & Nikky Dream got DAP'ed.torrent
2016-06-09 20:02 - 2016-06-09 20:26 - 1832079364 ____R C:\Users\Michal\Downloads\[LegalPorno] Kiki Minaj - Piss Drinking Slut Kiki Minaj DP'ed (Ebony Slut Anal) (SZ644) (720p) (2015).mp4
2016-06-09 20:02 - 2016-06-09 20:02 - 00140640 _____ C:\Users\Michal\Downloads\[kat.cr]legalporno.kiki.minaj.piss.drinking.slut.kiki.minaj.dp.ed.ebony.slut.anal.sz644.720p.2015.new.release.torrent
2016-06-09 20:02 - 2016-06-09 20:02 - 00140640 _____ C:\Users\Michal\Downloads\[kat.cr]legalporno.kiki.minaj.piss.drinking.slut.kiki.minaj.dp.ed.ebony.slut.anal.sz644.720p.2015.new.release (1).torrent
2016-06-09 11:07 - 2016-06-11 21:32 - 00000000 ____D C:\Users\Michal\Downloads\LegalPorno_ 4 on 1. Pissing, Drinking, Prolapse, DAP & DP, gapes compilation, farting creampiee - Alice (2015) SiteRip x264
2016-06-09 11:02 - 2016-06-09 11:02 - 00180928 _____ C:\Users\Michal\Downloads\legalporno 4 on 1 pissing drinking prolapse dap amp dp gapes compilation farting creampiee - alice 2015 siterip x264.torrent
2016-06-09 10:59 - 2016-06-09 10:59 - 00122130 _____ C:\Users\Michal\Downloads\%5BLegalporno%5D4on1+Drinking+DAP+DP+Tons+of+Drinking+farting+creampiee+and+plastered+face.torrent
2016-06-09 10:59 - 2016-06-09 10:59 - 00000000 ____D C:\Users\Michal\Downloads\LegalPorno.Shrima.Malati.4.On.1.Pissing.Drinking.DAP.And.DP.Tons.Of.Pee.Drinking.Farting.Creampiee.And.Plastered.Face.GIO29
2016-06-09 10:58 - 2016-06-09 11:26 - 1164368414 _____ C:\Users\Michal\Downloads\[LegalPorno] Briana Bounce kreme farting asshole (interracial double anal (DAP) with cream) RS228 (21.04.2016) rq.mp4
2016-06-09 10:58 - 2016-06-09 10:58 - 00054686 _____ C:\Users\Michal\Downloads\LegalPorno.Shrima.Malati.4.On.1.Pissing.Drinking.DAP.And.DP.Tons.Of.Pee.Drinking.Farting.Creampiee.And.Plastered.Face.GIO29.torrent
2016-06-09 10:57 - 2016-06-09 10:57 - 00011923 _____ C:\Users\Michal\Downloads\Briana.Bounce.kreme.farting.asshole.(interracial.double.anal.(DAP).with.cream).RS228.(21.04.2016).rq.mp4.torrent
2016-06-06 23:18 - 2016-06-06 23:18 - 00000000 ____D C:\Users\Michal\Downloads\[-LegalPorno-] Sally [-4 on 1. Pissing, Drinking, DAP & DP, Tons of Pee Drinking, farting creampie and plastered face GIO033-]
2016-06-06 23:17 - 2016-06-06 23:17 - 00174055 _____ C:\Users\Michal\Downloads\[kat.cr]legalporno.sally.4.on.1.pissing.drinking.dap.dp.tons.of.pee.drinking.farting.creampie.and.plastered.face.gio033.torrent
2016-06-06 23:14 - 2016-06-07 00:06 - 3104689338 _____ C:\Users\Michal\Downloads\[LegalPorno] Sasha Panther & Vanessa Vaughn anal cream farting with DP & pee RS136 (13.12.2015) rq (720p).mp4
2016-06-06 23:14 - 2016-06-06 23:14 - 00015653 _____ C:\Users\Michal\Downloads\[kat.cr]legalporno.sasha.panther.vanessa.vaughn.anal.cream.farting.with.dp.pee.rs136.13.12.2015.rq.720p.mp4.torrent
2016-06-06 23:09 - 2016-06-06 23:09 - 00019556 _____ C:\Users\Michal\Downloads\[kat.cr]piss.my.ass.off.peeing.anal.gonzo.a2m.russian.girls.web.dl.torrent
2016-06-06 23:09 - 2016-06-06 23:09 - 00000000 ____D C:\Users\Michal\Downloads\Piss My Ass Off 1_720p
2016-06-06 23:08 - 2016-06-06 23:16 - 1244112821 _____ C:\Users\Michal\Downloads\[TSRaw] Thais Tavares - Fetish Anal Pissing and Gaping Creampie (May 26, 2016) 720p rq.mp4
2016-06-06 22:59 - 2016-06-06 22:59 - 00012700 _____ C:\Users\Michal\Downloads\[kat.cr]tsraw.thais.tavares.fetish.anal.pissing.and.gaping.creampie.may.26.2016.720p.rq.mp4.torrent
2016-06-06 22:37 - 2016-06-06 22:37 - 00132155 _____ C:\Users\Michal\Downloads\image (2).jpeg
2016-06-06 18:52 - 2016-06-06 18:52 - 01228854 _____ C:\Users\Michal\Downloads\nožky.bmp
2016-06-04 12:45 - 2016-06-04 12:48 - 731686912 _____ C:\Users\Michal\Downloads\rozlucka-se-svobodou-2.avi
2016-06-04 12:44 - 2016-06-04 13:10 - 1975302070 _____ C:\Users\Michal\Downloads\nejvetsi-zensky-strikacky-2.avi
2016-06-04 12:43 - 2016-06-04 12:56 - 1179825503 _____ C:\Users\Michal\Downloads\cesky-si-predavaji-chcanky-z-ust-do-ust.mp4
2016-06-03 20:39 - 2016-06-03 20:56 - 2221264499 _____ C:\Users\Michal\Downloads\nymfomanky.mp4
2016-06-03 20:39 - 2016-06-03 20:54 - 2001512139 _____ C:\Users\Michal\Downloads\grupac-na-lodi.avi
2016-06-03 20:36 - 2016-06-03 20:47 - 1647281808 _____ C:\Users\Michal\Downloads\holky-prdej-mrdku-3.avi
2016-06-03 18:05 - 2016-06-03 18:08 - 749380504 _____ C:\Users\Michal\Downloads\polykaci-bukkake.mp4
2016-06-03 18:01 - 2016-06-03 18:25 - 364755765 _____ C:\Users\Michal\Downloads\devka-strika-jak-ukopnutej-hydrant.mp4
2016-06-03 18:01 - 2016-06-03 18:03 - 422985714 _____ C:\Users\Michal\Downloads\analni-masakr.mp4
2016-06-03 10:50 - 2016-06-03 10:50 - 00290952 _____ C:\Windows\Minidump\060316-36285-01.dmp
2016-06-03 10:20 - 2016-06-03 10:21 - 00057812 _____ C:\Users\Michal\Downloads\image (1).jpeg
2016-06-02 20:07 - 2016-06-11 22:56 - 00000466 _____ C:\Users\Michal\Desktop\mm.txt
2016-06-01 23:07 - 2016-06-01 23:07 - 00061162 _____ C:\Users\Michal\Downloads\cerven 2016 v PDF.pdf
2016-05-31 22:40 - 2016-05-31 22:40 - 00290984 _____ C:\Windows\Minidump\053116-36519-01.dmp
2016-05-31 21:20 - 2016-05-31 21:20 - 00107299 _____ C:\Users\Michal\Downloads\image.jpeg
2016-05-29 02:30 - 2016-05-29 02:30 - 00000000 ____D C:\Users\Michal\AppData\Roaming\proDAD
2016-05-29 02:30 - 2016-05-29 02:30 - 00000000 ____D C:\ProgramData\proDAD
2016-05-29 02:30 - 2016-05-29 02:30 - 00000000 ____D C:\Program Files\proDAD
2016-05-29 02:30 - 2015-09-17 12:54 - 00607256 _____ (proDAD GmbH) C:\Windows\system32\prodad-codec.dll
2016-05-29 02:30 - 2015-09-17 12:54 - 00376344 _____ (proDAD GmbH) C:\Windows\system32\proDAD-PA-Support.dll
2016-05-29 02:30 - 2015-09-17 12:54 - 00034064 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\CLMirrorDriver.dll
2016-05-29 02:30 - 2015-09-17 12:54 - 00021264 _____ (CyberLink) C:\Windows\system32\Drivers\CLMirrorDriver.sys
2016-05-29 02:29 - 2016-05-29 02:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NewBlue
2016-05-29 02:28 - 2016-05-29 02:28 - 00002103 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink Screen Recorder.lnk
2016-05-29 02:28 - 2016-05-29 02:28 - 00002091 _____ C:\Users\Public\Desktop\CyberLink Screen Recorder.lnk
2016-05-29 02:28 - 2016-05-29 02:28 - 00002020 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDirector 14 (64-bit).lnk
2016-05-29 02:28 - 2016-05-29 02:28 - 00002008 _____ C:\Users\Public\Desktop\CyberLink PowerDirector 14 (64-bit).lnk
2016-05-29 02:28 - 2016-05-29 02:28 - 00000000 ____D C:\Program Files (x86)\CyberLink
2016-05-29 02:19 - 2016-05-29 02:19 - 00000000 ____D C:\ProgramData\Temp
2016-05-29 01:54 - 2016-06-06 22:59 - 00000000 ____D C:\Users\Michal\Downloads\CyberLink PowerDirector Ultimate 14.0.2019.0
2016-05-29 01:27 - 2015-09-17 12:54 - 00217600 _____ C:\Users\Michal\Desktop\keygen.exe
2016-05-29 01:19 - 2016-07-22 02:39 - 1178901113 _____ C:\Users\Michal\Downloads\PowerDirector.Ultimate.14.0.2019.0.rar
2016-05-29 00:49 - 2016-05-29 00:49 - 00111086 _____ C:\Users\Michal\Downloads\AV_Cl!nk_PD_14.rar
2016-05-28 16:40 - 2016-05-28 16:40 - 00000000 ____D C:\Users\Michal\AppData\Roaming\Apple Computer
2016-05-28 16:36 - 2016-05-28 16:36 - 00000000 _____ C:\Users\Michal\AppData\Local\{579187CE-D0CE-4CC6-A6D9-0E0CAA807094}
2016-05-28 16:33 - 2016-05-28 16:34 - 00291000 _____ C:\Windows\Minidump\052816-37128-01.dmp
2016-05-28 16:30 - 2016-05-29 12:47 - 01385323 _____ C:\Users\Michal\Desktop\mmm.pds
2016-05-28 14:57 - 2016-05-29 01:46 - 00000000 ____D C:\Users\Michal\Documents\CyberLink
2016-05-28 14:57 - 2016-05-29 00:20 - 00000000 ____D C:\Users\Public\CyberLink
2016-05-28 14:57 - 2016-05-28 14:57 - 00000000 ____D C:\Users\Michal\AppData\Roaming\CyberLink
2016-05-28 14:57 - 2016-05-28 14:57 - 00000000 ____D C:\Users\Michal\AppData\Local\CyberLink
2016-05-28 14:52 - 2016-05-28 14:52 - 00002519 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2016-05-28 14:52 - 2016-05-28 14:52 - 00000000 ____D C:\Users\Michal\AppData\Local\Apple
2016-05-28 14:52 - 2016-05-28 14:52 - 00000000 ____D C:\Program Files (x86)\Apple Software Update
2016-05-28 14:51 - 2016-05-28 14:51 - 00000000 ____D C:\Users\Michal\AppData\LocalLow\Apple Computer
2016-05-28 14:51 - 2016-05-28 14:51 - 00000000 ____D C:\Program Files\Common Files\NewBlue
2016-05-28 14:50 - 2016-05-29 02:30 - 00000000 ____D C:\Program Files\NewBlue
2016-05-28 14:50 - 2016-05-29 02:30 - 00000000 ____D C:\Program Files (x86)\NewBlue
2016-05-28 14:50 - 2016-05-28 14:50 - 00000000 ____D C:\Program Files (x86)\NSIS Uninstall Information
2016-05-28 14:46 - 2016-05-29 02:29 - 00000000 ____D C:\Program Files\CyberLink
2016-05-28 14:35 - 2016-05-28 14:35 - 00000000 ____D C:\Users\Default\AppData\Local\Google
2016-05-28 14:35 - 2016-05-28 14:35 - 00000000 ____D C:\Users\Default User\AppData\Local\Google
2016-05-28 14:34 - 2016-05-29 02:22 - 00000000 ____D C:\ProgramData\SUPPORTDIR
2016-05-28 14:34 - 2016-05-28 14:51 - 00000000 ____D C:\ProgramData\install_clap
2016-05-28 14:31 - 2016-05-28 14:31 - 00000000 ____D C:\Program Files (x86)\CyberLink PowerDirector
2016-05-28 14:26 - 2016-05-28 14:28 - 569412000 _____ ( ) C:\Users\Michal\Downloads\PowerDirector_2019a_GM2_Trial.exe
2016-05-28 14:20 - 2016-05-28 14:20 - 00000871 _____ C:\Users\Michal\Desktop\CyberLink_PowerDirector_Downloader.lnk
2016-05-28 14:18 - 2016-05-28 14:19 - 01031608 _____ (CyberLink) C:\Users\Michal\Downloads\CyberLink_PowerDirector_Downloader.exe
2016-05-28 13:54 - 2016-05-28 13:54 - 42951014 _____ C:\Users\Michal\Downloads\EDIUS_End_Credit_Logo_and_Video_Packs.zip
2016-05-28 13:09 - 2016-05-28 14:20 - 00017826 _____ C:\Users\Michal\Desktop\Nový film (2).Film.Movie.axp
2016-05-28 13:09 - 2016-05-28 13:23 - 00015392 _____ C:\Users\Michal\Desktop\Nový film (2).Film.Movie.axp.bak
2016-05-28 13:09 - 2016-05-28 13:09 - 00000000 ____D C:\Users\Michal\Documents\Projekty aplikace Pinnacle
2016-05-28 12:09 - 2016-05-28 12:09 - 00358402 _____ C:\Users\Michal\Downloads\181_Topo_47232d4a-4499-465c-9ca8-f3e71e31115a_seewand_klettersteig_topo.pdf
2016-05-28 02:31 - 2016-05-28 02:31 - 00002027 _____ C:\Users\Public\Desktop\ESET Ochrana bankovnictví a online plateb.lnk
2016-05-28 02:30 - 2016-05-28 02:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2016-05-28 02:30 - 2016-05-28 02:30 - 00000000 ____D C:\ProgramData\ESET
2016-05-28 02:30 - 2016-05-28 02:30 - 00000000 ____D C:\Program Files\ESET
2016-05-27 21:46 - 2016-05-27 21:46 - 00283800 _____ C:\Users\Michal\Downloads\IMG-20160525-WA0005.jpeg
2016-05-27 19:42 - 2016-05-27 19:52 - 00002206 _____ C:\Users\Public\Desktop\Pinnacle Studio 16.lnk
2016-05-27 19:36 - 2016-05-27 19:36 - 00000000 ____D C:\Users\Public\Documents\Pinnacle
2016-05-27 19:25 - 2016-05-27 19:25 - 00000000 ____D C:\ProgramData\PCTV Systems
2016-05-27 19:15 - 2016-05-27 19:24 - 00000000 ____D C:\Users\Michal\Downloads\Pinnacle Studio 16 Ultimate 16.1.0.115 Final Ml_Rus
2016-05-27 19:13 - 2016-05-27 19:13 - 00022276 _____ C:\Users\Michal\Downloads\310_140924.torrent
2016-05-27 18:59 - 2016-05-27 19:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pinnacle Studio 16
2016-05-27 18:02 - 2016-06-15 11:13 - 00000000 ____D C:\Users\Michal\Desktop\Nová složka
2016-05-23 19:16 - 2016-05-23 19:16 - 00000534 _____ C:\Users\Michal\Desktop\untitled.mid
2016-05-23 17:14 - 2016-05-23 17:14 - 00291000 _____ C:\Windows\Minidump\052316-21574-01.dmp

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-06-15 11:18 - 2016-04-01 20:01 - 00000000 ____D C:\Users\Michal\AppData\Local\tkdata
2016-06-15 11:15 - 2016-04-01 19:43 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-06-15 11:06 - 2013-04-05 22:47 - 00000952 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-06-15 11:03 - 2015-09-07 15:21 - 00001006 _____ C:\Windows\Tasks\SnH5f2e6QugB7YV.job
2016-06-15 10:41 - 2015-08-27 10:07 - 00000000 ____D C:\ProgramData\ValhallaRoom
2016-06-15 10:41 - 2009-07-14 06:45 - 00023568 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-06-15 10:41 - 2009-07-14 06:45 - 00023568 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-06-15 10:30 - 2015-09-07 15:21 - 00000992 _____ C:\Windows\Tasks\wj325D9i.job
2016-06-15 10:30 - 2013-04-05 22:47 - 00000948 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-06-15 10:30 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-06-15 10:11 - 2013-03-27 22:28 - 00000000 ____D C:\Users\Michal\AppData\Local\Adobe
2016-06-15 10:08 - 2015-09-07 15:13 - 00000000 ____D C:\Users\Michal\AppData\Roaming\Seznam.cz
2016-06-15 10:07 - 2015-09-07 15:14 - 00000000 ____D C:\Program Files (x86)\Seznam.cz
2016-06-15 10:07 - 2015-01-02 22:41 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-06-15 09:59 - 2009-07-14 06:45 - 05161688 _____ C:\Windows\system32\FNTCACHE.DAT
2016-06-15 09:53 - 2014-12-11 10:32 - 00000000 ____D C:\Windows\system32\appraiser
2016-06-15 01:41 - 2013-07-15 00:27 - 00000000 ____D C:\Windows\system32\MRT
2016-06-15 01:33 - 2013-03-20 16:40 - 142482544 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-06-14 12:11 - 2013-03-22 00:18 - 00000000 ____D C:\Users\Michal\AppData\Roaming\uTorrent
2016-06-10 18:57 - 2013-03-19 20:51 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-06-09 18:25 - 2013-04-10 20:47 - 00000000 ____D C:\Users\Michal\AppData\Roaming\Skype
2016-06-09 00:08 - 2016-05-12 20:34 - 00002155 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-06-09 00:08 - 2016-05-12 20:34 - 00002143 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-06-06 21:53 - 2015-08-02 06:42 - 00000000 ____D C:\Users\Michal\Downloads\aafoto
2016-06-03 23:24 - 2009-07-14 17:18 - 00669132 _____ C:\Windows\system32\perfh005.dat
2016-06-03 23:24 - 2009-07-14 17:18 - 00141760 _____ C:\Windows\system32\perfc005.dat
2016-06-03 23:24 - 2009-07-14 07:13 - 01584626 _____ C:\Windows\system32\PerfStringBackup.INI
2016-06-03 23:24 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf
2016-06-03 10:50 - 2013-04-14 16:20 - 554045118 _____ C:\Windows\MEMORY.DMP
2016-06-03 10:50 - 2013-04-14 16:20 - 00000000 ____D C:\Windows\Minidump
2016-05-29 02:32 - 2016-02-08 20:33 - 00000000 ____D C:\ProgramData\CyberLink
2016-05-28 16:35 - 2016-04-01 19:52 - 00000000 ____D C:\Program Files (x86)\McAfee
2016-05-28 16:33 - 2016-04-01 19:43 - 00000000 ____D C:\Program Files\TrueKey
2016-05-28 14:46 - 2015-03-24 18:39 - 00000000 ____D C:\ProgramData\Package Cache
2016-05-28 13:23 - 2016-04-07 11:20 - 00000000 ____D C:\Users\Michal\AppData\Local\Avid
2016-05-28 13:23 - 2016-04-07 10:53 - 00000349 _____ C:\Users\Public\Documents\PCLECHAL.INI
2016-05-28 13:09 - 2016-04-07 11:23 - 00000000 ____D C:\Users\Michal\temp
2016-05-28 11:39 - 2016-04-07 11:25 - 00004608 _____ C:\Users\Michal\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-05-28 10:46 - 2016-04-01 20:00 - 00001190 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\True Key.lnk
2016-05-28 10:35 - 2016-04-07 11:20 - 00000862 _____ C:\Users\Michal\AppData\Roaming\MICHAL-PC.MTBF.txt
2016-05-27 19:54 - 2016-04-07 10:53 - 00000000 ____D C:\Users\Michal\AppData\Local\Pinnacle
2016-05-27 19:36 - 2016-04-07 10:53 - 00000000 ____D C:\ProgramData\Pinnacle
2016-05-27 19:36 - 2016-04-07 10:52 - 00000000 ____D C:\Program Files (x86)\Pinnacle
2016-05-27 19:05 - 2016-04-07 10:49 - 00000000 ____D C:\Users\Michal\Downloads\PinnacleStudio
2016-05-27 12:35 - 2015-04-04 17:27 - 00000000 ___SD C:\Windows\SysWOW64\GWX
2016-05-27 12:35 - 2015-04-04 17:27 - 00000000 ___SD C:\Windows\system32\GWX
2016-05-20 09:18 - 2016-04-01 19:43 - 00000000 ____D C:\ProgramData\McAfee

==================== Files in the root of some directories =======

2001-10-30 21:44 - 2001-10-30 21:44 - 0065536 _____ () C:\Program Files\in_BuzzWinampBridge.dll
2015-03-18 18:09 - 2015-08-26 12:39 - 32103496 _____ (iZotope, Inc. ) C:\Users\Michal\AppData\Roaming\IZOTOPE_TRASH_SETUP_V2_00.EXE
2016-04-07 11:20 - 2016-05-28 10:35 - 0000862 _____ () C:\Users\Michal\AppData\Roaming\MICHAL-PC.MTBF.txt
2015-03-25 01:46 - 2015-03-25 18:50 - 0000016 _____ () C:\Users\Michal\AppData\Roaming\msregsvv.dll
2014-08-25 23:13 - 2016-01-03 15:21 - 1249792 _____ (http://www.ruby-lang.org/) C:\Users\Michal\AppData\Roaming\msvcr90-ruby191.dll
2013-03-19 20:16 - 2013-03-19 20:39 - 13115392 _____ () C:\Users\Michal\AppData\Roaming\Sandra.mdb
2016-04-07 11:21 - 2016-05-28 14:21 - 0000776 _____ () C:\Users\Michal\AppData\Roaming\__AvidCloudManager.log
2016-04-07 11:21 - 2016-05-28 13:23 - 0000676 _____ () C:\Users\Michal\AppData\Roaming\__AvidCloudManagerPrevious.log
2016-04-07 11:25 - 2016-05-28 11:39 - 0004608 _____ () C:\Users\Michal\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-09-07 15:11 - 2015-09-07 15:11 - 0000187 _____ () C:\Users\Michal\AppData\Local\Qvojoplus.exe.config
2016-05-28 16:36 - 2016-05-28 16:36 - 0000000 _____ () C:\Users\Michal\AppData\Local\{579187CE-D0CE-4CC6-A6D9-0E0CAA807094}
2015-03-25 01:46 - 2015-03-25 18:50 - 0000016 _____ () C:\ProgramData\autobk.inc
2013-05-04 20:11 - 2016-03-22 10:42 - 0021186 _____ () C:\ProgramData\LmeUSB.log
2013-05-04 20:11 - 2016-03-22 10:42 - 0020757 _____ () C:\ProgramData\LmeZJSW.log
2013-05-04 20:11 - 2016-03-22 10:42 - 0021185 _____ () C:\ProgramData\LSDmbTH.log

Some files in TEMP:
====================
C:\Users\Michal\AppData\Local\Temp\aiw871828.dll
C:\Users\Michal\AppData\Local\Temp\C5E3399ED9A072FE864748D49BA96094.dll
C:\Users\Michal\AppData\Local\Temp\DevSetup32.dll
C:\Users\Michal\AppData\Local\Temp\DevSetup64.dll
C:\Users\Michal\AppData\Local\Temp\DriverInstall32.exe
C:\Users\Michal\AppData\Local\Temp\DriverInstall64.exe
C:\Users\Michal\AppData\Local\Temp\DseShExt-x64.dll
C:\Users\Michal\AppData\Local\Temp\DseShExt-x86.dll
C:\Users\Michal\AppData\Local\Temp\InstHelper.exe
C:\Users\Michal\AppData\Local\Temp\KillProcess.exe
C:\Users\Michal\AppData\Local\Temp\kmp.exe
C:\Users\Michal\AppData\Local\Temp\libeay32.dll
C:\Users\Michal\AppData\Local\Temp\loop.exe
C:\Users\Michal\AppData\Local\Temp\msvcr120.dll
C:\Users\Michal\AppData\Local\Temp\nsg73CB.exe
C:\Users\Michal\AppData\Local\Temp\nsq73CA.exe
C:\Users\Michal\AppData\Local\Temp\ose00001.exe
C:\Users\Michal\AppData\Local\Temp\ose00002.exe
C:\Users\Michal\AppData\Local\Temp\PlaySound.dll
C:\Users\Michal\AppData\Local\Temp\ReimagePackage.exe
C:\Users\Michal\AppData\Local\Temp\SDShelEx-win32.dll
C:\Users\Michal\AppData\Local\Temp\SDShelEx-x64.dll
C:\Users\Michal\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Michal\AppData\Local\Temp\sqlite3.dll
C:\Users\Michal\AppData\Local\Temp\tmpA116.tmp.exe
C:\Users\Michal\AppData\Local\Temp\Uninstall.exe
C:\Users\Michal\AppData\Local\Temp\utt341.tmp.exe
C:\Users\Michal\AppData\Local\Temp\utt4D83.tmp.exe
C:\Users\Michal\AppData\Local\Temp\utt6DF0.tmp.exe
C:\Users\Michal\AppData\Local\Temp\YWS_DspIpp.dll
C:\Users\Michal\AppData\Local\Temp\{6AED1B57-0968-4D51-B958-047F64699918}.dll
C:\Users\Michal\AppData\Local\Temp\{7C96DA9C-2302-4255-9FE7-E0EBCFD3C9C4}.dll
C:\Users\Michal\AppData\Local\Temp\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed



===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================



==================== MBR and Partition Table ==================


==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\SnH5f2e6QugB7YV.job => C:\Users\Michal\AppData\Roaming\SnH5f2e6QugB7YV.exe <==== ATTENTION
Task: C:\Windows\Tasks\wj325D9i.job => C:\Users\Michal\AppData\Roaming\wj325D9i.exe <==== ATTENTION

==================== Alternate Data Streams (whitelisted) ==================


==================== Security Center ==================

AV: ESET Smart Security 9.0.376.1 (Enabled - Out of date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET Smart Security 9.0.376.1 (Enabled - Out of date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
FW: ESET Personální firewall (Enabled) {211E1E8B-C9F9-A04B-6D84-BC85190CE5F2}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Michal\Desktop" je 34177 MB.


