NT Kernel & System

Zpráva

Rolandman · #1 Příspěvek od **Rolandman** » 02 dub 2017 12:03

Dobrý den, nedávno jsem zakládal téma se stejným názvem, ale už je uzavřené a bohužel se problém opět objevil. Jde o proces NT Kernel & System který tedy stále zatěžuje CPU

.

#2 Příspěvek od **Rudy** » 02 dub 2017 13:34

Zdravím!
Původní téma by bylo možné odemknout. Viz můj podpis. Zkuste přeinstalovat ovladač grafické karty.

Rolandman · #3 Příspěvek od **Rolandman** » 02 dub 2017 15:43

Mail jsem psal

, ok přeinstaluju a dám vědět.

#4 Příspěvek od **Rudy** » 02 dub 2017 17:20

Omlouvám se, nekontroluji poštu tak často.

Rolandman · #5 Příspěvek od **Rolandman** » 03 dub 2017 18:01

Tak bohužel přeinstalace nepomohla, dneska se to opět objevilo

#6 Příspěvek od **Rudy** » 03 dub 2017 18:20

Tento problém obvykle způsobují ovladače. Zkuste ještě přeinstalovat ovladač zákl. desky (chipsetu). NT Kernel & System je jen zástupná hodnota.

Rolandman · #7 Příspěvek od **Rolandman** » 06 dub 2017 18:00

Tak i po přeinstalaci se to opět objevilo :-/ a zdá se mi, že ten proces naskočil, když jsem PC probudil z úsporného režimu..

#8 Příspěvek od **Rudy** » 06 dub 2017 18:26

OK. Zkuste požím na kontrolu ovladačů utilitu SlimDrivers: http://www.stahuj.centrum.cz/utility_a_ ... imdrivers/ . Utilita by vám měla ukázat, který z driverů pořebuje přeinstalovat, nebo aktualizovat. Pokud to nepomůže, musíme se zabývat hw závadou.

Rolandman · #9 Příspěvek od **Rolandman** » 08 dub 2017 07:34

Vše potřebně jsem zaktualizoval nebo opravil a opět se po vrácení z úsporného režimu proces objevil. Navíc tam začal strašit i jiný s názvem UMonit.exe*32

#10 Příspěvek od **Rudy** » 08 dub 2017 10:21

OK. Dejte log FRST: http://forum.viry.cz/viewtopic.php?f=13&t=133100 .

Rolandman · #11 Příspěvek od **Rolandman** » 09 dub 2017 11:56

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 15-03-2017
Ran by Jakub (administrator) on JAKUB-PC (09-04-2017 12:54:23)
Running from C:\Users\Jakub\Desktop
Loaded Profiles: Jakub (Available Profiles: Jakub)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: "D:\Programy\Mozilla32\firefox.exe" -osint -url "%1")
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
() C:\Windows\SysWOW64\ASGT.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Microsoft Corporation) C:\Program Files\Microsoft LifeCam\MSCamS64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
() C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
() C:\Windows\SysWOW64\UMonit.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
() C:\Windows\System32\PnkBstrA.exe
() C:\Windows\SysWOW64\spdsvc.exe
(LogMeIn Inc.) D:\Programy\Hamachi\x64\hamachi-2.exe
(LogMeIn, Inc.) D:\Programy\Hamachi\x64\LMIGuardianSvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Mozilla Corporation) D:\Programy\Mozilla\firefox.exe
(Mozilla Corporation) D:\Programy\Mozilla\firefox.exe
(forum.viry.cz) C:\Users\Jakub\Desktop\FRSTLauncher.exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [MSC] => C:\Program Files\Microsoft Security Client\msseces.exe [1354712 2016-08-30] (Microsoft Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [CDAServer] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [464608 2014-09-08] ()
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16473344 2000-01-01] (Realtek Semiconductor)
HKLM\...\Run: [UMonit] => C:\Windows\SysWOW64\UMonit.exe [200704 2000-01-01] ()
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => D:\Programy\Hamachi\hamachi-2-ui.exe [5883912 2017-03-02] (LogMeIn Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-1969966608-1539205475-668869137-1000\...\MountPoints2: {ec8a87cf-91d2-11e6-9004-50e5493b0049} - G:\HiSuiteDownLoader.exe
HKU\S-1-5-21-1969966608-1539205475-668869137-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\PhotoScreensaver.scr [477696 2010-11-21] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-03-21] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-03-21] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-03-21] (Google)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{6FE64A0E-B9BD-49E4-A0CF-899FD87E5417}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKU\S-1-5-21-1969966608-1539205475-668869137-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.seznam.cz/
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> D:\Programy\officy13\offices\Office15\OCHelper.dll [2015-02-10] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_101\bin\ssv.dll [2016-07-26] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_101\bin\jp2ssv.dll [2016-07-26] (Oracle Corporation)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2015-02-10] (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2015-01-21] (Microsoft Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - D:\Programy\officy13\offices\Office15\MSOSB.DLL [2015-02-17] (Microsoft Corporation)

