Prosím o kontrolu PC

Zpráva

goffy1985 · #1 Příspěvek od **goffy1985** » 09 zář 2016 09:56

Dobrý den,

PC je nevybíravě pomalý, tak se na Vás obracím s prosbou o pomoc.

Děkuji

Logfile of random's system information tool 1.10 (written by random/random)
Run by goofanek at 2016-09-09 10:48:02
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 124 GB (49%) free of 252 GB
Total RAM: 8191 MB (79% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:48:13, on 9.9.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18377)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\goofanek.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office14\EXCEL.EXE/3000
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Network Service (NvStreamNetworkSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvscpapisvr.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 7893 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvscpapisvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
"C:\Program Files\Microsoft Security Client\MsMpEng.exe"
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe -first
C:\Windows\System32\spoolsv.exe
"C:\Windows\system32\Dwm.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\Windows\System32\svchost.exe -k utcsvc
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe"
C:\Windows\SysWOW64\PnkBstrA.exe
"C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 2060
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1"
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Program Files\Microsoft Security Client\NisSrv.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe"
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-69d4e92c-7935-4b44-b79c-17081a9c397d -SystemEventPortName:HostProcess-cbba7726-14d8-4c6d-b846-5025dc82f920 -IoCancelEventPortName:HostProcess-78ca9e66-b0cf-4621-a00f-75470903cb72 -NonStateChangingEventPortName:HostProcess-923cec00-6720-4f46-8627-24f5697795cd -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:b90df7b2-816b-4103-b08a-e8e5f5676c30 -DeviceGroupId:WpdFsGroup
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe" serviceapp
\??\C:\Windows\system32\conhost.exe "-1110715434-366705304-3372403851956565583116993115913502520825678599771483615943
"taskhost.exe"
taskeng.exe {ADC8DBFC-6A22-473A-8ABA-BA650D3F36E6}
taskeng.exe {E9A56F99-EC2F-403A-8C00-EAFDA405B96C}
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe" -boot
C:\Windows\system32\sppsvc.exe
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 --no-rate-limit "--database=C:\Users\goofanek\AppData\Local\Google\Chrome\User Data\Crashpad" --url=https://clients2.google.com/cr/report --annotation=channel=-m --annotation=plat=Win32 --annotation=prod=Chrome --annotation=ver=52.0.2743.116 --handshake-handle=0xb0
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="2152.0.2131691316\598361633" --mojo-application-channel-token=1C58D402BA7530E963DB4057361ABDEB --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=AppBannerTriggering/Aggressive/AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ClientSideDetectionModel/Model0/DirectWriteFontProxy/UseDirectWriteFontProxy/DisallowFetchForDocWrittenScriptsInMainFrame/Default/EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/*NetworkQualityEstimator/Enabled/OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PasswordManagerSettingsMigration/Control/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/ResourcePriorities/Launch25PermanentA_11011_1_1_10/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_63/*UMA-Uniformity-Trial-10-Percent/group_05/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_18/*UMA-Uniformity-Trial-50-Percent/group_01/*UMA_CheckStates/Checks/ --disable-direct-composition --supports-dual-gpus=false --gpu-driver-bug-workarounds=4,12,13,27,55,71 --gpu-vendor-id=0x10de --gpu-device-id=0x1201 --gpu-driver-vendor=NVIDIA --gpu-driver-version=10.18.13.6869 --gpu-driver-date=6-29-2016 --mojo-platform-channel-handle=1108 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=AppBannerTriggering/Aggressive/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/DirectWriteFontProxy/UseDirectWriteFontProxy/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/*EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Control/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Launch25PermanentA_11011_1_1_10/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_63/*UMA-Uniformity-Trial-10-Percent/group_05/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_18/*UMA-Uniformity-Trial-50-Percent/group_01/*UMA_CheckStates/Checks/ --primordial-pipe-token=65AC00B4AEF29110568A2657E7C55303 --lang=cs --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=fetchDeferLateScripts=true,fetchIncreaseFontPriority=true,fetchIncreasePriorities=true --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=95807041C816945D34585D5A7797D415 --mojo-application-channel-token=85219666942A4B7D07112F1873D154E3 --channel="2152.3.1798422238\118466451" --mojo-platform-channel-handle=2360 /prefetch:1
C:\Windows\system32\wbem\wmiprvse.exe
wmiadap.exe /F /T /R
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\servicing\TrustedInstaller.exe
"C:\Windows\system32\makecab.exe" C:\Windows\Logs\CBS\CbsPersist_20160908140332.log C:\Windows\Logs\CBS\CbsPersist_20160908140332.cab
\??\C:\Windows\system32\conhost.exe "535673852-9088657071696844311-16805116415528832561006494499413588453-1913578652
C:\Windows\system32\sdclt.exe /CHECKSKIPPED
C:\Windows\system32\compattel\DiagTrackRunner.exe /UploadEtlFilesOnly
C:\Windows\system32\GWX\GWXConfigManager.exe /RefreshConfigAndContent
taskhost.exe $(Arg0)
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=AppBannerTriggering/Aggressive/*AutomaticTabDiscarding/Enabled_Once_10-gen2/*CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/DirectWriteFontProxy/UseDirectWriteFontProxy/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/*EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Control/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/*PreconnectMore/Default/*QUIC/EnabledNoId/*ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Launch25PermanentA_11011_1_1_10/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPrompt/*SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_63/*UMA-Uniformity-Trial-10-Percent/group_05/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_18/*UMA-Uniformity-Trial-50-Percent/group_01/*UMA_CheckStates/Checks/ --primordial-pipe-token=DFCE17AAFA7E7CDF60558E6826067809 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=fetchDeferLateScripts=true,fetchIncreaseFontPriority=true,fetchIncreasePriorities=true --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=A149EA4C8FF42D5FF91A2CF4F512577E --mojo-application-channel-token=D660CB7F4FC3AF7911FF693A38AF880A --channel="2152.12.1364747997\1667391610" --mojo-platform-channel-handle=1804 /prefetch:1
\??\C:\Windows\system32\conhost.exe "1862228043-111504389299461236120619562233000124861756638475869129109-755159850
C:\Windows\system32\Wat\WatAdminSvc.exe /run
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 524 528 536 65536 532
"C:\Users\goofanek\Desktop\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\SlimDrivers Startup.job - C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe -boot

=========Mozilla firefox=========

ProfilePath - C:\Users\goofanek\AppData\Roaming\Mozilla\Firefox\Profiles\g9gt0wj9.default-1464856308873