***** Startup Programs *****


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000


==================== End Of Log ==============================




log Addition.txt


Additional scan result of Farbar Recovery Scan Tool (x64) Version:13-06-2016
Ran by Michal (2016-06-15 11:33:31)
Running from C:\Users\Michal\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2013-03-19 11:07:20)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2581228697-3019390296-4131092421-500 - Administrator - Disabled)
Guest (S-1-5-21-2581228697-3019390296-4131092421-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2581228697-3019390296-4131092421-1002 - Limited - Enabled)
Michal (S-1-5-21-2581228697-3019390296-4131092421-1000 - Administrator - Enabled) => C:\Users\Michal

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: ESET Smart Security 9.0.376.1 (Enabled - Out of date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET Smart Security 9.0.376.1 (Enabled - Out of date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
FW: ESET Personální firewall (Enabled) {211E1E8B-C9F9-A04B-6D84-BC85190CE5F2}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKLM-x32\...\uTorrent) (Version: 2.2.0 - )
µTorrent (HKU\S-1-5-21-2581228697-3019390296-4131092421-1000\...\uTorrent) (Version: 3.4.2.35702 - BitTorrent Inc.)
1st Atomic Time 3.0 (30-day trial) (HKLM-x32\...\1st Atomic Time_is1) (Version: 3.0 - Green Parrots Software)
Ableton Live 9 Suite (HKLM\...\{A7C273D4-3F82-4A08-94DC-7492FC151F15}) (Version: 9.0.0.0 - Ableton)
Ableton Live 9 Suite (HKLM-x32\...\{CBFFFADF-30D3-49B2-806C-237EDDBFA0B3}) (Version: 9.0.0.0 - Ableton)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 2.5.1.17730 - Adobe Systems Inc.)
Adobe Audition CS5.5 (HKLM-x32\...\{D5B1535A-FDFC-4B40-B2E2-21DA83D9CB57}) (Version: 4.0 - Adobe Systems Incorporated)
Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.4.980 - Adobe Systems Incorporated.)
Adobe Flash Player 21 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 21.0.0.242 - Adobe Systems Incorporated)
Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.16) - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.16 - Adobe Systems Incorporated)
All Video Fixer 8.9 (HKLM-x32\...\All Video Fixer_is1) (Version: - New Live Software, Inc.)
Apple Application Support (HKLM-x32\...\{5D09C772-ECB3-442B-9CC6-B4341C78FDC2}) (Version: 2.3.4 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ArtsAcoustic Reverb 1.5.0.5 (HKLM-x32\...\ArtsAcoustic Reverb) (Version: 1.5.0.5 - ArtsAcoustic Vertrieb GbR)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.11 Beta2 - Michael Tippach)
aTube Catcher verze 3.8 (HKLM-x32\...\{D43B360E-722D-421B-BC77-20B9E0F8B6CD}_is1) (Version: 3.8 - DsNET Corp)
Audacity 1.3.11 (Unicode) (HKLM-x32\...\Audacity 1.3 Beta (Unicode)_is1) (Version: - Audacity Team)
Audio Damage DeVerb VST v1.0 (HKLM-x32\...\Audio Damage DeVerb VST v1.0) (Version: - )
Audio.Damage.Ronin.v1.0.VST-DAC (HKLM-x32\...\Audio.Damage.Ronin.v1.0.VST-DAC) (Version: - )
Balíček ovladače systému Windows - Focusrite USB 2.0 Audio Driver (09/25/2013 2.5.128.1) (HKLM\...\CF1FC201D237269A9CD51A3A6B14ADBF67175C32) (Version: 09/25/2013 2.5.128.1 - Focusrite)
Balíček ovladače systému Windows - Focusrite USB 2.0 Audio Driver (10/13/2011 2.2.128.0) (HKLM\...\5EBE05A38E0ED7FB7DC4171215DC5B0266DA1D51) (Version: 10/13/2011 2.2.128.0 - Focusrite)
BiFilter v2.3 (HKLM-x32\...\Tone2 BiFilter2_is1) (Version: - Tone2)
BlazeDTV 6.0 (HKLM-x32\...\BlazeDTV 6.0_is1) (Version: - )
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Broadcom 802.11 Network Adapter (HKLM\...\Broadcom 802.11 Network Adapter) (Version: 5.60.48.35 - Broadcom Corporation)
Camel Audio Alchemy (HKLM-x32\...\Camel Audio Alchemy) (Version: 1.25.0 - Camel Audio)
Camel Audio CamelCrusher (HKLM-x32\...\Camel Audio CamelCrusher) (Version: 1.01.0 - Camel Audio)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
Comodo Dragon (HKLM-x32\...\Comodo Dragon) (Version: 33.1.0.1 - Comodo)
Cool Edit Pro 2.1 (HKLM-x32\...\Cool Edit Pro 2.1) (Version: - )
Custom Shop version 1.5.0 (HKLM-x32\...\{21BAD046-50EC-49E2-BE7B-F9729704F2C3}_is1) (Version: 1.5.0 - IK Multimedia)
CyberLink PowerDirector 14 (HKLM-x32\...\{6BADCD73-E925-46F7-A295-FF2448632728}) (Version: 14.0.2019.0 - CyberLink Corp.)
Decimort 1.4.0 (32bit) (HKLM-x32\...\{DBA88E1F-1662-4615-8E00-82A8593BF374}) (Version: 1.4.0.0 - D16 Group Audio Software)
Decimort 1.4.0 (64bit) (HKLM\...\{F0A0EB8E-D410-4CFC-A238-B95373198BCD}) (Version: 1.4.0.0 - D16 Group Audio Software)
Devastor 1.4.0 (32bit) (HKLM-x32\...\{C8B66E95-70FC-4C02-B653-2B38BE779174}) (Version: 1.4.0.0 - D16 Group Audio Software)
Devastor 1.4.0 (64bit) (HKLM\...\{04B26700-1160-43CE-A42F-85D875A51625}) (Version: 1.4.0.0 - D16 Group Audio Software)
doPDF 7.3 printer (HKLM\...\doPDF 7 printer_is1) (Version: 7.3.393 - Softland)
Drumazon 1.6.0 (32bit) (HKLM-x32\...\{52B8173A-1230-4438-B076-DDC6E2131BC8}) (Version: 1.6.0.0 - D16 Group Audio Software)
Drumazon 1.6.0 (64bit) (HKLM\...\{60A0EF9F-2F5B-4076-87A9-97DF488F18AF}) (Version: 1.6.0.0 - D16 Group Audio Software)
DUNE 2 (HKLM-x32\...\DUNE 2_is1) (Version: - Synapse Audio Software)
Effectrix (HKLM-x32\...\Effectrix) (Version: 1.0 - Sugar Bytes)
ElectraX Dance and Trance Soundset (HKLM-x32\...\Tone2 ElectraX Dance and Trance Soundset_is1) (Version: - Tone2)
ElectraX full (HKLM-x32\...\Tone2 ElectraX full_is1) (Version: - Tone2)
ElectraX Morphing Soundset (HKLM-x32\...\Tone2 ElectraX Morphing Soundset_is1) (Version: - Tone2)
ElectraX Vintage Soundset (HKLM-x32\...\Tone2 ElectraX Vintage Soundset_is1) (Version: - Tone2)
ElectraX Voltage Soundset (HKLM-x32\...\Tone2 ElectraX Voltage Soundset_is1) (Version: - Tone2)
ElectraX Wavetables Expansion (HKLM-x32\...\Tone2 ElectraX Wavetables Expansion_is1) (Version: - Tone2)
eLicenser Control (HKLM-x32\...\eLicenser Control) (Version: 6.7.1.8146 - Steinberg Media Technologies GmbH)
ESET Smart Security (HKLM\...\{B7DE9695-00B8-4935-97B5-A2CBFBA6A3F8}) (Version: 9.0.376.1 - ESET, spol. s r.o.)
FabFilter Total Bundle (64-bit) (HKLM-x32\...\FabFilter Total Bundle (64-bit)) (Version: - )
FabFilter Total Bundle (HKLM-x32\...\FabFilter Total Bundle) (Version: - )
Fazortan 1.4.0 (64bit) (HKLM\...\{C2627533-4EC7-4D86-B4AF-DE588F4515FE}) (Version: 1.4.0.0 - D16 Group Audio Software)
File Repair (HKLM-x32\...\File Repair_is1) (Version: - File Repair)
FilterBank v3.3 (HKLM-x32\...\Tone2 FilterBank3_is1) (Version: - Tone2)
FilterBank v3.3 X64 (HKLM-x32\...\Tone2 FilterBank3 X64_is1) (Version: - Tone2)
FireBird plus v1.11.2 (HKLM-x32\...\Tone2 FireBird_is1) (Version: - Tone2)
FL Studio 11 (HKLM-x32\...\FL Studio 11) (Version: - Image-Line)
FlowStone FL 3.0 (HKLM-x32\...\FlowStone) (Version: - )
Focusrite USB 2.0 Audio Driver 2.5.1 (HKLM\...\Focusrite USB 2.0 Audio Driver_is1) (Version: 2.5.1 - Focusrite Audio Engineering Limited.)
FormatFactory 3.7.0.0 (HKLM-x32\...\FormatFactory) (Version: 3.7.0.0 - Format Factory)
Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 6.0.2.413 - Foxit Corporation)
Gladiator full (HKLM-x32\...\Tone2 Gladiator full_is1) (Version: - Tone2)
Google Earth Plug-in (HKLM-x32\...\{4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 51.0.2704.84 - Google Inc.)
Google Update Helper (x32 Version: 1.3.30.3 - Google Inc.) Hidden
Hydra VSTi/DXi v1.2 (HKLM-x32\...\SynapseHydra_is1) (Version: 1.2 - Synapse Audio Software)
IK Multimedia Authorization Manager version 1.0.9 (HKLM\...\{85BC0DCB-69E5-4279-AA25-F108EF896588}_is1) (Version: 1.0.9 - IK Multimedia)
IL Shared Libraries (HKLM-x32\...\IL Shared Libraries) (Version: - Image-Line)
Intel Security True Key (HKLM\...\TrueKey) (Version: 4.1.137.1 - Intel Security)
InterVideo DeviceService (HKLM-x32\...\{521AAD14-5030-44BB-8B0E-5CE65FCE57E0}) (Version: 1.0.0 - InterVideo)
IT9130 Driver v10.2.3.2 (HKLM-x32\...\IT9130 DriverInstaller_10.2.3.2) (Version: - )
iZotope Stutter Edit (HKLM-x32\...\iZotope Stutter Edit_is1) (Version: 1.05 - iZotope, Inc.)
iZotope Trash (HKLM-x32\...\iZotope Trash_is1) (Version: 1.05 - iZotope, Inc.)
iZotope Trash 2 (HKLM-x32\...\iZotope Trash 2_is1) (Version: 2.00 - iZotope, Inc.)
JBridge (HKLM-x32\...\JBridge) (Version: - JBridge)
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version: - )
LuSH-101 1.1.3 (64bit) (HKLM\...\{38666E88-8DD7-4223-8DCF-1EB25D53A48B}) (Version: 1.1.3.0 - D16 Group Audio Software)
Mathematica Extras 9.0 (4055459) (HKLM\...\A-WIN-Extras 9.0.1 4055459_is1) (Version: 9.0.1 - Wolfram Research, Inc.)
Max 5.1.7 (HKLM\...\{A4BD55F5-65F5-44A6-A130-5FC39433EE9C}) (Version: 135.1.7 - Cycling '74)
Maximus (HKLM-x32\...\Maximus) (Version: - Image-Line bvba)
MFM2 2.0.1 (HKLM-x32\...\MFM2_is1) (Version: - )
Microsoft .NET Framework 4.5.2 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{2DFD8316-9EF1-3210-908C-4CB61961C1AC}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{527BBE2F-1FED-3D8B-91CB-4DB0F838E69E}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Moog Modular V 2.5 (HKLM-x32\...\Moog Modular V 2_is1) (Version: - Arturia)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Native Instruments Battery 3 (HKLM-x32\...\Native Instruments Battery 3) (Version: - Native Instruments)
Native Instruments Battery 4 (HKLM-x32\...\Native Instruments Battery 4) (Version: 4.0.1.2234 - Native Instruments)
Native Instruments Komplete 7 (HKLM-x32\...\Native Instruments Komplete 7) (Version: - Native Instruments)
Native Instruments Kontakt 4 (HKLM-x32\...\Native Instruments Kontakt 4) (Version: - Native Instruments)
Native Instruments Massive (HKLM-x32\...\Native Instruments Massive) (Version: - Native Instruments)
Native Instruments Service Center (HKLM-x32\...\Native Instruments Service Center) (Version: - Native Instruments)
Nepheton 1.6.0 (64bit) (HKLM\...\{1D0B532A-A69A-48B2-9702-FA89E12DA2B2}) (Version: 1.6.0.0 - D16 Group Audio Software)
Nero 7 Ultra Edition (HKLM-x32\...\{4F2CE68F-EDBB-4592-BF07-5AC930A51029}) (Version: 7.02.6446 - Nero AG)
NewBlue Titler Pro for Windows (HKLM-x32\...\NewBlue Titler Pro for Windows) (Version: 1.0 - NewBlue)
NewBlue Video Essentials for Windows (HKLM-x32\...\NewBlue Video Essentials for Windows) (Version: 3.0 - NewBlue)
NewBlue Video Essentials V for Windows (HKLM-x32\...\NewBlue Video Essentials V for Windows) (Version: 3.0 - NewBlue)
NewBlue Video Essentials VI for Windows (HKLM-x32\...\NewBlue Video Essentials VI for Windows) (Version: 3.0 - NewBlue)
NewBlue Video Essentials VII for Windows (HKLM-x32\...\NewBlue Video Essentials VII for Windows) (Version: 3.0 - NewBlue)
Nithonat 1.6.0 (64bit) (HKLM\...\{E6143735-CD6A-4CB7-8155-EA3CE58E873B}) (Version: 1.6.0.0 - D16 Group Audio Software)
NVIDIA Display Control Panel (HKLM\...\NVIDIA Display Control Panel) (Version: 6.14.12.5897 - NVIDIA Corporation)
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: 1.10.62.40 - NVIDIA Corporation)
NVIDIA PhysX (HKLM-x32\...\{8A809006-C25A-4A3A-9DAB-94659BCDB107}) (Version: 9.10.0224 - NVIDIA Corporation)
Ohm Force - Ohmicide VST (HKLM-x32\...\Ohmicide VST) (Version: - )
Ovladače videa společnosti Pinnacle (HKLM\...\{6DE721A5-5E89-4D74-994C-652BB3C0672E}) (Version: 12.1.0.030 - Pinnacle Systems)
PACE License Support Win64 (HKLM-x32\...\InstallShield_{1CC8C2F8-5CA6-45ca-9186-CF77033125F0}) (Version: 3.0.2.1412 - PACE Anti-Piracy, Inc.)
PACE License Support Win64 (Version: 3.0.2.1412 - PACE Anti-Piracy, Inc.) Hidden
PCM Native Reverb VST Plug-in (HKLM-x32\...\PCM Native Reverb VST Plug-in) (Version: - Lexicon)
PCM Native Reverb VST Plug-in (x32 Version: 1.0.0 - Lexicon) Hidden
PDF Recovery Toolbox 1.0 (HKLM-x32\...\PDF Recovery Toolbox_is1) (Version: - Recovery Toolbox, Inc.)
PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
PhaseTwo VST plug-in (HKLM-x32\...\PhaseTwo VST plug-in) (Version: 1.0.0 - Audio Damage)
Phoscyon 1.9.5 (64bit) (HKLM\...\{D32B89DD-B8E6-4443-9BB2-97290BA4B8A8}) (Version: 1.9.5.0 - D16 Group Audio Software)
Pinnacle Studio 16 - Install Manager (HKLM-x32\...\{F1886CD7-9F73-417A-92E9-7E0AB0F0E099}) (Version: 16.0.75 - Avid Technology, Inc.)
Pinnacle Studio 16 (HKLM-x32\...\{284BFDBC-DAC6-43EC-85A8-E1CEC0D3A114}) (Version: 16.1.0.115 - Corel Corporation)
proDAD Adorage 3.0 (64bit) (HKLM\...\proDAD-Adorage-3.0) (Version: 3.0.114.1 - proDAD GmbH)
PSP VintageMeter 1.0 (HKLM-x32\...\PSP VintageMeter1.0) (Version: - )
PSP VintageMeter 32bit (HKLM-x32\...\PSP VintageMeter 32bit) (Version: 1.0.0 32bit - PSPaudioware.com)
PSP VintageWarmer2 2.5.1 32bit (HKLM-x32\...\PSP VintageWarmer2 2.5.1 32bit) (Version: 2.5.1 32bit - PSPaudioware.com)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.34.1130.2010 - Realtek)
Recovery Toolbox for PDF 2.0 (HKLM-x32\...\Recovery Toolbox for PDF_is1) (Version: - Recovery Toolbox, Inc.)
Recuva (HKLM\...\Recuva) (Version: 1.52 - Piriform)
Redoptor 1.4.0 (64bit) (HKLM\...\{6F537CC2-B20E-4EA3-9D08-9043F724A4BE}) (Version: 1.4.0.0 - D16 Group Audio Software)
reFX Nexus 2.6.5 (64-bit) (HKLM-x32\...\{84D04D4F-2201-4AED-BE9A-FFA62069CA19}_is1) (Version: 2.6.5 - reFX Audio Software Inc.)
reFX Nexus VSTi RTAS v2.2.0 (HKLM-x32\...\reFX Nexus_is1) (Version: - )
reFX Vanguard VSTi RTAS v1.8.0 (HKLM-x32\...\reFX Vanguard_is1) (Version: - )
rekordbox 2.0.7 (HKLM-x32\...\Pioneer rekordbox 2.0.7) (Version: 2.0.7 - Pioneer)
Repair Video Master 2.61 (HKLM-x32\...\Repair Video Master_is1) (Version: - Repair Video, Inc.)
Replicant VST plug-in (HKLM-x32\...\Replicant VST plug-in) (Version: 1.0.2 - Audio Damage)
Scarlett MixControl 1.6.1 (HKLM-x32\...\Saffire USB 26_is1) (Version: 1.6.1 - Focusrite Audio Engineering Limited)
Sigmund 1.1.2 (64bit) (HKLM\...\{F130BECD-2276-4465-8ACD-7C8D32FE830D}) (Version: 1.1.2.0 - D16 Group Audio Software)
SiSoftware Sandra Lite 2013a (HKLM\...\{C3113E55-7BCB-4de3-8EBF-60E6CE6B2396}_is1) (Version: 19.19.2013.1 - SiSoftware)
Skype™ 7.18 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.18.112 - Skype Technologies S.A.)
Sonnox Oxford Inflator Native VST v1.5.1 (HKLM-x32\...\Sonnox Oxford Inflator Native VST_is1) (Version: - Team AiR 2007)
Sony PC Companion 2.10.228 (HKLM-x32\...\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}) (Version: 2.10.228 - Sony)
Spire-1.1 Plug-In (x64) (HKLM\...\{A08E471A-3749-462C-8729-03516E3746B6}) (Version: 1.1.1.0 - Reveal Sound Ltd.)
Sugar Bytes Effectrix 1.4.2 (HKLM\...\Effectrix_is1) (Version: 1.4.2 - Sugar Bytes)
Sylenth1 v2.21 (HKLM\...\Sylenth1_is1) (Version: - )
Synthation Vanguard Essentials Soundbank (HKLM-x32\...\Synthation Vanguard Essentials Soundbank) (Version: - )
SynthMaster 2.5 VST/VSTi (x64) version 2.5.3.109 (HKLM-x32\...\{724D6BD0-88D0-4354-A124-6EE4D36E9EF2}_is1) (Version: 2.5.3.109 - KV331 Audio)
Syntorus 1.4.0 (64bit) (HKLM\...\{6E3E13E9-F55B-4A91-9D46-9766BF057289}) (Version: 1.4.0.0 - D16 Group Audio Software)
The KMPlayer (remove only) (HKLM-x32\...\The KMPlayer) (Version: - )
Tone2 AkustiX Enhancer v1.0 (HKLM-x32\...\Tone2 AkustiX Enhancer_is1) (Version: - Tone2)
Tone2 AkustiX Enhancer v1.0 X64 (HKLM-x32\...\Tone2 AkustiX Enhancer X64_is1) (Version: - Tone2)
Tone2 Warmverb multi-FX full (HKLM-x32\...\Tone2 Warmverb multi-FX full_is1) (Version: - Tone2)
Toraverb 1.4.0 (64bit) (HKLM\...\{F915E9F5-13F9-487A-A7E2-AC71EBE31231}) (Version: 1.4.0.0 - D16 Group Audio Software)
TOSHIBA PC Diagnostic Tool (HKLM-x32\...\InstallShield_{2C38F661-26B7-445D-B87D-B53FE2D3BD42}) (Version: 3.2.6 - TOSHIBA Corporation)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.01 - Ghisler Software GmbH)
T-RackS CS version 4.6.0 (HKLM\...\{E931EBCC-55F9-4D67-BA0E-D57C4A893A44}_is1) (Version: 4.6.0 - IK Multimedia)
Ulead VideoStudio 11 (HKLM-x32\...\InstallShield_{F99F9E24-EE2F-47FD-AEB0-FDB82859B5C9}) (Version: 11.0.0.0000 - InterVideo Digital Technology Corporation)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
ValhallaRoom 1.1.0 (HKLM-x32\...\ValhallaRoom_is1) (Version: - )
Venm 1.3 (HKLM-x32\...\Venm) (Version: 1.3 - Goliath Sounds)
VideoStudio (x32 Version: 11.0.0.0000 - InterVideo Digital Technology Corporation) Hidden
VirtualDJ PRO Full (HKLM-x32\...\{4769E972-2E92-49C5-B6F9-465EFD0C4D94}) (Version: 7.0.5 - Atomix Productions)
VLC media player 1.1.7 (HKLM-x32\...\VLC media player) (Version: 1.1.7 - VideoLAN)
Voxengo SPAN Plus (HKLM\...\Voxengo SPAN Plus_is1) (Version: 1.2.2 - Voxengo)
Wave Arts MasterVerb (HKLM-x32\...\Wave Arts MasterVerb) (Version: 5.30 - Wave Arts, Inc.)
Waves Complete V9r25 (HKLM-x32\...\{93000001-C561-4E32-99EB-3C5AD3683A70}) (Version: 9.3.25 - Waves)
Waves Complete VST RTAS TDM v7.1.16 (HKLM-x32\...\Waves Complete v7_is1) (Version: - )
WinRAR 4.20 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
Wolfram Mathematica 9 (M-WIN-L 9.0.1 4055652) (HKLM\...\M-WIN-L 9.0.1 4055652_is1) (Version: 9.0.1 - Wolfram Research, Inc.)
WOW (HKLM-x32\...\WOW) (Version: 1.0 - Sugar Bytes)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {27D1D197-4CAD-42B9-8607-4AE97E8A3633} - System32\Tasks\AdobeAAMUpdater-1.0-Michal-PC-Michal => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04] (Adobe Systems Incorporated)
Task: {371936FC-DD1B-4FD8-AC3E-E7419870A8C8} - System32\Tasks\SnH5f2e6QugB7YV => C:\Users\Michal\AppData\Roaming\SnH5f2e6QugB7YV.exe <==== ATTENTION
Task: {3911452D-60C7-4707-96DA-C1606EABE58C} - System32\Tasks\{B69C9891-496C-485C-8D83-5D3B715396DD} => pcalua.exe -a C:\Users\Michal\AppData\Roaming\istartsurf\UninstallManager.exe -c -ptid=icp
Task: {501F4D7F-D508-4F41-A5DE-BEE79E96C91D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27] (Google Inc.)
Task: {59F52945-277A-465F-A69F-2B946085FC77} - System32\Tasks\{CFA5F9A7-59AA-4862-A1C8-4996876D37D4} => pcalua.exe -a E:\Autorun.exe -d E:\
Task: {5B095833-664D-4F71-844B-98414A5D1B01} - System32\Tasks\{EEB61295-D7CD-444E-98D8-295832721AA9} => pcalua.exe -a "C:\Users\Michal\Downloads\Cool Edit Pro 2.1 with Crack\Crack\cep2reg.exe" -d "C:\Users\Michal\Downloads\Cool Edit Pro 2.1 with Crack\Crack"
Task: {5C08D694-3D38-4DBD-942B-24B9905810C7} - System32\Tasks\{3B118DD5-2FF1-41AB-8097-90FEDE2D5B23} => pcalua.exe -a "C:\Users\Michal\Downloads\Waves - Complete 9r25 VST x86 x64\Waves_Complete_V9r25.exe" -d "C:\Users\Michal\Downloads\Waves - Complete 9r25 VST x86 x64"
Task: {7D4B50FF-F967-4F5E-8717-418E687DE791} - System32\Tasks\{7A3274CC-5A30-4A65-9B43-EC9409EC7EC0} => pcalua.exe -a E:\setup.exe -d E:\
Task: {87486ED0-6EAB-476B-8826-F70E6A1C4339} - System32\Tasks\dankdoss => C:\Program Files\Common Files\azhbfpwy\539dc24wyitwl.exe <==== ATTENTION
Task: {94B71EC3-1DBE-4EEE-8ABC-1CD20BFD4FBA} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-04-22] (Adobe Systems Incorporated)
Task: {A532F420-E3E9-41E1-8657-3F6EB45B2079} - System32\Tasks\McAfee Remediation (Prepare) => C:\Program Files\Common Files\AV\McAfee Anti-Virus And Anti-Spyware\upgrade.exe [2016-03-31] (McAfee, Inc.)
Task: {B1971EB7-AFBA-418F-80D5-3365F4950DA7} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-05-13] (Adobe Systems Incorporated)
Task: {DD3AED84-FA44-44A2-9BE4-CE7A70B9E89B} - System32\Tasks\wj325D9i => C:\Users\Michal\AppData\Roaming\wj325D9i.exe <==== ATTENTION
Task: {EA079474-A7A0-44AE-BFB2-1935833F43F0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27] (Google Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\SnH5f2e6QugB7YV.job => C:\Users\Michal\AppData\Roaming\SnH5f2e6QugB7YV.exe <==== ATTENTION
Task: C:\Windows\Tasks\wj325D9i.job => C:\Users\Michal\AppData\Roaming\wj325D9i.exe <==== ATTENTION

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)
Nahoru
altrok
Moderátor
Moderátor
Příspěvky: 7322
Registrován: 15 lis 2012 22:26
Bydliště: Znojmo

Re: Pomalý notebook

#8 Příspěvek od altrok »

:arrow: Prvni disk (500GB) ma podezrele sektory - o to hur, ze na ne upozornil i operacni system. Doporucuji castejsi zalohovani.