FireFox:
========
FF DefaultProfile: 44a9lnn6.default
FF ProfilePath: C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\44a9lnn6.default [2017-04-09]
FF Homepage: Mozilla\Firefox\Profiles\44a9lnn6.default -> hxxps://www.seznam.cz/
FF Extension: (Seznam lištička) - C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\44a9lnn6.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [2017-02-22]
FF Extension: (Disable Prefetch) - C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\44a9lnn6.default\features\{b4227907-8a8d-48cf-9edc-0577a9dc420a}\disable-prefetch@mozilla.org.xpi [2017-04-05]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_25_0_0_127.dll [2017-03-14] ()
FF Plugin: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelogx64.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin: @java.com/DTPlugin,version=11.101.2 -> C:\Program Files\Java\jre1.8.0_101\bin\dtplugin\npDeployJava1.dll [2016-07-26] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.101.2 -> C:\Program Files\Java\jre1.8.0_101\bin\plugin2\npjp2.dll [2016-07-26] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50709.0\npctrl.dll [2016-07-11] ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> D:\Programy\officy13\offices\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [No File]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_25_0_0_127.dll [2017-03-14] ()
FF Plugin-x32: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelog.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [No File]
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [No File]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2014-05-21] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50709.0\npctrl.dll [2016-07-11] ( Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-03-17] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-03-17] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2014-05-21] (Microsoft Corporation)
StartMenuInternet: FIREFOX.EXE - D:\Programy\Mozilla32\firefox.exe