prefs.js - "browser.startup.homepage" - "https://www.google.cz/"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 22.0.0.209 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_22_0_0_209.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.50428.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 22.0.0.209 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_22_0_0_209.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.50428.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 532336]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~3\Office14\URLREDIR.DLL [2013-03-06 690392]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 403840]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 562904]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2016-01-29 1340192]
"rundll32"=C:\Program Files\GeniusBox\GeniusBox.dll [2015-05-11 2712064]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-06-24 1110232]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
C:\Program Files\CCleaner\CCleaner64.exe [2015-07-17 8418584]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite Automount]
C:\Program Files\DAEMON Tools Lite\DTAgent.exe [2015-06-18 4468056]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvBackend]
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2016-06-30 2397120]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ShadowPlay]
C:\Windows\system32\nvspcap64.dll [2016-06-30 1767944]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VirtualCloneDrive]
C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [2013-03-10 88984]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"wave9"=wdmaud.drv
"midi9"=wdmaud.drv
"mixer9"=wdmaud.drv
"wave8"=wdmaud.drv
"midi8"=wdmaud.drv
"mixer8"=wdmaud.drv
"wave7"=wdmaud.drv
"midi7"=wdmaud.drv
"mixer7"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2016-09-09 10:48:03 ----D---- C:\Program Files\trend micro
2016-09-09 10:48:02 ----D---- C:\rsit
2016-08-28 11:56:55 ----SHD---- C:\Config.Msi
2016-08-28 11:23:03 ----A---- C:\Windows\SYSWOW64\occache.dll
2016-08-28 11:23:03 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2016-08-28 11:23:03 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2016-08-28 11:23:03 ----A---- C:\Windows\SYSWOW64\inseng.dll
2016-08-28 11:23:03 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2016-08-28 11:23:03 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2016-08-28 11:23:03 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2016-08-28 11:23:03 ----A---- C:\Windows\system32\inseng.dll
2016-08-28 11:23:03 ----A---- C:\Windows\system32\iernonce.dll
2016-08-28 11:23:03 ----A---- C:\Windows\system32\ieetwproxystub.dll
2016-08-28 11:23:03 ----A---- C:\Windows\system32\ieetwcollector.exe
2016-08-28 11:23:03 ----A---- C:\Windows\system32\ie4uinit.exe
2016-08-28 11:23:02 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2016-08-28 11:23:02 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2016-08-28 11:23:02 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2016-08-28 11:23:02 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2016-08-28 11:23:02 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2016-08-28 11:23:02 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2016-08-28 11:23:02 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-08-28 11:23:01 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2016-08-28 11:23:01 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2016-08-28 11:23:00 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2016-08-28 11:23:00 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2016-08-28 11:23:00 ----A---- C:\Windows\SYSWOW64\jscript.dll
2016-08-28 11:23:00 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2016-08-28 11:23:00 ----A---- C:\Windows\system32\urlmon.dll
2016-08-28 11:23:00 ----A---- C:\Windows\system32\occache.dll
2016-08-28 11:23:00 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2016-08-28 11:23:00 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2016-08-28 11:23:00 ----A---- C:\Windows\system32\iedkcs32.dll
2016-08-28 11:22:59 ----A---- C:\Windows\SYSWOW64\ieui.dll
2016-08-28 11:22:59 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2016-08-28 11:22:59 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2016-08-28 11:22:59 ----A---- C:\Windows\system32\msfeeds.dll
2016-08-28 11:22:59 ----A---- C:\Windows\system32\iesetup.dll
2016-08-28 11:22:59 ----A---- C:\Windows\system32\dxtrans.dll
2016-08-28 11:22:58 ----A---- C:\Windows\system32\iertutil.dll
2016-08-28 11:22:58 ----A---- C:\Windows\system32\ieapfltr.dll
2016-08-28 11:22:57 ----A---- C:\Windows\SYSWOW64\wininet.dll
2016-08-28 11:22:57 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2016-08-28 11:22:57 ----A---- C:\Windows\SYSWOW64\msrating.dll
2016-08-28 11:22:57 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2016-08-28 11:22:57 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2016-08-28 11:22:57 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2016-08-28 11:22:57 ----A---- C:\Windows\system32\vbscript.dll
2016-08-28 11:22:56 ----A---- C:\Windows\system32\mshtmled.dll
2016-08-28 11:22:56 ----A---- C:\Windows\system32\ieui.dll
2016-08-28 11:22:56 ----A---- C:\Windows\system32\ieframe.dll
2016-08-28 11:22:56 ----A---- C:\Windows\system32\dxtmsft.dll
2016-08-28 11:22:55 ----A---- C:\Windows\system32\webcheck.dll
2016-08-28 11:22:55 ----A---- C:\Windows\system32\mshtmlmedia.dll
2016-08-28 11:22:55 ----A---- C:\Windows\system32\jscript9diag.dll
2016-08-28 11:22:55 ----A---- C:\Windows\system32\jscript.dll
2016-08-28 11:22:55 ----A---- C:\Windows\system32\ieUnatt.exe
2016-08-28 11:22:54 ----A---- C:\Windows\system32\wininet.dll
2016-08-28 11:22:54 ----A---- C:\Windows\system32\jsproxy.dll
2016-08-28 11:22:54 ----A---- C:\Windows\system32\jscript9.dll
2016-08-28 11:22:53 ----A---- C:\Windows\system32\msrating.dll
2016-08-28 11:22:53 ----A---- C:\Windows\system32\MshtmlDac.dll
2016-08-28 11:22:53 ----A---- C:\Windows\system32\mshtml.dll
2016-08-28 11:22:24 ----A---- C:\Windows\system32\devinv.dll
2016-08-28 11:22:24 ----A---- C:\Windows\system32\appraiser.dll
2016-08-28 11:22:24 ----A---- C:\Windows\system32\aeinv.dll
2016-08-28 11:22:23 ----A---- C:\Windows\system32\invagent.dll
2016-08-28 11:22:23 ----A---- C:\Windows\system32\generaltel.dll
2016-08-28 11:22:23 ----A---- C:\Windows\system32\CompatTelRunner.exe
2016-08-28 11:22:23 ----A---- C:\Windows\system32\centel.dll
2016-08-28 11:22:23 ----A---- C:\Windows\system32\aepic.dll
2016-08-28 11:22:23 ----A---- C:\Windows\system32\acmigration.dll
2016-08-28 11:22:22 ----A---- C:\Windows\SYSWOW64\webio.dll
2016-08-28 11:22:22 ----A---- C:\Windows\system32\win32k.sys
2016-08-28 11:22:22 ----A---- C:\Windows\system32\webio.dll
2016-08-28 11:22:21 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2016-08-28 11:22:21 ----A---- C:\Windows\system32\win32spl.dll
2016-08-28 11:22:21 ----A---- C:\Windows\system32\localspl.dll
2016-08-28 11:22:20 ----A---- C:\Windows\SYSWOW64\ntprint.exe
2016-08-28 11:22:20 ----A---- C:\Windows\SYSWOW64\ntprint.dll
2016-08-28 11:22:20 ----A---- C:\Windows\system32\wpnpinst.exe
2016-08-28 11:22:20 ----A---- C:\Windows\system32\ntprint.exe
2016-08-28 11:22:20 ----A---- C:\Windows\system32\ntprint.dll
2016-08-28 11:22:20 ----A---- C:\Windows\system32\inetppui.dll
2016-08-28 11:22:20 ----A---- C:\Windows\system32\inetpp.dll
2016-08-28 10:49:23 ----A---- C:\Windows\system32\NvRtmpStreamer64.dll
2016-08-28 10:48:15 ----A---- C:\Windows\SYSWOW64\nvStreaming.exe
2016-08-28 10:47:51 ----A---- C:\Windows\SYSWOW64\vulkaninfo.exe
2016-08-28 10:47:51 ----A---- C:\Windows\SYSWOW64\vulkan-1.dll
2016-08-28 10:47:51 ----A---- C:\Windows\system32\vulkaninfo.exe
2016-08-28 10:47:51 ----A---- C:\Windows\system32\vulkan-1.dll
2016-08-28 10:47:33 ----D---- C:\Program Files (x86)\VulkanRT
2016-08-28 10:47:04 ----A---- C:\Windows\system32\nv3dappshextr.dll
2016-08-28 10:47:04 ----A---- C:\Windows\system32\nv3dappshext.dll
2016-08-28 10:44:10 ----A---- C:\Windows\SYSWOW64\nvaudcap32v.dll
2016-08-28 10:44:10 ----A---- C:\Windows\system32\drivers\nvvad64v.sys
2016-08-28 10:44:09 ----A---- C:\Windows\system32\nvhdap64.dll
2016-08-28 10:44:09 ----A---- C:\Windows\system32\drivers\nvhda64v.sys
2016-08-28 10:44:08 ----A---- C:\Windows\SYSWOW64\nvumdshim.dll
2016-08-28 10:44:08 ----A---- C:\Windows\SYSWOW64\nvptxJitCompiler.dll
2016-08-28 10:44:08 ----A---- C:\Windows\SYSWOW64\nvopencl.dll
2016-08-28 10:44:08 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2016-08-28 10:44:08 ----A---- C:\Windows\SYSWOW64\nvoglshim32.dll
2016-08-28 10:44:08 ----A---- C:\Windows\SYSWOW64\nvinit.dll
2016-08-28 10:44:08 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2016-08-28 10:44:08 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2016-08-28 10:44:08 ----A---- C:\Windows\SYSWOW64\nvfatbinaryLoader.dll
2016-08-28 10:44:08 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2016-08-28 10:44:08 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2016-08-28 10:44:08 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2016-08-28 10:44:08 ----A---- C:\Windows\system32\nvumdshimx.dll
2016-08-28 10:44:08 ----A---- C:\Windows\system32\nvptxJitCompiler.dll
2016-08-28 10:44:08 ----A---- C:\Windows\system32\nvopencl.dll
2016-08-28 10:44:08 ----A---- C:\Windows\system32\nvoglv64.dll
2016-08-28 10:44:08 ----A---- C:\Windows\system32\nvoglshim64.dll
2016-08-28 10:44:08 ----A---- C:\Windows\system32\nvinitx.dll
2016-08-28 10:44:08 ----A---- C:\Windows\system32\NvIFR64.dll
2016-08-28 10:44:08 ----A---- C:\Windows\system32\NvFBC64.dll
2016-08-28 10:44:08 ----A---- C:\Windows\system32\nvfatbinaryLoader.dll
2016-08-28 10:44:08 ----A---- C:\Windows\system32\nvdispgenco6436869.dll
2016-08-28 10:44:08 ----A---- C:\Windows\system32\nvdispco6436869.dll
2016-08-28 10:44:08 ----A---- C:\Windows\system32\nvd3dumx.dll
2016-08-28 10:44:08 ----A---- C:\Windows\system32\nvcuvid.dll
2016-08-28 10:44:08 ----A---- C:\Windows\system32\nvcuda.dll
2016-08-28 10:44:08 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2016-08-28 10:44:06 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2016-08-28 10:44:06 ----A---- C:\Windows\system32\nvcompiler.dll
2016-08-28 10:34:06 ----D---- C:\Program Files\Intel
2016-08-28 10:21:49 ----A---- C:\Windows\system32\drivers\SWDUMon.sys
2016-08-20 12:43:22 ----D---- C:\Program Files (x86)\Elaborate Bytes
2016-08-20 12:41:12 ----A---- C:\Users\goofanek\AppData\Roaming\inst.exe
2016-08-20 12:41:11 ----D---- C:\Users\goofanek\AppData\Roaming\Vso
2016-08-20 12:41:11 ----A---- C:\Users\goofanek\AppData\Roaming\pcouffin.sys
2016-08-20 12:40:47 ----D---- C:\Windows\SYSWOW64\sysdir
2016-08-20 12:40:47 ----D---- C:\ProgramData\CloneDVD Studio
2016-08-20 12:40:47 ----D---- C:\Program Files (x86)\CloneDVD 7 Ultimate

======List of files/folders modified in the last 1 month======

2016-09-09 10:48:05 ----D---- C:\Windows\Temp
2016-09-09 10:48:03 ----RD---- C:\Program Files
2016-09-08 16:03:34 ----D---- C:\Windows\system32\config
2016-08-28 12:27:23 ----D---- C:\Windows\Microsoft.NET
2016-08-28 12:25:20 ----RSD---- C:\Windows\assembly
2016-08-28 12:19:17 ----D---- C:\Windows\System32
2016-08-28 12:19:17 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-08-28 12:12:53 ----D---- C:\Windows\winsxs
2016-08-28 12:09:30 ----D---- C:\Windows\SYSWOW64\en-US
2016-08-28 12:09:30 ----D---- C:\Windows\SYSWOW64\cs-CZ
2016-08-28 12:09:30 ----D---- C:\Windows\SysWOW64
2016-08-28 12:09:30 ----D---- C:\Program Files\Internet Explorer
2016-08-28 12:09:27 ----D---- C:\Windows\system32\en-US
2016-08-28 12:09:27 ----D---- C:\Windows\system32\cs-CZ
2016-08-28 12:09:26 ----D---- C:\Program Files\Windows Journal
2016-08-28 12:09:26 ----D---- C:\Program Files (x86)\Internet Explorer
2016-08-28 12:09:24 ----D---- C:\Windows\system32\wbem
2016-08-28 12:09:24 ----D---- C:\Windows\system32\appraiser
2016-08-28 12:09:24 ----D---- C:\Windows\ehome
2016-08-28 12:09:24 ----D---- C:\Windows\AppPatch
2016-08-28 12:09:20 ----D---- C:\Windows\system32\Boot
2016-08-28 11:58:32 ----SHD---- C:\Windows\Installer
2016-08-28 11:58:28 ----D---- C:\ProgramData\Microsoft Help
2016-08-28 11:50:11 ----D---- C:\Windows\system32\MRT
2016-08-28 11:50:10 ----A---- C:\Windows\system32\MRT.exe
2016-08-28 11:46:21 ----D---- C:\Windows\debug
2016-08-28 11:37:43 ----SHD---- C:\System Volume Information
2016-08-28 11:21:30 ----D---- C:\Windows\system32\catroot2
2016-08-28 11:12:04 ----D---- C:\Windows
2016-08-28 11:11:46 ----D---- C:\Windows\inf
2016-08-28 11:07:22 ----D---- C:\Users\goofanek\AppData\Roaming\MPC-HC
2016-08-28 11:07:22 ----D---- C:\Users\goofanek\AppData\Roaming\DAEMON Tools Lite
2016-08-28 11:07:11 ----D---- C:\Windows\Logs
2016-08-28 10:49:06 ----D---- C:\Windows\system32\DriverStore
2016-08-28 10:48:57 ----D---- C:\ProgramData\NVIDIA Corporation
2016-08-28 10:48:50 ----D---- C:\Program Files (x86)\Common Files
2016-08-28 10:48:49 ----RD---- C:\Program Files (x86)
2016-08-28 10:46:15 ----D---- C:\Program Files\NVIDIA Corporation
2016-08-28 10:33:44 ----D---- C:\ProgramData\Package Cache
2016-08-28 10:21:54 ----D---- C:\Windows\Tasks
2016-08-28 10:21:54 ----D---- C:\Windows\system32\Tasks
2016-08-21 14:17:50 ----D---- C:\Games
2016-08-20 12:40:47 ----HD---- C:\ProgramData
2016-08-18 16:35:02 ----SD---- C:\Users\goofanek\AppData\Roaming\Microsoft

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2015-11-13 289120]
R0 mv61xx;mv61xx; C:\Windows\system32\DRIVERS\mv61xx.sys [2010-10-26 181040]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 ElbyCDIO;ElbyCDIO Driver; C:\Windows\System32\Drivers\ElbyCDIO.sys [2014-12-21 40344]
R3 dtlitescsibus;DAEMON Tools Lite Virtual SCSI Bus; C:\Windows\system32\DRIVERS\dtlitescsibus.sys [2015-08-12 30264]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2000-01-01 4430808]
R3 L1E;NDIS Miniport Driver for Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1E62x64.sys [2009-08-23 56320]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys [2005-03-29 8192]
R3 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2015-11-13 133816]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2016-06-30 214592]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2016-06-30 26560]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2016-06-30 56384]
R3 VClone;VClone; C:\Windows\system32\DRIVERS\VClone.sys [2013-07-24 36864]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 SWDUMon;SWDUMon; C:\Windows\system32\DRIVERS\SWDUMon.sys [2002-01-01 16056]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-06-24 82128]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2016-06-30 1163712]
R2 MsMpSvc;Microsoft Antimalware Service; C:\Program Files\Microsoft Security Client\MsMpEng.exe [2016-01-29 23808]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2016-06-30 1879488]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2016-06-30 2521024]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2016-06-29 1352760]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2016-05-30 75136]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvscpapisvr.exe [2016-06-29 424384]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-08-18 2291568]
R3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; C:\Program Files\Microsoft Security Client\NisSrv.exe [2016-01-29 374344]
R3 NvStreamNetworkSvc;NVIDIA Streamer Network Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [2016-06-30 3632576]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2015-11-05 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2015-11-05 125112]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-07-05 107848]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-07-12 270016]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2015-11-05 51376]
S3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [2015-06-18 1268568]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-07-05 107848]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2016-06-10 114688]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2015-08-16 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]

-----------------EOF-----------------

#2 Příspěvek od **Márty84** » 09 zář 2016 10:14

Zdravim

Co konkretne je pomale? Start, internet, prace se slozkama, vsechno... ? A je to pomale porad, nebo sem tam nahodne?