:arrow: Velikost plochy by nemela presahovat 200 MB. Zpomaluje se pak start i samotny chod celeho PC. Doporucuji hlavne velke soubory a slozky premistit napr. do Dokumentu a na plochu umistit pouze zastupce.


  • Do Poznamkoveho bloku (Start -> spustit -> notepad) zkopirujte obsah bileho pole
  • ulozte na plochu jako fixlist (Typ souboru: Textovy dokument)
  • znovu spustte FRST a kliknete na Fix
  • po restartu bude na plose ulozen fixlog, jehoz obsah vlozte do pristi odpovedi

    Kód: Vybrat vše

    Start
CreateRestorePoint:
CloseProcesses:
File: C:\Windows\System32\LogiLDA.dll
File: C:\Program Files\JBridge\auxhost.exe
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [gmsd_re_021010082] => [X]
HKU\S-1-5-21-2581228697-3019390296-4131092421-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-2581228697-3019390296-4131092421-1000\...\MountPoints2: {a5b664a5-aa55-11e2-8524-88ae1d527f02} - F:\Startme.exe
HKU\S-1-5-21-2581228697-3019390296-4131092421-1000\...\MountPoints2: {bab3ac1f-93cd-11e2-ad5f-88ae1d527f02} - E:\setup.exe
HKU\S-1-5-21-2581228697-3019390296-4131092421-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://%66%65%65%64.%73%6F%6E%69%63-%73 ... cTHyarf&q={searchTerms}
HKU\S-1-5-21-2581228697-3019390296-4131092421-1000\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://%66%65%65%64.%73%6F%6E%69%63-%73 ... cTHyarf&q={searchTerms}
HKU\S-1-5-21-2581228697-3019390296-4131092421-1000\Software\Microsoft\Internet Explorer\Main,SearchAssistant = hxxp://%66%65%65%64.%73%6F%6E%69%63-%73 ... cTHyarf&q={searchTerms}
BHO-x32: Deal Maverick -> {40d79e05-f304-4d9e-840e-73a30a57c838} -> C:\Program Files (x86)\Deal Maverick\Extensions\40d79e05-f304-4d9e-840e-73a30a57c838.dll => No File
C:\Program Files (x86)\Deal Maverick
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe hxxp://www.istartsurf.com/?type=sc&ts=1 ... CNAF8CNAF8
FF DefaultSearchEngine: findit
FF SelectedSearchEngine: mystartsearch
FF Homepage: hxxp://www.mystartsearch.com/?type=hp&t ... CNAF8CNAF8
File: C:\Program Files (x86)\1st Atomic Time\1stAtomicTimeAdjustTimeSvc.exe
File: C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2013a\RpcAgentSrv.exe
2016-06-15 11:07 - 2016-06-15 11:08 - 04669119 _____ C:\Users\Michal\Downloads\CrystalDiskInfo6_7_5.zip
2016-06-15 10:23 - 2016-06-15 10:27 - 00000000 ____D C:\AdwCleaner
2016-06-15 10:22 - 2016-06-15 10:22 - 03703360 _____ C:\Users\Michal\Downloads\adwcleaner_5.200.exe
2016-06-14 22:26 - 2016-06-14 22:50 - 00000000 ____D C:\Program Files\trend micro
2016-06-14 22:26 - 2016-06-14 22:26 - 00000000 ____D C:\rsit
2016-06-14 22:24 - 2016-06-14 22:25 - 01222144 _____ C:\Users\Michal\Downloads\RSITx64.exe
2016-05-29 01:27 - 2015-09-17 12:54 - 00217600 _____ C:\Users\Michal\Desktop\keygen.exe
Folder: C:\Users\Michal\AppData\Local\tkdata
Folder: C:\ProgramData\ValhallaRoom
File: C:\Program Files\in_BuzzWinampBridge.dll
2015-09-07 15:11 - 2015-09-07 15:11 - 0000187 _____ () C:\Users\Michal\AppData\Local\Qvojoplus.exe.config
Task: {371936FC-DD1B-4FD8-AC3E-E7419870A8C8} - System32\Tasks\SnH5f2e6QugB7YV => C:\Users\Michal\AppData\Roaming\SnH5f2e6QugB7YV.exe <==== ATTENTION
C:\Users\Michal\AppData\Roaming\SnH5f2e6QugB7YV.exe
Task: {3911452D-60C7-4707-96DA-C1606EABE58C} - System32\Tasks\{B69C9891-496C-485C-8D83-5D3B715396DD} => pcalua.exe -a C:\Users\Michal\AppData\Roaming\istartsurf\UninstallManager.exe -c -ptid=icp
C:\Users\Michal\AppData\Roaming\istartsurf
Task: {59F52945-277A-465F-A69F-2B946085FC77} - System32\Tasks\{CFA5F9A7-59AA-4862-A1C8-4996876D37D4} => pcalua.exe -a E:\Autorun.exe -d E:\
Task: {5B095833-664D-4F71-844B-98414A5D1B01} - System32\Tasks\{EEB61295-D7CD-444E-98D8-295832721AA9} => pcalua.exe -a "C:\Users\Michal\Downloads\Cool Edit Pro 2.1 with Crack\Crack\cep2reg.exe" -d "C:\Users\Michal\Downloads\Cool Edit Pro 2.1 with Crack\Crack"
C:\Users\Michal\Downloads\Cool Edit Pro 2.1 with Crack
Task: {5C08D694-3D38-4DBD-942B-24B9905810C7} - System32\Tasks\{3B118DD5-2FF1-41AB-8097-90FEDE2D5B23} => pcalua.exe -a "C:\Users\Michal\Downloads\Waves - Complete 9r25 VST x86 x64\Waves_Complete_V9r25.exe" -d "C:\Users\Michal\Downloads\Waves - Complete 9r25 VST x86 x64"
Task: {7D4B50FF-F967-4F5E-8717-418E687DE791} - System32\Tasks\{7A3274CC-5A30-4A65-9B43-EC9409EC7EC0} => pcalua.exe -a E:\setup.exe -d E:\
Task: {87486ED0-6EAB-476B-8826-F70E6A1C4339} - System32\Tasks\dankdoss => C:\Program Files\Common Files\azhbfpwy\539dc24wyitwl.exe <==== ATTENTION
File: C:\Program Files\Common Files\azhbfpwy\539dc24wyitwl.exe
C:\Program Files\Common Files\azhbfpwy
Task: {DD3AED84-FA44-44A2-9BE4-CE7A70B9E89B} - System32\Tasks\wj325D9i => C:\Users\Michal\AppData\Roaming\wj325D9i.exe <==== ATTENTION
C:\Users\Michal\AppData\Roaming\wj325D9i.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\SnH5f2e6QugB7YV.job => C:\Users\Michal\AppData\Roaming\SnH5f2e6QugB7YV.exe <==== ATTENTION
Task: C:\Windows\Tasks\wj325D9i.job => C:\Users\Michal\AppData\Roaming\wj325D9i.exe <==== ATTENTION
CMD: dir "C:\PROGRA~1"
CMD: dir "C:\PROGRA~2"
CMD: dir "C:\PROGRA~3"
CMD: dir "%localappdata%"
CMD: dir "%appdata%"
Hosts:
EmptyTemp:
End
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Nahoru
maicuss
Návštěvník
Návštěvník
Příspěvky: 65
Registrován: 29 čer 2011 08:15

Re: Pomalý notebook

#9 Příspěvek od maicuss »

Fixlog:


Fix result of Farbar Recovery Scan Tool (x64) Version:13-06-2016
Ran by Michal (2016-06-15 12:22:00) Run:1
Running from C:\Users\Michal\Desktop
Loaded Profiles: Michal (Available Profiles: Michal)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CreateRestorePoint:
CloseProcesses:
File: C:\Windows\System32\LogiLDA.dll
File: C:\Program Files\JBridge\auxhost.exe
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [gmsd_re_021010082] => [X]
HKU\S-1-5-21-2581228697-3019390296-4131092421-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-2581228697-3019390296-4131092421-1000\...\MountPoints2: {a5b664a5-aa55-11e2-8524-88ae1d527f02} - F:\Startme.exe
HKU\S-1-5-21-2581228697-3019390296-4131092421-1000\...\MountPoints2: {bab3ac1f-93cd-11e2-ad5f-88ae1d527f02} - E:\setup.exe
HKU\S-1-5-21-2581228697-3019390296-4131092421-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://%66%65%65%64.%73%6F%6E%69%63-%73 ... cTHyarf&q={searchTerms}
HKU\S-1-5-21-2581228697-3019390296-4131092421-1000\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://%66%65%65%64.%73%6F%6E%69%63-%73 ... cTHyarf&q={searchTerms}
HKU\S-1-5-21-2581228697-3019390296-4131092421-1000\Software\Microsoft\Internet Explorer\Main,SearchAssistant = hxxp://%66%65%65%64.%73%6F%6E%69%63-%73 ... cTHyarf&q={searchTerms}
BHO-x32: Deal Maverick -> {40d79e05-f304-4d9e-840e-73a30a57c838} -> C:\Program Files (x86)\Deal Maverick\Extensions\40d79e05-f304-4d9e-840e-73a30a57c838.dll => No File
C:\Program Files (x86)\Deal Maverick
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe hxxp://www.istartsurf.com/?type=sc&ts=1 ... CNAF8CNAF8
FF DefaultSearchEngine: findit
FF SelectedSearchEngine: mystartsearch
FF Homepage: hxxp://www.mystartsearch.com/?type=hp&t ... CNAF8CNAF8
File: C:\Program Files (x86)\1st Atomic Time\1stAtomicTimeAdjustTimeSvc.exe
File: C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2013a\RpcAgentSrv.exe
2016-06-15 11:07 - 2016-06-15 11:08 - 04669119 _____ C:\Users\Michal\Downloads\CrystalDiskInfo6_7_5.zip
2016-06-15 10:23 - 2016-06-15 10:27 - 00000000 ____D C:\AdwCleaner
2016-06-15 10:22 - 2016-06-15 10:22 - 03703360 _____ C:\Users\Michal\Downloads\adwcleaner_5.200.exe
2016-06-14 22:26 - 2016-06-14 22:50 - 00000000 ____D C:\Program Files\trend micro
2016-06-14 22:26 - 2016-06-14 22:26 - 00000000 ____D C:\rsit
2016-06-14 22:24 - 2016-06-14 22:25 - 01222144 _____ C:\Users\Michal\Downloads\RSITx64.exe
2016-05-29 01:27 - 2015-09-17 12:54 - 00217600 _____ C:\Users\Michal\Desktop\keygen.exe
Folder: C:\Users\Michal\AppData\Local\tkdata
Folder: C:\ProgramData\ValhallaRoom
File: C:\Program Files\in_BuzzWinampBridge.dll
2015-09-07 15:11 - 2015-09-07 15:11 - 0000187 _____ () C:\Users\Michal\AppData\Local\Qvojoplus.exe.config
Task: {371936FC-DD1B-4FD8-AC3E-E7419870A8C8} - System32\Tasks\SnH5f2e6QugB7YV => C:\Users\Michal\AppData\Roaming\SnH5f2e6QugB7YV.exe <==== ATTENTION
C:\Users\Michal\AppData\Roaming\SnH5f2e6QugB7YV.exe
Task: {3911452D-60C7-4707-96DA-C1606EABE58C} - System32\Tasks\{B69C9891-496C-485C-8D83-5D3B715396DD} => pcalua.exe -a C:\Users\Michal\AppData\Roaming\istartsurf\UninstallManager.exe -c -ptid=icp
C:\Users\Michal\AppData\Roaming\istartsurf
Task: {59F52945-277A-465F-A69F-2B946085FC77} - System32\Tasks\{CFA5F9A7-59AA-4862-A1C8-4996876D37D4} => pcalua.exe -a E:\Autorun.exe -d E:\
Task: {5B095833-664D-4F71-844B-98414A5D1B01} - System32\Tasks\{EEB61295-D7CD-444E-98D8-295832721AA9} => pcalua.exe -a "C:\Users\Michal\Downloads\Cool Edit Pro 2.1 with Crack\Crack\cep2reg.exe" -d "C:\Users\Michal\Downloads\Cool Edit Pro 2.1 with Crack\Crack"
C:\Users\Michal\Downloads\Cool Edit Pro 2.1 with Crack
Task: {5C08D694-3D38-4DBD-942B-24B9905810C7} - System32\Tasks\{3B118DD5-2FF1-41AB-8097-90FEDE2D5B23} => pcalua.exe -a "C:\Users\Michal\Downloads\Waves - Complete 9r25 VST x86 x64\Waves_Complete_V9r25.exe" -d "C:\Users\Michal\Downloads\Waves - Complete 9r25 VST x86 x64"
Task: {7D4B50FF-F967-4F5E-8717-418E687DE791} - System32\Tasks\{7A3274CC-5A30-4A65-9B43-EC9409EC7EC0} => pcalua.exe -a E:\setup.exe -d E:\
Task: {87486ED0-6EAB-476B-8826-F70E6A1C4339} - System32\Tasks\dankdoss => C:\Program Files\Common Files\azhbfpwy\539dc24wyitwl.exe <==== ATTENTION
File: C:\Program Files\Common Files\azhbfpwy\539dc24wyitwl.exe
C:\Program Files\Common Files\azhbfpwy
Task: {DD3AED84-FA44-44A2-9BE4-CE7A70B9E89B} - System32\Tasks\wj325D9i => C:\Users\Michal\AppData\Roaming\wj325D9i.exe <==== ATTENTION
C:\Users\Michal\AppData\Roaming\wj325D9i.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\SnH5f2e6QugB7YV.job => C:\Users\Michal\AppData\Roaming\SnH5f2e6QugB7YV.exe <==== ATTENTION
Task: C:\Windows\Tasks\wj325D9i.job => C:\Users\Michal\AppData\Roaming\wj325D9i.exe <==== ATTENTION
CMD: dir "C:\PROGRA~1"
CMD: dir "C:\PROGRA~2"
CMD: dir "C:\PROGRA~3"
CMD: dir "%localappdata%"
CMD: dir "%appdata%"
Hosts:
EmptyTemp:
End
*****************

Restore point was successfully created.
Processes closed successfully.

========================= File: C:\Windows\System32\LogiLDA.dll ========================

File is digitally signed
MD5: AC012AD7539A8F9FFD31CF80BAA06CC7
Creation and modification date: 2012-09-20 16:02 - 2012-09-20 16:02
Size: 1832760
Attributes: ----A
Company Name: Logitech, Inc.
Internal Name: LDA (x64 Version)
Original Name: LogiLDA.dll
Product: Logitech Download Assistant
Description: Logitech Download Assistant
File Version: 1.10.77.0
Product Version: 1.10.77.0
Copyright: Copyright © 2010-2012 Logitech. All Rights Reserved

====== End of File: ======


========================= File: C:\Program Files\JBridge\auxhost.exe ========================

File not signed
MD5: 095B7EE9F67B6536FD325F12F7FE02A2
Creation and modification date: 2013-11-22 05:13 - 2013-11-22 05:13
Size: 0240640
Attributes: ----A
Company Name:
Internal Name:
Original Name:
Product:
Description:
File Version:
Product Version:
Copyright:

====== End of File: ======

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeAAMUpdater-1.0 => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\GrooveMonitor => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SwitchBoard => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\AdobeCS6ServiceManager => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\gmsd_re_021010082 => value removed successfully
HKU\S-1-5-21-2581228697-3019390296-4131092421-1000\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeBridge => value removed successfully
"HKU\S-1-5-21-2581228697-3019390296-4131092421-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a5b664a5-aa55-11e2-8524-88ae1d527f02}" => key removed successfully
HKCR\CLSID\{a5b664a5-aa55-11e2-8524-88ae1d527f02} => key not found.
"HKU\S-1-5-21-2581228697-3019390296-4131092421-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{bab3ac1f-93cd-11e2-ad5f-88ae1d527f02}" => key removed successfully
HKCR\CLSID\{bab3ac1f-93cd-11e2-ad5f-88ae1d527f02} => key not found.
HKU\S-1-5-21-2581228697-3019390296-4131092421-1000\Software\Microsoft\Internet Explorer\Main\\Search Page => value restored successfully
HKU\S-1-5-21-2581228697-3019390296-4131092421-1000\Software\Microsoft\Internet Explorer\Main\\Search Bar => value removed successfully
HKU\S-1-5-21-2581228697-3019390296-4131092421-1000\Software\Microsoft\Internet Explorer\Main\\SearchAssistant => value removed successfully
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{40d79e05-f304-4d9e-840e-73a30a57c838}" => key removed successfully
"HKCR\Wow6432Node\CLSID\{40d79e05-f304-4d9e-840e-73a30a57c838}" => key removed successfully
"C:\Program Files (x86)\Deal Maverick" => not found.
HKLM\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command\\Default => value restored successfully
Firefox DefaultSearchEngine removed successfully
Firefox SelectedSearchEngine removed successfully
Firefox "homepage" removed successfully

========================= File: C:\Program Files (x86)\1st Atomic Time\1stAtomicTimeAdjustTimeSvc.exe ========================

File not signed
MD5: 368230CD265E7017D00A39A857C68A95
Creation and modification date: 2014-03-25 11:43 - 2009-06-19 04:38
Size: 0467968
Attributes: ----A
Company Name: Green Parrots Software
Internal Name: AdjustTimeSvc.exe
Original Name: AdjustTimeSvc.exe
Product: 1st Clock
Description: Adjust Time Service - Allows 1st Clock to adjust system time
File Version: 1.0.0.1
Product Version: 3.01
Copyright: Copyright (C) 2007, Green Parrots Software

====== End of File: ======


========================= File: C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2013a\RpcAgentSrv.exe ========================

File not signed
MD5: 40CBBCAFFDCFD3661119A2D3F892820C
Creation and modification date: 2013-03-19 20:10 - 2008-12-07 12:27
Size: 0068760
Attributes: ----A
Company Name: SiSoftware
Internal Name: SANDRA.AGENT.SRV
Original Name: SANDRA.AGENT.SRV
Product: SiSoftware Sandra 2013
Description: SiSoftware Deployment Agent Service (NT)(Unicode)
File Version: 19.19.2013.1
Product Version: 19.19.2013.1
Copyright: Copyright © 1995-Present SiSoftware. All rights reserved.

====== End of File: ======

C:\Users\Michal\Downloads\CrystalDiskInfo6_7_5.zip => moved successfully
C:\AdwCleaner => moved successfully
C:\Users\Michal\Downloads\adwcleaner_5.200.exe => moved successfully
C:\Program Files\trend micro => moved successfully
C:\rsit => moved successfully
C:\Users\Michal\Downloads\RSITx64.exe => moved successfully
C:\Users\Michal\Desktop\keygen.exe => moved successfully

========================= Folder: C:\Users\Michal\AppData\Local\tkdata ========================

2016-04-01 20:01 - 2016-06-15 11:18 - 0007168 _____ () C:\Users\Michal\AppData\Local\tkdata\Cookies
2016-04-01 20:01 - 2016-06-15 11:18 - 0000000 _____ () C:\Users\Michal\AppData\Local\tkdata\Cookies-journal
2016-04-01 20:01 - 2016-06-15 12:22 - 0045056 _____ () C:\Users\Michal\AppData\Local\tkdata\data_0
2016-04-01 20:01 - 2016-06-15 12:22 - 0270336 _____ () C:\Users\Michal\AppData\Local\tkdata\data_1
2016-04-01 20:01 - 2016-06-08 02:31 - 1056768 _____ () C:\Users\Michal\AppData\Local\tkdata\data_2
2016-04-01 20:01 - 2016-06-15 12:22 - 4202496 _____ () C:\Users\Michal\AppData\Local\tkdata\data_3
2016-04-01 20:02 - 2016-04-01 20:02 - 0420865 _____ () C:\Users\Michal\AppData\Local\tkdata\f_000002
2016-05-19 22:06 - 2016-05-19 22:06 - 0021011 _____ () C:\Users\Michal\AppData\Local\tkdata\f_000006
2016-06-15 11:18 - 2016-06-15 11:18 - 0489590 _____ () C:\Users\Michal\AppData\Local\tkdata\f_000009
2016-05-12 20:27 - 2016-05-12 20:28 - 31614044 _____ () C:\Users\Michal\AppData\Local\tkdata\ChromeDWriteFontCache
2016-04-01 20:01 - 2016-04-01 20:01 - 0524656 _____ () C:\Users\Michal\AppData\Local\tkdata\index
2016-04-01 20:01 - 2016-06-15 12:22 - 0009032 _____ () C:\Users\Michal\AppData\Local\tkdata\log.txt
2016-04-01 20:01 - 2016-06-15 11:18 - 0015360 _____ () C:\Users\Michal\AppData\Local\tkdata\QuotaManager
2016-04-01 20:01 - 2016-06-15 11:18 - 0000000 _____ () C:\Users\Michal\AppData\Local\tkdata\QuotaManager-journal
2016-05-12 20:27 - 2016-06-15 12:22 - 0131072 _____ () C:\Users\Michal\AppData\Local\tkdata\Visited Links
2016-04-01 20:01 - 2016-04-01 20:01 - 0000000 ____D () C:\Users\Michal\AppData\Local\tkdata\databases
2016-04-01 20:01 - 2016-05-12 20:27 - 0007168 _____ () C:\Users\Michal\AppData\Local\tkdata\databases\Databases.db
2016-04-01 20:01 - 2016-05-12 20:27 - 0000000 _____ () C:\Users\Michal\AppData\Local\tkdata\databases\Databases.db-journal
2016-04-01 20:01 - 2016-04-01 20:01 - 0000000 ____D () C:\Users\Michal\AppData\Local\tkdata\downloads
2016-04-01 20:01 - 2016-04-01 20:01 - 0000000 ____D () C:\Users\Michal\AppData\Local\tkdata\IndexedDB
2016-04-01 20:01 - 2016-06-15 11:17 - 0000000 ____D () C:\Users\Michal\AppData\Local\tkdata\IndexedDB\file__0.indexeddb.leveldb
2016-04-01 20:01 - 2016-06-15 11:18 - 0004891 _____ () C:\Users\Michal\AppData\Local\tkdata\IndexedDB\file__0.indexeddb.leveldb\000003.log
2016-04-01 20:01 - 2016-04-01 20:01 - 0000016 _____ () C:\Users\Michal\AppData\Local\tkdata\IndexedDB\file__0.indexeddb.leveldb\CURRENT
2016-04-01 20:01 - 2016-04-01 20:01 - 0000000 _____ () C:\Users\Michal\AppData\Local\tkdata\IndexedDB\file__0.indexeddb.leveldb\LOCK
2016-04-01 20:01 - 2016-06-15 11:18 - 0000312 _____ () C:\Users\Michal\AppData\Local\tkdata\IndexedDB\file__0.indexeddb.leveldb\LOG
2016-04-01 20:01 - 2016-06-07 10:10 - 0000312 _____ () C:\Users\Michal\AppData\Local\tkdata\IndexedDB\file__0.indexeddb.leveldb\LOG.old
2016-04-01 20:01 - 2016-04-01 20:01 - 0000023 _____ () C:\Users\Michal\AppData\Local\tkdata\IndexedDB\file__0.indexeddb.leveldb\MANIFEST-000001
2016-04-01 20:01 - 2016-04-01 20:02 - 0000000 ____D () C:\Users\Michal\AppData\Local\tkdata\Local Storage
2016-04-01 20:02 - 2016-06-15 11:18 - 0006144 _____ () C:\Users\Michal\AppData\Local\tkdata\Local Storage\file__0.localstorage
2016-04-01 20:02 - 2016-06-15 11:18 - 0000000 _____ () C:\Users\Michal\AppData\Local\tkdata\Local Storage\file__0.localstorage-journal
2016-04-07 08:32 - 2016-06-09 19:44 - 0000000 ____D () C:\Users\Michal\AppData\Local\tkdata\logs
2016-04-12 08:33 - 2016-04-12 08:33 - 0000165 _____ () C:\Users\Michal\AppData\Local\tkdata\logs\2016-4-12-SDK.log
2016-04-17 17:47 - 2016-04-17 17:47 - 0000521 _____ () C:\Users\Michal\AppData\Local\tkdata\logs\2016-4-17-SDK.log
2016-04-23 12:19 - 2016-04-23 12:19 - 0000165 _____ () C:\Users\Michal\AppData\Local\tkdata\logs\2016-4-23-SDK.log
2016-04-28 12:19 - 2016-04-28 12:20 - 0000689 _____ () C:\Users\Michal\AppData\Local\tkdata\logs\2016-4-28-SDK.log
2016-04-07 08:33 - 2016-04-07 08:33 - 0000521 _____ () C:\Users\Michal\AppData\Local\tkdata\logs\2016-4-7-SDK.log
2016-05-13 22:58 - 2016-05-13 22:59 - 0000518 _____ () C:\Users\Michal\AppData\Local\tkdata\logs\2016-5-13-SDK.log
2016-05-08 15:47 - 2016-05-08 15:47 - 0000521 _____ () C:\Users\Michal\AppData\Local\tkdata\logs\2016-5-8-SDK.log
2016-06-09 19:44 - 2016-06-09 19:44 - 0000172 _____ () C:\Users\Michal\AppData\Local\tkdata\logs\2016-6-9-SDK.log
2016-07-22 11:09 - 2016-07-22 11:09 - 0000165 _____ () C:\Users\Michal\AppData\Local\tkdata\logs\2016-7-22-SDK.log

====== End of Folder: ======


========================= Folder: C:\ProgramData\ValhallaRoom ========================

2015-08-27 10:07 - 2016-06-15 10:41 - 0000692 _____ () C:\ProgramData\ValhallaRoom\ValhallaRoom.settings

====== End of Folder: ======


========================= File: C:\Program Files\in_BuzzWinampBridge.dll ========================

File not signed
MD5: E0A07AE2810B5FD5499809A954C84051
Creation and modification date: 2001-10-30 21:44 - 2001-10-30 21:44
Size: 0065536
Attributes: ----A
Company Name:
Internal Name:
Original Name:
Product:
Description:
File Version:
Product Version:
Copyright:

====== End of File: ======

C:\Users\Michal\AppData\Local\Qvojoplus.exe.config => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{371936FC-DD1B-4FD8-AC3E-E7419870A8C8}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{371936FC-DD1B-4FD8-AC3E-E7419870A8C8}" => key removed successfully
C:\Windows\System32\Tasks\SnH5f2e6QugB7YV => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SnH5f2e6QugB7YV" => key removed successfully
"C:\Users\Michal\AppData\Roaming\SnH5f2e6QugB7YV.exe" => not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3911452D-60C7-4707-96DA-C1606EABE58C}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3911452D-60C7-4707-96DA-C1606EABE58C}" => key removed successfully
C:\Windows\System32\Tasks\{B69C9891-496C-485C-8D83-5D3B715396DD} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{B69C9891-496C-485C-8D83-5D3B715396DD}" => key removed successfully
"C:\Users\Michal\AppData\Roaming\istartsurf" => not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{59F52945-277A-465F-A69F-2B946085FC77}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{59F52945-277A-465F-A69F-2B946085FC77}" => key removed successfully
C:\Windows\System32\Tasks\{CFA5F9A7-59AA-4862-A1C8-4996876D37D4} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{CFA5F9A7-59AA-4862-A1C8-4996876D37D4}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5B095833-664D-4F71-844B-98414A5D1B01}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5B095833-664D-4F71-844B-98414A5D1B01}" => key removed successfully
C:\Windows\System32\Tasks\{EEB61295-D7CD-444E-98D8-295832721AA9} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{EEB61295-D7CD-444E-98D8-295832721AA9}" => key removed successfully
C:\Users\Michal\Downloads\Cool Edit Pro 2.1 with Crack => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5C08D694-3D38-4DBD-942B-24B9905810C7}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5C08D694-3D38-4DBD-942B-24B9905810C7}" => key removed successfully
C:\Windows\System32\Tasks\{3B118DD5-2FF1-41AB-8097-90FEDE2D5B23} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{3B118DD5-2FF1-41AB-8097-90FEDE2D5B23}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7D4B50FF-F967-4F5E-8717-418E687DE791}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7D4B50FF-F967-4F5E-8717-418E687DE791}" => key removed successfully
C:\Windows\System32\Tasks\{7A3274CC-5A30-4A65-9B43-EC9409EC7EC0} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{7A3274CC-5A30-4A65-9B43-EC9409EC7EC0}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{87486ED0-6EAB-476B-8826-F70E6A1C4339}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{87486ED0-6EAB-476B-8826-F70E6A1C4339}" => key removed successfully
C:\Windows\System32\Tasks\dankdoss => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\dankdoss" => key removed successfully

========================= File: C:\Program Files\Common Files\azhbfpwy\539dc24wyitwl.exe ========================

"C:\Program Files\Common Files\azhbfpwy\539dc24wyitwl.exe" => not found.
====== End of File: ======

C:\Program Files\Common Files\azhbfpwy => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{DD3AED84-FA44-44A2-9BE4-CE7A70B9E89B}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DD3AED84-FA44-44A2-9BE4-CE7A70B9E89B}" => key removed successfully
C:\Windows\System32\Tasks\wj325D9i => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\wj325D9i" => key removed successfully
"C:\Users\Michal\AppData\Roaming\wj325D9i.exe" => not found.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully
C:\Windows\Tasks\SnH5f2e6QugB7YV.job => moved successfully
C:\Windows\Tasks\wj325D9i.job => moved successfully

========= dir "C:\PROGRA~1" =========

Svazek v jednotce C nem� ��dnou jmenovku.
S�riov� ��slo svazku je A8C7-BC6E.