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ASGT; C:\Windows\SysWOW64\ASGT.exe [48640 2015-05-29] () [File not signed]
S3 Disc Soft Lite Bus Service; D:\Programy\DAEMON Tools Lite\DiscSoftBusService.exe [1443520 2016-04-04] (Disc Soft Ltd)
R2 Hamachi2Svc; D:\Programy\Hamachi\x64\hamachi-2.exe [3416584 2017-03-02] (LogMeIn Inc.)
R2 Intel(R) Capability Licensing Service Interface; c:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [120888 2016-08-30] (Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [361816 2016-08-30] (Microsoft Corporation)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2017-02-23] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2017-02-23] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [464440 2017-03-17] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [425408 2017-02-23] (NVIDIA Corporation)
S3 Origin Client Service; D:\Filmy a Hry\Origin\OriginClientService.exe [2123240 2017-03-21] (Electronic Arts)
S2 Origin Web Helper Service; D:\Filmy a Hry\Origin\OriginWebHelperService.exe [2184688 2017-03-21] (Electronic Arts)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2016-05-03] ()
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2016-05-03] ()
R2 Samsung Printer Dianostics Service; C:\Windows\SysWOW64\\spdsvc.exe [499000 2016-07-17] ()
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2016-05-02] (Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2016-05-02] (Disc Soft Ltd)
R3 FIXUSTOR; C:\Windows\System32\DRIVERS\fixustor.sys [13696 2000-01-01] (GenesysLogic)
S3 IntcDAud; C:\Windows\System32\DRIVERS\IntcDAud.sys [342528 2013-11-06] (Intel(R) Corporation) [File not signed]
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [125952 2014-06-24] (Intel Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [295000 2016-08-25] (Microsoft Corporation)
R3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [135928 2016-08-25] (Microsoft Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [27584 2017-02-23] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [46016 2017-01-20] (NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\DRIVERS\nvvhci.sys [57792 2017-01-20] (NVIDIA Corporation)
R3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [31472 2000-01-01] (Synaptics Incorporated)
R4 IOMap; \??\C:\Windows\system32\drivers\IOMap64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-04-09 12:54 - 2017-04-09 12:54 - 00013412 _____ C:\Users\Jakub\Desktop\FRST.txt
2017-04-09 12:52 - 2017-04-09 12:53 - 00112640 _____ (forum.viry.cz) C:\Users\Jakub\Desktop\FRSTLauncher.exe
2017-04-09 12:52 - 2017-04-09 12:52 - 02424832 _____ (Farbar) C:\Users\Jakub\Desktop\FRST64.exe
2017-04-07 22:59 - 2000-01-01 02:00 - 00200704 _____ () C:\Windows\SysWOW64\UMonit.exe
2017-04-07 22:59 - 2000-01-01 02:00 - 00167936 _____ () C:\Windows\SysWOW64\ustor.dll
2017-04-07 22:59 - 2000-01-01 02:00 - 00139264 _____ (Genesys) C:\Windows\system32\GeneIcon.dll
2017-04-07 22:59 - 2000-01-01 02:00 - 00013696 _____ (GenesysLogic) C:\Windows\system32\Drivers\fixustor.sys
2017-04-07 22:59 - 2000-01-01 02:00 - 00001372 _____ C:\Windows\SysWOW64\IconCfg0.ini
2017-04-07 20:16 - 2017-04-07 20:16 - 00000000 ____D C:\Users\Jakub\Intel
2017-04-07 20:12 - 2017-04-07 20:12 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf
2017-04-07 20:12 - 2017-04-07 20:12 - 00000000 ____D C:\Program Files\Synaptics
2017-04-07 20:11 - 2000-01-01 02:00 - 00031472 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\Smb_driver_Intel.sys
2017-04-06 20:17 - 2017-04-06 20:17 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2017-04-06 20:17 - 2017-04-06 20:17 - 00000000 ____D C:\Program Files\Realtek
2017-04-06 20:17 - 2000-01-01 02:00 - 05876734 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2017-04-06 20:17 - 2000-01-01 02:00 - 04874496 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2017-04-06 20:17 - 2000-01-01 02:00 - 03283248 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2017-04-06 20:17 - 2000-01-01 02:00 - 03282032 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2017-04-06 20:17 - 2000-01-01 02:00 - 03199232 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2017-04-06 20:17 - 2000-01-01 02:00 - 03086960 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll
2017-04-06 20:17 - 2000-01-01 02:00 - 02895104 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2017-04-06 20:17 - 2000-01-01 02:00 - 02053376 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2017-04-06 20:17 - 2000-01-01 02:00 - 02050184 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll
2017-04-06 20:17 - 2000-01-01 02:00 - 01355616 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2017-04-06 20:17 - 2000-01-01 02:00 - 00914024 _____ (Creative Technology Ltd.) C:\Windows\system32\MBAPO64.dll
2017-04-06 20:17 - 2000-01-01 02:00 - 00768824 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\MBAPO32.dll
2017-04-06 20:17 - 2000-01-01 02:00 - 00689888 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2017-04-06 20:17 - 2000-01-01 02:00 - 00532384 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2017-04-06 20:17 - 2000-01-01 02:00 - 00410040 _____ (Creative Technology Ltd.) C:\Windows\system32\MBWrp64.dll
2017-04-06 20:17 - 2000-01-01 02:00 - 00387320 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2017-04-06 20:17 - 2000-01-01 02:00 - 00343712 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2017-04-06 20:17 - 2000-01-01 02:00 - 00330568 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2017-04-06 20:17 - 2000-01-01 02:00 - 00321720 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2017-04-06 20:17 - 2000-01-01 02:00 - 00321720 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2017-04-06 20:17 - 2000-01-01 02:00 - 00221976 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2017-04-06 20:17 - 2000-01-01 02:00 - 00214840 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2017-04-06 20:17 - 2000-01-01 02:00 - 00209544 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2017-04-06 20:17 - 2000-01-01 02:00 - 00192984 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2017-04-06 20:17 - 2000-01-01 02:00 - 00166208 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2017-04-06 20:17 - 2000-01-01 02:00 - 00110992 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2017-04-06 20:17 - 2000-01-01 02:00 - 00088352 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2017-04-06 20:17 - 2000-01-01 02:00 - 00074608 _____ (Creative Technology Ltd.) C:\Windows\system32\MBppld64.dll
2017-04-06 20:17 - 2000-01-01 02:00 - 00069928 _____ (Creative Technology Ltd.) C:\Windows\system32\MBPPCn64.dll
2017-04-06 20:17 - 2000-01-01 02:00 - 00023704 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2017-04-06 20:16 - 2000-01-01 02:00 - 00574760 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2017-04-06 20:16 - 2000-01-01 02:00 - 00122320 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2017-04-06 20:16 - 2000-01-01 02:00 - 00118600 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2017-04-06 20:08 - 2000-01-01 02:00 - 01028352 _____ (Realtek ) C:\Windows\system32\Drivers\Rt64win7.sys
2017-04-06 20:08 - 2000-01-01 02:00 - 00082544 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll
2017-04-06 20:07 - 2017-04-06 20:07 - 00000000 ____D C:\ProgramData\SlimWare Utilities, Inc
2017-04-06 20:03 - 2017-04-06 20:03 - 00002483 _____ C:\Users\Public\Desktop\SlimDrivers.lnk
2017-04-06 20:03 - 2017-04-06 20:03 - 00000000 ____D C:\Users\Public\Documents\Downloaded Installers
2017-04-06 20:03 - 2017-04-06 20:03 - 00000000 ____D C:\Users\Jakub\AppData\Local\SlimWare Utilities Inc
2017-04-06 20:03 - 2017-04-06 20:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SlimDrivers
2017-04-06 20:03 - 2017-04-06 20:03 - 00000000 ____D C:\Program Files (x86)\SlimDrivers
2017-04-06 19:34 - 2017-04-06 19:34 - 00858432 _____ (SlimWare Utilities, Inc.) C:\Users\Jakub\Downloads\slimdrivers-setup.exe
2017-04-03 20:38 - 2012-10-04 08:29 - 00000000 ____D C:\Users\Jakub\Downloads\Realtek
2017-04-03 20:32 - 2017-04-03 20:32 - 115214047 _____ (Igor Pavlov) C:\Users\Jakub\Downloads\mb_driver_audio_realtek_azalia_6series.exe
2017-04-02 19:16 - 2017-03-17 01:16 - 00549944 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2017-04-02 19:16 - 2017-03-17 01:16 - 00081856 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2017-04-02 19:16 - 2017-03-17 00:56 - 00134592 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2017-04-02 19:15 - 2017-03-17 01:31 - 00001951 _____ C:\Windows\NvContainerRecovery.bat