Stahnete crystal disk info http://www.slunecnice.cz/sw/crystaldiskinfo/
Nainstalujte (pozor na pripadne doplnky, ty odmitnete zrusenim zatrzitka) a spustte jako spravce. Za chvili se zobrazi vysledek.
Kliknete nahore na napis Úpravy a pak na napis Kopírovat. To co se zkopiruje (ulozi se to do pameti) mi sem vlozte (ctrl + V)

Stahnete AdwCleaner https://toolslib.net/downloads/finish/1/ a ulozte ho na plochu.
Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Kliknete na Scan a pockejte, az kontrola dobehne.
Pak kliknete na Cleaning
Program zacne pracovat (muze dojit k restartu pc) a vyplivne log (pripadne bude zde C:\AdwCleaner\AdwCleaner[C?].txt ). Ten mi sem zkopirujte.

goffy1985 · #3 Příspěvek od **goffy1985** » 09 zář 2016 10:32

Start pc, než mi naběhne okno internetu, občas mi to háže černé mapy na netu, nezobrazují se mi ikony v "okénku ikon" vpravo dole atd.

----------------------------------------------------------------------------
CrystalDiskInfo 7.0.3 (C) 2008-2016 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows 7 Home Premium SP1 [6.1 Build 7601] (x64)
Date : 2016/09/09 11:24:33

-- Controller Map ----------------------------------------------------------
- ATA Channel 0 (0) [ATA]
- ATA Channel 1 (1) [ATA]
+ Intel(R) ICH10 Family 4 port Serial ATA Storage Controller 1 - 3A20 [ATA]
+ ATA Channel 0 (0)
- SAMSUNG HD642JJ ATA Device
- ATA Channel 1 (1)
+ Intel(R) ICH10 Family 2 port Serial ATA Storage Controller 2 - 3A26 [ATA]
- ATA Channel 0 (0)
- ATA Channel 1 (1)
+ Generic Marvell 61xx RAID Controller [SCSI]
- Marvell Virtual Device
- DAEMON Tools Lite Virtual SCSI Bus [SCSI]
+ Virtual CloneDrive [SCSI]
- ELBY CLONEDRIVE SCSI CdRom Device

-- Disk List ---------------------------------------------------------------
(1) SAMSUNG HD642JJ : 640,1 GB [0/0/0, pd1]

----------------------------------------------------------------------------
(1) SAMSUNG HD642JJ
----------------------------------------------------------------------------
Model : SAMSUNG HD642JJ
Firmware : 1AA01113
Serial Number : S1AFJ90S205295
Disk Size : 640,1 GB (8,4/137,4/640,1/640,1)
Buffer Size : 16384 KB
Queue Depth : 32
# of Sectors : 1250263728
Rotation Rate : Neznámy údaj
Interface : Serial ATA
Major Version : ATA/ATAPI-7
Minor Version : ATA8-ACS version 3b
Transfer Mode : ---- | SATA/300
Power On Hours : 8225 hod.
Power On Count : 4137 krát
Temperature : 39 C (102 F)
Health Status : Dobrý
Features : S.M.A.R.T., APM, AAM, 48bit LBA, NCQ
APM Level : 0000h [OFF]
AAM Level : FE00h [OFF]
Drive Letter : C: D:

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 100 100 _51 000000000000 Počet chyb čtení
03 _86 _86 _11 000000001400 Čas na roztočení ploten
04 _96 _96 __0 000000001164 Počet spuštění/zastavení
05 100 100 _10 000000000000 Počet přemapovaných sektorů
07 100 100 _51 000000000000 Počet chybných hledání
08 100 100 _15 000000000000 Čas potřebný na vyhledání
09 _98 _98 __0 000000002021 Hodin v činnosti
0A 100 100 _51 000000000002 Počet opakovaných pokusů o roztočení ploten
0B 100 100 __0 000000000000 Počet pokusů o překalibrování
0C _96 _96 __0 000000001029 Počet cyklů zapnutí zařízení
0D 100 100 __0 000000000000 Počet pokusů o softvérové opravení chyb při čtení programů z disku
B7 100 100 __0 000000000000 Specifický pro výrobce
B8 100 100 __0 000000000000 Ukončovacích chyb
BB 100 100 __0 000000000000 Ohlášeno neopravitelných chyb
BC 100 100 __0 000000000000 Časový limit příkazu
BE _73 _54 __0 00001B11001B Teplota toku vzduchu
C2 _61 _54 __0 000027110027 Teplota
C3 100 100 __0 000000360F8D Počet oprav chybného čtení
C4 100 100 __0 000000000000 Počet udalostí s číslem realokování sektorů
C5 100 100 __0 000000000000 Počet podezřelých sektorů
C6 100 100 __0 000000000000 Počet neopravitelných sektorů
C7 100 100 __0 000000000032 Počet chyb v kontrolním součtu UltraDMA
C8 100 100 __0 000000000000 Počet chyb při zápisu sektorů
C9 100 100 __0 000000000000 Počet chyb při čtení programů z disku

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0040 3FFF C837 0010 8856 022A 003F 0000 0000 0000
010: 5331 4146 4A39 3053 3230 3532 3935 2020 2020 2020
020: 0003 8000 0004 3141 4130 3131 3133 5341 4D53 554E
030: 4720 4844 3634 324A 4A20 2020 2020 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 0000 2F00
050: 4000 0200 0200 0007 3FFF 0010 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 001F 1706 0000 004C 0040
080: 00F8 0052 746B 7F69 4133 7469 BC41 4123 20FF 0039
090: 0039 0000 FFFE 0000 FE00 0008 0005 005D 86A0 0001
100: 82B0 4A85 0000 0000 0064 0000 0000 0000 5000 0F01
110: 0053 AA15 0000 0000 0000 0000 0000 0000 0000 401C
120: 401C 0000 0000 0000 0000 0000 0000 0000 0029 0000
130: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
140: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 003F 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
220: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 0400 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 EAA5

-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 0F 00 64 64 00 00 00 00 00 00 00 03 07
010: 00 56 56 00 14 00 00 00 00 00 04 32 00 60 60 64
020: 11 00 00 00 00 00 05 33 00 64 64 00 00 00 00 00
030: 00 00 07 0F 00 64 64 00 00 00 00 00 00 00 08 25
040: 00 64 64 00 00 00 00 00 00 00 09 32 00 62 62 21
050: 20 00 00 00 00 00 0A 33 00 64 64 02 00 00 00 00
060: 00 00 0B 12 00 64 64 00 00 00 00 00 00 00 0C 32
070: 00 60 60 29 10 00 00 00 00 00 0D 0E 00 64 64 00
080: 00 00 00 00 00 00 B7 32 00 64 64 00 00 00 00 00
090: 00 00 B8 33 00 64 64 00 00 00 00 00 00 00 BB 32
0A0: 00 64 64 00 00 00 00 00 00 00 BC 32 00 64 64 00
0B0: 00 00 00 00 00 00 BE 22 00 49 36 1B 00 11 1B 00
0C0: 00 00 C2 22 00 3D 36 27 00 11 27 00 00 00 C3 1A
0D0: 00 64 64 8D 0F 36 00 00 00 00 C4 32 00 64 64 00
0E0: 00 00 00 00 00 00 C5 12 00 64 64 00 00 00 00 00
0F0: 00 00 C6 30 00 64 64 00 00 00 00 00 00 00 C7 3E
100: 00 64 64 32 00 00 00 00 00 00 C8 0A 00 64 64 00
110: 00 00 00 00 00 00 C9 0A 00 64 64 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 87 1E 00 7B
170: 03 00 01 00 02 83 0E 83 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 9F

-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 33 00 00 00 00 00 00 00 00 00 00 03 0B
010: 00 00 00 00 00 00 00 00 00 00 04 00 00 00 00 00
020: 00 00 00 00 00 00 05 0A 00 00 00 00 00 00 00 00
030: 00 00 07 33 00 00 00 00 00 00 00 00 00 00 08 0F
040: 00 00 00 00 00 00 00 00 00 00 09 00 00 00 00 00
050: 00 00 00 00 00 00 0A 33 00 00 00 00 00 00 00 00
060: 00 00 0B 00 00 00 00 00 00 00 00 00 00 00 0C 00
070: 00 00 00 00 00 00 00 00 00 00 0D 00 00 00 00 00
080: 00 00 00 00 00 00 B7 00 00 00 00 00 00 00 00 00
090: 00 00 B8 00 00 00 00 00 00 00 00 00 00 00 BB 00
0A0: 00 00 00 00 00 00 00 00 00 00 BC 00 00 00 00 00
0B0: 00 00 00 00 00 00 BE 00 00 00 00 00 00 00 00 00
0C0: 00 00 C2 00 00 00 00 00 00 00 00 00 00 00 C3 00
0D0: 00 00 00 00 00 00 00 00 00 00 C4 00 00 00 00 00
0E0: 00 00 00 00 00 00 C5 00 00 00 00 00 00 00 00 00
0F0: 00 00 C6 00 00 00 00 00 00 00 00 00 00 00 C7 00
100: 00 00 00 00 00 00 00 00 00 00 C8 00 00 00 00 00
110: 00 00 00 00 00 00 C9 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 10

# AdwCleaner v6.010 - Log soubor vytvořen 09/09/2016 na 11:31:38
# Aktualizováno dne 12/08/2016 z ToolsLib
# Databáze : 2016-09-09.2 [Server]
# Operační systém : Windows 7 Home Premium Service Pack 1 (X64)
# Uživatelské jméno : goofanek - GOOFANEK-PC
# Beží od : C:\Users\goofanek\Desktop\adwcleaner_6.010.exe
# Mod: Skenování
# Podpora : https://toolslib.net/forum

***** [ Služby ] *****

SLužba nalezena: swdumon

***** [ Adresáře ] *****

Složka nalezena: C:\Users\goofanek\AppData\Local\slimware utilities inc
Složka nalezena: C:\Users\goofanek\AppData\Local\VirtualStore\Program Files\GeniusBox
Složka nalezena: C:\Program Files\GeniusBox
Složka nalezena: C:\ProgramData\SlimWare Utilities, Inc
Složka nalezena: C:\ProgramData\Application Data\SlimWare Utilities, Inc
Složka nalezena: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SlimDrivers
Složka nalezena: C:\Users\Public\Documents\Downloaded Installers
Složka nalezena: C:\Program Files (x86)\SlimDrivers

***** [ Soubory ] *****

Soubor nalezen: C:\Windows\SysNative\drivers\swdumon.sys
Soubor nalezen: C:\Windows\SysNative\drivers\SWDUMon.sys

***** [ DLL ] *****

Nebyly nalezeny žádné škodlivé DLL soubory.

***** [ WMI ] *****

Nebyly nalezeny žádné škodlivé klíče.

***** [ Zástupce ] *****

Žádné infikovaný zástupce nenalezen.