V�pis adres��e C:\PROGRA~1

15.06.2016 12:22 <DIR> .
15.06.2016 12:22 <DIR> ..
02.03.2015 21:42 <DIR> Ableton
15.04.2014 11:35 <DIR> Adobe
10.06.2016 18:51 <DIR> Bonjour
19.03.2013 23:43 <DIR> Broadcom
15.06.2016 12:22 <DIR> Common Files
29.05.2016 02:29 <DIR> CyberLink
25.03.2015 01:30 <DIR> D16 Group
20.03.2013 17:45 <DIR> DIFX
05.04.2013 08:17 <DIR> DVD Maker
25.03.2015 02:09 <DIR> eLicenser
28.05.2016 02:30 <DIR> ESET
23.09.2013 18:33 <DIR> Extras
12.08.2015 15:01 <DIR> FabFilter
20.03.2013 17:45 <DIR> Focusrite
25.03.2015 01:39 <DIR> IK Multimedia
01.04.2016 20:00 <DIR> Intel
01.04.2016 20:00 <DIR> Intel Security
15.06.2016 09:53 <DIR> Internet Explorer
30.10.2001 21:44 65�536 in_BuzzWinampBridge.dll
12.08.2015 14:08 <DIR> JBridge
16.03.2016 10:11 <DIR> Maximus
14.07.2009 17:37 <DIR> Microsoft Games
31.07.2013 18:33 <DIR> Microsoft Office
13.01.2016 02:30 <DIR> Microsoft Silverlight
14.07.2009 07:32 <DIR> MSBuild
01.11.2013 23:44 <DIR> Native Instruments
29.05.2016 02:30 <DIR> NewBlue
19.03.2013 22:17 <DIR> NVIDIA Corporation
29.05.2016 02:30 <DIR> proDAD
13.05.2016 00:56 <DIR> Recuva
14.07.2009 07:32 <DIR> Reference Assemblies
19.03.2013 20:10 <DIR> SiSoftware
13.11.2013 22:49 <DIR> Softland
25.03.2015 01:09 <DIR> Sugar Bytes
28.05.2016 16:33 <DIR> TrueKey
28.04.2016 13:19 <DIR> u-he
24.03.2015 21:46 <DIR> Voxengo
16.03.2016 10:12 <DIR> VSTPlugins
24.03.2015 18:37 <DIR> Waves
11.07.2013 23:22 <DIR> Windows Defender
13.05.2016 09:43 <DIR> Windows Journal
05.04.2013 08:17 <DIR> Windows Mail
09.03.2016 10:26 <DIR> Windows Media Player
19.03.2013 13:07 <DIR> Windows NT
05.04.2013 08:17 <DIR> Windows Photo Viewer
05.04.2013 08:17 <DIR> Windows Portable Devices
05.04.2013 08:17 <DIR> Windows Sidebar
20.03.2013 19:26 <DIR> WinRAR
23.09.2013 18:24 <DIR> Wolfram Research
Soubor�: 1, Bajt�: 65�536
Adres���: 50, Voln�ch bajt�: 113�193�713�664

========= End of CMD: =========


========= dir "C:\PROGRA~2" =========

Svazek v jednotce C nem� ��dnou jmenovku.
S�riov� ��slo svazku je A8C7-BC6E.

V�pis adres��e C:\PROGRA~2

15.06.2016 10:27 <DIR> .
15.06.2016 10:27 <DIR> ..
07.09.2015 16:13 <DIR> 1st Atomic Time
02.03.2015 22:45 <DIR> Ableton
07.09.2015 15:54 <DIR> Adobe
08.10.2015 21:12 <DIR> All Video Fixer
28.05.2016 14:52 <DIR> Apple Software Update
06.12.2014 19:36 <DIR> ASIO4ALL v2
25.03.2013 21:26 <DIR> Audacity 1.3 Beta (Unicode)
06.12.2014 20:13 <DIR> AVG
04.05.2013 20:05 <DIR> BlazeVideo
10.06.2016 18:51 <DIR> Bonjour
25.08.2014 22:49 <DIR> Buzz
01.03.2014 17:13 <DIR> Camel Audio
19.03.2013 23:44 <DIR> Cisco
10.06.2016 18:56 <DIR> Common Files
16.01.2015 14:47 <DIR> Comodo
20.05.2013 12:23 <DIR> Convar
03.02.2015 16:45 <DIR> coolpro2
29.05.2016 02:28 <DIR> CyberLink
28.05.2016 14:31 <DIR> CyberLink PowerDirector
11.04.2013 19:01 <DIR> Cycling '74
26.08.2015 12:49 <DIR> D16 Group
23.03.2013 17:22 <DIR> DAEMON Tools Lite
16.01.2015 14:46 <DIR> DsNET Corp
06.12.2014 19:34 <DIR> DSPRobotics
20.05.2013 12:38 <DIR> EaseUS
25.03.2015 02:09 <DIR> eLicenser
29.03.2015 12:27 <DIR> FabFilter
09.12.2014 23:00 <DIR> FL Studio 11
06.12.2014 22:51 <DIR> FL Studio 11.5 alpha
20.03.2013 17:44 <DIR> Focusrite
08.10.2015 21:01 <DIR> FormatFactory
25.05.2013 17:05 <DIR> Foxit Software
12.05.2016 20:34 <DIR> Google
25.03.2015 01:39 <DIR> IK Multimedia
10.06.2016 18:56 <DIR> iLok License Manager
06.12.2014 20:23 <DIR> Image-Line
15.06.2016 09:53 <DIR> Internet Explorer
21.05.2013 22:46 <DIR> iZotope
25.03.2013 21:59 <DIR> Lame For Audacity
28.05.2016 16:35 <DIR> McAfee
26.10.2013 10:44 <DIR> MeldaProduction
06.08.2013 19:03 <DIR> Microsoft Office
13.01.2016 02:30 <DIR> Microsoft Silverlight
31.07.2013 18:35 <DIR> Microsoft Visual Studio
31.07.2013 18:33 <DIR> Microsoft Visual Studio 8
01.08.2013 10:00 <DIR> Microsoft Works
31.07.2013 18:35 <DIR> Microsoft.NET
12.05.2016 20:22 <DIR> Mozilla Firefox
12.05.2016 20:17 <DIR> Mozilla Maintenance Service
31.07.2013 18:35 <DIR> MSBuild
21.03.2013 07:18 <DIR> MSXML 4.0
01.11.2013 17:40 <DIR> Native Instruments
20.03.2013 19:30 <DIR> Nero
29.05.2016 02:30 <DIR> NewBlue
28.05.2016 14:50 <DIR> NSIS Uninstall Information
19.03.2013 21:24 <DIR> NVIDIA Corporation
08.09.2015 22:46 <DIR> Opera
25.05.2013 16:40 <DIR> PDF Recovery Toolbox
27.05.2016 19:36 <DIR> Pinnacle
19.06.2013 21:04 <DIR> Pioneer
19.03.2013 22:39 <DIR> Realtek
25.05.2013 17:14 <DIR> Recovery Toolbox for PDF
14.07.2009 07:32 <DIR> Reference Assemblies
25.03.2015 02:05 <DIR> reFX
25.05.2013 16:59 <DIR> Repair File
08.10.2015 21:06 <DIR> Repair Video Master
15.06.2016 10:07 <DIR> Seznam.cz
15.06.2016 10:07 <DIR> Skype
15.08.2013 13:22 <DIR> Sony
10.04.2013 18:38 <DIR> Spectrasonics
10.04.2013 19:43 <DIR> STEAM
02.03.2014 18:31 <DIR> Steinberg
12.06.2013 19:48 <DIR> Sugar Bytes
04.05.2013 14:59 <DIR> Syncrosoft
26.08.2015 13:29 <DIR> The KMPlayer
19.03.2013 23:28 <DIR> Toshiba
07.09.2013 10:59 <DIR> totalcmd
04.04.2013 00:30 <DIR> u-he
24.09.2015 12:19 <DIR> Ulead Systems
04.05.2013 15:16 <DIR> uTorrent
06.07.2013 02:08 <DIR> VideoLAN
25.04.2013 19:39 <DIR> VirtualDJ
16.03.2016 10:20 <DIR> Vstplugins
12.06.2013 19:00 <DIR> Wave Arts
04.04.2013 00:50 <DIR> Waves
11.07.2013 23:22 <DIR> Windows Defender
05.04.2013 08:17 <DIR> Windows Mail
24.09.2015 12:20 <DIR> Windows Media Components
09.03.2016 10:26 <DIR> Windows Media Player
14.07.2009 07:32 <DIR> Windows NT
05.04.2013 08:17 <DIR> Windows Photo Viewer
05.04.2013 08:17 <DIR> Windows Portable Devices
05.04.2013 08:17 <DIR> Windows Sidebar
Soubor�: 0, Bajt�: 0
Adres���: 95, Voln�ch bajt�: 113�193�697�280

========= End of CMD: =========


========= dir "C:\PROGRA~3" =========

Svazek v jednotce C nem� ��dnou jmenovku.
S�riov� ��slo svazku je A8C7-BC6E.

V�pis adres��e C:\PROGRA~3

02.03.2015 21:41 <DIR> Ableton
08.09.2015 22:40 <DIR> Adobe
27.08.2015 10:11 <DIR> Apple
09.03.2014 13:03 <DIR> ArtsAcoustic
04.05.2013 15:42 <DIR> Arturia
25.03.2015 00:42 <DIR> Audio Damage
25.03.2015 18:50 16 autobk.inc
06.12.2014 19:39 <DIR> AVG
07.04.2016 10:58 <DIR> Avid
04.05.2013 20:05 <DIR> BlazeVideo
01.03.2014 17:13 <DIR> Camel Audio
29.05.2016 02:32 <DIR> CyberLink
25.03.2015 01:29 <DIR> D16 Group
23.03.2013 17:21 <DIR> DAEMON Tools Lite
04.05.2013 15:06 <DIR> eLicenser
28.05.2016 02:30 <DIR> ESET
28.05.2016 14:51 <DIR> install_clap
24.09.2015 12:21 <DIR> InterVideo
06.09.2015 20:39 <DIR> iZotope
22.03.2016 10:42 21�186 LmeUSB.log
22.03.2016 10:42 20�757 LmeZJSW.log
22.03.2016 10:42 21�185 LSDmbTH.log
23.09.2013 18:34 <DIR> Mathematica
20.05.2016 09:18 <DIR> McAfee
26.10.2013 10:45 <DIR> MeldaProduction
15.06.2016 01:42 <DIR> Microsoft Help
26.07.2015 18:28 <DIR> Mozilla
27.03.2013 21:51 <DIR> Native Instruments
20.03.2013 19:30 <DIR> Nero
25.05.2013 22:07 <DIR> Note
19.03.2013 22:21 <DIR> NVIDIA
19.03.2013 21:24 <DIR> NVIDIA Corporation
27.08.2015 10:32 <DIR> PACE
27.08.2015 10:08 <DIR> PACE Anti-Piracy
28.05.2016 14:46 <DIR> Package Cache
27.05.2016 19:25 <DIR> PCTV Systems
27.05.2016 19:36 <DIR> Pinnacle
04.05.2013 20:11 <DIR> Plugins
29.05.2016 02:30 <DIR> proDAD
04.10.2015 19:57 <DIR> regid.1986-12.com.adobe
02.03.2016 23:05 <DIR> Skype
25.03.2015 01:11 <DIR> Sonic Academy
15.08.2013 13:22 <DIR> Sony
04.05.2013 18:21 <DIR> Spectrasonics
29.05.2016 02:22 <DIR> SUPPORTDIR
04.05.2013 14:59 <DIR> Syncrosoft
29.05.2016 02:19 <DIR> Temp
01.04.2016 20:01 <DIR> TrueKey
24.09.2015 12:26 <DIR> Ulead Systems
27.08.2015 10:06 <DIR> Valhalla DSP, LLC
15.06.2016 10:41 <DIR> ValhallaRoom
12.06.2013 19:01 <DIR> Wave Arts
24.03.2015 22:25 <DIR> Waves Audio
29.03.2015 12:47 <DIR> {EC39AE66-34A3-419D-BCB8-29619DA92C37}
Soubor�: 4, Bajt�: 63�144
Adres���: 50, Voln�ch bajt�: 113�193�705�472

========= End of CMD: =========


========= dir "%localappdata%" =========

Svazek v jednotce C nem� ��dnou jmenovku.
S�riov� ��slo svazku je A8C7-BC6E.

V�pis adres��e C:\Users\Michal\AppData\Local

15.06.2016 12:22 <DIR> .
15.06.2016 12:22 <DIR> ..
15.06.2016 10:11 <DIR> Adobe
20.03.2013 19:41 <DIR> Ahead
28.05.2016 14:52 <DIR> Apple
20.05.2013 12:43 <DIR> Apps
06.12.2014 19:37 <DIR> Avg
28.05.2016 13:23 <DIR> Avid
01.04.2016 20:01 <DIR> CEF
07.09.2015 15:32 <DIR> Chromium
20.05.2013 11:51 <DIR> Cimaware
16.01.2015 14:47 <DIR> Comodo
20.05.2013 12:46 <DIR> Corrupt Open Office Salvager
28.05.2016 14:57 <DIR> CyberLink
28.05.2016 11:39 4�608 DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
05.04.2013 22:47 <DIR> Deployment
22.07.2016 04:08 <DIR> Diagnostics
07.04.2016 11:17 <DIR> Downloaded Installations
14.04.2015 13:39 <DIR> ElevatedDiagnostics
20.03.2013 00:41 <DIR> ESET
16.11.2013 11:31 <DIR> Focusrite
15.04.2016 16:25 160�000 GDIPFONTCACHEV1.DAT
07.09.2013 11:04 <DIR> GHISLER
13.09.2015 20:01 <DIR> Google
03.06.2015 20:59 <DIR> GWX
06.04.2016 01:33 <DIR> Macromedia
23.09.2013 18:34 <DIR> Mathematica
24.09.2015 12:04 <DIR> Microsoft
31.08.2013 20:56 <DIR> Microsoft Games
04.04.2013 11:11 <DIR> Microsoft Help
26.07.2015 18:36 <DIR> Mozilla
01.11.2013 23:44 <DIR> Native Instruments
08.09.2015 22:46 <DIR> Opera Software
27.08.2015 10:09 <DIR> PACE Anti-Piracy
10.06.2016 20:00 <DIR> PaceAP
27.05.2016 19:54 <DIR> Pinnacle
19.03.2013 20:09 <DIR> Programs
25.05.2013 17:14 <DIR> Recovery Toolbox for PDF
15.01.2016 19:53 <DIR> Skype
11.10.2014 00:19 <DIR> Sony
01.11.2014 18:38 <DIR> Spectrasonics
15.06.2016 12:22 <DIR> Temp
15.06.2016 11:18 <DIR> tkdata
07.01.2016 00:45 <DIR> VirtualStore
24.09.2015 12:05 <DIR> Windows Live
28.05.2016 16:36 0 {579187CE-D0CE-4CC6-A6D9-0E0CAA807094}
Soubor�: 3, Bajt�: 164�608
Adres���: 43, Voln�ch bajt�: 113�193�701�376

========= End of CMD: =========


========= dir "%appdata%" =========

Svazek v jednotce C nem� ��dnou jmenovku.
S�riov� ��slo svazku je A8C7-BC6E.

V�pis adres��e C:\Users\Michal\AppData\Roaming

15.06.2016 10:27 <DIR> .
15.06.2016 10:27 <DIR> ..
02.03.2015 21:28 <DIR> Ableton
07.09.2015 15:54 <DIR> Adobe
20.03.2013 19:42 <DIR> Ahead
28.05.2016 16:40 <DIR> Apple Computer
13.05.2016 00:41 <DIR> Audacity
06.12.2014 19:38 <DIR> AVG
28.05.2016 14:57 <DIR> CyberLink
11.04.2013 18:58 <DIR> Cycling '74
15.12.2014 18:25 <DIR> Cytomic
25.03.2015 01:31 <DIR> D16 Group
23.03.2013 17:26 <DIR> DAEMON Tools Lite
22.05.2013 00:08 <DIR> dclogs
20.03.2013 00:41 <DIR> ESET
19.03.2015 22:47 <DIR> FabFilter
06.12.2014 19:34 <DIR> FlowStone
25.05.2013 17:05 <DIR> Foxit Software
07.09.2013 11:00 <DIR> GHISLER
25.03.2015 00:52 <DIR> Glitch2
25.08.2014 23:33 <DIR> Goliath Sounds
19.03.2013 13:07 <DIR> Identities
25.03.2015 01:39 <DIR> IK Multimedia
27.08.2015 10:08 <DIR> iZotope
26.08.2015 12:39 32�103�496 IZOTOPE_TRASH_SETUP_V2_00.EXE
19.03.2015 18:36 <DIR> Lexicon PCM Native
15.04.2014 11:22 <DIR> Macromedia
23.09.2013 18:34 <DIR> Mathematica
14.07.2009 17:36 <DIR> Media Center Programs
30.10.2013 12:43 <DIR> MeldaProduction
28.05.2016 10:35 862 MICHAL-PC.MTBF.txt
26.07.2015 18:30 <DIR> Mozilla
25.03.2015 18:50 16 msregsvv.dll
03.01.2016 15:21 1�249�792 msvcr90-ruby191.dll
15.04.2014 11:44 <DIR> NVIDIA
20.05.2013 11:32 <DIR> OfficeRecovery
20.05.2013 11:33 <DIR> OfficeRecovery.3e8447ad
25.03.2015 01:47 <DIR> Ohm Force
08.09.2015 22:46 <DIR> Opera Software
27.08.2015 10:08 <DIR> PACE Anti-Piracy
19.06.2013 21:15 <DIR> Pioneer
16.04.2016 20:21 <DIR> PioneerLog
29.05.2016 02:30 <DIR> proDAD
24.02.2016 17:33 <DIR> RevealSound
19.03.2013 20:39 13�115�392 Sandra.mdb
15.06.2016 10:08 <DIR> Seznam.cz
09.06.2016 18:25 <DIR> Skype
13.11.2013 22:49 <DIR> Softland
15.04.2014 11:48 <DIR> StageManager.BD092818F67280F4B42B04877600987F0111B594.1
02.11.2013 15:15 <DIR> tonespace
19.03.2013 23:28 <DIR> toshiba
21.05.2013 20:21 <DIR> UBot Studio
24.09.2015 15:35 <DIR> Ulead Systems
14.06.2016 12:11 <DIR> uTorrent
27.08.2015 10:08 <DIR> Valhalla DSP, LLC
04.02.2016 23:01 <DIR> ValhallaRoom
01.01.2016 19:33 <DIR> vlc
29.11.2013 00:23 <DIR> Voxengo
24.03.2015 22:25 <DIR> Waves Audio
19.03.2013 20:50 <DIR> WinBatch
20.03.2013 19:26 <DIR> WinRAR
01.04.2016 21:39 <DIR> Xfer
28.05.2016 14:21 776 __AvidCloudManager.log
28.05.2016 13:23 676 __AvidCloudManagerPrevious.log
Soubor�: 7, Bajt�: 46�471�010
Adres���: 57, Voln�ch bajt�: 113�193�697�280

========= End of CMD: =========

C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.
EmptyTemp: => 4.4 GB temporary data Removed.


The system needed a reboot.

==== End of Fixlog 12:26:09 ====
Nahoru
altrok
Moderátor
Moderátor
Příspěvky: 7322
Registrován: 15 lis 2012 22:26
Bydliště: Znojmo

Re: Pomalý notebook

#10 Příspěvek od altrok »

:arrow: Ulozte na plochu MBAR - http://www.bleepingcomputer.com/downloa ... i-rootkit/
  • spuste dvojklikem a extrahujte na plochu
  • kliknete na Next
  • aktualizujte virovou databazi klikem na Update a pokracujte na Next
  • vsechny 3 moznosti nechte zaskrtnute a zvolte Scan (potrva cca 20 minut)
  • zatrhnete vsechny nalezy a take zkontrolujte zatrzitko u Create Restore Point
  • kliknete na Cleanup a souhlaste s restartem - Yes
  • obsah logu ulozene na plose v mbar\mbar-log-2015-mm-dd (hh-mm-ss).txt vlozte do pristi odpovedi
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Nahoru
maicuss
Návštěvník
Návštěvník
Příspěvky: 65
Registrován: 29 čer 2011 08:15

Re: Pomalý notebook

#11 Příspěvek od maicuss »

Malwarebytes Anti-Rootkit BETA 1.9.3.1001
www.malwarebytes.org

Database version:
main: v2016.06.15.03
rootkit: v2016.05.27.01

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.18349
Michal :: MICHAL-PC [administrator]

15.6.2016 13:38:59
mbar-log-2016-06-15 (13-38-59).txt

Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Kernel memory modifications detected. Deep Anti-Rootkit Scan engaged.
Objects scanned: 345048
Time elapsed: 25 minute(s), 35 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

log z mbar:


Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 1
C:\Users\Michal\AppData\Roaming\dclogs (Trojan.StolenData) -> Delete on reboot. [43fcb746a9f042f44f1febd950b3ad53]

Files Detected: 2
C:\Users\Michal\AppData\Roaming\dclogs\2013-05-21-3.dc (Trojan.StolenData) -> Delete on reboot. [43fcb746a9f042f44f1febd950b3ad53]
C:\Users\Michal\AppData\Roaming\dclogs\2013-05-22-4.dc (Trojan.StolenData) -> Delete on reboot. [43fcb746a9f042f44f1febd950b3ad53]

Physical Sectors Detected: 0
(No malicious items detected)

(end)
Nahoru
altrok
Moderátor
Moderátor
Příspěvky: 7322
Registrován: 15 lis 2012 22:26
Bydliště: Znojmo

Re: Pomalý notebook

#12 Příspěvek od altrok »

:arrow: Dejte nove logy FRST.txt a Addition.txt - spustte prosim jen samotny FRST64.exe (bez FRSTLauncheru).
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Nahoru
maicuss
Návštěvník
Návštěvník
Příspěvky: 65
Registrován: 29 čer 2011 08:15

Re: Pomalý notebook

#13 Příspěvek od maicuss »

FRST.txt:



Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:13-06-2016
Ran by Michal (administrator) on MICHAL-PC (15-06-2016 16:07:09)
Running from C:\Users\Michal\Desktop
Loaded Profiles: Michal (Available Profiles: Michal)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(InterVideo Inc.) C:\Program Files (x86)\Common Files\InterVideo\DeviceService\DevSvc.exe
(Nero AG) C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe
(Comodo Security Solutions, Inc.) C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
(Green Parrots Software) C:\Program Files (x86)\1st Atomic Time\1stAtomicTimeAdjustTimeSvc.exe
(Intel(R) Corporation) C:\Program Files\Intel\BCA\pabeSvc64.exe
(McAfee, Inc.) C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe
(Nero AG) C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
(Nero AG) C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(CyberLink) C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(McAfee, Inc.) C:\Program Files\TrueKey\McTkSchedulerService.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\prevhost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM-x32\...\Run: [UVS11 Preload] => C:\Program Files (x86)\Ulead Systems\Ulead VideoStudio 11\uvPL.exe [341488 2007-03-03] (InterVideo Digital Technology Corporation)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKU\S-1-5-21-2581228697-3019390296-4131092421-1000\...\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] => C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe [153136 2007-03-12] (Nero AG)
HKU\S-1-5-21-2581228697-3019390296-4131092421-1000\...\RunOnce: [Application Restart #0] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [941720 2016-06-04] (Google Inc.)
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2013-04-05] (Microsoft Corporation)
Lsa: [Notification Packages] scecli C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{6B465337-8CA0-495A-B6EA-3199A93B973C}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{7CB8F598-2FFE-4FE7-8376-A1C5ACD1216F}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
HKU\S-1-5-21-2581228697-3019390296-4131092421-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/p/?LinkId=619797&pc=UE07&ocid=UE07DHP
HKU\S-1-5-21-2581228697-3019390296-4131092421-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/?pc=UE07&ocid=UE07DHP
SearchScopes: HKLM-x32 -> DefaultScope {ielnksrch} URL =
SearchScopes: HKU\S-1-5-21-2581228697-3019390296-4131092421-1000 -> {F52FCCB0-AE6A-4D91-A0EB-B5846E359936} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_13554
BHO-x32: True Key Helper -> {0F4B8786-5502-4803-8EBC-F652A1153BB6} -> C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-05-17] (Intel Security)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
Toolbar: HKLM-x32 - True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-05-17] (Intel Security)
Toolbar: HKU\S-1-5-21-2581228697-3019390296-4131092421-1000 -> No Name - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - No File

FireFox:
========
FF ProfilePath: C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\shwi2ft9.default
FF NewTab: chrome://quick_start/content/index.html
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_21_0_0_242.dll [2016-05-13] ()
FF Plugin: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll [2013-03-20] (Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_242.dll [2016-05-13] ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin-x32: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll [2013-03-20] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-12] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-12] (Google Inc.)
FF Plugin-x32: @wolfram.com/Mathematica -> C:\Program Files (x86)\Common Files\Wolfram Research\Browser\9.0.1.4055459\npmathplugin.dll [2013-01-24] (Wolfram Research, Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2016-04-23] (Adobe Systems Inc.)
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird => not found
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird => not found

Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com/
CHR Session Restore: Default -> is enabled.
CHR Profile: C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Dokumenty Google) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-06]
CHR Extension: (Disk Google) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-22]
CHR Extension: (Seznam Lištička - Email) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2016-05-30]
CHR Extension: (Seznam Lištička - Slovník) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2016-05-30]
CHR Extension: (YouTube) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25]
CHR Extension: (Vyhledávání Google) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-26]
CHR Extension: (Dokumenty Google offline) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-16]
CHR Extension: (TinEye Reverse Image Search) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\haebnnbpedcbhciplfhjjkbafijpncjl [2014-07-25]
CHR Extension: (Facebook Invite All) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\inmmhkeajgflmokoaaoadgkhhmibjbpj [2016-06-14]
CHR Extension: (Words in your browser) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\jnkjpbjfcjifnnojmcokbkppabkkkhgf [2015-12-11]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-03]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2016-05-30]
CHR Extension: (Gmail) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-29]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 Capture Device Service; C:\Program Files (x86)\Common Files\InterVideo\DeviceService\DevSvc.exe [198168 2007-03-06] (InterVideo Inc.)
R2 DragonUpdater; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2139328 2014-05-27] (Comodo Security Solutions, Inc.)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2520928 2016-03-03] (ESET)
R2 GPAdjustTimeService; C:\Program Files (x86)\1st Atomic Time\1stAtomicTimeAdjustTimeSvc.exe [467968 2009-06-19] (Green Parrots Software) [File not signed]
R2 IntelBCAsvc; C:\Program Files\Intel\BCA\pabeSvc64.exe [3020440 2015-11-25] (Intel(R) Corporation)
S3 NBService; C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe [774144 2007-01-15] (Nero AG) [File not signed]
R3 NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [271920 2007-03-12] (Nero AG)
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [614664 2014-10-20] (CyberLink)
S3 SandraAgentSrv; C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2013a\RpcAgentSrv.exe [68760 2008-12-07] (SiSoftware) [File not signed]
S3 Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [155824 2013-02-04] (Avanquest Software) [File not signed]
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
R2 TrueKey; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [878904 2016-05-16] (McAfee, Inc.)
R2 TrueKeyScheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [15736 2016-05-16] (McAfee, Inc.)
S3 TrueKeyServiceHelper; C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe [86864 2016-05-16] (McAfee, Inc.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
S2 InstallerService; "C:\Program Files\TrueKey\Mcafee.TrueKey.InstallerService.exe" [X]

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 CLMirrorDriver; C:\Windows\System32\DRIVERS\CLMirrorDriver.sys [21264 2015-09-17] (CyberLink)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [264552 2016-04-14] (ESET)
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [186784 2016-04-14] (ESET)
R2 ekbdflt; C:\Windows\System32\DRIVERS\ekbdflt.sys [142976 2016-04-14] (ESET)
R1 epfw; C:\Windows\System32\DRIVERS\epfw.sys [198096 2016-04-14] (ESET)
R1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [53384 2016-04-14] (ESET)
R0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [84800 2016-04-14] (ESET)
R3 ffusb2audio; C:\Windows\System32\DRIVERS\ffusb2audio.sys [127280 2013-09-25] (Focusrite Audio Engineering Limited.)
S3 IT9135BDA; C:\Windows\System32\Drivers\IT9135BDA.sys [113280 2013-05-04] (ITE )
S3 SANDRA; C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2013a\WNt500x64\Sandra.sys [23112 2009-08-07] (SiSoftware)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [834544 2013-03-23] () [File not signed]
U3 a3j9qiqb; C:\Windows\System32\Drivers\a3j9qiqb.sys [0 ] (Microsoft Corporation) <==== ATTENTION (zero byte File/Folder)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-06-15 13:38 - 2016-06-15 15:30 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2016-06-15 13:38 - 2016-06-15 13:38 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-06-15 13:38 - 2016-06-15 13:38 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-06-15 13:36 - 2016-06-15 15:29 - 00000000 ____D C:\Users\Michal\Desktop\mbar
2016-06-15 13:36 - 2016-06-15 13:36 - 00109272 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2016-06-15 13:31 - 2016-06-15 13:33 - 16563352 _____ (Malwarebytes Corp.) C:\Users\Michal\Desktop\mbar-1.09.3.1001.exe
2016-06-15 12:22 - 2016-06-15 12:26 - 00038063 _____ C:\Users\Michal\Desktop\Fixlog.txt
2016-06-15 11:33 - 2016-06-15 11:33 - 00025432 _____ C:\Users\Michal\Desktop\Addition.txt
2016-06-15 11:31 - 2016-06-15 16:07 - 00013760 _____ C:\Users\Michal\Desktop\FRST.txt
2016-06-15 11:31 - 2016-06-15 16:07 - 00000000 ____D C:\FRST
2016-06-15 11:29 - 2016-06-15 11:29 - 00112640 _____ (forum.viry.cz) C:\Users\Michal\Desktop\FRSTLauncher.exe
2016-06-15 11:15 - 2016-06-15 11:15 - 02385920 _____ (Farbar) C:\Users\Michal\Desktop\FRST64.exe
2016-06-15 00:23 - 2016-05-18 18:10 - 00312832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2016-06-15 00:23 - 2016-05-18 18:09 - 00405504 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2016-06-15 00:23 - 2016-05-12 19:15 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2016-06-15 00:23 - 2016-05-12 17:18 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2016-06-15 00:22 - 2016-06-06 18:58 - 00041704 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-06-15 00:22 - 2016-06-06 18:50 - 01204224 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-06-15 00:22 - 2016-06-03 15:05 - 01413120 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-06-15 00:22 - 2016-05-27 15:06 - 00569856 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2016-06-15 00:22 - 2016-05-27 15:06 - 00544256 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-06-15 00:22 - 2016-05-27 15:06 - 00276480 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-06-15 00:22 - 2016-05-27 15:06 - 00265216 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll
2016-06-15 00:22 - 2016-05-22 15:06 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-06-15 00:22 - 2016-05-14 00:15 - 00382184 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2016-06-15 00:22 - 2016-05-14 00:09 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2016-06-15 00:22 - 2016-05-14 00:09 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2016-06-15 00:22 - 2016-05-14 00:09 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2016-06-15 00:22 - 2016-05-14 00:09 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2016-06-15 00:22 - 2016-05-13 23:54 - 00308456 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2016-06-15 00:22 - 2016-05-13 23:50 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2016-06-15 00:22 - 2016-05-13 23:49 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2016-06-15 00:22 - 2016-05-13 23:49 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2016-06-15 00:22 - 2016-05-13 23:27 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2016-06-15 00:22 - 2016-05-12 19:20 - 00154856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-06-15 00:22 - 2016-05-12 19:20 - 00095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2016-06-15 00:22 - 2016-05-12 19:15 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2016-06-15 00:22 - 2016-05-12 19:15 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2016-06-15 00:22 - 2016-05-12 19:15 - 00105472 _____ (Microsoft Corporation) C:\Windows\system32\winipsec.dll
2016-06-15 00:22 - 2016-05-12 19:15 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2016-06-15 00:22 - 2016-05-12 19:15 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2016-06-15 00:22 - 2016-05-12 19:14 - 01464320 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-06-15 00:22 - 2016-05-12 19:14 - 01212928 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-06-15 00:22 - 2016-05-12 19:14 - 00794624 _____ (Microsoft Corporation) C:\Windows\system32\gpsvc.dll
2016-06-15 00:22 - 2016-05-12 19:14 - 00730624 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-06-15 00:22 - 2016-05-12 19:14 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2016-06-15 00:22 - 2016-05-12 19:14 - 00502272 _____ (Microsoft Corporation) C:\Windows\system32\IPSECSVC.DLL
2016-06-15 00:22 - 2016-05-12 19:14 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2016-06-15 00:22 - 2016-05-12 19:14 - 00373760 _____ (Microsoft Corporation) C:\Windows\system32\polstore.dll
2016-06-15 00:22 - 2016-05-12 19:14 - 00344064 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-06-15 00:22 - 2016-05-12 19:14 - 00316416 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2016-06-15 00:22 - 2016-05-12 19:14 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2016-06-15 00:22 - 2016-05-12 19:14 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2016-06-15 00:22 - 2016-05-12 19:14 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2016-06-15 00:22 - 2016-05-12 19:14 - 00096256 _____ (Microsoft Corporation) C:\Windows\system32\gpapi.dll
2016-06-15 00:22 - 2016-05-12 19:14 - 00075776 _____ (Microsoft Corporation) C:\Windows\system32\FwRemoteSvr.dll
2016-06-15 00:22 - 2016-05-12 19:14 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2016-06-15 00:22 - 2016-05-12 19:14 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2016-06-15 00:22 - 2016-05-12 19:14 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2016-06-15 00:22 - 2016-05-12 19:14 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2016-06-15 00:22 - 2016-05-12 17:18 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2016-06-15 00:22 - 2016-05-12 17:18 - 00666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2016-06-15 00:22 - 2016-05-12 17:18 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2016-06-15 00:22 - 2016-05-12 17:18 - 00342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2016-06-15 00:22 - 2016-05-12 17:18 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\polstore.dll
2016-06-15 00:22 - 2016-05-12 17:18 - 00260608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2016-06-15 00:22 - 2016-05-12 17:18 - 00251392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2016-06-15 00:22 - 2016-05-12 17:18 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2016-06-15 00:22 - 2016-05-12 17:18 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2016-06-15 00:22 - 2016-05-12 17:18 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2016-06-15 00:22 - 2016-05-12 17:18 - 00141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2016-06-15 00:22 - 2016-05-12 17:18 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2016-06-15 00:22 - 2016-05-12 17:18 - 00079360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpapi.dll
2016-06-15 00:22 - 2016-05-12 17:18 - 00070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winipsec.dll
2016-06-15 00:22 - 2016-05-12 17:18 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2016-06-15 00:22 - 2016-05-12 17:18 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2016-06-15 00:22 - 2016-05-12 17:18 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FwRemoteSvr.dll
2016-06-15 00:22 - 2016-05-12 17:18 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2016-06-15 00:22 - 2016-05-12 17:18 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2016-06-15 00:22 - 2016-05-12 17:05 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2016-06-15 00:22 - 2016-05-12 17:03 - 03217408 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-06-15 00:22 - 2016-05-12 16:58 - 00464896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2016-06-15 00:22 - 2016-05-12 16:58 - 00405504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2016-06-15 00:22 - 2016-05-12 16:58 - 00291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2016-06-15 00:22 - 2016-05-12 16:58 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2016-06-15 00:22 - 2016-05-12 16:58 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2016-06-15 00:22 - 2016-05-12 16:58 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2016-06-15 00:22 - 2016-05-12 16:57 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2016-06-15 00:22 - 2016-05-12 16:56 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2016-06-15 00:22 - 2016-05-12 16:51 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2016-06-15 00:22 - 2016-05-12 15:05 - 00459640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2016-06-15 00:22 - 2016-05-12 15:05 - 00297984 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll
2016-06-15 00:22 - 2016-05-12 15:04 - 00249352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll
2016-06-15 00:22 - 2016-05-11 19:02 - 00483840 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2016-06-15 00:22 - 2016-05-11 19:02 - 00444928 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2016-06-15 00:22 - 2016-05-11 19:02 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2016-06-15 00:22 - 2016-05-11 19:02 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\ws2_32.dll
2016-06-15 00:22 - 2016-05-11 17:19 - 00363520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll
2016-06-15 00:22 - 2016-05-11 17:19 - 00351744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll
2016-06-15 00:22 - 2016-05-11 17:19 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2016-06-15 00:22 - 2016-05-11 17:19 - 00206336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ws2_32.dll
2016-06-15 00:22 - 2016-05-11 17:11 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\netbtugc.exe
2016-06-15 00:22 - 2016-05-11 17:01 - 00026624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netbtugc.exe
2016-06-15 00:22 - 2016-05-11 16:58 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbt.sys
2016-06-15 00:22 - 2016-03-09 21:00 - 00396800 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2016-06-15 00:22 - 2016-03-09 20:40 - 00316416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2016-06-15 00:21 - 2016-04-14 18:46 - 00114408 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2016-06-15 00:21 - 2016-04-14 18:42 - 03243520 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2016-06-15 00:21 - 2016-04-14 18:42 - 01941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2016-06-15 00:21 - 2016-04-14 18:42 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2016-06-15 00:21 - 2016-04-14 18:42 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2016-06-15 00:21 - 2016-04-14 18:42 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll
2016-06-15 00:21 - 2016-04-14 17:33 - 02365440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2016-06-15 00:21 - 2016-04-14 17:33 - 01806848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2016-06-15 00:21 - 2016-04-14 17:33 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2016-06-15 00:21 - 2016-04-14 17:33 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimsg.dll
2016-06-15 00:21 - 2016-04-14 17:19 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
2016-06-15 00:21 - 2016-04-14 17:11 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msiexec.exe
2016-06-15 00:21 - 2016-04-09 08:58 - 14186496 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2016-06-15 00:21 - 2016-04-09 08:57 - 01867776 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2016-06-15 00:21 - 2016-04-09 08:54 - 12881408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2016-06-15 00:21 - 2016-04-09 08:54 - 01499648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2016-06-15 00:21 - 2016-04-09 07:53 - 03231232 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2016-06-15 00:21 - 2016-04-09 07:44 - 02973184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2016-06-15 00:19 - 2016-05-24 01:37 - 00394960 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-06-15 00:19 - 2016-05-24 00:54 - 00346312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2016-06-15 00:19 - 2016-05-21 19:28 - 25802752 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-06-15 00:19 - 2016-05-21 18:57 - 20341248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-06-15 00:19 - 2016-05-21 00:27 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2016-06-15 00:19 - 2016-05-21 00:27 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2016-06-15 00:19 - 2016-05-21 00:14 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2016-06-15 00:19 - 2016-05-21 00:10 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2016-06-15 00:19 - 2016-05-21 00:09 - 00572416 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-06-15 00:19 - 2016-05-21 00:09 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2016-06-15 00:19 - 2016-05-21 00:09 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2016-06-15 00:19 - 2016-05-21 00:08 - 02895360 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-06-15 00:19 - 2016-05-21 00:08 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2016-06-15 00:19 - 2016-05-21 00:02 - 06051328 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-06-15 00:19 - 2016-05-21 00:00 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2016-06-15 00:19 - 2016-05-20 23:59 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2016-06-15 00:19 - 2016-05-20 23:57 - 00497664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-06-15 00:19 - 2016-05-20 23:57 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2016-06-15 00:19 - 2016-05-20 23:57 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2016-06-15 00:19 - 2016-05-20 23:56 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2016-06-15 00:19 - 2016-05-20 23:56 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2016-06-15 00:19 - 2016-05-20 23:55 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2016-06-15 00:19 - 2016-05-20 23:54 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-06-15 00:19 - 2016-05-20 23:54 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2016-06-15 00:19 - 2016-05-20 23:54 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2016-06-15 00:19 - 2016-05-20 23:54 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2016-06-15 00:19 - 2016-05-20 23:50 - 02287104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-06-15 00:19 - 2016-05-20 23:49 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2016-06-15 00:19 - 2016-05-20 23:48 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2016-06-15 00:19 - 2016-05-20 23:45 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2016-06-15 00:19 - 2016-05-20 23:45 - 00476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2016-06-15 00:19 - 2016-05-20 23:44 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-06-15 00:19 - 2016-05-20 23:44 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2016-06-15 00:19 - 2016-05-20 23:43 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2016-06-15 00:19 - 2016-05-20 23:41 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2016-06-15 00:19 - 2016-05-20 23:33 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2016-06-15 00:19 - 2016-05-20 23:33 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-06-15 00:19 - 2016-05-20 23:32 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2016-06-15 00:19 - 2016-05-20 23:29 - 13815808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-06-15 00:19 - 2016-05-20 23:28 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2016-06-15 00:19 - 2016-05-20 23:27 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-06-15 00:19 - 2016-05-20 23:27 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2016-06-15 00:19 - 2016-05-20 23:26 - 00091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2016-06-15 00:19 - 2016-05-20 23:25 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2016-06-15 00:19 - 2016-05-20 23:23 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2016-06-15 00:19 - 2016-05-20 23:23 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2016-06-15 00:19 - 2016-05-20 23:22 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2016-06-15 00:19 - 2016-05-20 23:21 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2016-06-15 00:19 - 2016-05-20 23:19 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2016-06-15 00:19 - 2016-05-20 23:14 - 04610048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-06-15 00:19 - 2016-05-20 23:12 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2016-06-15 00:19 - 2016-05-20 23:11 - 15420928 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-06-15 00:19 - 2016-05-20 23:11 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2016-06-15 00:19 - 2016-05-20 23:09 - 00725504 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-06-15 00:19 - 2016-05-20 23:09 - 00693248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-06-15 00:19 - 2016-05-20 23:08 - 02055680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-06-15 00:19 - 2016-05-20 23:08 - 00806400 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-06-15 00:19 - 2016-05-20 23:07 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2016-06-15 00:19 - 2016-05-20 23:07 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2016-06-15 00:19 - 2016-05-20 23:06 - 02131968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-06-15 00:19 - 2016-05-20 22:46 - 02597888 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-06-15 00:19 - 2016-05-20 22:42 - 02121216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-06-15 00:19 - 2016-05-20 22:38 - 01310208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-06-15 00:19 - 2016-05-20 22:38 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2016-06-15 00:19 - 2016-05-20 22:34 - 01544192 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-06-15 00:19 - 2016-05-20 22:23 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-06-14 16:19 - 2016-06-14 16:19 - 06120125 _____ C:\Users\Michal\Downloads\Rozdělovník ADGPC (3).xlsx
2016-06-14 12:09 - 2016-06-14 12:09 - 00352374 _____ C:\Users\Michal\Downloads\image (7).jpeg
2016-06-14 12:09 - 2016-06-14 12:09 - 00199735 _____ C:\Users\Michal\Downloads\image (8).jpeg
2016-06-14 10:59 - 2016-06-14 10:59 - 00160369 _____ C:\Users\Michal\Downloads\image (6).jpeg
2016-06-14 10:58 - 2016-06-14 10:59 - 02624858 _____ C:\Users\Michal\Downloads\image (5).jpeg
2016-06-14 10:58 - 2016-06-14 10:58 - 00160369 _____ C:\Users\Michal\Downloads\image (4).jpeg
2016-06-12 22:01 - 2016-06-12 22:09 - 674457540 _____ C:\Users\Michal\Downloads\Tera Sweet.mp4
2016-06-12 22:01 - 2016-06-12 22:01 - 00052195 _____ C:\Users\Michal\Downloads\LegalPorno - Tera Sweet - Tera Sweet PissMyAssOff Porno SZ121 mp4-[rarbg.com].torrent
2016-06-12 21:58 - 2016-06-12 23:16 - 00000000 ____D C:\Users\Michal\Downloads\LegalPorno.Balls.Deep.with.July.Sun.Olivia.Devine.1st.TP
2016-06-12 21:57 - 2016-06-12 21:57 - 00110003 _____ C:\Users\Michal\Downloads\LegalPorno.Balls.Deep.with.July.Sun.Olivia.Devine.1st.TP.mp4-[rarbg.com].torrent
2016-06-12 21:46 - 2016-06-12 21:46 - 00020711 _____ C:\Users\Michal\Downloads\LegalPorno - Christine Courtney 4on1 mini gangbang with DP pee-[rarbg.com].torrent
2016-06-12 21:46 - 2016-06-12 21:46 - 00000000 ____D C:\Users\Michal\Downloads\LegalPorno - Christine Courtney 4on1 mini gangbang with DP pee SZ853 XXX 07.June.2016
2016-06-11 18:16 - 2016-06-11 18:17 - 01753061 _____ C:\Users\Michal\Downloads\image (3).jpeg
2016-06-10 20:00 - 2016-06-10 20:00 - 00000000 ____D C:\Users\Michal\AppData\Local\PaceAP
2016-06-10 18:57 - 2016-06-10 19:53 - 00001977 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iLok License Manager.lnk
2016-06-10 18:57 - 2016-06-10 19:53 - 00001965 _____ C:\Users\Public\Desktop\iLok License Manager.lnk
2016-06-10 18:56 - 2016-06-10 18:56 - 00000000 ____D C:\Program Files (x86)\iLok License Manager
2016-06-10 18:51 - 2016-06-10 18:51 - 00000000 ____D C:\Program Files\Bonjour
2016-06-10 18:51 - 2016-06-10 18:51 - 00000000 ____D C:\Program Files (x86)\Bonjour
2016-06-10 18:48 - 2016-06-10 18:49 - 89709157 _____ C:\Users\Michal\Downloads\LicenseSupportInstallerWin64 (1).zip
2016-06-09 20:19 - 2016-06-11 18:03 - 2417629133 ____R C:\Users\Michal\Downloads\LP_Diana_Dali_MD.mp4
2016-06-09 20:14 - 2016-06-14 12:11 - 2505920146 _____ C:\Users\Michal\Downloads\Kitana_Lure_finally_got_Giorgio_s_treatment_5_on_1_Pissing_Drinking_GIO030_1.mp4
2016-06-09 20:13 - 2016-06-12 21:57 - 3011598247 ____R C:\Users\Michal\Downloads\Piss_drinking_sluts_Susan_Ayn_Samantha_Joons_SZ547.mp4
2016-06-09 20:13 - 2016-06-09 20:13 - 00012722 _____ C:\Users\Michal\Downloads\LegalPorno - Diana Dali - 4 on 1, Pissing, Drinking First DAP Double Penetration, Creampiee And Multiple Facial Cumshots - GIO24 720p mp4-[rarbg.com].torrent
2016-06-09 20:12 - 2016-06-14 10:02 - 2774502050 ____R C:\Users\Michal\Downloads\Linda_Sweet_Meg_Magic_piss_drinking_sluts_in_extreme_anal_foursome_SZ567.mp4
2016-06-09 20:12 - 2016-06-09 20:12 - 00029375 _____ C:\Users\Michal\Downloads\MONOVA.ORG Susan Ayn, Samantha Joons (Piss drinking sluts Susan Ayn & Samantha Joons SZ547) (2015) HD 1080p.torrent
2016-06-09 20:12 - 2016-06-09 20:12 - 00012759 _____ C:\Users\Michal\Downloads\MONOVA.ORG LegalPorno - Kitana Lure finally got Giorgio 39 s treatment 5 on 1 Pissing Drinking GIO030 - 720p.torrent
2016-06-09 20:11 - 2016-06-09 20:11 - 00027139 _____ C:\Users\Michal\Downloads\MONOVA.ORG Linda Sweet, Meg Magic (Piss Drinking Sluts In Extreme Anal Foursome - SZ567) (2015) HD 1080p.torrent
2016-06-09 20:10 - 2016-06-09 20:42 - 2470791529 ____R C:\Users\Michal\Downloads\Lola's Perverted Fantasy Rough Anal Gangbang with lots of Piss Drinking SZ617 (720p).mp4
2016-06-09 20:10 - 2016-06-09 20:10 - 00012840 _____ C:\Users\Michal\Downloads\LegalPorno - Lola Taylor - Lolas Perverted Fantasy Rough Anal Gangbang with lots of Piss Drinking 720p hd-[rarbg.com].torrent
2016-06-09 20:10 - 2016-06-09 20:10 - 00012840 _____ C:\Users\Michal\Downloads\LegalPorno - Lola Taylor - Lolas Perverted Fantasy Rough Anal Gangbang with lots of Piss Drinking 720p hd-[rarbg.com] (1).torrent
2016-06-09 20:08 - 2016-06-09 20:20 - 00000000 ____D C:\Users\Michal\Downloads\[Legalporno] LP Queen Timea Bella XXXMAS present 4on1+DAP+8ia+Piss Drinking Slut! SZ701 - 720p + Photoset
2016-06-09 20:06 - 2016-06-11 18:12 - 2279212970 _____ C:\Users\Michal\Downloads\7 on 1 Gang Bang. Pissing Drinking Prolapse DAP. Brittany Love got Plastered.mp4
2016-06-09 20:06 - 2016-06-09 20:19 - 00000000 ____D C:\Users\Michal\Downloads\VRXS-135
2016-06-09 20:06 - 2016-06-09 20:06 - 00022881 _____ C:\Users\Michal\Downloads\MONOVA.ORG Legalporno LP Queen Timea Bella XXXMAS present 4on1+DAP+8ia+Piss Drinking Slut SZ701 - 720p + Photoset.torrent
2016-06-09 20:06 - 2016-06-09 20:06 - 00012393 _____ C:\Users\Michal\Downloads\MONOVA.ORG VRXS-135 Forced Piss Drinking Lesbian Facesitting.torrent
2016-06-09 20:05 - 2016-06-09 20:05 - 00012385 _____ C:\Users\Michal\Downloads\7 on 1 gang bang pissing drinking prolapse dap brittany love got plastered mp4.torrent
2016-06-09 20:04 - 2016-06-09 20:52 - 1763040168 ____R C:\Users\Michal\Downloads\Piss_drinking_sluts_Timea_Antala_Nikky_Dream_got_DAP_ed_big_butt_sluts_anal_SZ800_1.mp4
2016-06-09 20:04 - 2016-06-09 20:04 - 00017465 _____ C:\Users\Michal\Downloads\MONOVA.ORG [LegalPorno] Timea Antala, Nikky Dream (Piss drinking sluts Timea Antala & Nikky Dream got DAP'ed.torrent
2016-06-09 20:02 - 2016-06-09 20:26 - 1832079364 ____R C:\Users\Michal\Downloads\[LegalPorno] Kiki Minaj - Piss Drinking Slut Kiki Minaj DP'ed (Ebony Slut Anal) (SZ644) (720p) (2015).mp4
2016-06-09 20:02 - 2016-06-09 20:02 - 00140640 _____ C:\Users\Michal\Downloads\[kat.cr]legalporno.kiki.minaj.piss.drinking.slut.kiki.minaj.dp.ed.ebony.slut.anal.sz644.720p.2015.new.release.torrent
2016-06-09 20:02 - 2016-06-09 20:02 - 00140640 _____ C:\Users\Michal\Downloads\[kat.cr]legalporno.kiki.minaj.piss.drinking.slut.kiki.minaj.dp.ed.ebony.slut.anal.sz644.720p.2015.new.release (1).torrent
2016-06-09 11:07 - 2016-06-11 21:32 - 00000000 ____D C:\Users\Michal\Downloads\LegalPorno_ 4 on 1. Pissing, Drinking, Prolapse, DAP & DP, gapes compilation, farting creampiee - Alice (2015) SiteRip x264
2016-06-09 11:02 - 2016-06-09 11:02 - 00180928 _____ C:\Users\Michal\Downloads\legalporno 4 on 1 pissing drinking prolapse dap amp dp gapes compilation farting creampiee - alice 2015 siterip x264.torrent
2016-06-09 10:59 - 2016-06-09 10:59 - 00122130 _____ C:\Users\Michal\Downloads\%5BLegalporno%5D4on1+Drinking+DAP+DP+Tons+of+Drinking+farting+creampiee+and+plastered+face.torrent
2016-06-09 10:59 - 2016-06-09 10:59 - 00000000 ____D C:\Users\Michal\Downloads\LegalPorno.Shrima.Malati.4.On.1.Pissing.Drinking.DAP.And.DP.Tons.Of.Pee.Drinking.Farting.Creampiee.And.Plastered.Face.GIO29
2016-06-09 10:58 - 2016-06-09 11:26 - 1164368414 _____ C:\Users\Michal\Downloads\[LegalPorno] Briana Bounce kreme farting asshole (interracial double anal (DAP) with cream) RS228 (21.04.2016) rq.mp4
2016-06-09 10:58 - 2016-06-09 10:58 - 00054686 _____ C:\Users\Michal\Downloads\LegalPorno.Shrima.Malati.4.On.1.Pissing.Drinking.DAP.And.DP.Tons.Of.Pee.Drinking.Farting.Creampiee.And.Plastered.Face.GIO29.torrent
2016-06-09 10:57 - 2016-06-09 10:57 - 00011923 _____ C:\Users\Michal\Downloads\Briana.Bounce.kreme.farting.asshole.(interracial.double.anal.(DAP).with.cream).RS228.(21.04.2016).rq.mp4.torrent
2016-06-06 23:18 - 2016-06-06 23:18 - 00000000 ____D C:\Users\Michal\Downloads\[-LegalPorno-] Sally [-4 on 1. Pissing, Drinking, DAP & DP, Tons of Pee Drinking, farting creampie and plastered face GIO033-]
2016-06-06 23:17 - 2016-06-06 23:17 - 00174055 _____ C:\Users\Michal\Downloads\[kat.cr]legalporno.sally.4.on.1.pissing.drinking.dap.dp.tons.of.pee.drinking.farting.creampie.and.plastered.face.gio033.torrent
2016-06-06 23:14 - 2016-06-07 00:06 - 3104689338 _____ C:\Users\Michal\Downloads\[LegalPorno] Sasha Panther & Vanessa Vaughn anal cream farting with DP & pee RS136 (13.12.2015) rq (720p).mp4
2016-06-06 23:14 - 2016-06-06 23:14 - 00015653 _____ C:\Users\Michal\Downloads\[kat.cr]legalporno.sasha.panther.vanessa.vaughn.anal.cream.farting.with.dp.pee.rs136.13.12.2015.rq.720p.mp4.torrent
2016-06-06 23:09 - 2016-06-06 23:09 - 00019556 _____ C:\Users\Michal\Downloads\[kat.cr]piss.my.ass.off.peeing.anal.gonzo.a2m.russian.girls.web.dl.torrent
2016-06-06 23:09 - 2016-06-06 23:09 - 00000000 ____D C:\Users\Michal\Downloads\Piss My Ass Off 1_720p
2016-06-06 23:08 - 2016-06-06 23:16 - 1244112821 _____ C:\Users\Michal\Downloads\[TSRaw] Thais Tavares - Fetish Anal Pissing and Gaping Creampie (May 26, 2016) 720p rq.mp4
2016-06-06 22:59 - 2016-06-06 22:59 - 00012700 _____ C:\Users\Michal\Downloads\[kat.cr]tsraw.thais.tavares.fetish.anal.pissing.and.gaping.creampie.may.26.2016.720p.rq.mp4.torrent
2016-06-06 22:37 - 2016-06-06 22:37 - 00132155 _____ C:\Users\Michal\Downloads\image (2).jpeg
2016-06-06 18:52 - 2016-06-06 18:52 - 01228854 _____ C:\Users\Michal\Downloads\nožky.bmp
2016-06-04 12:45 - 2016-06-04 12:48 - 731686912 _____ C:\Users\Michal\Downloads\rozlucka-se-svobodou-2.avi
2016-06-04 12:44 - 2016-06-04 13:10 - 1975302070 _____ C:\Users\Michal\Downloads\nejvetsi-zensky-strikacky-2.avi
2016-06-04 12:43 - 2016-06-04 12:56 - 1179825503 _____ C:\Users\Michal\Downloads\cesky-si-predavaji-chcanky-z-ust-do-ust.mp4
2016-06-03 20:39 - 2016-06-03 20:56 - 2221264499 _____ C:\Users\Michal\Downloads\nymfomanky.mp4
2016-06-03 20:39 - 2016-06-03 20:54 - 2001512139 _____ C:\Users\Michal\Downloads\grupac-na-lodi.avi
2016-06-03 20:36 - 2016-06-03 20:47 - 1647281808 _____ C:\Users\Michal\Downloads\holky-prdej-mrdku-3.avi
2016-06-03 18:05 - 2016-06-03 18:08 - 749380504 _____ C:\Users\Michal\Downloads\polykaci-bukkake.mp4
2016-06-03 18:01 - 2016-06-03 18:25 - 364755765 _____ C:\Users\Michal\Downloads\devka-strika-jak-ukopnutej-hydrant.mp4
2016-06-03 18:01 - 2016-06-03 18:03 - 422985714 _____ C:\Users\Michal\Downloads\analni-masakr.mp4
2016-06-03 10:50 - 2016-06-03 10:50 - 00290952 _____ C:\Windows\Minidump\060316-36285-01.dmp
2016-06-03 10:20 - 2016-06-03 10:21 - 00057812 _____ C:\Users\Michal\Downloads\image (1).jpeg
2016-06-02 20:07 - 2016-06-11 22:56 - 00000466 _____ C:\Users\Michal\Desktop\mm.txt
2016-06-01 23:07 - 2016-06-01 23:07 - 00061162 _____ C:\Users\Michal\Downloads\cerven 2016 v PDF.pdf
2016-05-31 22:40 - 2016-05-31 22:40 - 00290984 _____ C:\Windows\Minidump\053116-36519-01.dmp
2016-05-31 21:20 - 2016-05-31 21:20 - 00107299 _____ C:\Users\Michal\Downloads\image.jpeg
2016-05-29 02:30 - 2016-05-29 02:30 - 00000000 ____D C:\Users\Michal\AppData\Roaming\proDAD
2016-05-29 02:30 - 2016-05-29 02:30 - 00000000 ____D C:\ProgramData\proDAD
2016-05-29 02:30 - 2016-05-29 02:30 - 00000000 ____D C:\Program Files\proDAD
2016-05-29 02:30 - 2015-09-17 12:54 - 00607256 _____ (proDAD GmbH) C:\Windows\system32\prodad-codec.dll
2016-05-29 02:30 - 2015-09-17 12:54 - 00376344 _____ (proDAD GmbH) C:\Windows\system32\proDAD-PA-Support.dll
2016-05-29 02:30 - 2015-09-17 12:54 - 00034064 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\CLMirrorDriver.dll
2016-05-29 02:30 - 2015-09-17 12:54 - 00021264 _____ (CyberLink) C:\Windows\system32\Drivers\CLMirrorDriver.sys
2016-05-29 02:29 - 2016-05-29 02:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NewBlue
2016-05-29 02:28 - 2016-05-29 02:28 - 00002103 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink Screen Recorder.lnk
2016-05-29 02:28 - 2016-05-29 02:28 - 00002091 _____ C:\Users\Public\Desktop\CyberLink Screen Recorder.lnk
2016-05-29 02:28 - 2016-05-29 02:28 - 00002020 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDirector 14 (64-bit).lnk
2016-05-29 02:28 - 2016-05-29 02:28 - 00002008 _____ C:\Users\Public\Desktop\CyberLink PowerDirector 14 (64-bit).lnk
2016-05-29 02:28 - 2016-05-29 02:28 - 00000000 ____D C:\Program Files (x86)\CyberLink
2016-05-29 02:19 - 2016-05-29 02:19 - 00000000 ____D C:\ProgramData\Temp
2016-05-29 01:54 - 2016-06-06 22:59 - 00000000 ____D C:\Users\Michal\Downloads\CyberLink PowerDirector Ultimate 14.0.2019.0
2016-05-29 01:19 - 2016-07-22 02:39 - 1178901113 _____ C:\Users\Michal\Downloads\PowerDirector.Ultimate.14.0.2019.0.rar
2016-05-29 00:49 - 2016-05-29 00:49 - 00111086 _____ C:\Users\Michal\Downloads\AV_Cl!nk_PD_14.rar
2016-05-28 16:40 - 2016-05-28 16:40 - 00000000 ____D C:\Users\Michal\AppData\Roaming\Apple Computer
2016-05-28 16:36 - 2016-05-28 16:36 - 00000000 _____ C:\Users\Michal\AppData\Local\{579187CE-D0CE-4CC6-A6D9-0E0CAA807094}
2016-05-28 16:33 - 2016-05-28 16:34 - 00291000 _____ C:\Windows\Minidump\052816-37128-01.dmp
2016-05-28 16:30 - 2016-05-29 12:47 - 01385323 _____ C:\Users\Michal\Desktop\mmm.pds
2016-05-28 14:57 - 2016-05-29 01:46 - 00000000 ____D C:\Users\Michal\Documents\CyberLink
2016-05-28 14:57 - 2016-05-29 00:20 - 00000000 ____D C:\Users\Public\CyberLink
2016-05-28 14:57 - 2016-05-28 14:57 - 00000000 ____D C:\Users\Michal\AppData\Roaming\CyberLink
2016-05-28 14:57 - 2016-05-28 14:57 - 00000000 ____D C:\Users\Michal\AppData\Local\CyberLink
2016-05-28 14:52 - 2016-05-28 14:52 - 00002519 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2016-05-28 14:52 - 2016-05-28 14:52 - 00000000 ____D C:\Users\Michal\AppData\Local\Apple
2016-05-28 14:52 - 2016-05-28 14:52 - 00000000 ____D C:\Program Files (x86)\Apple Software Update
2016-05-28 14:51 - 2016-05-28 14:51 - 00000000 ____D C:\Users\Michal\AppData\LocalLow\Apple Computer
2016-05-28 14:51 - 2016-05-28 14:51 - 00000000 ____D C:\Program Files\Common Files\NewBlue
2016-05-28 14:50 - 2016-05-29 02:30 - 00000000 ____D C:\Program Files\NewBlue
2016-05-28 14:50 - 2016-05-29 02:30 - 00000000 ____D C:\Program Files (x86)\NewBlue
2016-05-28 14:50 - 2016-05-28 14:50 - 00000000 ____D C:\Program Files (x86)\NSIS Uninstall Information
2016-05-28 14:46 - 2016-05-29 02:29 - 00000000 ____D C:\Program Files\CyberLink
2016-05-28 14:35 - 2016-05-28 14:35 - 00000000 ____D C:\Users\Default\AppData\Local\Google
2016-05-28 14:35 - 2016-05-28 14:35 - 00000000 ____D C:\Users\Default User\AppData\Local\Google
2016-05-28 14:34 - 2016-05-29 02:22 - 00000000 ____D C:\ProgramData\SUPPORTDIR
2016-05-28 14:34 - 2016-05-28 14:51 - 00000000 ____D C:\ProgramData\install_clap
2016-05-28 14:31 - 2016-05-28 14:31 - 00000000 ____D C:\Program Files (x86)\CyberLink PowerDirector
2016-05-28 14:26 - 2016-05-28 14:28 - 569412000 _____ ( ) C:\Users\Michal\Downloads\PowerDirector_2019a_GM2_Trial.exe
2016-05-28 14:20 - 2016-05-28 14:20 - 00000871 _____ C:\Users\Michal\Desktop\CyberLink_PowerDirector_Downloader.lnk
2016-05-28 14:18 - 2016-05-28 14:19 - 01031608 _____ (CyberLink) C:\Users\Michal\Downloads\CyberLink_PowerDirector_Downloader.exe
2016-05-28 13:54 - 2016-05-28 13:54 - 42951014 _____ C:\Users\Michal\Downloads\EDIUS_End_Credit_Logo_and_Video_Packs.zip
2016-05-28 13:09 - 2016-05-28 14:20 - 00017826 _____ C:\Users\Michal\Desktop\Nový film (2).Film.Movie.axp
2016-05-28 13:09 - 2016-05-28 13:23 - 00015392 _____ C:\Users\Michal\Desktop\Nový film (2).Film.Movie.axp.bak
2016-05-28 13:09 - 2016-05-28 13:09 - 00000000 ____D C:\Users\Michal\Documents\Projekty aplikace Pinnacle
2016-05-28 12:09 - 2016-05-28 12:09 - 00358402 _____ C:\Users\Michal\Downloads\181_Topo_47232d4a-4499-465c-9ca8-f3e71e31115a_seewand_klettersteig_topo.pdf
2016-05-28 02:31 - 2016-05-28 02:31 - 00002027 _____ C:\Users\Public\Desktop\ESET Ochrana bankovnictví a online plateb.lnk
2016-05-28 02:30 - 2016-05-28 02:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2016-05-28 02:30 - 2016-05-28 02:30 - 00000000 ____D C:\ProgramData\ESET
2016-05-28 02:30 - 2016-05-28 02:30 - 00000000 ____D C:\Program Files\ESET
2016-05-27 21:46 - 2016-05-27 21:46 - 00283800 _____ C:\Users\Michal\Downloads\IMG-20160525-WA0005.jpeg
2016-05-27 19:42 - 2016-05-27 19:52 - 00002206 _____ C:\Users\Public\Desktop\Pinnacle Studio 16.lnk
2016-05-27 19:36 - 2016-05-27 19:36 - 00000000 ____D C:\Users\Public\Documents\Pinnacle
2016-05-27 19:25 - 2016-05-27 19:25 - 00000000 ____D C:\ProgramData\PCTV Systems
2016-05-27 19:15 - 2016-05-27 19:24 - 00000000 ____D C:\Users\Michal\Downloads\Pinnacle Studio 16 Ultimate 16.1.0.115 Final Ml_Rus
2016-05-27 19:13 - 2016-05-27 19:13 - 00022276 _____ C:\Users\Michal\Downloads\310_140924.torrent
2016-05-27 18:59 - 2016-05-27 19:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pinnacle Studio 16
2016-05-27 18:02 - 2016-06-15 11:13 - 00000000 ____D C:\Users\Michal\Desktop\Nová složka
2016-05-23 19:16 - 2016-05-23 19:16 - 00000534 _____ C:\Users\Michal\Desktop\untitled.mid
2016-05-23 17:14 - 2016-05-23 17:14 - 00291000 _____ C:\Windows\Minidump\052316-21574-01.dmp