2017-04-02 19:14 - 2017-03-17 02:59 - 40190400 _____ C:\Windows\system32\nvcompiler.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 35272760 _____ C:\Windows\SysWOW64\nvcompiler.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 34952760 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 28223544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 19883600 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 19006832 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 17282648 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 16400616 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 14674712 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 14434360 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2017-04-02 19:14 - 2017-03-17 02:59 - 13378096 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 11122912 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 11019888 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 09306312 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 08990256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 04064088 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 03627064 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 03583744 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 03187256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 01983424 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6437892.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 01589696 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6437892.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 01053240 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 00989120 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 00959424 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 00912440 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 00687408 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 00609728 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 00576192 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 00504104 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 00500792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 00492560 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 00425104 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 00408272 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 00170360 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 00153368 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 00148016 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 00131536 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 00000669 _____ C:\Windows\SysWOW64\nv-vk32.json
2017-04-02 19:14 - 2017-03-17 02:59 - 00000669 _____ C:\Windows\system32\nv-vk64.json
2017-04-02 19:09 - 2017-03-17 02:59 - 00514616 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2017-04-02 19:09 - 2017-03-17 02:59 - 00420408 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2017-04-02 19:09 - 2017-03-17 01:16 - 06401984 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2017-04-02 19:09 - 2017-03-17 01:16 - 02477504 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2017-04-02 19:09 - 2017-03-17 01:16 - 01762752 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2017-04-02 19:09 - 2017-03-17 01:16 - 00392128 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2017-04-02 19:09 - 2017-03-17 01:16 - 00069568 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2017-04-02 19:09 - 2017-03-16 11:39 - 07813427 _____ C:\Windows\system32\nvcoproc.bin
2017-04-01 21:19 - 2017-04-01 21:19 - 00000546 _____ C:\Users\Jakub\Downloads\ZmerCas.java
2017-03-30 12:02 - 2017-03-30 12:02 - 02754548 _____ C:\Users\Jakub\Downloads\Vaclavikova_slag1.pdf
2017-03-26 17:51 - 2017-03-26 17:51 - 00001938 _____ C:\Users\Jakub\Downloads\VstupDat.java
2017-03-26 17:50 - 2017-03-26 17:50 - 00000509 _____ C:\Users\Jakub\Downloads\OpakujZadani.java
2017-03-26 17:23 - 2017-03-26 17:24 - 00000000 ____D C:\Users\Jakub\Desktop\soubory
2017-03-21 18:03 - 2017-03-21 18:09 - 102410045 _____ C:\Users\Jakub\Downloads\VA-Hans_Zimmer_The_Classics-2017-gF.rar
2017-03-20 13:03 - 2017-03-20 13:03 - 00000000 ____D C:\Users\Jakub\Desktop\Hudba
2017-03-19 19:45 - 2017-03-19 20:57 - 00000000 ____D C:\AdwCleaner
2017-03-19 19:44 - 2017-03-19 19:44 - 04031440 _____ C:\Users\Jakub\Desktop\adwcleaner_6.044.exe
2017-03-19 18:11 - 2017-04-09 12:54 - 00000000 ____D C:\FRST
2017-03-19 17:21 - 2017-03-19 17:26 - 00000000 ____D C:\rsit
2017-03-19 17:21 - 2017-03-19 17:25 - 00000000 ____D C:\Program Files\trend micro
2017-03-17 23:26 - 2017-02-24 00:56 - 00217528 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2017-03-17 23:26 - 2017-02-24 00:56 - 00047664 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2017-03-15 19:58 - 2017-03-15 20:01 - 00001143 _____ C:\Users\Jakub\Downloads\KU1.java
2017-03-14 20:55 - 2017-03-14 20:55 - 00978560 _____ C:\Users\Jakub\Downloads\T-Mobile, KOVO HMMC-leták.pdf
2017-03-14 18:27 - 2017-03-14 18:27 - 06847064 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-04-09 12:53 - 2016-08-20 20:48 - 00000000 ____D C:\Users\Jakub\AppData\Local\LogMeIn Hamachi
2017-04-09 12:53 - 2016-04-22 15:39 - 00000000 ____D C:\Users\Jakub\AppData\Roaming\uTorrent
2017-04-09 12:32 - 2017-02-17 09:50 - 00004946 _____ C:\Windows\System32\Tasks\Microsoft Office 15 Sync Maintenance for Jakub-PC-Jakub Jakub-PC
2017-04-09 12:27 - 2009-07-14 06:45 - 00021392 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-04-09 12:27 - 2009-07-14 06:45 - 00021392 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-04-09 12:25 - 2016-05-02 18:16 - 00000000 ____D C:\ProgramData\NVIDIA
2017-04-09 12:17 - 2011-04-12 10:34 - 00668138 _____ C:\Windows\system32\perfh005.dat
2017-04-09 12:17 - 2011-04-12 10:34 - 00140798 _____ C:\Windows\system32\perfc005.dat
2017-04-09 12:17 - 2009-07-14 07:13 - 01582262 _____ C:\Windows\system32\PerfStringBackup.INI
2017-04-09 12:17 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf
2017-04-09 12:15 - 2016-11-15 20:45 - 00000000 ____D C:\Users\Jakub\AppData\LocalLow\Mozilla
2017-04-09 12:11 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-04-08 00:06 - 2010-11-21 05:27 - 00532136 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2017-04-07 23:25 - 2016-04-22 11:51 - 00000000 ____D C:\Users\Jakub\AppData\Roaming\vlc
2017-04-07 22:59 - 2016-04-22 12:12 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2017-04-07 20:17 - 2016-04-22 12:14 - 00000000 ____D C:\ProgramData\Intel
2017-04-07 20:17 - 2016-04-22 12:14 - 00000000 ____D C:\Program Files\Intel
2017-04-07 20:17 - 2016-04-22 12:11 - 00000000 ____D C:\Program Files (x86)\Intel
2017-04-07 20:16 - 2016-04-22 10:37 - 00000000 ____D C:\Users\Jakub
2017-04-06 20:18 - 2016-04-22 12:12 - 00000000 ___HD C:\Program Files (x86)\Temp
2017-04-06 20:08 - 2016-04-22 12:12 - 00000000 ____D C:\Program Files (x86)\Realtek
2017-04-05 18:22 - 2016-06-23 18:53 - 00000000 ____D C:\Users\Jakub\AppData\Local\Eclipse
2017-04-02 19:21 - 2016-05-02 18:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2017-04-02 19:16 - 2016-05-02 18:30 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2017-04-02 19:16 - 2016-05-02 18:15 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-04-02 19:16 - 2016-05-02 18:14 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2017-04-02 19:16 - 2016-05-02 18:12 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2017-04-02 19:09 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\Help
2017-04-02 19:06 - 2016-06-19 22:54 - 00000000 ____D C:\Users\Jakub\AppData\Local\CrashDumps
2017-04-02 19:05 - 2016-05-02 18:42 - 00000000 ____D C:\Users\Jakub\AppData\Roaming\NVIDIA
2017-03-30 12:54 - 2016-11-26 15:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2017-03-26 00:34 - 2016-05-03 15:07 - 00000000 ____D C:\ProgramData\Origin
2017-03-26 00:30 - 2016-05-03 15:08 - 00000000 ____D C:\Users\Jakub\AppData\Roaming\Origin
2017-03-22 15:27 - 2017-03-02 17:58 - 00000000 ____D C:\ProgramData\EA Logs
2017-03-22 15:00 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\NDF
2017-03-19 23:15 - 2016-04-22 16:03 - 00000000 ___SD C:\Users\Jakub\AppData\LocalLow\Temp
2017-03-17 23:19 - 2016-12-17 16:17 - 00004146 _____ C:\Windows\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-03-17 23:19 - 2016-11-05 17:37 - 00003852 _____ C:\Windows\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-03-17 23:19 - 2016-11-05 17:37 - 00001412 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2017-03-17 23:18 - 2016-11-05 17:37 - 00003738 _____ C:\Windows\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-03-17 23:18 - 2016-11-05 17:37 - 00003738 _____ C:\Windows\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-03-17 23:18 - 2016-11-05 17:37 - 00003730 _____ C:\Windows\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-03-17 23:18 - 2016-11-05 17:37 - 00003554 _____ C:\Windows\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-03-17 23:18 - 2016-11-05 17:36 - 00003494 _____ C:\Windows\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-03-17 02:59 - 2016-05-02 18:15 - 00042686 _____ C:\Windows\system32\nvinfo.pb
2017-03-14 18:27 - 2016-04-23 11:44 - 00802904 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2017-03-14 18:27 - 2016-04-23 11:44 - 00144472 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2017-03-14 18:27 - 2016-04-23 11:44 - 00004396 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2017-03-14 18:27 - 2016-04-23 11:44 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2017-03-14 18:27 - 2016-04-23 11:44 - 00000000 ____D C:\Windows\system32\Macromed