***** [ Plánovač úloh ] *****

Úkol nalezen: SlimDrivers Startup

***** [ Registry ] *****

Klíč nalezen: HKLM\SOFTWARE\SLIMWARE UTILITIES, INC.
Klíč nalezen: HKLM\SOFTWARE\SlimWare Utilities Inc

***** [ Internetové prohlížeče ] *****

Nebyly nalezeny žádné škodlivé položky prohlížeče Firefox báze.
Nebyly nalezeny žádné škodlivé položky prohlížeče Chromium báze.

*************************

C:\AdwCleaner\AdwCleaner[S0].txt - [1850 Bajtů] - [09/09/2016 11:31:38]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1924 Bajtů] ##########

#4 Příspěvek od **Márty84** » 09 zář 2016 11:47

Log z ADWCleaneru je pouze ze skenu. Ja chtel az po vycisteni, takze pokud jste to jeste neudelal, nechte nalezene veci odstranit.

Udelejte kontrolu s MBAM. Test nastavte podle tohoto navodu (cili Vlastni sken vsech disku) http://forum.viry.cz/viewtopic.php?f=29&t=144868 a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekce

goffy1985 · #5 Příspěvek od **goffy1985** » 09 zář 2016 15:41

# AdwCleaner v6.010 - Log soubor vytvořen 09/09/2016 na 14:23:04
# Aktualizováno dne 12/08/2016 z ToolsLib
# Databáze : 2016-09-09.2 [Server]
# Operační systém : Windows 7 Home Premium Service Pack 1 (X64)
# Uživatelské jméno : goofanek - GOOFANEK-PC
# Beží od : C:\Users\goofanek\Desktop\adwcleaner_6.010.exe
# Mod: Čištění
# Podpora : https://toolslib.net/forum

***** [ Služby ] *****

[-] Služby smazány:swdumon

***** [ Adresáře ] *****

[-] Adresář smazán:C:\Users\goofanek\AppData\Local\slimware utilities inc
[-] Adresář smazán:C:\Users\goofanek\AppData\Local\VirtualStore\Program Files\GeniusBox
[-] Adresář smazán:C:\Program Files\GeniusBox
[-] Adresář smazán:C:\ProgramData\SlimWare Utilities, Inc
[#] Adresář nelze smazat:C:\ProgramData\Application Data\SlimWare Utilities, Inc
[-] Adresář smazán:C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SlimDrivers
[-] Adresář smazán:C:\Users\Public\Documents\Downloaded Installers
[-] Adresář smazán:C:\Program Files (x86)\SlimDrivers

***** [ Soubory ] *****

[-] Soubor smazán:C:\Windows\SysNative\drivers\swdumon.sys
[#] Soubor smazán:C:\Windows\SysNative\drivers\SWDUMon.sys

***** [ DLL ] *****

***** [ WMI ] *****

***** [ Zástupce ] *****

***** [ Plánovač úloh ] *****

***** [ Registry ] *****

[-] Klíč smazán:HKLM\SOFTWARE\SLIMWARE UTILITIES, INC.
[-] Klíč smazán:HKLM\SOFTWARE\SlimWare Utilities Inc

***** [ Prohlížeče ] *****

*************************

:: "Tracing" klíč smazán
:: Winsock nastavení vyčištěno

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [1661 Bajtů] - [09/09/2016 14:23:04]
C:\AdwCleaner\AdwCleaner[S0].txt - [2004 Bajtů] - [09/09/2016 11:31:38]
C:\AdwCleaner\AdwCleaner[S1].txt - [2078 Bajtů] - [09/09/2016 14:22:15]

########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [1883 Bajtů] ##########

MBAM: 0 hrozeb

#6 Příspěvek od **Márty84** » 09 zář 2016 19:24

Dejte logy podle tohoto navodu http://forum.viry.cz/viewtopic.php?f=13&t=133100 - vypnete na chvili antivir, je mozne, ze to bude blokovat jako skodnou, ale pouzivame to porad, jedna se o falesny poplach

(Kdyby nesel Launcher stahnout, dejte logy jen ze samotneho FRST, tedy bez pouziti Launcheru)

goffy1985 · #7 Příspěvek od **goffy1985** » 10 zář 2016 07:42

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 31-08-2016
Ran by goofanek (administrator) on GOOFANEK-PC (10-09-2016 08:40:37)
Running from C:\Users\goofanek\Desktop
Loaded Profiles: goofanek (Available Profiles: goofanek)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvscpapisvr.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1340192 2016-01-29] (Microsoft Corporation)
HKLM\...\Run: [rundll32] => C:\Windows\system32\rundll32.exe "C:\Program Files\GeniusBox\GeniusBox.dll",_
HKU\S-1-5-21-3228134853-3753405377-656824488-1001\...\MountPoints2: J - J:\Setup.exe
HKU\S-1-5-21-3228134853-3753405377-656824488-1001\...\MountPoints2: {5e2af835-4105-11e5-9ef7-002215b3d25d} - J:\setup.exe
HKU\S-1-5-21-3228134853-3753405377-656824488-1001\...\MountPoints2: {5e2af839-4105-11e5-9ef7-002215b3d25d} - L:\setup.exe
HKU\S-1-5-21-3228134853-3753405377-656824488-1001\...\MountPoints2: {870e95f9-6cec-11e6-b6ad-002215b3d25d} - J:\Startme.exe
HKU\S-1-5-21-3228134853-3753405377-656824488-1001\...\MountPoints2: {b0a43c60-66ac-11e6-9117-002215b3d25d} - E:\.autorun\autorun.exe
HKU\S-1-5-21-3228134853-3753405377-656824488-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Bubbles.scr [899584 2010-11-20] (Microsoft Corporation)
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2015-08-15] (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 94.74.192.252 94.74.192.244
Tcpip\..\Interfaces\{A551C8B2-A1DB-42E0-859B-29BFF29CF3E1}: [DhcpNameServer] 94.74.192.252 94.74.192.244

Internet Explorer:
==================
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\goofanek\AppData\Roaming\Mozilla\Firefox\Profiles\g9gt0wj9.default-1464856308873
FF Homepage: hxxps://www.google.cz/
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_22_0_0_209.dll [2016-07-12] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_22_0_0_209.dll [2016-07-12] ()
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-06-29] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-06-29] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-06-30] (Adobe Systems Inc.)
FF Extension: (Adblock Plus) - C:\Users\goofanek\AppData\Roaming\Mozilla\Firefox\Profiles\g9gt0wj9.default-1464856308873\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-06-02]