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-06-15 15:45 - 2009-07-14 06:45 - 00023568 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-06-15 15:45 - 2009-07-14 06:45 - 00023568 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-06-15 15:36 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-06-15 15:27 - 2016-04-01 19:43 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-06-15 12:42 - 2015-08-27 10:07 - 00000000 ____D C:\ProgramData\ValhallaRoom
2016-06-15 12:23 - 2013-05-20 11:10 - 00000000 ____D C:\Users\Michal\AppData\LocalLow\Temp
2016-06-15 11:18 - 2016-04-01 20:01 - 00000000 ____D C:\Users\Michal\AppData\Local\tkdata
2016-06-15 10:11 - 2013-03-27 22:28 - 00000000 ____D C:\Users\Michal\AppData\Local\Adobe
2016-06-15 10:08 - 2015-09-07 15:13 - 00000000 ____D C:\Users\Michal\AppData\Roaming\Seznam.cz
2016-06-15 10:07 - 2015-09-07 15:14 - 00000000 ____D C:\Program Files (x86)\Seznam.cz
2016-06-15 10:07 - 2015-01-02 22:41 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-06-15 09:59 - 2009-07-14 06:45 - 05161688 _____ C:\Windows\system32\FNTCACHE.DAT
2016-06-15 09:53 - 2014-12-11 10:32 - 00000000 ____D C:\Windows\system32\appraiser
2016-06-15 01:41 - 2013-07-15 00:27 - 00000000 ____D C:\Windows\system32\MRT
2016-06-15 01:33 - 2013-03-20 16:40 - 142482544 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-06-14 12:11 - 2013-03-22 00:18 - 00000000 ____D C:\Users\Michal\AppData\Roaming\uTorrent
2016-06-10 18:57 - 2013-03-19 20:51 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-06-09 18:25 - 2013-04-10 20:47 - 00000000 ____D C:\Users\Michal\AppData\Roaming\Skype
2016-06-09 00:08 - 2016-05-12 20:34 - 00002155 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-06-09 00:08 - 2016-05-12 20:34 - 00002143 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-06-06 21:53 - 2015-08-02 06:42 - 00000000 ____D C:\Users\Michal\Downloads\aafoto
2016-06-03 23:24 - 2009-07-14 17:18 - 00669132 _____ C:\Windows\system32\perfh005.dat
2016-06-03 23:24 - 2009-07-14 17:18 - 00141760 _____ C:\Windows\system32\perfc005.dat
2016-06-03 23:24 - 2009-07-14 07:13 - 01584626 _____ C:\Windows\system32\PerfStringBackup.INI
2016-06-03 23:24 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf
2016-06-03 10:50 - 2013-04-14 16:20 - 554045118 _____ C:\Windows\MEMORY.DMP
2016-06-03 10:50 - 2013-04-14 16:20 - 00000000 ____D C:\Windows\Minidump
2016-05-29 02:32 - 2016-02-08 20:33 - 00000000 ____D C:\ProgramData\CyberLink
2016-05-28 16:35 - 2016-04-01 19:52 - 00000000 ____D C:\Program Files (x86)\McAfee
2016-05-28 16:33 - 2016-04-01 19:43 - 00000000 ____D C:\Program Files\TrueKey
2016-05-28 14:46 - 2015-03-24 18:39 - 00000000 ____D C:\ProgramData\Package Cache
2016-05-28 13:23 - 2016-04-07 11:20 - 00000000 ____D C:\Users\Michal\AppData\Local\Avid
2016-05-28 13:23 - 2016-04-07 10:53 - 00000349 _____ C:\Users\Public\Documents\PCLECHAL.INI
2016-05-28 13:09 - 2016-04-07 11:23 - 00000000 ____D C:\Users\Michal\temp
2016-05-28 11:39 - 2016-04-07 11:25 - 00004608 _____ C:\Users\Michal\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-05-28 10:46 - 2016-04-01 20:00 - 00001190 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\True Key.lnk
2016-05-28 10:35 - 2016-04-07 11:20 - 00000862 _____ C:\Users\Michal\AppData\Roaming\MICHAL-PC.MTBF.txt
2016-05-27 19:54 - 2016-04-07 10:53 - 00000000 ____D C:\Users\Michal\AppData\Local\Pinnacle
2016-05-27 19:36 - 2016-04-07 10:53 - 00000000 ____D C:\ProgramData\Pinnacle
2016-05-27 19:36 - 2016-04-07 10:52 - 00000000 ____D C:\Program Files (x86)\Pinnacle
2016-05-27 19:05 - 2016-04-07 10:49 - 00000000 ____D C:\Users\Michal\Downloads\PinnacleStudio
2016-05-27 12:35 - 2015-04-04 17:27 - 00000000 ___SD C:\Windows\SysWOW64\GWX
2016-05-27 12:35 - 2015-04-04 17:27 - 00000000 ___SD C:\Windows\system32\GWX
2016-05-20 09:18 - 2016-04-01 19:43 - 00000000 ____D C:\ProgramData\McAfee

==================== Files in the root of some directories =======

2001-10-30 21:44 - 2001-10-30 21:44 - 0065536 _____ () C:\Program Files\in_BuzzWinampBridge.dll
2015-03-18 18:09 - 2015-08-26 12:39 - 32103496 _____ (iZotope, Inc. ) C:\Users\Michal\AppData\Roaming\IZOTOPE_TRASH_SETUP_V2_00.EXE
2016-04-07 11:20 - 2016-05-28 10:35 - 0000862 _____ () C:\Users\Michal\AppData\Roaming\MICHAL-PC.MTBF.txt
2015-03-25 01:46 - 2015-03-25 18:50 - 0000016 _____ () C:\Users\Michal\AppData\Roaming\msregsvv.dll
2014-08-25 23:13 - 2016-01-03 15:21 - 1249792 _____ (http://www.ruby-lang.org/) C:\Users\Michal\AppData\Roaming\msvcr90-ruby191.dll
2013-03-19 20:16 - 2013-03-19 20:39 - 13115392 _____ () C:\Users\Michal\AppData\Roaming\Sandra.mdb
2016-04-07 11:21 - 2016-05-28 14:21 - 0000776 _____ () C:\Users\Michal\AppData\Roaming\__AvidCloudManager.log
2016-04-07 11:21 - 2016-05-28 13:23 - 0000676 _____ () C:\Users\Michal\AppData\Roaming\__AvidCloudManagerPrevious.log
2016-04-07 11:25 - 2016-05-28 11:39 - 0004608 _____ () C:\Users\Michal\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-05-28 16:36 - 2016-05-28 16:36 - 0000000 _____ () C:\Users\Michal\AppData\Local\{579187CE-D0CE-4CC6-A6D9-0E0CAA807094}
2015-03-25 01:46 - 2015-03-25 18:50 - 0000016 _____ () C:\ProgramData\autobk.inc
2013-05-04 20:11 - 2016-03-22 10:42 - 0021186 _____ () C:\ProgramData\LmeUSB.log
2013-05-04 20:11 - 2016-03-22 10:42 - 0020757 _____ () C:\ProgramData\LmeZJSW.log
2013-05-04 20:11 - 2016-03-22 10:42 - 0021185 _____ () C:\ProgramData\LSDmbTH.log

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2016-07-22 04:00

==================== End of FRST.txt ============================




Addition.txt:



Additional scan result of Farbar Recovery Scan Tool (x64) Version:13-06-2016
Ran by Michal (2016-06-15 16:08:31)
Running from C:\Users\Michal\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2013-03-19 11:07:20)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2581228697-3019390296-4131092421-500 - Administrator - Disabled)
Guest (S-1-5-21-2581228697-3019390296-4131092421-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2581228697-3019390296-4131092421-1002 - Limited - Enabled)
Michal (S-1-5-21-2581228697-3019390296-4131092421-1000 - Administrator - Enabled) => C:\Users\Michal