==================== Files in the root of some directories =======

2016-12-17 16:18 - 2017-02-02 21:05 - 0006140 _____ () C:\ProgramData\NvTelemetryContainer.log
2016-12-17 16:18 - 2017-02-01 22:04 - 0005110 _____ () C:\ProgramData\NvTelemetryContainer.log_backup1

Some files in TEMP:
====================
2017-04-02 19:05 - 2015-07-23 02:46 - 0783688 _____ (NVIDIA Corporation) C:\Users\Jakub\AppData\Local\Temp\nvStInst.exe

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2017-04-04 16:22

==================== End of FRST.txt ============================

===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

Drive c: () (Fixed) (Total:195.21 GB) (Free:114.15 GB) NTFS
Drive d: () (Fixed) (Total:736.2 GB) (Free:135.59 GB) NTFS

Available physical RAM: 5937.01 MB
Total physical RAM: 8175.12 MB
Percentage of memory in use: 27%

==================== MBR and Partition Table ==================

Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: A1C2D03D)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=195.2 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=736.2 GB) - (Type=07 NTFS)

==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

==================== Alternate Data Streams (whitelisted) ==================

==================== Security Center ==================

AV: Microsoft Security Essentials (Enabled - Up to date) {71A27EC9-3DA6-45FC-60A7-004F623C6189}
AS: Microsoft Security Essentials (Enabled - Up to date) {CAC39F2D-1B9C-4A72-5A17-3B3D19BB2B34}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)

***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Jakub\Desktop" je 252 MB.

***** Startup Programs *****

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0
"C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS5ServiceManager
"C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring
"D:\Programy\Ccleaner\CCleaner64.exe" /MONITOR [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.autoupdate
"C:\Users\Jakub\AppData\Roaming\Seznam.cz\szninstall.exe" -c [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.szndesktop
"C:\Users\Jakub\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite Automount
"D:\Programy\DAEMON Tools Lite\DTAgent.exe" -autorun [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Gaijin.Net Agent
"C:\Users\Jakub\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe"

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GoogleDriveSync
"C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LifeCam
"C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe"

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui
"D:\Programy\Hamachi\hamachi-2-ui.exe" --auto-start [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvBackend
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe" [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\seznam-listicka-distribuce
"C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ShadowPlay
"C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VX1000
C:\Windows\vVX1000.exe

***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
DoNotAllowExceptions REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000

==================== End Of Log ==============================

#12 Příspěvek od **Rudy** » 09 dub 2017 16:19

Spusťte tuto utilitu:

Stáhněte AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan<(hledání) a pak na >Clean< (mazání).
Proběhne skenováni a pak se objeví log, který sem vložte.

Rolandman · #13 Příspěvek od **Rolandman** » 09 dub 2017 20:56

# AdwCleaner v6.044 - Log vytvořen 09/04/2017 v 21:52:40
# Aktualizováno dne 28/02/2017 z Malwarebytes
# Databáze : 2017-04-06.1 [Server]
# Operační systém : Windows 7 Home Premium Service Pack 1 (X64)
# Uživatelské jméno : Jakub - JAKUB-PC
# Spuštěno z : C:\Users\Jakub\Desktop\adwcleaner_6.044.exe
# Mod: Čištění
# Podpora : https://www.malwarebytes.com/support