Chrome:
=======
CHR Profile: C:\Users\goofanek\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Users\goofanek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-07-05]
CHR Extension: (Dokumenty Google) - C:\Users\goofanek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-07-05]
CHR Extension: (Disk Google) - C:\Users\goofanek\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-07-05]
CHR Extension: (YouTube) - C:\Users\goofanek\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-07-05]
CHR Extension: (Tabulky Google) - C:\Users\goofanek\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-07-05]
CHR Extension: (Dokumenty Google offline) - C:\Users\goofanek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-07-05]
CHR Extension: (AdBlock) - C:\Users\goofanek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-08-25]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\goofanek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-07-05]
CHR Extension: (Gmail) - C:\Users\goofanek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-07-05]
CHR Extension: (Chrome Media Router) - C:\Users\goofanek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-09-09]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1268568 2015-06-18] (Disc Soft Ltd)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1163712 2016-06-30] (NVIDIA Corporation)
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2016-01-29] (Microsoft Corporation)
R3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [374344 2016-01-29] (Microsoft Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1879488 2016-06-30] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [3632576 2016-06-30] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2521024 2016-06-30] (NVIDIA Corporation)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [75136 2016-05-30] ()
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2015-08-12] (Disc Soft Ltd)
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [289120 2015-11-13] (Microsoft Corporation)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [8192 2005-03-29] ()
R0 mv61xx; C:\Windows\System32\DRIVERS\mv61xx.sys [181040 2010-10-26] (Marvell Semiconductor, Inc.)
R3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [133816 2015-11-13] (Microsoft Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [26560 2016-06-30] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [56384 2016-06-30] (NVIDIA Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-09-10 08:40 - 2016-09-10 08:40 - 00011059 _____ C:\Users\goofanek\Desktop\FRST.txt
2016-09-10 08:40 - 2016-09-10 08:40 - 00000000 ____D C:\FRST
2016-09-10 08:39 - 2016-09-10 08:39 - 02397696 _____ (Farbar) C:\Users\goofanek\Desktop\FRST64.exe
2016-09-09 23:46 - 2016-08-02 16:54 - 00394440 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-09-09 23:46 - 2016-08-02 16:08 - 00346312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2016-09-09 23:46 - 2016-08-02 08:54 - 25808384 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-09-09 23:46 - 2016-08-02 08:47 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2016-09-09 23:46 - 2016-08-02 08:47 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2016-09-09 23:46 - 2016-08-02 08:32 - 02894336 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-09-09 23:46 - 2016-08-02 08:32 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2016-09-09 23:46 - 2016-08-02 08:31 - 00572416 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-09-09 23:46 - 2016-08-02 08:31 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2016-09-09 23:46 - 2016-08-02 08:31 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2016-09-09 23:46 - 2016-08-02 08:31 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2016-09-09 23:46 - 2016-08-02 08:24 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2016-09-09 23:46 - 2016-08-02 08:23 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2016-09-09 23:46 - 2016-08-02 08:20 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2016-09-09 23:46 - 2016-08-02 08:19 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2016-09-09 23:46 - 2016-08-02 08:19 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2016-09-09 23:46 - 2016-08-02 08:18 - 06047744 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-09-09 23:46 - 2016-08-02 08:18 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-09-09 23:46 - 2016-08-02 08:18 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2016-09-09 23:46 - 2016-08-02 08:11 - 00969216 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2016-09-09 23:46 - 2016-08-02 08:08 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2016-09-09 23:46 - 2016-08-02 08:03 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2016-09-09 23:46 - 2016-08-02 08:00 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-09-09 23:46 - 2016-08-02 07:59 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2016-09-09 23:46 - 2016-08-02 07:56 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2016-09-09 23:46 - 2016-08-02 07:55 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-09-09 23:46 - 2016-08-02 07:54 - 20343808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-09-09 23:46 - 2016-08-02 07:53 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2016-09-09 23:46 - 2016-08-02 07:51 - 00497664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-09-09 23:46 - 2016-08-02 07:51 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2016-09-09 23:46 - 2016-08-02 07:51 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2016-09-09 23:46 - 2016-08-02 07:51 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2016-09-09 23:46 - 2016-08-02 07:51 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2016-09-09 23:46 - 2016-08-02 07:50 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2016-09-09 23:46 - 2016-08-02 07:47 - 02286592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-09-09 23:46 - 2016-08-02 07:45 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2016-09-09 23:46 - 2016-08-02 07:44 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2016-09-09 23:46 - 2016-08-02 07:42 - 00476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2016-09-09 23:46 - 2016-08-02 07:41 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-09-09 23:46 - 2016-08-02 07:41 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2016-09-09 23:46 - 2016-08-02 07:41 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2016-09-09 23:46 - 2016-08-02 07:40 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2016-09-09 23:46 - 2016-08-02 07:38 - 00806400 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-09-09 23:46 - 2016-08-02 07:38 - 00724992 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-09-09 23:46 - 2016-08-02 07:37 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2016-09-09 23:46 - 2016-08-02 07:36 - 02131456 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-09-09 23:46 - 2016-08-02 07:33 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2016-09-09 23:46 - 2016-08-02 07:29 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2016-09-09 23:46 - 2016-08-02 07:28 - 15412224 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-09-09 23:46 - 2016-08-02 07:28 - 00091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2016-09-09 23:46 - 2016-08-02 07:26 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2016-09-09 23:46 - 2016-08-02 07:25 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2016-09-09 23:46 - 2016-08-02 07:24 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2016-09-09 23:46 - 2016-08-02 07:23 - 02868224 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-09-09 23:46 - 2016-08-02 07:22 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2016-09-09 23:46 - 2016-08-02 07:21 - 04608000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-09-09 23:46 - 2016-08-02 07:16 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2016-09-09 23:46 - 2016-08-02 07:15 - 00692736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-09-09 23:46 - 2016-08-02 07:14 - 02055680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-09-09 23:46 - 2016-08-02 07:14 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2016-09-09 23:46 - 2016-08-02 07:11 - 13808128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-09-09 23:46 - 2016-08-02 07:10 - 01550848 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-09-09 23:46 - 2016-08-02 06:59 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-09-09 23:46 - 2016-08-02 06:56 - 02393088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-09-09 23:46 - 2016-08-02 06:53 - 01316352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-09-09 23:46 - 2016-08-02 06:51 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2016-09-09 14:43 - 2016-07-08 17:37 - 00154856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-09-09 14:43 - 2016-07-08 17:37 - 00095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2016-09-09 14:43 - 2016-07-08 17:32 - 01464320 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-09-09 14:43 - 2016-07-08 17:32 - 01212928 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-09-09 14:43 - 2016-07-08 17:32 - 00730624 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-09-09 14:43 - 2016-07-08 17:32 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2016-09-09 14:43 - 2016-07-08 17:32 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2016-09-09 14:43 - 2016-07-08 17:32 - 00343552 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-09-09 14:43 - 2016-07-08 17:32 - 00316416 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2016-09-09 14:43 - 2016-07-08 17:32 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2016-09-09 14:43 - 2016-07-08 17:32 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2016-09-09 14:43 - 2016-07-08 17:32 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2016-09-09 14:43 - 2016-07-08 17:32 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2016-09-09 14:43 - 2016-07-08 17:32 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2016-09-09 14:43 - 2016-07-08 17:32 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2016-09-09 14:43 - 2016-07-08 17:32 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2016-09-09 14:43 - 2016-07-08 17:32 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2016-09-09 14:43 - 2016-07-08 17:32 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2016-09-09 14:43 - 2016-07-08 17:32 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2016-09-09 14:43 - 2016-07-08 17:32 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2016-09-09 14:43 - 2016-07-08 17:32 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2016-09-09 14:43 - 2016-07-08 17:17 - 00666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2016-09-09 14:43 - 2016-07-08 17:17 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2016-09-09 14:43 - 2016-07-08 17:16 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2016-09-09 14:43 - 2016-07-08 17:16 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2016-09-09 14:43 - 2016-07-08 17:16 - 00342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2016-09-09 14:43 - 2016-07-08 17:16 - 00260608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2016-09-09 14:43 - 2016-07-08 17:16 - 00251392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2016-09-09 14:43 - 2016-07-08 17:16 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2016-09-09 14:43 - 2016-07-08 17:16 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2016-09-09 14:43 - 2016-07-08 17:16 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2016-09-09 14:43 - 2016-07-08 17:16 - 00141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2016-09-09 14:43 - 2016-07-08 17:16 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2016-09-09 14:43 - 2016-07-08 17:16 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2016-09-09 14:43 - 2016-07-08 17:16 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2016-09-09 14:43 - 2016-07-08 17:16 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2016-09-09 14:43 - 2016-07-08 17:16 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2016-09-09 14:43 - 2016-07-08 17:03 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2016-09-09 14:43 - 2016-07-08 16:57 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2016-09-09 14:43 - 2016-07-08 16:56 - 00291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2016-09-09 14:43 - 2016-07-08 16:56 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2016-09-09 14:43 - 2016-07-08 16:55 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2016-09-09 14:43 - 2016-07-08 16:55 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2016-09-09 14:43 - 2016-07-08 16:50 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2016-09-09 14:37 - 2016-07-08 17:01 - 03218944 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-09-09 11:25 - 2016-09-09 14:23 - 00000000 ____D C:\AdwCleaner
2016-09-09 11:25 - 2016-09-09 11:33 - 00010859 _____ C:\Users\goofanek\Desktop\Nový textový dokument.txt
2016-09-09 11:23 - 2016-09-09 11:23 - 00000000 ____D C:\Program Files (x86)\CrystalDiskInfo
2016-09-09 11:21 - 2016-09-09 11:22 - 03826240 _____ C:\Users\goofanek\Desktop\adwcleaner_6.010.exe
2016-09-09 10:48 - 2016-09-09 10:48 - 00000000 ____D C:\rsit
2016-09-09 10:48 - 2016-09-09 10:48 - 00000000 ____D C:\Program Files\trend micro
2016-09-09 10:47 - 2016-09-09 10:47 - 01222144 _____ C:\Users\goofanek\Desktop\RSITx64.exe
2016-08-28 11:22 - 2016-06-26 02:35 - 00041704 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-08-28 11:22 - 2016-06-26 02:27 - 01208320 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-08-28 11:22 - 2016-06-26 02:27 - 00970240 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2016-08-28 11:22 - 2016-06-26 02:27 - 00756736 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2016-08-28 11:22 - 2016-06-26 02:27 - 00344576 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.dll
2016-08-28 11:22 - 2016-06-26 02:27 - 00166400 _____ (Microsoft Corporation) C:\Windows\system32\inetpp.dll
2016-08-28 11:22 - 2016-06-26 02:27 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\inetppui.dll
2016-08-28 11:22 - 2016-06-25 21:54 - 00497152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2016-08-28 11:22 - 2016-06-25 21:53 - 00297472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntprint.dll
2016-08-28 11:22 - 2016-06-25 21:53 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.exe
2016-08-28 11:22 - 2016-06-25 21:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\wpnpinst.exe
2016-08-28 11:22 - 2016-06-25 21:41 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntprint.exe
2016-08-28 11:22 - 2016-06-22 15:06 - 00268800 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll
2016-08-28 11:22 - 2016-06-17 20:24 - 01490432 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-08-28 11:22 - 2016-06-17 20:24 - 00571904 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2016-08-28 11:22 - 2016-06-17 20:24 - 00544256 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-08-28 11:22 - 2016-06-17 20:24 - 00294912 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-08-28 11:22 - 2016-06-17 20:24 - 00219136 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2016-08-28 11:22 - 2016-06-17 20:24 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-08-28 11:22 - 2016-03-09 21:00 - 00396800 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2016-08-28 11:22 - 2016-03-09 20:40 - 00316416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2016-08-28 11:12 - 2002-01-01 00:07 - 00000000 ____D C:\Users\goofanek\AppData\Local\CrashDumps
2016-08-28 10:49 - 2016-06-30 00:44 - 00112216 _____ C:\Windows\system32\NvRtmpStreamer64.dll
2016-08-28 10:48 - 2016-06-29 20:02 - 00111552 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2016-08-28 10:47 - 2016-06-29 20:36 - 00532416 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2016-08-28 10:47 - 2016-06-29 20:36 - 00083512 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2016-08-28 10:44 - 2016-06-30 00:44 - 39979576 _____ C:\Windows\system32\nvcompiler.dll
2016-08-28 10:44 - 2016-06-30 00:44 - 35115968 _____ C:\Windows\SysWOW64\nvcompiler.dll
2016-08-28 10:44 - 2016-06-30 00:44 - 31626808 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2016-08-28 10:44 - 2016-06-30 00:44 - 25402424 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2016-08-28 10:44 - 2016-06-30 00:44 - 17302264 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2016-08-28 10:44 - 2016-06-30 00:44 - 14356952 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2016-08-28 10:44 - 2016-06-30 00:44 - 13523392 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2016-08-28 10:44 - 2016-06-30 00:44 - 10672752 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2016-08-28 10:44 - 2016-06-30 00:44 - 10656296 _____ C:\Windows\system32\nvptxJitCompiler.dll
2016-08-28 10:44 - 2016-06-30 00:44 - 10214760 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2016-08-28 10:44 - 2016-06-30 00:44 - 09006760 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2016-08-28 10:44 - 2016-06-30 00:44 - 08742032 _____ C:\Windows\SysWOW64\nvptxJitCompiler.dll
2016-08-28 10:44 - 2016-06-30 00:44 - 08600904 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2016-08-28 10:44 - 2016-06-30 00:44 - 03513400 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2016-08-28 10:44 - 2016-06-30 00:44 - 03067448 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2016-08-28 10:44 - 2016-06-30 00:44 - 01922616 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6436869.dll
2016-08-28 10:44 - 2016-06-30 00:44 - 01571776 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6436869.dll
2016-08-28 10:44 - 2016-06-30 00:44 - 00984000 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2016-08-28 10:44 - 2016-06-30 00:44 - 00909248 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2016-08-28 10:44 - 2016-06-30 00:44 - 00771640 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2016-08-28 10:44 - 2016-06-30 00:44 - 00707520 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2016-08-28 10:44 - 2016-06-30 00:44 - 00669952 _____ C:\Windows\system32\nvfatbinaryLoader.dll
2016-08-28 10:44 - 2016-06-30 00:44 - 00565392 _____ C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2016-08-28 10:44 - 2016-06-30 00:44 - 00476664 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2016-08-28 10:44 - 2016-06-30 00:44 - 00394912 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2016-08-28 10:44 - 2016-06-30 00:44 - 00214592 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2016-08-28 10:44 - 2016-06-30 00:44 - 00178136 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2016-08-28 10:44 - 2016-06-30 00:44 - 00155768 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2016-08-28 10:44 - 2016-06-30 00:44 - 00153416 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2016-08-28 10:44 - 2016-06-30 00:44 - 00131768 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2016-08-28 10:44 - 2016-06-30 00:44 - 00102976 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2016-08-28 10:44 - 2016-06-30 00:44 - 00056384 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2016-08-28 10:44 - 2016-06-30 00:44 - 00046024 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2016-08-28 10:44 - 2016-06-30 00:44 - 00000594 _____ C:\Windows\SysWOW64\nv-vk32.json
2016-08-28 10:44 - 2016-06-30 00:44 - 00000594 _____ C:\Windows\system32\nv-vk64.json
2016-08-28 10:34 - 2016-08-28 10:34 - 00000000 ____D C:\Program Files\Intel
2016-08-27 20:12 - 2016-08-27 20:14 - 00000000 ____D C:\Users\goofanek\Desktop\foto
2016-08-21 14:33 - 2016-08-21 14:33 - 00000000 ____D C:\Users\goofanek\AppData\Local\EA Games
2016-08-21 14:32 - 2016-08-21 14:32 - 00000000 ____D C:\Users\goofanek\Documents\EA Games
2016-08-21 14:27 - 2016-08-21 14:27 - 00001650 _____ C:\Users\Public\Desktop\The Godfather II.lnk
2016-08-21 14:27 - 2016-08-21 14:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Godfather II
2016-08-20 12:43 - 2016-09-09 14:50 - 00000000 ____D C:\Program Files (x86)\Elaborate Bytes
2016-08-20 12:41 - 2016-08-20 12:42 - 00099384 _____ C:\Users\goofanek\AppData\Roaming\inst.exe
2016-08-20 12:41 - 2016-08-20 12:42 - 00082816 _____ (VSO Software) C:\Users\goofanek\AppData\Roaming\pcouffin.sys
2016-08-20 12:41 - 2016-08-20 12:42 - 00007859 _____ C:\Users\goofanek\AppData\Roaming\pcouffin.cat
2016-08-20 12:41 - 2016-08-20 12:42 - 00000000 ____D C:\Users\goofanek\AppData\Roaming\Vso
2016-08-20 12:41 - 2016-08-20 12:41 - 00000000 ____D C:\Users\goofanek\Documents\PcSetup
2016-08-20 12:40 - 2016-08-20 12:42 - 00000000 ____D C:\Program Files (x86)\CloneDVD 7 Ultimate
2016-08-20 12:40 - 2016-08-20 12:41 - 00000000 ____D C:\Windows\SysWOW64\sysdir
2016-08-20 12:40 - 2016-08-20 12:40 - 00000000 ____D C:\ProgramData\CloneDVD Studio
2016-08-20 12:39 - 2016-08-20 12:39 - 00000000 ____D C:\Users\Public\Documents\Daemon Tools Images