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: ESET Smart Security 9.0.376.1 (Enabled - Out of date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET Smart Security 9.0.376.1 (Enabled - Out of date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
FW: ESET Personální firewall (Enabled) {211E1E8B-C9F9-A04B-6D84-BC85190CE5F2}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKLM-x32\...\uTorrent) (Version: 2.2.0 - )
µTorrent (HKU\S-1-5-21-2581228697-3019390296-4131092421-1000\...\uTorrent) (Version: 3.4.2.35702 - BitTorrent Inc.)
1st Atomic Time 3.0 (30-day trial) (HKLM-x32\...\1st Atomic Time_is1) (Version: 3.0 - Green Parrots Software)
Ableton Live 9 Suite (HKLM\...\{A7C273D4-3F82-4A08-94DC-7492FC151F15}) (Version: 9.0.0.0 - Ableton)
Ableton Live 9 Suite (HKLM-x32\...\{CBFFFADF-30D3-49B2-806C-237EDDBFA0B3}) (Version: 9.0.0.0 - Ableton)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 2.5.1.17730 - Adobe Systems Inc.)
Adobe Audition CS5.5 (HKLM-x32\...\{D5B1535A-FDFC-4B40-B2E2-21DA83D9CB57}) (Version: 4.0 - Adobe Systems Incorporated)
Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.4.980 - Adobe Systems Incorporated.)
Adobe Flash Player 21 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 21.0.0.242 - Adobe Systems Incorporated)
Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.16) - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.16 - Adobe Systems Incorporated)
All Video Fixer 8.9 (HKLM-x32\...\All Video Fixer_is1) (Version: - New Live Software, Inc.)
Apple Application Support (HKLM-x32\...\{5D09C772-ECB3-442B-9CC6-B4341C78FDC2}) (Version: 2.3.4 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ArtsAcoustic Reverb 1.5.0.5 (HKLM-x32\...\ArtsAcoustic Reverb) (Version: 1.5.0.5 - ArtsAcoustic Vertrieb GbR)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.11 Beta2 - Michael Tippach)
aTube Catcher verze 3.8 (HKLM-x32\...\{D43B360E-722D-421B-BC77-20B9E0F8B6CD}_is1) (Version: 3.8 - DsNET Corp)
Audacity 1.3.11 (Unicode) (HKLM-x32\...\Audacity 1.3 Beta (Unicode)_is1) (Version: - Audacity Team)
Audio Damage DeVerb VST v1.0 (HKLM-x32\...\Audio Damage DeVerb VST v1.0) (Version: - )
Audio.Damage.Ronin.v1.0.VST-DAC (HKLM-x32\...\Audio.Damage.Ronin.v1.0.VST-DAC) (Version: - )
Balíček ovladače systému Windows - Focusrite USB 2.0 Audio Driver (09/25/2013 2.5.128.1) (HKLM\...\CF1FC201D237269A9CD51A3A6B14ADBF67175C32) (Version: 09/25/2013 2.5.128.1 - Focusrite)
Balíček ovladače systému Windows - Focusrite USB 2.0 Audio Driver (10/13/2011 2.2.128.0) (HKLM\...\5EBE05A38E0ED7FB7DC4171215DC5B0266DA1D51) (Version: 10/13/2011 2.2.128.0 - Focusrite)
BiFilter v2.3 (HKLM-x32\...\Tone2 BiFilter2_is1) (Version: - Tone2)
BlazeDTV 6.0 (HKLM-x32\...\BlazeDTV 6.0_is1) (Version: - )
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Broadcom 802.11 Network Adapter (HKLM\...\Broadcom 802.11 Network Adapter) (Version: 5.60.48.35 - Broadcom Corporation)
Camel Audio Alchemy (HKLM-x32\...\Camel Audio Alchemy) (Version: 1.25.0 - Camel Audio)
Camel Audio CamelCrusher (HKLM-x32\...\Camel Audio CamelCrusher) (Version: 1.01.0 - Camel Audio)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
Comodo Dragon (HKLM-x32\...\Comodo Dragon) (Version: 33.1.0.1 - Comodo)
Cool Edit Pro 2.1 (HKLM-x32\...\Cool Edit Pro 2.1) (Version: - )
Custom Shop version 1.5.0 (HKLM-x32\...\{21BAD046-50EC-49E2-BE7B-F9729704F2C3}_is1) (Version: 1.5.0 - IK Multimedia)
CyberLink PowerDirector 14 (HKLM-x32\...\{6BADCD73-E925-46F7-A295-FF2448632728}) (Version: 14.0.2019.0 - CyberLink Corp.)
Decimort 1.4.0 (32bit) (HKLM-x32\...\{DBA88E1F-1662-4615-8E00-82A8593BF374}) (Version: 1.4.0.0 - D16 Group Audio Software)
Decimort 1.4.0 (64bit) (HKLM\...\{F0A0EB8E-D410-4CFC-A238-B95373198BCD}) (Version: 1.4.0.0 - D16 Group Audio Software)
Devastor 1.4.0 (32bit) (HKLM-x32\...\{C8B66E95-70FC-4C02-B653-2B38BE779174}) (Version: 1.4.0.0 - D16 Group Audio Software)
Devastor 1.4.0 (64bit) (HKLM\...\{04B26700-1160-43CE-A42F-85D875A51625}) (Version: 1.4.0.0 - D16 Group Audio Software)
doPDF 7.3 printer (HKLM\...\doPDF 7 printer_is1) (Version: 7.3.393 - Softland)
Drumazon 1.6.0 (32bit) (HKLM-x32\...\{52B8173A-1230-4438-B076-DDC6E2131BC8}) (Version: 1.6.0.0 - D16 Group Audio Software)
Drumazon 1.6.0 (64bit) (HKLM\...\{60A0EF9F-2F5B-4076-87A9-97DF488F18AF}) (Version: 1.6.0.0 - D16 Group Audio Software)
DUNE 2 (HKLM-x32\...\DUNE 2_is1) (Version: - Synapse Audio Software)
Effectrix (HKLM-x32\...\Effectrix) (Version: 1.0 - Sugar Bytes)
ElectraX Dance and Trance Soundset (HKLM-x32\...\Tone2 ElectraX Dance and Trance Soundset_is1) (Version: - Tone2)
ElectraX full (HKLM-x32\...\Tone2 ElectraX full_is1) (Version: - Tone2)
ElectraX Morphing Soundset (HKLM-x32\...\Tone2 ElectraX Morphing Soundset_is1) (Version: - Tone2)
ElectraX Vintage Soundset (HKLM-x32\...\Tone2 ElectraX Vintage Soundset_is1) (Version: - Tone2)
ElectraX Voltage Soundset (HKLM-x32\...\Tone2 ElectraX Voltage Soundset_is1) (Version: - Tone2)
ElectraX Wavetables Expansion (HKLM-x32\...\Tone2 ElectraX Wavetables Expansion_is1) (Version: - Tone2)
eLicenser Control (HKLM-x32\...\eLicenser Control) (Version: 6.7.1.8146 - Steinberg Media Technologies GmbH)
ESET Smart Security (HKLM\...\{B7DE9695-00B8-4935-97B5-A2CBFBA6A3F8}) (Version: 9.0.376.1 - ESET, spol. s r.o.)
FabFilter Total Bundle (64-bit) (HKLM-x32\...\FabFilter Total Bundle (64-bit)) (Version: - )
FabFilter Total Bundle (HKLM-x32\...\FabFilter Total Bundle) (Version: - )
Fazortan 1.4.0 (64bit) (HKLM\...\{C2627533-4EC7-4D86-B4AF-DE588F4515FE}) (Version: 1.4.0.0 - D16 Group Audio Software)
File Repair (HKLM-x32\...\File Repair_is1) (Version: - File Repair)
FilterBank v3.3 (HKLM-x32\...\Tone2 FilterBank3_is1) (Version: - Tone2)
FilterBank v3.3 X64 (HKLM-x32\...\Tone2 FilterBank3 X64_is1) (Version: - Tone2)
FireBird plus v1.11.2 (HKLM-x32\...\Tone2 FireBird_is1) (Version: - Tone2)
FL Studio 11 (HKLM-x32\...\FL Studio 11) (Version: - Image-Line)
FlowStone FL 3.0 (HKLM-x32\...\FlowStone) (Version: - )
Focusrite USB 2.0 Audio Driver 2.5.1 (HKLM\...\Focusrite USB 2.0 Audio Driver_is1) (Version: 2.5.1 - Focusrite Audio Engineering Limited.)
FormatFactory 3.7.0.0 (HKLM-x32\...\FormatFactory) (Version: 3.7.0.0 - Format Factory)
Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 6.0.2.413 - Foxit Corporation)
Gladiator full (HKLM-x32\...\Tone2 Gladiator full_is1) (Version: - Tone2)
Google Earth Plug-in (HKLM-x32\...\{4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 51.0.2704.84 - Google Inc.)
Google Update Helper (x32 Version: 1.3.30.3 - Google Inc.) Hidden
Hydra VSTi/DXi v1.2 (HKLM-x32\...\SynapseHydra_is1) (Version: 1.2 - Synapse Audio Software)
IK Multimedia Authorization Manager version 1.0.9 (HKLM\...\{85BC0DCB-69E5-4279-AA25-F108EF896588}_is1) (Version: 1.0.9 - IK Multimedia)
IL Shared Libraries (HKLM-x32\...\IL Shared Libraries) (Version: - Image-Line)
Intel Security True Key (HKLM\...\TrueKey) (Version: 4.1.137.1 - Intel Security)
InterVideo DeviceService (HKLM-x32\...\{521AAD14-5030-44BB-8B0E-5CE65FCE57E0}) (Version: 1.0.0 - InterVideo)
IT9130 Driver v10.2.3.2 (HKLM-x32\...\IT9130 DriverInstaller_10.2.3.2) (Version: - )
iZotope Stutter Edit (HKLM-x32\...\iZotope Stutter Edit_is1) (Version: 1.05 - iZotope, Inc.)
iZotope Trash (HKLM-x32\...\iZotope Trash_is1) (Version: 1.05 - iZotope, Inc.)
iZotope Trash 2 (HKLM-x32\...\iZotope Trash 2_is1) (Version: 2.00 - iZotope, Inc.)
JBridge (HKLM-x32\...\JBridge) (Version: - JBridge)
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version: - )
LuSH-101 1.1.3 (64bit) (HKLM\...\{38666E88-8DD7-4223-8DCF-1EB25D53A48B}) (Version: 1.1.3.0 - D16 Group Audio Software)
Mathematica Extras 9.0 (4055459) (HKLM\...\A-WIN-Extras 9.0.1 4055459_is1) (Version: 9.0.1 - Wolfram Research, Inc.)
Max 5.1.7 (HKLM\...\{A4BD55F5-65F5-44A6-A130-5FC39433EE9C}) (Version: 135.1.7 - Cycling '74)
Maximus (HKLM-x32\...\Maximus) (Version: - Image-Line bvba)
MFM2 2.0.1 (HKLM-x32\...\MFM2_is1) (Version: - )
Microsoft .NET Framework 4.5.2 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{2DFD8316-9EF1-3210-908C-4CB61961C1AC}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{527BBE2F-1FED-3D8B-91CB-4DB0F838E69E}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Moog Modular V 2.5 (HKLM-x32\...\Moog Modular V 2_is1) (Version: - Arturia)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Native Instruments Battery 3 (HKLM-x32\...\Native Instruments Battery 3) (Version: - Native Instruments)
Native Instruments Battery 4 (HKLM-x32\...\Native Instruments Battery 4) (Version: 4.0.1.2234 - Native Instruments)
Native Instruments Komplete 7 (HKLM-x32\...\Native Instruments Komplete 7) (Version: - Native Instruments)
Native Instruments Kontakt 4 (HKLM-x32\...\Native Instruments Kontakt 4) (Version: - Native Instruments)
Native Instruments Massive (HKLM-x32\...\Native Instruments Massive) (Version: - Native Instruments)
Native Instruments Service Center (HKLM-x32\...\Native Instruments Service Center) (Version: - Native Instruments)
Nepheton 1.6.0 (64bit) (HKLM\...\{1D0B532A-A69A-48B2-9702-FA89E12DA2B2}) (Version: 1.6.0.0 - D16 Group Audio Software)
Nero 7 Ultra Edition (HKLM-x32\...\{4F2CE68F-EDBB-4592-BF07-5AC930A51029}) (Version: 7.02.6446 - Nero AG)
NewBlue Titler Pro for Windows (HKLM-x32\...\NewBlue Titler Pro for Windows) (Version: 1.0 - NewBlue)
NewBlue Video Essentials for Windows (HKLM-x32\...\NewBlue Video Essentials for Windows) (Version: 3.0 - NewBlue)
NewBlue Video Essentials V for Windows (HKLM-x32\...\NewBlue Video Essentials V for Windows) (Version: 3.0 - NewBlue)
NewBlue Video Essentials VI for Windows (HKLM-x32\...\NewBlue Video Essentials VI for Windows) (Version: 3.0 - NewBlue)
NewBlue Video Essentials VII for Windows (HKLM-x32\...\NewBlue Video Essentials VII for Windows) (Version: 3.0 - NewBlue)
Nithonat 1.6.0 (64bit) (HKLM\...\{E6143735-CD6A-4CB7-8155-EA3CE58E873B}) (Version: 1.6.0.0 - D16 Group Audio Software)
NVIDIA Display Control Panel (HKLM\...\NVIDIA Display Control Panel) (Version: 6.14.12.5897 - NVIDIA Corporation)
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: 1.10.62.40 - NVIDIA Corporation)
NVIDIA PhysX (HKLM-x32\...\{8A809006-C25A-4A3A-9DAB-94659BCDB107}) (Version: 9.10.0224 - NVIDIA Corporation)
Ohm Force - Ohmicide VST (HKLM-x32\...\Ohmicide VST) (Version: - )
Ovladače videa společnosti Pinnacle (HKLM\...\{6DE721A5-5E89-4D74-994C-652BB3C0672E}) (Version: 12.1.0.030 - Pinnacle Systems)
PACE License Support Win64 (HKLM-x32\...\InstallShield_{1CC8C2F8-5CA6-45ca-9186-CF77033125F0}) (Version: 3.0.2.1412 - PACE Anti-Piracy, Inc.)
PACE License Support Win64 (Version: 3.0.2.1412 - PACE Anti-Piracy, Inc.) Hidden
PCM Native Reverb VST Plug-in (HKLM-x32\...\PCM Native Reverb VST Plug-in) (Version: - Lexicon)
PCM Native Reverb VST Plug-in (x32 Version: 1.0.0 - Lexicon) Hidden
PDF Recovery Toolbox 1.0 (HKLM-x32\...\PDF Recovery Toolbox_is1) (Version: - Recovery Toolbox, Inc.)
PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
PhaseTwo VST plug-in (HKLM-x32\...\PhaseTwo VST plug-in) (Version: 1.0.0 - Audio Damage)
Phoscyon 1.9.5 (64bit) (HKLM\...\{D32B89DD-B8E6-4443-9BB2-97290BA4B8A8}) (Version: 1.9.5.0 - D16 Group Audio Software)
Pinnacle Studio 16 - Install Manager (HKLM-x32\...\{F1886CD7-9F73-417A-92E9-7E0AB0F0E099}) (Version: 16.0.75 - Avid Technology, Inc.)
Pinnacle Studio 16 (HKLM-x32\...\{284BFDBC-DAC6-43EC-85A8-E1CEC0D3A114}) (Version: 16.1.0.115 - Corel Corporation)
proDAD Adorage 3.0 (64bit) (HKLM\...\proDAD-Adorage-3.0) (Version: 3.0.114.1 - proDAD GmbH)
PSP VintageMeter 1.0 (HKLM-x32\...\PSP VintageMeter1.0) (Version: - )
PSP VintageMeter 32bit (HKLM-x32\...\PSP VintageMeter 32bit) (Version: 1.0.0 32bit - PSPaudioware.com)
PSP VintageWarmer2 2.5.1 32bit (HKLM-x32\...\PSP VintageWarmer2 2.5.1 32bit) (Version: 2.5.1 32bit - PSPaudioware.com)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.34.1130.2010 - Realtek)
Recovery Toolbox for PDF 2.0 (HKLM-x32\...\Recovery Toolbox for PDF_is1) (Version: - Recovery Toolbox, Inc.)
Recuva (HKLM\...\Recuva) (Version: 1.52 - Piriform)
Redoptor 1.4.0 (64bit) (HKLM\...\{6F537CC2-B20E-4EA3-9D08-9043F724A4BE}) (Version: 1.4.0.0 - D16 Group Audio Software)
reFX Nexus 2.6.5 (64-bit) (HKLM-x32\...\{84D04D4F-2201-4AED-BE9A-FFA62069CA19}_is1) (Version: 2.6.5 - reFX Audio Software Inc.)
reFX Nexus VSTi RTAS v2.2.0 (HKLM-x32\...\reFX Nexus_is1) (Version: - )
reFX Vanguard VSTi RTAS v1.8.0 (HKLM-x32\...\reFX Vanguard_is1) (Version: - )
rekordbox 2.0.7 (HKLM-x32\...\Pioneer rekordbox 2.0.7) (Version: 2.0.7 - Pioneer)
Repair Video Master 2.61 (HKLM-x32\...\Repair Video Master_is1) (Version: - Repair Video, Inc.)
Replicant VST plug-in (HKLM-x32\...\Replicant VST plug-in) (Version: 1.0.2 - Audio Damage)
Scarlett MixControl 1.6.1 (HKLM-x32\...\Saffire USB 26_is1) (Version: 1.6.1 - Focusrite Audio Engineering Limited)
Sigmund 1.1.2 (64bit) (HKLM\...\{F130BECD-2276-4465-8ACD-7C8D32FE830D}) (Version: 1.1.2.0 - D16 Group Audio Software)
SiSoftware Sandra Lite 2013a (HKLM\...\{C3113E55-7BCB-4de3-8EBF-60E6CE6B2396}_is1) (Version: 19.19.2013.1 - SiSoftware)
Skype™ 7.18 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.18.112 - Skype Technologies S.A.)
Sonnox Oxford Inflator Native VST v1.5.1 (HKLM-x32\...\Sonnox Oxford Inflator Native VST_is1) (Version: - Team AiR 2007)
Sony PC Companion 2.10.228 (HKLM-x32\...\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}) (Version: 2.10.228 - Sony)
Spire-1.1 Plug-In (x64) (HKLM\...\{A08E471A-3749-462C-8729-03516E3746B6}) (Version: 1.1.1.0 - Reveal Sound Ltd.)
Sugar Bytes Effectrix 1.4.2 (HKLM\...\Effectrix_is1) (Version: 1.4.2 - Sugar Bytes)
Sylenth1 v2.21 (HKLM\...\Sylenth1_is1) (Version: - )
Synthation Vanguard Essentials Soundbank (HKLM-x32\...\Synthation Vanguard Essentials Soundbank) (Version: - )
SynthMaster 2.5 VST/VSTi (x64) version 2.5.3.109 (HKLM-x32\...\{724D6BD0-88D0-4354-A124-6EE4D36E9EF2}_is1) (Version: 2.5.3.109 - KV331 Audio)
Syntorus 1.4.0 (64bit) (HKLM\...\{6E3E13E9-F55B-4A91-9D46-9766BF057289}) (Version: 1.4.0.0 - D16 Group Audio Software)
The KMPlayer (remove only) (HKLM-x32\...\The KMPlayer) (Version: - )
Tone2 AkustiX Enhancer v1.0 (HKLM-x32\...\Tone2 AkustiX Enhancer_is1) (Version: - Tone2)
Tone2 AkustiX Enhancer v1.0 X64 (HKLM-x32\...\Tone2 AkustiX Enhancer X64_is1) (Version: - Tone2)
Tone2 Warmverb multi-FX full (HKLM-x32\...\Tone2 Warmverb multi-FX full_is1) (Version: - Tone2)
Toraverb 1.4.0 (64bit) (HKLM\...\{F915E9F5-13F9-487A-A7E2-AC71EBE31231}) (Version: 1.4.0.0 - D16 Group Audio Software)
TOSHIBA PC Diagnostic Tool (HKLM-x32\...\InstallShield_{2C38F661-26B7-445D-B87D-B53FE2D3BD42}) (Version: 3.2.6 - TOSHIBA Corporation)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.01 - Ghisler Software GmbH)
T-RackS CS version 4.6.0 (HKLM\...\{E931EBCC-55F9-4D67-BA0E-D57C4A893A44}_is1) (Version: 4.6.0 - IK Multimedia)
Ulead VideoStudio 11 (HKLM-x32\...\InstallShield_{F99F9E24-EE2F-47FD-AEB0-FDB82859B5C9}) (Version: 11.0.0.0000 - InterVideo Digital Technology Corporation)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
ValhallaRoom 1.1.0 (HKLM-x32\...\ValhallaRoom_is1) (Version: - )
Venm 1.3 (HKLM-x32\...\Venm) (Version: 1.3 - Goliath Sounds)
VideoStudio (x32 Version: 11.0.0.0000 - InterVideo Digital Technology Corporation) Hidden
VirtualDJ PRO Full (HKLM-x32\...\{4769E972-2E92-49C5-B6F9-465EFD0C4D94}) (Version: 7.0.5 - Atomix Productions)
VLC media player 1.1.7 (HKLM-x32\...\VLC media player) (Version: 1.1.7 - VideoLAN)
Voxengo SPAN Plus (HKLM\...\Voxengo SPAN Plus_is1) (Version: 1.2.2 - Voxengo)
Wave Arts MasterVerb (HKLM-x32\...\Wave Arts MasterVerb) (Version: 5.30 - Wave Arts, Inc.)
Waves Complete V9r25 (HKLM-x32\...\{93000001-C561-4E32-99EB-3C5AD3683A70}) (Version: 9.3.25 - Waves)
Waves Complete VST RTAS TDM v7.1.16 (HKLM-x32\...\Waves Complete v7_is1) (Version: - )
WinRAR 4.20 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
Wolfram Mathematica 9 (M-WIN-L 9.0.1 4055652) (HKLM\...\M-WIN-L 9.0.1 4055652_is1) (Version: 9.0.1 - Wolfram Research, Inc.)
WOW (HKLM-x32\...\WOW) (Version: 1.0 - Sugar Bytes)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {27D1D197-4CAD-42B9-8607-4AE97E8A3633} - System32\Tasks\AdobeAAMUpdater-1.0-Michal-PC-Michal => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04] (Adobe Systems Incorporated)
Task: {501F4D7F-D508-4F41-A5DE-BEE79E96C91D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27] (Google Inc.)
Task: {94B71EC3-1DBE-4EEE-8ABC-1CD20BFD4FBA} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-04-22] (Adobe Systems Incorporated)
Task: {A532F420-E3E9-41E1-8657-3F6EB45B2079} - System32\Tasks\McAfee Remediation (Prepare) => C:\Program Files\Common Files\AV\McAfee Anti-Virus And Anti-Spyware\upgrade.exe [2016-03-31] (McAfee, Inc.)
Task: {B1971EB7-AFBA-418F-80D5-3365F4950DA7} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-05-13] (Adobe Systems Incorporated)
Task: {EA079474-A7A0-44AE-BFB2-1935833F43F0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27] (Google Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\Michal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> %SNP%
ShortcutWithArgument: C:\Users\Michal\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> %SNP%
ShortcutWithArgument: C:\Users\Michal\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.mystartsearch.com/?type=sc&ts=14417 ... CNAF8CNAF8
ShortcutWithArgument: C:\Users\Michal\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> %SNP%

==================== Loaded Modules (Whitelisted) ==============

2016-06-09 00:08 - 2016-06-04 03:56 - 01745560 _____ () C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.84\libglesv2.dll
2016-06-09 00:08 - 2016-06-04 03:56 - 00091288 _____ () C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.84\libegl.dll
2016-06-09 00:08 - 2016-06-04 03:56 - 17565848 _____ () C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.84\PepperFlash\pepflashplayer.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\Microsoft:6mahDLaH8Qdg8a02dCqICmiW6C [2232]
AlternateDataStreams: C:\ProgramData\Microsoft:uQEGHqSf7xmNVMIYluhGhX [2514]
AlternateDataStreams: C:\ProgramData\Microsoft:whsyij2AWUIrE0ZS7JoTy [2024]
AlternateDataStreams: C:\Users\Michal\Local Settings:gChdxFSQGSqt700ajjDULhM9 [2174]
AlternateDataStreams: C:\Users\Michal\Soubory cookie:CohUJIpGCYFwnnkoGixn64y [2514]
AlternateDataStreams: C:\Users\Michal\Soubory cookie:l7yjFcgiq7YkDPG3ZZ [2586]
AlternateDataStreams: C:\Users\Michal\AppData\Local:gChdxFSQGSqt700ajjDULhM9 [2174]
AlternateDataStreams: C:\Users\Michal\AppData\Local\Data aplikací:gChdxFSQGSqt700ajjDULhM9 [2174]
AlternateDataStreams: C:\Users\Michal\AppData\Local\Temp:H8aeHYwfeJ9mTEkIEJPVWfWBAK [2180]
AlternateDataStreams: C:\Users\Michal\AppData\Local\Temporary Internet Files:oEEWmskyXxTfsNezOdTF [2224]
AlternateDataStreams: C:\Users\Michal\AppData\Local\YicUqOk2D:ybQ2EVQUNl7CuwsB7mPt [2552]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2016-06-15 12:22 - 00000035 ____A C:\Windows\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2581228697-3019390296-4131092421-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Michal\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{D6C7638B-FEF3-4A3B-8C2B-5D3CA71FDAAD}] => (Allow) C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2013a\RpcAgentSrv.exe
FirewallRules: [{B9207AFC-7ED2-4E3F-A6DA-1658C35015CC}] => (Allow) C:\Program Files (x86)\uTorrent\uTorrent.exe
FirewallRules: [{982E62BB-0E7C-4DFC-95F3-87667DD8B8EE}] => (Allow) C:\Program Files (x86)\uTorrent\uTorrent.exe
FirewallRules: [{8DA6A316-4C8C-4C56-BF19-B152768269AD}] => (Allow) C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2013a\WNt500x64\RpcSandraSrv.exe
FirewallRules: [{A6116CB6-9FD0-4EAC-9986-F46E13975924}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{FC1C21F8-D26E-4CBC-A738-54C0E6DB5F29}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 16\programs\RM.exe
FirewallRules: [{F2D05A06-1F41-49D0-9669-155ED2F55111}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 16\programs\RM.exe
FirewallRules: [{061FFCC0-242F-4A64-973D-56158FC9E0E4}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 16\programs\NGStudio.exe
FirewallRules: [{94DD18CB-3C30-470C-B891-243F83FC5E23}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 16\programs\NGStudio.exe
FirewallRules: [{93100C58-1D6F-4CDB-8563-366BC0753924}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 16\programs\UMI.exe
FirewallRules: [{355F184A-46B5-484A-A0B4-EDC46D886AAB}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 16\programs\UMI.exe
FirewallRules: [{CE987B04-4B0F-42C0-B810-D802A73378E9}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
FirewallRules: [{061E5D0E-F427-4F01-A8C3-1CC1BC3D7912}] => (Allow) C:\Program Files\CyberLink\PowerDirector14\PDR10.EXE
FirewallRules: [{1B1D9BBF-0F2A-4596-8AA2-657A62680BB4}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{C7598B01-F0E3-4111-91BF-2FDF21C82658}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{E161C5AB-3D0D-40CC-B41D-FC01832C9992}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{356049C9-9A64-4EEB-9196-499B0DAEEF4B}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{F7DFC40C-0FF3-4BC5-8DD7-044A98EE9A1A}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe

==================== Restore Points =========================

14-06-2016 15:02:36 Naplánovaný kontrolní bod
15-06-2016 00:18:04 Windows Update
15-06-2016 01:25:02 Windows Update
15-06-2016 10:04:56 Removed Skype Click to Call
15-06-2016 10:09:07 Removed QuickTime
15-06-2016 12:22:09 Restore Point Created by FRST
15-06-2016 15:29:20 Malwarebytes Anti-Rootkit Restore Point

==================== Faulty Device Manager Devices =============

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (06/15/2016 03:27:02 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 4344441

Error: (06/15/2016 03:27:02 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 4344441

Error: (06/15/2016 03:26:59 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (06/15/2016 02:14:41 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 6303

Error: (06/15/2016 02:14:41 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 6303

Error: (06/15/2016 02:14:41 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (06/15/2016 02:14:40 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 5304

Error: (06/15/2016 02:14:40 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 5304

Error: (06/15/2016 02:14:40 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (06/15/2016 02:14:39 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 4306


System errors:
=============
Error: (06/15/2016 03:37:21 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby PACE License Services bylo dosaženo časového limitu (30000 ms).

Error: (06/15/2016 03:36:46 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Service Installer TrueKey neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.


Error: (06/15/2016 12:30:14 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Service Installer TrueKey neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.