***** [ Služby ] *****

***** [ Složky ] *****

[-] Složka smazána: C:\Users\Jakub\AppData\Local\slimware utilities inc
[#] Složka smazána po restartu: C:\Users\Jakub\AppData\Local\SlimWare Utilities Inc
[-] Složka smazána: C:\ProgramData\SlimWare Utilities, Inc
[#] Složka smazána po restartu: C:\ProgramData\Application Data\SlimWare Utilities, Inc
[-] Složka smazána: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SlimDrivers
[-] Složka smazána: C:\Users\Public\Documents\Downloaded Installers
[-] Složka smazána: C:\Program Files (x86)\SlimDrivers

***** [ Soubory ] *****

[-] Soubor smazán: C:\Users\Public\Desktop\SlimDrivers.lnk

***** [ DLL ] *****

***** [ WMI ] *****

***** [ Zástupci ] *****

***** [ Naplánované úlohy ] *****

***** [ Registry ] *****

[-] Klíč smazán: HKU\S-1-5-21-1969966608-1539205475-668869137-1000\Software\SlimWare Utilities Inc
[#] Klíč smazán po restartu: HKCU\Software\SlimWare Utilities Inc
[-] Klíč smazán: HKLM\SOFTWARE\SLIMWARE UTILITIES, INC.
[-] Klíč smazán: HKLM\SOFTWARE\SlimWare Utilities Inc
[-] Klíč smazán: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{746AB259-6474-4111-8966-1C62F9A6E063}
[#] Klíč smazán po restartu: [x64] HKCU\Software\SlimWare Utilities Inc
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Installer\Features\952BA647474611149866C1269F6A0E36
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Installer\Products\952BA647474611149866C1269F6A0E36
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\952BA647474611149866C1269F6A0E36
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\952BA647474611149866C1269F6A0E36
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\Installer\Features\952BA647474611149866C1269F6A0E36
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\Installer\Products\952BA647474611149866C1269F6A0E36

***** [ Prohlížeče ] *****

*************************

:: "Tracing" klíče smazány
:: Winsock nastavení vyčištěno

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [1693 Bajty] - [19/03/2017 20:57:43]
C:\AdwCleaner\AdwCleaner[C2].txt - [2659 Bajty] - [09/04/2017 21:52:40]
C:\AdwCleaner\AdwCleaner[S0].txt - [1905 Bajty] - [19/03/2017 19:46:41]
C:\AdwCleaner\AdwCleaner[S1].txt - [3011 Bajty] - [09/04/2017 21:51:41]

########## EOF - C:\AdwCleaner\AdwCleaner[C2].txt - [2878 Bajty] ##########

#14 Příspěvek od **Rudy** » 09 dub 2017 21:03

Dejte nový log FRST.

Rolandman · #15 Příspěvek od **Rolandman** » 09 dub 2017 21:26

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 15-03-2017
Ran by Jakub (administrator) on JAKUB-PC (09-04-2017 22:24:09)
Running from C:\Users\Jakub\Desktop
Loaded Profiles: Jakub (Available Profiles: Jakub)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: "D:\Programy\Mozilla32\firefox.exe" -osint -url "%1")
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
() C:\Windows\SysWOW64\ASGT.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Microsoft Corporation) C:\Program Files\Microsoft LifeCam\MSCamS64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
() C:\Windows\System32\PnkBstrA.exe
() C:\Windows\SysWOW64\spdsvc.exe
(LogMeIn Inc.) D:\Programy\Hamachi\x64\hamachi-2.exe
(LogMeIn, Inc.) D:\Programy\Hamachi\x64\LMIGuardianSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(LogMeIn Inc.) D:\Programy\Hamachi\hamachi-2-ui.exe
(LogMeIn, Inc.) D:\Programy\Hamachi\LMIGuardianSvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
() C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
() C:\Windows\SysWOW64\UMonit.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Mozilla Corporation) D:\Programy\Mozilla\firefox.exe
(Mozilla Corporation) D:\Programy\Mozilla\firefox.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [MSC] => C:\Program Files\Microsoft Security Client\msseces.exe [1354712 2016-08-30] (Microsoft Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [CDAServer] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [464608 2014-09-08] ()
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16473344 2000-01-01] (Realtek Semiconductor)
HKLM\...\Run: [UMonit] => C:\Windows\SysWOW64\UMonit.exe [200704 2000-01-01] ()
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => D:\Programy\Hamachi\hamachi-2-ui.exe [5883912 2017-03-02] (LogMeIn Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-1969966608-1539205475-668869137-1000\...\MountPoints2: {ec8a87cf-91d2-11e6-9004-50e5493b0049} - G:\HiSuiteDownLoader.exe
HKU\S-1-5-21-1969966608-1539205475-668869137-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\PhotoScreensaver.scr [477696 2010-11-21] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-03-21] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-03-21] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-03-21] (Google)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{6FE64A0E-B9BD-49E4-A0CF-899FD87E5417}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKU\S-1-5-21-1969966608-1539205475-668869137-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.seznam.cz/
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> D:\Programy\officy13\offices\Office15\OCHelper.dll [2015-02-10] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_101\bin\ssv.dll [2016-07-26] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_101\bin\jp2ssv.dll [2016-07-26] (Oracle Corporation)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2015-02-10] (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2015-01-21] (Microsoft Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - D:\Programy\officy13\offices\Office15\MSOSB.DLL [2015-02-17] (Microsoft Corporation)