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-09-10 08:30 - 2015-08-12 16:30 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-09-10 08:24 - 2009-07-14 06:45 - 00025088 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-09-10 08:24 - 2009-07-14 06:45 - 00025088 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-09-10 08:16 - 2009-07-14 17:18 - 02955444 _____ C:\Windows\system32\perfh005.dat
2016-09-10 08:16 - 2009-07-14 17:18 - 00914434 _____ C:\Windows\system32\perfc005.dat
2016-09-10 08:16 - 2009-07-14 07:13 - 00006252 _____ C:\Windows\system32\PerfStringBackup.INI
2016-09-10 08:12 - 2016-07-05 14:54 - 00000952 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-09-10 08:09 - 2016-07-05 14:54 - 00000948 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-09-10 08:09 - 2015-10-26 12:59 - 00000000 ____D C:\ProgramData\NVIDIA
2016-09-10 08:09 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-09-09 23:36 - 2009-07-14 06:45 - 00338600 _____ C:\Windows\system32\FNTCACHE.DAT
2016-09-09 23:34 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\PLA
2016-09-09 18:07 - 2015-08-12 17:02 - 00000000 ____D C:\Windows\system32\MRT
2016-09-09 18:04 - 2015-08-12 17:01 - 147640136 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-09-09 16:13 - 2016-07-05 14:54 - 00002195 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-09-09 16:13 - 2016-07-05 14:54 - 00002183 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-09-09 14:35 - 2015-10-28 23:11 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-08-28 12:09 - 2015-08-12 17:17 - 00000000 ____D C:\Windows\system32\appraiser
2016-08-28 12:09 - 2009-07-14 17:37 - 00000000 ____D C:\Program Files\Windows Journal
2016-08-28 11:11 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf
2016-08-28 11:07 - 2015-08-18 09:37 - 00000000 ____D C:\Users\goofanek\AppData\Roaming\MPC-HC
2016-08-28 11:07 - 2015-08-12 17:37 - 00000000 ____D C:\Users\goofanek\AppData\Roaming\DAEMON Tools Lite
2016-08-28 11:05 - 2015-08-13 11:54 - 00000000 ____D C:\Users\goofanek\Desktop\Vše
2016-08-28 10:50 - 2015-08-12 17:19 - 00000000 ____D C:\Users\goofanek\AppData\Local\NVIDIA Corporation
2016-08-28 10:48 - 2015-08-21 11:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2016-08-28 10:48 - 2015-08-12 16:47 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-08-28 10:46 - 2015-08-12 16:46 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-08-28 10:33 - 2015-08-18 12:25 - 00000000 ____D C:\ProgramData\Package Cache
2016-08-21 14:17 - 2016-01-06 21:40 - 00000000 ____D C:\Games
2016-08-20 13:00 - 2015-08-13 11:34 - 00000000 ____D C:\Users\goofanek\Desktop\Programy

==================== Files in the root of some directories =======

2016-08-20 12:41 - 2016-08-20 12:42 - 0099384 _____ () C:\Users\goofanek\AppData\Roaming\inst.exe
2016-04-15 18:18 - 2014-05-24 21:09 - 0603763 ___SH () C:\Users\goofanek\AppData\Roaming\libcurl-4.dll
2016-04-15 18:18 - 2014-05-04 11:16 - 0207360 ___SH (CodePlex Community) C:\Users\goofanek\AppData\Roaming\Microsoft.Win32.TaskScheduler.dll
2016-04-15 18:18 - 2013-08-11 15:41 - 0044032 ___SH (NirSoft) C:\Users\goofanek\AppData\Roaming\nircmd.exe
2016-08-20 12:41 - 2016-08-20 12:42 - 0007859 _____ () C:\Users\goofanek\AppData\Roaming\pcouffin.cat
2016-08-20 12:41 - 2016-08-20 12:42 - 0001167 _____ () C:\Users\goofanek\AppData\Roaming\pcouffin.inf
2016-08-20 12:41 - 2016-08-20 12:42 - 0000033 _____ () C:\Users\goofanek\AppData\Roaming\pcouffin.log
2016-08-20 12:41 - 2016-08-20 12:42 - 0082816 _____ (VSO Software) C:\Users\goofanek\AppData\Roaming\pcouffin.sys
2016-04-15 18:18 - 2014-05-24 21:09 - 0042496 ___SH (Open Source Software community project) C:\Users\goofanek\AppData\Roaming\pthreadGC2-w64.dll
2015-08-21 11:14 - 2016-04-19 15:35 - 0007621 _____ () C:\Users\goofanek\AppData\Local\resmon.resmoncfg
2015-08-12 17:10 - 2015-08-12 17:10 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Some files in TEMP:
====================
C:\Users\goofanek\AppData\Local\Temp\libeay32.dll
C:\Users\goofanek\AppData\Local\Temp\msvcr120.dll
C:\Users\goofanek\AppData\Local\Temp\nvStInst.exe
C:\Users\goofanek\AppData\Local\Temp\sqlite3.dll

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2016-06-19 16:01

==================== End of FRST.txt ============================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 31-08-2016
Ran by goofanek (10-09-2016 08:41:16)
Running from C:\Users\goofanek\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2015-08-12 14:16:33)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

Administrator (S-1-5-21-3228134853-3753405377-656824488-500 - Administrator - Disabled)
goofanek (S-1-5-21-3228134853-3753405377-656824488-1001 - Administrator - Enabled) => C:\Users\goofanek
Guest (S-1-5-21-3228134853-3753405377-656824488-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3228134853-3753405377-656824488-1002 - Limited - Enabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Microsoft Security Essentials (Enabled - Up to date) {768124D7-F5F7-6D2F-DDC2-94DFA4017C95}
AS: Microsoft Security Essentials (Enabled - Up to date) {CDE0C533-D3CD-62A1-E772-AFADDF863628}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

007 Legends (HKLM-x32\...\007 Legends_is1) (Version: 1.01 - R.G. Revenants)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 15.017.20053 - Adobe Systems Incorporated)
Adobe Flash Player 22 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 22.0.0.209 - Adobe Systems Incorporated)
Aktualizace NVIDIA 2.11.4.0 (Version: 2.11.4.0 - NVIDIA Corporation) Hidden
Assassins Creed Brotherhood (Cestina) 32bit 1.00 (HKLM-x32\...\Assassins Creed Brotherhood (Cestina) 32bit 1.00) (Version: - )
Assassin's Creed Brotherhood (HKLM-x32\...\{BE4BA698-8533-4F77-9559-C7F3F78C0B05}) (Version: 1.00 - Ubisoft)
Assassin's Creed Revelations (HKLM-x32\...\{33A22B2D-55BA-4508-B767-BF2E9C21A73F}) (Version: 1.00 - Ubisoft)
Assassins Creed Syndicate (HKLM-x32\...\Assassins Creed Syndicate_is1) (Version: - )
Assassins Creed Syndicate version 1.31 (HKLM-x32\...\{47763812-0DD9-41F8-9824-2725554F1088}_is1) (Version: 1.31 - )
Assassins Creed Unity (HKLM-x32\...\QXNzYXNzaW5zQ3JlZWRVbml0eQ==_is1) (Version: 1 - )
Assassins Creed: Revelations v1.03 (HKLM-x32\...\Assassins Creed: Revelations_is1) (Version: 1.03 - UbiSoft)
CCleaner (HKLM\...\CCleaner) (Version: 5.08 - Piriform)
Cities Skylines (HKLM-x32\...\Cities Skylines_is1) (Version: - )
Cities: Skylines - ČEŠTINA (HKU\S-1-5-21-3228134853-3753405377-656824488-1001\...\Cities: Skylines - ČEŠTINA) (Version: - )
CrystalDiskInfo 7.0.3 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 7.0.3 - Crystal Dew World)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.1.0.0074 - Disc Soft Ltd)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 53.0.2785.101 - Google Inc.)
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
Intel® Chipset Device Software (x32 Version: 10.0.27 - Intel(R) Corporation) Hidden
Malwarebytes Anti-Malware verze 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
marvell 61xx (HKLM-x32\...\mv61xxDriver) (Version: 1.2.0.7700 - Marvell)
Max Payne 3 (HKLM-x32\...\{1AA94747-3BF6-4237-9E1A-7B3067738FE1}) (Version: 1.0.0.0 - Rockstar Games)
Metro 2033 Redux (HKLM-x32\...\Metro 2033 Redux_is1) (Version: - )
Microsoft .NET Framework 4.6.1 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{67F42018-F647-4D3C-BE62-F8CB4FE2FCD5}) (Version: 3.5.67.0 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUSR) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.9.218.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50428.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Moo0 Video Cutter 1.07 (HKLM-x32\...\Moo0 VideoCutter) (Version: - )
Moo0 YouTube Downloader 1.07 (HKLM-x32\...\Moo0 Utube-DL) (Version: - )
Mozilla Firefox 47.0 (x86 cs) (HKLM-x32\...\Mozilla Firefox 47.0 (x86 cs)) (Version: 47.0 - Mozilla)
MPC-HC 1.7.9 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.9 - MPC-HC Team)
NVIDIA GeForce Experience 2.11.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.4.0 - NVIDIA Corporation)
NVIDIA Ovladač 3D Vision 368.69 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 368.69 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.34.15 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.15 - NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 364.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 364.44 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 368.69 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 368.69 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
Ovládací panel NVIDIA 368.69 (Version: 368.69 - NVIDIA Corporation) Hidden
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.991 - Even Balance, Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7464 - Realtek Semiconductor Corp.)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version: - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (Version: - Microsoft) Hidden
SHIELD Streaming (Version: 7.1.0280 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.11.4.0 - NVIDIA Corporation) Hidden
SlimDrivers (HKLM-x32\...\{5AD12E7A-D739-4451-9BD1-3610EC56D8F5}) (Version: 2.2.45206 - SlimWare Utilities, Inc.)
The Godfather II (HKLM-x32\...\The Godfather II_is1) (Version: - )
Uplay (HKLM-x32\...\Uplay) (Version: 4.9 - Ubisoft)
Viber (HKU\S-1-5-21-3228134853-3753405377-656824488-1001\...\Viber) (Version: 5.2.0.2546 - Viber Media Inc)
Windows Live ID Sign-in Assistant (HKLM\...\{9B48B0AC-C813-4174-9042-476A887592C7}) (Version: 6.500.3165.0 - Microsoft Corporation)
WinRAR 5.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {248DD19C-6CA8-4706-B97C-BF279FA26E46} - System32\Tasks\{11BA4C96-66A4-469C-9B1A-AA071565CCAF} => C:\Program Files (x86)\Ubisoft\Assassin's Creed Rogue\ACC.exe
Task: {35F507C6-FEAF-49A3-B176-F866D6F86FB1} - System32\Tasks\{AC414BC0-1477-4B03-A903-725BE56A6F4F} => C:\Program Files (x86)\Ubisoft\Assassin's Creed Rogue\ACC.exe
Task: {3A9976E6-D9D4-4C10-8B57-2A28D398A953} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-07-05] (Google Inc.)
Task: {52DE74DA-6391-407B-8D4D-C93E4A387478} - System32\Tasks\{A6ABE51C-CDF6-425C-8C88-9BBF5CBF824B} => C:\Program Files (x86)\Ubisoft\Call of Juarez The Cartel\Launcher.exe
Task: {5F433126-5A72-4BF6-B0A4-73904201BBC6} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-06-24] (Adobe Systems Incorporated)
Task: {600FBA86-7C2D-43A7-9611-D30BFF6AE7AA} - System32\Tasks\{5281C549-2C17-4707-B5EA-DE93863F2EC4} => C:\Program Files (x86)\Ubisoft\Assassin's Creed Rogue\ACC.exe
Task: {7355B3D8-8241-4C84-909F-A1DB3D5DE81D} - System32\Tasks\{DC0C0DF2-93D1-4021-915F-49E52C24E0BE} => C:\Program Files (x86)\Alekhines Gun\AlekhinesGun.exe
Task: {8417690B-398F-4895-BB6D-B7CD88B36444} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-07-12] (Adobe Systems Incorporated)
Task: {9545942F-933C-48CC-A45D-3A9DE645D914} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-07-17] (Piriform Ltd)
Task: {9E11213D-34CF-40E0-9F7C-17840D9BF3CF} - System32\Tasks\{9C5A17E3-101E-42D1-8B86-38BE19E9E47F} => C:\Program Files (x86)\Alekhines Gun\AlekhinesGun.exe
Task: {A227341F-C811-4527-8A29-C5A2C9055903} - System32\Tasks\Java Updater => C:\Users\goofanek\AppData\Roaming\nircmd.exe [2013-08-11] (NirSoft) <==== ATTENTION
Task: {ABE030E5-3C18-44D2-8C25-93A4EEB15EE2} - System32\Tasks\{92A454EA-C206-4D8F-8D07-A56ED0E7A3FF} => D:\Games\Mad Max\Launcher Mad Max.exe
Task: {AD5783B5-C084-4F69-A432-E0CF40315B70} - System32\Tasks\{C7552A57-2180-4947-9CC8-B5D3AEEBD0E6} => D:\Games\Mad Max\Launcher Mad Max.exe
Task: {BDC294EC-7876-4C63-866C-BDD707CCB74E} - System32\Tasks\{1768BA7F-355C-425F-8368-86F6DDE61C0D} => D:\Games\Mad Max\Launcher Mad Max.exe
Task: {C41DC480-C804-4F54-8D0E-7CB4EF3BA27E} - System32\Tasks\{74A3CDEB-67F5-4D92-B170-B0FC449BD843} => C:\Program Files (x86)\Ubisoft\Assassin's Creed Rogue\ACC.exe
Task: {CB5A0310-7CDA-4751-9B54-92E17CF88941} - System32\Tasks\{E2B332EE-045E-4B12-A672-507C47C3E56F} => C:\Program Files (x86)\Ubisoft\Assassin's Creed Revelations\ACRSP.exe
Task: {CFB02F66-D06D-43C9-AA3B-F6885BB6202B} - System32\Tasks\{9D227EE0-061A-427A-9ECA-DB2D7331C055} => pcalua.exe -a J:\SETUP.EXE -d J:\
Task: {D7AECE8F-0AC9-48C5-BE39-2C3051FE922C} - System32\Tasks\{39946A9A-4826-4E72-A31F-02B7AC1FB219} => C:\Program Files (x86)\Ubisoft\Assassin's Creed Revelations\ACRSP.exe
Task: {EC6181DA-753F-44D5-A91D-2AD76F4E6E0D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-07-05] (Google Inc.)
Task: {F15D03A9-4DEE-4A9B-ACDB-E458EB6E8DFE} - System32\Tasks\{3253DB1E-E1C8-4B20-BBDB-355AE6D5E963} => C:\Program Files (x86)\Ubisoft\Assassin's Creed Rogue\ACC.exe