Error: (06/15/2016 12:27:55 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN byl neočekávaně ukončen.

Cesta k modulu: C:\Windows\System32\bcmihvsrv64.dll

Error: (06/15/2016 12:27:55 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN byl neočekávaně ukončen.

Cesta k modulu: C:\Windows\System32\bcmihvsrv64.dll

Error: (06/15/2016 12:27:43 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN byl neočekávaně ukončen.

Cesta k modulu: C:\Windows\System32\bcmihvsrv64.dll

Error: (06/15/2016 12:23:10 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Správce služeb se pokusil o opravnou akci (Restartovat službu) po nečekaném ukončení služby Windows Search, ale tato akce selhala kvůli následující chybě:
Instance této služby je již spuštěna.


Error: (06/15/2016 12:22:40 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Capture Device Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (06/15/2016 12:22:40 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Bonjour Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (06/15/2016 12:22:40 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Windows Search byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund: Restartovat službu.


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i5 CPU M 450 @ 2.40GHz
Percentage of memory in use: 69%
Total physical RAM: 3954.68 MB
Available physical RAM: 1201.34 MB
Total Virtual: 7907.54 MB
Available Virtual: 4570.22 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:465.66 GB) (Free:108.19 GB) NTFS
Drive g: (SP PHD U3) (Fixed) (Total:931.28 GB) (Free:688.23 GB) FAT32
Drive h: () (Removable) (Total:15.05 GB) (Free:10.57 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 2B75CA5B)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.7 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: BE31B85D)
Partition 1: (Active) - (Size=931.5 GB) - (Type=0C)

========================================================
Disk: 2 (Size: 15.1 GB) (Disk ID: 04DD5721)
Partition 1: (Active) - (Size=15.1 GB) - (Type=0C)

==================== End of Addition.txt ============================
Nahoru
altrok
Moderátor
Moderátor
Příspěvky: 7322
Registrován: 15 lis 2012 22:26
Bydliště: Znojmo

Re: Pomalý notebook

#14 Příspěvek od altrok »

:arrow: Ulozte na plochu rkill.exe, ukoncete vsechny aplikace a spustte - kdyby ho havet blokovala, pouzijte alternativni odkaz POZOR - TATO UTILITA MA VELKOU SCHOPNOST MAZAT - NESPOUSTEJTE JI BEZ DOPORUCENI RADCE
:arrow: Ulozte na plochu ComboFix.exe - http://download.bleepingcomputer.com/sUBs/ComboFix.exe
  • Vypnete antiviry a vsechny real-time ochrany
  • spustte ComboFix jako spravce (lepe pod uctem s administratorskym opravnenim)
  • s licencnimi podminkami souhlaste - Ano
  • pokud je nabidnuta instalace konzoly pro zotaveni, souhlaste
  • v prubehu skenovani nechte PC v klidu - nic nespoustejte a do okna ComboFixu neklikejte
  • vysledek skenu naleznete v C:\ComboFix.txt, jehoz obsah mi zkopirujte do pristi odpovedi.
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Nahoru
maicuss
Návštěvník
Návštěvník
Příspěvky: 65
Registrován: 29 čer 2011 08:15

Re: Pomalý notebook

#15 Příspěvek od maicuss »

log z Rkill:



Rkill 2.8.4 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2016 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 06/15/2016 07:03:13 PM in x64 mode.
Windows Version: Windows 7 Home Premium Service Pack 1

Checking for Windows services to stop:

* No malware services found to stop.

Checking for processes to terminate:

* No malware processes found to kill.

Checking Registry for malware related settings:

* No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

* No issues found.

Checking Windows Service Integrity:

* TBS [Missing Service]

Searching for Missing Digital Signatures:

* No issues found.

Checking HOSTS File:

* No issues found.

Program finished at: 06/15/2016 07:05:38 PM
Execution time: 0 hours(s), 2 minute(s), and 25 seconds(s)





log z Combofix:




ComboFix 16-06-01.01 - Michal 15.06.2016 19:13:00.1.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.3955.2558 [GMT 2:00]
Spuštěný z: c:\users\Michal\Desktop\ComboFix.exe
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\Thumbs.db
c:\windows\msdownld.tmp
c:\windows\msvcr71.dll
c:\windows\security\logs\scecomp.log
c:\windows\SysWow64\hookdll.dll
c:\windows\UA000079.DLL
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2016-05-15 do 2016-06-15 )))))))))))))))))))))))))))))))
.
.
2016-06-15 17:23 . 2016-06-15 17:23 -------- d-----w- c:\users\Default\AppData\Local\temp
2016-06-15 16:57 . 2016-06-15 16:57 75888 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{84EFFE9B-3709-4B00-8F43-1B0E782B7F61}\offreg.2740.dll
2016-06-15 11:38 . 2016-06-15 11:38 -------- d-----w- c:\programdata\Malwarebytes
2016-06-15 11:38 . 2016-06-15 13:30 -------- d-----w- c:\programdata\Malwarebytes' Anti-Malware (portable)
2016-06-15 11:38 . 2016-06-15 11:38 192216 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2016-06-15 11:36 . 2016-06-15 11:36 109272 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2016-06-15 09:31 . 2016-06-15 14:09 -------- d-----w- C:\FRST
2016-06-14 22:23 . 2016-05-18 16:10 312832 ----a-w- c:\windows\SysWow64\gdi32.dll
2016-06-14 22:23 . 2016-05-18 16:09 405504 ----a-w- c:\windows\system32\gdi32.dll
2016-06-14 22:23 . 2016-05-12 17:15 2048 ----a-w- c:\windows\system32\tzres.dll
2016-06-14 22:23 . 2016-05-12 15:18 2048 ----a-w- c:\windows\SysWow64\tzres.dll
2016-06-14 22:21 . 2016-04-09 06:58 14186496 ----a-w- c:\windows\system32\shell32.dll
2016-06-14 22:20 . 2016-05-26 20:28 11895896 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{84EFFE9B-3709-4B00-8F43-1B0E782B7F61}\mpengine.dll
2016-06-10 18:00 . 2016-06-10 18:00 -------- d-----w- c:\users\Michal\AppData\Local\PaceAP
2016-06-10 16:56 . 2016-06-10 16:56 -------- d-----w- c:\program files (x86)\iLok License Manager
2016-06-10 16:56 . 2016-06-10 16:56 -------- d-----w- c:\program files (x86)\Common Files\PACE
2016-06-10 16:51 . 2016-06-10 16:51 -------- d-----w- c:\program files\Bonjour
2016-06-10 16:51 . 2016-06-10 16:51 -------- d-----w- c:\program files (x86)\Bonjour
2016-05-29 00:30 . 2016-05-29 00:30 -------- d-----w- c:\users\Michal\AppData\Roaming\proDAD
2016-05-29 00:30 . 2015-09-17 10:54 34064 ----a-w- c:\windows\system32\CLMirrorDriver.dll
2016-05-29 00:30 . 2015-09-17 10:54 21264 ----a-w- c:\windows\system32\drivers\CLMirrorDriver.sys
2016-05-29 00:30 . 2015-09-17 10:54 607256 ----a-w- c:\windows\system32\prodad-codec.dll
2016-05-29 00:30 . 2016-05-29 00:30 -------- d-----w- c:\programdata\proDAD
2016-05-28 12:50 . 2016-05-28 12:50 -------- d-----w- c:\program files (x86)\Common Files\NewBlue
2016-05-28 12:50 . 2016-05-29 00:30 -------- d-----w- c:\program files (x86)\NewBlue
2016-05-28 12:50 . 2016-05-28 12:50 -------- d-----w- c:\program files (x86)\NSIS Uninstall Information
2016-05-28 12:46 . 2016-05-29 00:29 -------- d-----w- c:\program files\CyberLink
2016-05-28 12:35 . 2016-05-28 12:35 -------- d-----w- c:\users\Default\AppData\Local\Google
2016-05-28 12:34 . 2016-05-29 00:22 -------- d-----w- c:\programdata\SUPPORTDIR
2016-05-28 12:34 . 2016-05-28 12:51 -------- d-----w- c:\programdata\install_clap
2016-05-28 12:31 . 2016-05-28 12:31 -------- d-----w- c:\program files (x86)\CyberLink PowerDirector
2016-05-27 17:40 . 2016-05-27 17:40 -------- d-----w- c:\program files (x86)\Common Files\Pegasus Imaging
2016-05-27 17:25 . 2016-05-27 17:25 -------- d-----w- c:\programdata\PCTV Systems
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2016-06-14 23:33 . 2013-03-20 14:40 142482544 ----a-w- c:\windows\system32\MRT.exe
2016-05-12 22:15 . 2016-04-01 17:43 797376 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2016-05-12 22:15 . 2016-04-01 17:43 142528 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2016-05-12 17:14 . 2016-06-14 22:22 344064 ----a-w- c:\windows\system32\schannel.dll
2016-05-12 17:14 . 2016-06-14 22:22 190464 ----a-w- c:\windows\system32\rpchttp.dll
2016-05-12 15:18 . 2016-06-14 22:22 251392 ----a-w- c:\windows\SysWow64\schannel.dll
2016-05-12 15:18 . 2016-06-14 22:22 141312 ----a-w- c:\windows\SysWow64\rpchttp.dll
2016-04-21 13:05 . 2013-03-19 22:04 453288 ------w- c:\windows\system32\MpSigStub.exe
2016-04-14 13:49 . 2016-05-12 18:13 603648 ----a-w- c:\windows\SysWow64\d3d10level9.dll
2016-04-14 13:21 . 2016-05-12 18:13 647680 ----a-w- c:\windows\system32\d3d10level9.dll
2016-04-14 13:09 . 2016-04-14 13:09 53384 ----a-w- c:\windows\system32\drivers\EpfwLWF.sys
2016-04-09 07:02 . 2016-05-12 17:57 631176 ----a-w- c:\windows\system32\winresume.efi
2016-04-09 07:01 . 2016-05-12 17:57 706280 ----a-w- c:\windows\system32\winload.efi
2016-04-09 07:01 . 2016-05-12 17:57 5546216 ----a-w- c:\windows\system32\ntoskrnl.exe
2016-04-09 07:01 . 2016-05-12 18:05 986344 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys
2016-04-09 07:01 . 2016-05-12 18:05 264936 ----a-w- c:\windows\system32\drivers\dxgmms1.sys
2016-04-09 06:59 . 2016-05-12 17:57 3998952 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2016-04-09 06:59 . 2016-05-12 17:57 3943144 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2016-04-09 06:59 . 2016-05-12 17:57 1732864 ----a-w- c:\windows\system32\ntdll.dll
2016-04-09 06:58 . 2016-05-12 17:57 362496 ----a-w- c:\windows\system32\wow64win.dll
2016-04-09 06:58 . 2016-05-12 17:57 215552 ----a-w- c:\windows\system32\winsrv.dll
2016-04-09 06:58 . 2016-05-12 17:57 243712 ----a-w- c:\windows\system32\wow64.dll
2016-04-09 06:58 . 2016-05-12 17:57 13312 ----a-w- c:\windows\system32\wow64cpu.dll
2016-04-09 06:58 . 2016-05-12 17:57 503808 ----a-w- c:\windows\system32\srcore.dll
2016-04-09 06:58 . 2016-05-12 17:57 50176 ----a-w- c:\windows\system32\srclient.dll
2016-04-09 06:58 . 2016-05-12 17:57 63488 ----a-w- c:\windows\system32\setbcdlocale.dll
2016-04-09 06:57 . 2016-05-12 17:57 16384 ----a-w- c:\windows\system32\ntvdm64.dll
2016-04-09 06:57 . 2016-05-12 17:57 1163264 ----a-w- c:\windows\system32\kernel32.dll
2016-04-09 06:57 . 2016-05-12 17:57 419840 ----a-w- c:\windows\system32\KernelBase.dll
2016-04-09 06:57 . 2016-05-12 17:57 43520 ----a-w- c:\windows\system32\csrsrv.dll
2016-04-09 06:57 . 2016-05-12 18:05 144384 ----a-w- c:\windows\system32\cdd.dll
2016-04-09 06:57 . 2016-05-12 17:57 880640 ----a-w- c:\windows\system32\advapi32.dll
2016-04-09 06:57 . 2016-05-12 17:57 59904 ----a-w- c:\windows\system32\appidapi.dll
2016-04-09 06:57 . 2016-05-12 17:57 34816 ----a-w- c:\windows\system32\appidsvc.dll
2016-04-09 06:57 . 2016-05-12 17:57 5120 ---ha-w- c:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-04-09 06:57 . 2016-05-12 17:57 4608 ---ha-w- c:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-04-09 06:57 . 2016-05-12 17:57 4608 ---ha-w- c:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-04-09 06:57 . 2016-05-12 17:57 4096 ---ha-w- c:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-04-09 06:57 . 2016-05-12 17:57 4096 ---ha-w- c:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-04-09 06:57 . 2016-05-12 17:57 3584 ---ha-w- c:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-04-09 06:57 . 2016-05-12 17:57 3584 ---ha-w- c:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-04-09 06:57 . 2016-05-12 17:57 3584 ---ha-w- c:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-04-09 06:57 . 2016-05-12 17:57 3584 ---ha-w- c:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-04-09 06:57 . 2016-05-12 17:57 3072 ---ha-w- c:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-04-09 06:57 . 2016-05-12 17:57 3072 ---ha-w- c:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-04-09 06:57 . 2016-05-12 17:57 3072 ---ha-w- c:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-04-09 06:57 . 2016-05-12 17:57 3072 ---ha-w- c:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-04-09 06:57 . 2016-05-12 17:57 6144 ---ha-w- c:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-04-09 06:57 . 2016-05-12 17:57 4096 ---ha-w- c:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-04-09 06:57 . 2016-05-12 17:57 3584 ---ha-w- c:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-04-09 06:57 . 2016-05-12 17:57 3072 ---ha-w- c:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-04-09 06:57 . 2016-05-12 17:57 3072 ---ha-w- c:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-04-09 06:57 . 2016-05-12 17:57 3072 ---ha-w- c:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-04-09 06:57 . 2016-05-12 17:57 3072 ---ha-w- c:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-04-09 06:57 . 2016-05-12 17:57 3072 ---ha-w- c:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-04-09 06:57 . 2016-05-12 17:57 3072 ---ha-w- c:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-04-09 06:57 . 2016-05-12 17:57 3072 ---ha-w- c:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-04-09 06:57 . 2016-05-12 17:57 3072 ---ha-w- c:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-04-09 06:57 . 2016-05-12 17:57 6656 ----a-w- c:\windows\system32\apisetschema.dll
2016-04-09 06:57 . 2016-05-12 17:57 4096 ---ha-w- c:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-04-09 06:57 . 2016-05-12 17:57 3584 ---ha-w- c:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-04-09 06:57 . 2016-05-12 17:57 3584 ---ha-w- c:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-04-09 06:57 . 2016-05-12 17:57 3072 ---ha-w- c:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-04-09 06:57 . 2016-05-12 17:57 1314112 ----a-w- c:\windows\SysWow64\ntdll.dll
2016-04-09 06:54 . 2016-05-12 17:57 275456 ----a-w- c:\windows\SysWow64\KernelBase.dll
2016-04-09 06:54 . 2016-05-12 17:57 5120 ----a-w- c:\windows\SysWow64\wow32.dll
2016-04-09 06:54 . 2016-05-12 17:57 43008 ----a-w- c:\windows\SysWow64\srclient.dll
2016-04-09 06:54 . 2016-05-12 17:57 644096 ----a-w- c:\windows\SysWow64\advapi32.dll
2016-04-09 06:54 . 2016-05-12 17:57 50688 ----a-w- c:\windows\SysWow64\appidapi.dll
2016-04-09 06:54 . 2016-05-12 17:57 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2016-04-09 06:54 . 2016-05-12 17:57 4608 ---ha-w- c:\windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll
2016-04-09 06:54 . 2016-05-12 17:57 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-04-09 06:54 . 2016-05-12 17:57 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll
2016-04-09 06:54 . 2016-05-12 17:57 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll
2016-04-09 06:54 . 2016-05-12 17:57 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll
2016-04-09 06:54 . 2016-05-12 17:57 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-04-09 06:54 . 2016-05-12 17:57 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-04-09 06:54 . 2016-05-12 17:57 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-memory-l1-1-0.dll
2016-04-09 06:54 . 2016-05-12 17:57 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-04-09 06:54 . 2016-05-12 17:57 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll
2016-04-09 06:54 . 2016-05-12 17:57 5120 ---ha-w- c:\windows\SysWow64\api-ms-win-core-file-l1-1-0.dll
2016-04-09 06:54 . 2016-05-12 17:57 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-04-09 06:54 . 2016-05-12 17:57 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-interlocked-l1-1-0.dll
2016-04-09 06:54 . 2016-05-12 17:57 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll
2016-04-09 06:54 . 2016-05-12 17:57 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll
2016-04-09 06:54 . 2016-05-12 17:57 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-fibers-l1-1-0.dll
2016-04-09 06:54 . 2016-05-12 17:57 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-04-09 06:54 . 2016-05-12 17:57 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-delayload-l1-1-0.dll
2016-04-09 06:54 . 2016-05-12 17:57 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-debug-l1-1-0.dll
2016-04-09 06:54 . 2016-05-12 17:57 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-datetime-l1-1-0.dll
2016-04-09 06:54 . 2016-05-12 17:57 6656 ----a-w- c:\windows\SysWow64\apisetschema.dll
2016-04-09 06:54 . 2016-05-12 17:57 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll
2016-04-09 06:54 . 2016-05-12 17:57 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-string-l1-1-0.dll
2016-04-09 06:54 . 2016-05-12 17:57 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-io-l1-1-0.dll
2016-04-09 06:54 . 2016-05-12 17:57 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-console-l1-1-0.dll
2016-04-09 05:52 . 2016-05-12 17:57 148480 ----a-w- c:\windows\system32\appidpolicyconverter.exe
2016-04-09 05:52 . 2016-05-12 17:57 62464 ----a-w- c:\windows\system32\drivers\appid.sys
2016-04-09 05:52 . 2016-05-12 17:57 17920 ----a-w- c:\windows\system32\appidcertstorecheck.exe
2016-04-09 05:48 . 2016-05-12 17:57 338432 ----a-w- c:\windows\system32\conhost.exe
2016-04-09 05:47 . 2016-05-12 17:57 296960 ----a-w- c:\windows\system32\rstrui.exe
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe" [2007-03-12 153136]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"UVS11 Preload"="c:\program files (x86)\Ulead Systems\Ulead VideoStudio 11\uvPL.exe" [2007-03-03 341488]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2013-04-21 59720]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"mixer5"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Notification Packages REG_MULTI_SZ scecli c:\program files\TrueKey\McAfeeTrueKeyPasswordFilter
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 InstallerService;Service Installer TrueKey;c:\program files\TrueKey\Mcafee.TrueKey.InstallerService.exe;c:\program files\TrueKey\Mcafee.TrueKey.InstallerService.exe [x]
R2 PaceLicenseDServices;PACE License Services;c:\program files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe;c:\program files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 IT9135BDA;IT9135 BDA Devices;c:\windows\system32\Drivers\IT9135BDA.sys;c:\windows\SYSNATIVE\Drivers\IT9135BDA.sys [x]
R3 JMCR;JMCR;c:\windows\system32\DRIVERS\jmcr.sys;c:\windows\SYSNATIVE\DRIVERS\jmcr.sys [x]
R3 SandraAgentSrv;SiSoftware Deployment Agent Service;c:\program files\SiSoftware\SiSoftware Sandra Lite 2013a\RpcAgentSrv.exe;c:\program files\SiSoftware\SiSoftware Sandra Lite 2013a\RpcAgentSrv.exe [x]
R3 Sony PC Companion;Sony PC Companion;c:\program files (x86)\Sony\Sony PC Companion\PCCService.exe;c:\program files (x86)\Sony\Sony PC Companion\PCCService.exe [x]
R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [x]
R3 TrueKeyServiceHelper;TrueKeyServiceHelper;c:\program files\TrueKey\McAfee.TrueKey.ServiceHelper.exe;c:\program files\TrueKey\McAfee.TrueKey.ServiceHelper.exe [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
S0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys;c:\windows\SYSNATIVE\Drivers\sptd.sys [x]
S2 DiagTrack;Diagnostics Tracking Service;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S2 DragonUpdater;COMODO Dragon Update Service;c:\program files (x86)\Comodo\Dragon\dragon_updater.exe;c:\program files (x86)\Comodo\Dragon\dragon_updater.exe [x]
S2 GPAdjustTimeService;1st Atomic Time Adjust Time Service;c:\program files (x86)\1st Atomic Time\1stAtomicTimeAdjustTimeSvc.exe;c:\program files (x86)\1st Atomic Time\1stAtomicTimeAdjustTimeSvc.exe [x]
S2 IntelBCAsvc;Intel(R) Biometric and Context Agent Service;c:\program files\Intel\BCA\pabeSvc64.exe;c:\program files\Intel\BCA\pabeSvc64.exe [x]
S2 RichVideo64;Cyberlink RichVideo64 Service(CRVS);c:\program files\CyberLink\Shared files\RichVideo64.exe;c:\program files\CyberLink\Shared files\RichVideo64.exe [x]
S2 TrueKey;Intel Security True Key;c:\program files\TrueKey\McAfee.TrueKey.Service.exe;c:\program files\TrueKey\McAfee.TrueKey.Service.exe [x]
S3 CLMirrorDriver;CLMirrorDriver;c:\windows\system32\DRIVERS\CLMirrorDriver.sys;c:\windows\SYSNATIVE\DRIVERS\CLMirrorDriver.sys [x]
S3 ffusb2audio;Focusrite USB 2.0 Audio Driver;c:\windows\system32\DRIVERS\ffusb2audio.sys;c:\windows\SYSNATIVE\DRIVERS\ffusb2audio.sys [x]
S3 HECIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys;c:\windows\SYSNATIVE\DRIVERS\HECIx64.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S4 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys;c:\windows\SYSNATIVE\DRIVERS\eamonm.sys [x]
S4 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys;c:\windows\SYSNATIVE\DRIVERS\ehdrv.sys [x]
S4 ekbdflt;ekbdflt;c:\windows\system32\DRIVERS\ekbdflt.sys;c:\windows\SYSNATIVE\DRIVERS\ekbdflt.sys [x]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*Deregistered* - EpfwLWF
*Deregistered* - epfwwfp
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ SSDPSRV upnphost SCardSvr QWAVE wcncsvc
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2016-06-08 22:07 1245848 ----a-w- c:\program files (x86)\Google\Chrome\Application\51.0.2704.84\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2016-06-15 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-04-01 22:15]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Logitech Download Assistant"="c:\windows\System32\LogiLDA.dll" [2012-09-20 1832760]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105
IE: Se&nd to OneNote - c:\progra~1\MICROS~2\Office15\ONBttnIE.dll/105
TCP: DhcpNameServer = 192.168.0.1
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Wow6432Node-HKU-Default-RunOnce-SPReview - c:\windows\System32\SPReview\SPReview.exe
AddRemove-Audio Damage DeVerb VST v1.0 - c:\progra~1\VSTPLU~1\AUDIOD~1\VSTPLU~1\AUDIOD~1\UNWISE.EXE
AddRemove-Audio.Damage.Ronin.v1.0.VST-DAC - c:\progra~1\VSTPLU~1\AUDIOD~1\UNWISE.EXE
AddRemove-Effectrix - c:\progra~2\VSTPLU~1\SUGARB~1\EFFECT~1\UNWISE.EXE
AddRemove-IT9130 DriverInstaller_10.2.3.2 - c:\users\Michal\AppData\Local\Temp\DriverInstall64.exe
AddRemove-MFM2_is1 - c:\program files (x86)\VstPlugIns\u-he\unins000.exe
AddRemove-Moog Modular V 2_is1 - c:\program files (x86)\Vstplugins\Arturia\Moog Modular V 2\unins000.exe
AddRemove-reFX Nexus_is1 - c:\program files (x86)\VstPlugIns\Nexus2\Uninstall Nexus\unins000.exe
AddRemove-reFX Vanguard_is1 - c:\program files (x86)\Vstplugins\Vanguard\Vanguard\Uninstall\unins000.exe
AddRemove-Sonnox Oxford Inflator Native VST_is1 - c:\program files (x86)\Sonnox\Uninstall\Sonnox Oxford Inflator Native VST\unins000.exe
AddRemove-SynapseHydra_is1 - c:\program files (x86)\Vstplugins\Synapse Audio DUNE\Hydra\unins000.exe
AddRemove-Synthation Vanguard Essentials Soundbank - c:\progra~2\VSTPLU~1\Vanguard\UNWISE.EXE
AddRemove-Tone2 AkustiX Enhancer_is1 - c:\program files (x86)\Vstplugins\Tone2\unins006.exe
AddRemove-Tone2 ElectraX Dance and Trance Soundset_is1 - c:\program files (x86)\Vstplugins\Tone2\unins001.exe
AddRemove-Tone2 ElectraX Morphing Soundset_is1 - c:\program files (x86)\Vstplugins\Tone2\unins002.exe
AddRemove-Tone2 ElectraX Vintage Soundset_is1 - c:\program files (x86)\Vstplugins\Tone2\unins003.exe
AddRemove-Tone2 ElectraX Voltage Soundset_is1 - c:\program files (x86)\Vstplugins\Tone2\unins004.exe
AddRemove-Tone2 ElectraX Wavetables Expansion_is1 - c:\program files (x86)\Vstplugins\Tone2\unins005.exe
AddRemove-Tone2 FilterBank3_is1 - c:\program files (x86)\Vstplugins\Tone2\Vstplugins\unins000.exe
AddRemove-Tone2 FireBird_is1 - c:\program files (x86)\Vstplugins\Tone2\unins008.exe
AddRemove-ValhallaRoom_is1 - c:\programdata\Valhalla DSP
.
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\PaceLicenseDServices]
"ImagePath"="\"c:\program files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe\" -u https://activation.paceap.com/InitiateActivation"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWow64\\Flash\\Flash32_11_8_800_94.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWow64\\Flash\\Flash32_11_8_800_94.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWow64\\Flash\\Flash32_11_8_800_94.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWow64\\Flash\\Flash32_11_8_800_94.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2016-06-15 19:29:41
ComboFix-quarantined-files.txt 2016-06-15 17:29
.
Před spuštěním: Volných bajtů: 115 459 756 032
Po spuštění: Volných bajtů: 114 812 207 104
.
- - End Of File - - 340B4E421FE0B3916E238406ACB49941
A36C5E4F47E84449FF07ED3517B43A31
Nahoru
Odpovědět

Zpět na „Řešení problémů, logy“