FireFox:
========
FF DefaultProfile: 44a9lnn6.default
FF ProfilePath: C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\44a9lnn6.default [2017-04-09]
FF Homepage: Mozilla\Firefox\Profiles\44a9lnn6.default -> hxxps://www.seznam.cz/
FF Extension: (Seznam lištička) - C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\44a9lnn6.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [2017-02-22]
FF Extension: (Disable Prefetch) - C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\44a9lnn6.default\features\{b4227907-8a8d-48cf-9edc-0577a9dc420a}\disable-prefetch@mozilla.org.xpi [2017-04-05]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_25_0_0_127.dll [2017-03-14] ()
FF Plugin: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelogx64.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin: @java.com/DTPlugin,version=11.101.2 -> C:\Program Files\Java\jre1.8.0_101\bin\dtplugin\npDeployJava1.dll [2016-07-26] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.101.2 -> C:\Program Files\Java\jre1.8.0_101\bin\plugin2\npjp2.dll [2016-07-26] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50709.0\npctrl.dll [2016-07-11] ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> D:\Programy\officy13\offices\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [No File]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_25_0_0_127.dll [2017-03-14] ()
FF Plugin-x32: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelog.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [No File]
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [No File]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2014-05-21] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50709.0\npctrl.dll [2016-07-11] ( Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-03-17] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-03-17] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2014-05-21] (Microsoft Corporation)
StartMenuInternet: FIREFOX.EXE - D:\Programy\Mozilla32\firefox.exe