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2016-08-28 10:48 - 2016-06-30 00:44 - 00367552 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\MessageBus.dll
2016-08-28 10:48 - 2016-06-30 00:44 - 01147328 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\libprotobuf.dll
2016-08-28 10:48 - 2016-06-30 00:44 - 03611584 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Poco.dll
2016-08-28 10:48 - 2016-06-30 00:44 - 00288192 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamBase.dll
2015-08-18 12:25 - 2016-05-30 05:03 - 00075136 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2016-08-28 10:48 - 2016-06-30 00:44 - 01988544 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvPortForwardPlugin.dll
2016-08-28 10:48 - 2016-06-30 00:44 - 02665920 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvMdnsPlugin.dll
2016-08-28 10:48 - 2016-06-30 00:44 - 01840576 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\RtspPlugin.dll
2016-08-28 10:48 - 2016-06-30 00:44 - 00207296 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\RtspServer.dll
2015-10-26 12:58 - 2016-06-29 20:37 - 00134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-08-28 10:48 - 2016-06-30 00:44 - 00034240 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_system-vc120-mt-1_58.dll
2016-08-28 10:48 - 2016-06-30 00:44 - 00920000 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_regex-vc120-mt-1_58.dll
2015-08-12 16:55 - 2016-06-30 00:44 - 00018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-09-09 16:13 - 2016-09-07 03:29 - 01806152 _____ () C:\Program Files (x86)\Google\Chrome\Application\53.0.2785.101\libglesv2.dll
2016-09-09 16:13 - 2016-09-07 03:29 - 00094024 _____ () C:\Program Files (x86)\Google\Chrome\Application\53.0.2785.101\libegl.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3228134853-3753405377-656824488-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\goofanek\AppData\Roaming\Mozilla\Firefox\Pozadí plochy.bmp
DNS Servers: 94.74.192.252 - 94.74.192.244
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: DAEMON Tools Lite Automount => "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
MSCONFIG\startupreg: NvBackend => "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
MSCONFIG\startupreg: ShadowPlay => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
MSCONFIG\startupreg: VirtualCloneDrive => "C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{F8F41DA8-D9E2-4CE4-AD0B-271D5BE0B7B6}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{4CF054EC-B747-46A8-B0F3-17E3AE34ACCB}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{D1524B18-A514-4987-8F06-7ECE4FA0B6B8}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{7FD55007-1BDC-4653-B88E-488D8B433343}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [TCP Query User{6BA9B702-26C0-429B-BC22-D6C861EFFD5B}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => (Block) C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe
FirewallRules: [UDP Query User{49046E2F-31D2-462E-8C4C-0ACE93ACF251}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => (Block) C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe
FirewallRules: [{E2A5FC23-6FC0-4741-A429-A1AEC031822C}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{90672EFA-F76D-4E3A-BE2D-98F9395F8683}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{B1540354-370E-4192-8576-0124D65D26FE}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{D6083293-D73B-4C43-93C2-8C49FBDB8982}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{22BC1E98-F542-4685-8654-1D4B72B0556D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{BC39655A-876F-443C-8244-9D29AA3739CF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{A0C9075B-536F-45B8-9F64-9AF22C04088F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{CDD36097-27A9-477F-980C-7EAFE786E6DB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{B9D2AD96-51CF-4240-A518-B77FD26D293E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{AC7D5CD0-9FAA-4C2B-9451-93E7E58C9A9C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{F81A0089-59DD-4627-BE82-D9AA4F7AC708}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{017E8D6A-8B61-4E59-80D9-376D57B52B8D}C:\program files\eidos\kane and lynch dead men\kaneandlynch.exe] => (Block) C:\program files\eidos\kane and lynch dead men\kaneandlynch.exe
FirewallRules: [UDP Query User{48FA93B5-2D5D-4F10-AFCB-8525BD88FB3B}C:\program files\eidos\kane and lynch dead men\kaneandlynch.exe] => (Block) C:\program files\eidos\kane and lynch dead men\kaneandlynch.exe
FirewallRules: [{0143ACAC-B5DF-42B2-A4D0-E7E6277D559F}] => (Allow) C:\Windows\system32\rundll32.exe
FirewallRules: [{36F05641-8B79-4CDD-8A5B-2EAC741F068C}] => (Allow) C:\Windows\System32\rundll32.exe
FirewallRules: [{8E29CB1C-18C0-4D10-A3F4-9C806077D16E}] => (Allow) C:\Windows\System32\rundll32.exe
FirewallRules: [{2168413E-33C5-4459-92CA-3014118469E5}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{6B73EAFE-D8AE-4602-8459-34F46276E9F3}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{38EBD03B-C76E-48AF-BBB3-419EA9A96ABE}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{46D73EB6-2A11-4BA0-A1EC-615A1382F492}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [TCP Query User{9E3C6BEA-ACF3-487F-929B-AF7CA8EEBEFD}C:\program files (x86)\ubisoft\assassins creed revelations\acrsp.exe] => (Block) C:\program files (x86)\ubisoft\assassins creed revelations\acrsp.exe
FirewallRules: [UDP Query User{6A4F380D-4A5D-47B7-8F62-60B402CEA721}C:\program files (x86)\ubisoft\assassins creed revelations\acrsp.exe] => (Block) C:\program files (x86)\ubisoft\assassins creed revelations\acrsp.exe
FirewallRules: [{1C9DCBCF-7628-4D2E-9AE8-F74985766842}] => (Allow) C:\Program Files (x86)\Ubisoft\Assassin's Creed Brotherhood\ACBSP.exe
FirewallRules: [{B3864A30-76B3-4605-8017-66A19186EFA5}] => (Allow) C:\Program Files (x86)\Ubisoft\Assassin's Creed Brotherhood\ACBSP.exe
FirewallRules: [{5493CB6F-33C8-48B2-B061-D76B67077B89}] => (Allow) C:\Program Files (x86)\Ubisoft\Assassin's Creed Brotherhood\ACBMP.exe
FirewallRules: [{A9C0D107-8447-451A-A2F3-4EA4DCD3093B}] => (Allow) C:\Program Files (x86)\Ubisoft\Assassin's Creed Brotherhood\ACBMP.exe
FirewallRules: [{424B3AF0-A9B8-46BB-A547-6554E12A71FB}] => (Allow) C:\Program Files (x86)\Ubisoft\Assassin's Creed Brotherhood\AssassinsCreedBrotherhood.exe
FirewallRules: [{DFC8E409-430A-45B6-B542-00073A82DCAD}] => (Allow) C:\Program Files (x86)\Ubisoft\Assassin's Creed Brotherhood\AssassinsCreedBrotherhood.exe
FirewallRules: [{54C14448-C56D-4680-811B-BA2CAA5C57AE}] => (Allow) C:\Program Files (x86)\Ubisoft\Assassin's Creed Brotherhood\UPlayBrowser.exe
FirewallRules: [{613BA1B3-5441-4418-B857-96863FC50747}] => (Allow) C:\Program Files (x86)\Ubisoft\Assassin's Creed Brotherhood\UPlayBrowser.exe
FirewallRules: [TCP Query User{B984B702-21BE-4C62-85D2-1C08B8D0A110}C:\users\goofanek\desktop\assassins creed iii\ac3sp.exe] => (Block) C:\users\goofanek\desktop\assassins creed iii\ac3sp.exe
FirewallRules: [UDP Query User{7CDB8695-653A-4C16-B480-07C948C3161A}C:\users\goofanek\desktop\assassins creed iii\ac3sp.exe] => (Block) C:\users\goofanek\desktop\assassins creed iii\ac3sp.exe
FirewallRules: [TCP Query User{06B0FF20-FBEB-4A21-AA4B-1DC97339824E}C:\7554\7554.exe] => (Block) C:\7554\7554.exe
FirewallRules: [UDP Query User{1FE7DA60-451B-4792-871F-2F1DDFE4AC74}C:\7554\7554.exe] => (Block) C:\7554\7554.exe
FirewallRules: [{4C11ABB9-C63D-48D8-B4A3-B3914E4A61B7}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Restore Points =========================

22-08-2016 11:54:53 Windows Update
27-08-2016 19:47:25 Windows Zálohování
28-08-2016 11:37:30 Windows Update
09-09-2016 10:57:35 Windows Zálohování
09-09-2016 14:43:02 Windows Update
09-09-2016 18:02:54 Windows Update
10-09-2016 00:53:08 Windows Update

==================== Faulty Device Manager Devices =============

==================== Event log errors: =========================

Application errors:
==================
Error: (09/10/2016 08:16:36 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT AUTHORITY)
Description: Uvolnění řetězců čítačů výkonu pro službu WmiApRpl (WmiApRpl) se nezdařilo. První hodnota DWORD v datové oblasti obsahuje kód chyby.

Error: (09/10/2016 08:16:36 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: Hodnota řetězce výkonu v registru výkonu je poškozena, pokud proces Performance zprostředkovatele čítače rozšíření. Hodnotu BaseIndex z registru výkonu obsahuje první hodnota DWORD datové části. Hodnotu LastCounter obsahuje druhá hodnota DWORD a hodnotu LastHelp obsahuje třetí hodnota DWORD datové části.

Error: (09/10/2016 08:16:36 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: Hodnota řetězce výkonu v registru výkonu je poškozena, pokud proces Performance zprostředkovatele čítače rozšíření. Hodnotu BaseIndex z registru výkonu obsahuje první hodnota DWORD datové části. Hodnotu LastCounter obsahuje druhá hodnota DWORD a hodnotu LastHelp obsahuje třetí hodnota DWORD datové části.

Error: (09/09/2016 11:43:00 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT AUTHORITY)
Description: Uvolnění řetězců čítačů výkonu pro službu WmiApRpl (WmiApRpl) se nezdařilo. První hodnota DWORD v datové oblasti obsahuje kód chyby.

Error: (09/09/2016 11:43:00 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: Hodnota řetězce výkonu v registru výkonu je poškozena, pokud proces Performance zprostředkovatele čítače rozšíření. Hodnotu BaseIndex z registru výkonu obsahuje první hodnota DWORD datové části. Hodnotu LastCounter obsahuje druhá hodnota DWORD a hodnotu LastHelp obsahuje třetí hodnota DWORD datové části.

Error: (09/09/2016 11:43:00 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: Hodnota řetězce výkonu v registru výkonu je poškozena, pokud proces Performance zprostředkovatele čítače rozšíření. Hodnotu BaseIndex z registru výkonu obsahuje první hodnota DWORD datové části. Hodnotu LastCounter obsahuje druhá hodnota DWORD a hodnotu LastHelp obsahuje třetí hodnota DWORD datové části.

Error: (09/09/2016 02:37:20 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT AUTHORITY)
Description: Uvolnění řetězců čítačů výkonu pro službu WmiApRpl (WmiApRpl) se nezdařilo. První hodnota DWORD v datové oblasti obsahuje kód chyby.

Error: (09/09/2016 02:37:20 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: Hodnota řetězce výkonu v registru výkonu je poškozena, pokud proces Performance zprostředkovatele čítače rozšíření. Hodnotu BaseIndex z registru výkonu obsahuje první hodnota DWORD datové části. Hodnotu LastCounter obsahuje druhá hodnota DWORD a hodnotu LastHelp obsahuje třetí hodnota DWORD datové části.

Error: (09/09/2016 02:37:20 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: Hodnota řetězce výkonu v registru výkonu je poškozena, pokud proces Performance zprostředkovatele čítače rozšíření. Hodnotu BaseIndex z registru výkonu obsahuje první hodnota DWORD datové části. Hodnotu LastCounter obsahuje druhá hodnota DWORD a hodnotu LastHelp obsahuje třetí hodnota DWORD datové části.

Error: (09/09/2016 10:48:23 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT AUTHORITY)
Description: Uvolnění řetězců čítačů výkonu pro službu WmiApRpl (WmiApRpl) se nezdařilo. První hodnota DWORD v datové oblasti obsahuje kód chyby.

System errors:
=============
Error: (09/10/2016 08:09:41 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Zavedení následujícího ovladače pro spouštění počítače nebo systému se nezdařilo:
cdrom

Error: (09/09/2016 11:37:07 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Zavedení následujícího ovladače pro spouštění počítače nebo systému se nezdařilo:
cdrom

Error: (09/09/2016 02:32:53 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 70.

Error: (09/09/2016 02:22:50 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Správce služeb se pokusil o opravnou akci (Restartovat službu) po nečekaném ukončení služby Windows Search, ale tato akce selhala kvůli následující chybě:
Instance této služby je již spuštěna.

Error: (09/09/2016 02:22:21 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Instalační služba modulů systému Windows byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 120000 milisekund: Restartovat službu.

Error: (09/09/2016 02:22:21 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Služba Windows Media Player Network Sharing byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund: Restartovat službu.

Error: (09/09/2016 02:22:20 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba NVIDIA Streamer Network Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (09/09/2016 02:22:20 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Windows Search byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund: Restartovat službu.

Error: (09/09/2016 02:22:20 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Windows Live ID Sign-in Assistant byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.

Error: (09/09/2016 02:22:20 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba PnkBstrA byla neočekávaně ukončena. Tento stav nastal již 1krát.

==================== Memory info ===========================

Processor: Intel(R) Core(TM)2 Quad CPU Q9550 @ 2.83GHz
Percentage of memory in use: 22%
Total physical RAM: 8191.05 MB
Available physical RAM: 6313.93 MB
Total Virtual: 16380.29 MB
Available Virtual: 14385.32 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:246.17 GB) (Free:123.24 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: (z) (Fixed) (Total:350 GB) (Free:29.99 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 596.2 GB) (Disk ID: 168B168A)
Partition 1: (Active) - (Size=246.2 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=350 GB) - (Type=05)

==================== End of Addition.txt ============================

#8 Příspěvek od **Márty84** » 10 zář 2016 09:19

Napiste mi velikost adresare plochy (C:\Users\goofanek\Plocha)

Otevrete si poznamkovy blok a zkopirujte do nej tento skript

Kód: Vybrat vše

Start
CloseProcesses:
CreateRestorePoint:

Task: {A227341F-C811-4527-8A29-C5A2C9055903} - System32\Tasks\Java Updater => C:\Users\goofanek\AppData\Roaming\nircmd.exe [2013-08-11] (NirSoft) <==== ATTENTION
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

DeleteKey: HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM
DeleteKey: HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite Automount

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-06-24 82128]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-07-05 107848]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-07-05 107848]

Hosts:
EmptyTemp:
Reboot:
End

Vlevo nahore kliknete na napis Soubor
Kliknete na napis Ulozit jako...
Napiste spravne ten cerveny nazev fixlist a ulozte na plochu.
Vypnete antivir i dalsi pripadne zabezpeceni.
Spustte FRST jako spravce, kliknete na napis Fix a program vykona prikazy.
Po restartu pc by se mel objevit novy log - s nazvem fixlog, ten mi sem zase zkopirujte.

goffy1985 · #9 Příspěvek od **goffy1985** » 10 zář 2016 11:52

...11,9GB

Fix result of Farbar Recovery Scan Tool (x64) Version: 31-08-2016
Ran by goofanek (10-09-2016 12:45:21) Run:2
Running from C:\Users\goofanek\Desktop
Loaded Profiles: goofanek (Available Profiles: goofanek)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:

Task: {A227341F-C811-4527-8A29-C5A2C9055903} - System32\Tasks\Java Updater => C:\Users\goofanek\AppData\Roaming\nircmd.exe [2013-08-11] (NirSoft) <==== ATTENTION
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

DeleteKey: HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM
DeleteKey: HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite Automount

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-06-24 82128]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-07-05 107848]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-07-05 107848]

Hosts:
EmptyTemp:
Reboot:
End
*****************

Processes closed successfully.
Restore point was successfully created.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A227341F-C811-4527-8A29-C5A2C9055903} => key not found.
C:\Windows\System32\Tasks\Java Updater => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Java Updater => key not found.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => not found.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => not found.
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM => key not found.
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite Automount => key not found.
AdobeARMservice => service not found.
gupdate => service not found.
gupdatem => service not found.
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 1051928 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 0 B
Edge => 0 B
Chrome => 7162418 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 1662 B
goofanek => 1142915 B

RecycleBin => 247353940 B
EmptyTemp: => 252.8 MB temporary data Removed.

================================

The system needed a reboot.

==== End of Fixlog 12:45:30 ====

#10 Příspěvek od **Márty84** » 10 zář 2016 11:59

goffy1985 píše:...11,9GB

Velikost plochy by nemela presahovat 200 - 300 MB! Brzdi to chod pc. Cili ji trosku uklidte a na plochu dejte jen zastupce. Jen pozor na obcasnou chybu, ze uzivatele maji na plose slozku, v ni dalsi a v ni dalsi a do te to schovaji. To je sice hezke, ale plochu to nezmensi, jen je to v jinem supliku

Vsechny tyto programy - vcetne pripadne instalace - spoustejte jako spravce (kliknete na ne pravym mysidlem a zvolte - Spustit jako spravce)

vyosek píše: DelFix https://toolslib.net/downloads/finish/2/
Stahnete a spustte

Ponechte zatrzitkou pouze u volby Remove disinfection tools

Kliknete na Run

Stahnete Ccleaner http://www.filehippo.com/download_ccleaner a spustte.
Pri instalaci pozor na toolbar (ci jine doplnky), jestli vam nabidne jeho instalaci, tak zruste zatrzitko.
Po spusteni se ocitnete ve funkci Cistic. Vlevo je spousta zatrzitek. Pozor dejte hlavne na kos, pokud nechate zatrzene, vzdy ho vysype.
Dale, podle toho jak je nastaven, smaze vsechna hesla ulozena na netu!!! Takze jestli mate nastavene, at si pocitac hesla pamatuje (coz neni pro bezpecnost dobre), budete je muset pak napsat znova rucne (napr mail, facebook, ruzna fora atd.)
Kliknete na Analyzovat a az dokonci analyzu, kliknete na Spustit Cleaner.
Potom kliknete vlevo na funkci Registry
Kliknete na Hledej problemy, kdyz najde, kliknete na Opravit problemy. Nabidne Vam zalohu, tu udelejte a ulozte ji tak, at ji v pripade potreby najdete.
Funkce Nastroje umoznuje odinstalovani programu. Je dukladnejsi nez samotny windows!
(Pokud je v pc vice uzivatelskych uctu, pouzijte program i v nich)

Defragmentujte disk(y) (SSD Disky ne!)
Stahnete program Defraggler https://www.piriform.com/defraggler/download/standard
Pri instalaci opet pozor na toolbar a dalsi nesmysly.
Po nainstalovani program spustte a kliknete na Analyzovat, po analyze kliknete na Defragmentovat a programek odvede svou praci.

Pak napiste, jak to s pc vypada.

goffy1985 · #11 Příspěvek od **goffy1985** » 10 zář 2016 18:31

vypadá to, že by to mohlo fungovat

děkuji za pomoc

#12 Příspěvek od **Márty84** » 11 zář 2016 00:59

Nemate zac!

Mejte se a treba zase nekdy

VIRY.CZ

Prosím o kontrolu PC

Prosím o kontrolu PC

Re: Prosím o kontrolu PC

Re: Prosím o kontrolu PC

Re: Prosím o kontrolu PC

Re: Prosím o kontrolu PC

Re: Prosím o kontrolu PC

Re: Prosím o kontrolu PC

Re: Prosím o kontrolu PC

Re: Prosím o kontrolu PC

Re: Prosím o kontrolu PC

Re: Prosím o kontrolu PC

Re: Prosím o kontrolu PC