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ASGT; C:\Windows\SysWOW64\ASGT.exe [48640 2015-05-29] () [File not signed]
S3 Disc Soft Lite Bus Service; D:\Programy\DAEMON Tools Lite\DiscSoftBusService.exe [1443520 2016-04-04] (Disc Soft Ltd)
R2 Hamachi2Svc; D:\Programy\Hamachi\x64\hamachi-2.exe [3416584 2017-03-02] (LogMeIn Inc.)
R2 Intel(R) Capability Licensing Service Interface; c:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [120888 2016-08-30] (Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [361816 2016-08-30] (Microsoft Corporation)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2017-02-23] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2017-02-23] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [464440 2017-03-17] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [425408 2017-02-23] (NVIDIA Corporation)
S3 Origin Client Service; D:\Filmy a Hry\Origin\OriginClientService.exe [2123240 2017-03-21] (Electronic Arts)
S2 Origin Web Helper Service; D:\Filmy a Hry\Origin\OriginWebHelperService.exe [2184688 2017-03-21] (Electronic Arts)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2016-05-03] ()
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2016-05-03] ()
R2 Samsung Printer Dianostics Service; C:\Windows\SysWOW64\\spdsvc.exe [499000 2016-07-17] ()
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2016-05-02] (Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2016-05-02] (Disc Soft Ltd)
R3 FIXUSTOR; C:\Windows\System32\DRIVERS\fixustor.sys [13696 2000-01-01] (GenesysLogic)
S3 IntcDAud; C:\Windows\System32\DRIVERS\IntcDAud.sys [342528 2013-11-06] (Intel(R) Corporation) [File not signed]
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [125952 2014-06-24] (Intel Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [295000 2016-08-25] (Microsoft Corporation)
R3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [135928 2016-08-25] (Microsoft Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [27584 2017-02-23] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [46016 2017-01-20] (NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\DRIVERS\nvvhci.sys [57792 2017-01-20] (NVIDIA Corporation)
R3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [31472 2000-01-01] (Synaptics Incorporated)
R4 IOMap; \??\C:\Windows\system32\drivers\IOMap64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-04-09 12:55 - 2017-04-09 12:55 - 00048899 _____ C:\Users\Jakub\Desktop\Addition.txt
2017-04-09 12:54 - 2017-04-09 22:24 - 00013525 _____ C:\Users\Jakub\Desktop\FRST.txt
2017-04-09 12:52 - 2017-04-09 12:52 - 02424832 _____ (Farbar) C:\Users\Jakub\Desktop\FRST64.exe
2017-04-07 22:59 - 2000-01-01 02:00 - 00200704 _____ () C:\Windows\SysWOW64\UMonit.exe
2017-04-07 22:59 - 2000-01-01 02:00 - 00167936 _____ () C:\Windows\SysWOW64\ustor.dll
2017-04-07 22:59 - 2000-01-01 02:00 - 00139264 _____ (Genesys) C:\Windows\system32\GeneIcon.dll
2017-04-07 22:59 - 2000-01-01 02:00 - 00013696 _____ (GenesysLogic) C:\Windows\system32\Drivers\fixustor.sys
2017-04-07 22:59 - 2000-01-01 02:00 - 00001372 _____ C:\Windows\SysWOW64\IconCfg0.ini
2017-04-07 20:16 - 2017-04-07 20:16 - 00000000 ____D C:\Users\Jakub\Intel
2017-04-07 20:12 - 2017-04-07 20:12 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf
2017-04-07 20:12 - 2017-04-07 20:12 - 00000000 ____D C:\Program Files\Synaptics
2017-04-07 20:11 - 2000-01-01 02:00 - 00031472 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\Smb_driver_Intel.sys
2017-04-06 20:17 - 2017-04-06 20:17 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2017-04-06 20:17 - 2017-04-06 20:17 - 00000000 ____D C:\Program Files\Realtek
2017-04-06 20:17 - 2000-01-01 02:00 - 05876734 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2017-04-06 20:17 - 2000-01-01 02:00 - 04874496 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2017-04-06 20:17 - 2000-01-01 02:00 - 03283248 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2017-04-06 20:17 - 2000-01-01 02:00 - 03282032 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2017-04-06 20:17 - 2000-01-01 02:00 - 03199232 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2017-04-06 20:17 - 2000-01-01 02:00 - 03086960 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll
2017-04-06 20:17 - 2000-01-01 02:00 - 02895104 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2017-04-06 20:17 - 2000-01-01 02:00 - 02053376 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2017-04-06 20:17 - 2000-01-01 02:00 - 02050184 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll
2017-04-06 20:17 - 2000-01-01 02:00 - 01355616 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2017-04-06 20:17 - 2000-01-01 02:00 - 00914024 _____ (Creative Technology Ltd.) C:\Windows\system32\MBAPO64.dll
2017-04-06 20:17 - 2000-01-01 02:00 - 00768824 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\MBAPO32.dll
2017-04-06 20:17 - 2000-01-01 02:00 - 00689888 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2017-04-06 20:17 - 2000-01-01 02:00 - 00532384 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2017-04-06 20:17 - 2000-01-01 02:00 - 00410040 _____ (Creative Technology Ltd.) C:\Windows\system32\MBWrp64.dll
2017-04-06 20:17 - 2000-01-01 02:00 - 00387320 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2017-04-06 20:17 - 2000-01-01 02:00 - 00343712 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2017-04-06 20:17 - 2000-01-01 02:00 - 00330568 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2017-04-06 20:17 - 2000-01-01 02:00 - 00321720 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2017-04-06 20:17 - 2000-01-01 02:00 - 00321720 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2017-04-06 20:17 - 2000-01-01 02:00 - 00221976 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2017-04-06 20:17 - 2000-01-01 02:00 - 00214840 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2017-04-06 20:17 - 2000-01-01 02:00 - 00209544 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2017-04-06 20:17 - 2000-01-01 02:00 - 00192984 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2017-04-06 20:17 - 2000-01-01 02:00 - 00166208 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2017-04-06 20:17 - 2000-01-01 02:00 - 00110992 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2017-04-06 20:17 - 2000-01-01 02:00 - 00088352 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2017-04-06 20:17 - 2000-01-01 02:00 - 00074608 _____ (Creative Technology Ltd.) C:\Windows\system32\MBppld64.dll
2017-04-06 20:17 - 2000-01-01 02:00 - 00069928 _____ (Creative Technology Ltd.) C:\Windows\system32\MBPPCn64.dll
2017-04-06 20:17 - 2000-01-01 02:00 - 00023704 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2017-04-06 20:16 - 2000-01-01 02:00 - 00574760 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2017-04-06 20:16 - 2000-01-01 02:00 - 00122320 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2017-04-06 20:16 - 2000-01-01 02:00 - 00118600 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2017-04-06 20:08 - 2000-01-01 02:00 - 01028352 _____ (Realtek ) C:\Windows\system32\Drivers\Rt64win7.sys
2017-04-06 20:08 - 2000-01-01 02:00 - 00082544 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll
2017-04-06 19:34 - 2017-04-06 19:34 - 00858432 _____ (SlimWare Utilities, Inc.) C:\Users\Jakub\Downloads\slimdrivers-setup.exe
2017-04-03 20:38 - 2012-10-04 08:29 - 00000000 ____D C:\Users\Jakub\Downloads\Realtek
2017-04-03 20:32 - 2017-04-03 20:32 - 115214047 _____ (Igor Pavlov) C:\Users\Jakub\Downloads\mb_driver_audio_realtek_azalia_6series.exe
2017-04-02 19:16 - 2017-03-17 01:16 - 00549944 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2017-04-02 19:16 - 2017-03-17 01:16 - 00081856 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2017-04-02 19:16 - 2017-03-17 00:56 - 00134592 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2017-04-02 19:15 - 2017-03-17 01:31 - 00001951 _____ C:\Windows\NvContainerRecovery.bat
2017-04-02 19:14 - 2017-03-17 02:59 - 40190400 _____ C:\Windows\system32\nvcompiler.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 35272760 _____ C:\Windows\SysWOW64\nvcompiler.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 34952760 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 28223544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 19883600 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 19006832 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 17282648 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 16400616 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 14674712 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 14434360 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2017-04-02 19:14 - 2017-03-17 02:59 - 13378096 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 11122912 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 11019888 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 09306312 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 08990256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 04064088 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 03627064 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 03583744 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 03187256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 01983424 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6437892.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 01589696 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6437892.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 01053240 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 00989120 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 00959424 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 00912440 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 00687408 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 00609728 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 00576192 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 00504104 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 00500792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 00492560 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 00425104 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 00408272 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 00170360 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 00153368 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 00148016 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 00131536 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2017-04-02 19:14 - 2017-03-17 02:59 - 00000669 _____ C:\Windows\SysWOW64\nv-vk32.json
2017-04-02 19:14 - 2017-03-17 02:59 - 00000669 _____ C:\Windows\system32\nv-vk64.json
2017-04-02 19:09 - 2017-03-17 02:59 - 00514616 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2017-04-02 19:09 - 2017-03-17 02:59 - 00420408 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2017-04-02 19:09 - 2017-03-17 01:16 - 06401984 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2017-04-02 19:09 - 2017-03-17 01:16 - 02477504 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2017-04-02 19:09 - 2017-03-17 01:16 - 01762752 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2017-04-02 19:09 - 2017-03-17 01:16 - 00392128 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2017-04-02 19:09 - 2017-03-17 01:16 - 00069568 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2017-04-02 19:09 - 2017-03-16 11:39 - 07813427 _____ C:\Windows\system32\nvcoproc.bin
2017-04-01 21:19 - 2017-04-01 21:19 - 00000546 _____ C:\Users\Jakub\Downloads\ZmerCas.java
2017-03-30 12:02 - 2017-03-30 12:02 - 02754548 _____ C:\Users\Jakub\Downloads\Vaclavikova_slag1.pdf
2017-03-26 17:51 - 2017-03-26 17:51 - 00001938 _____ C:\Users\Jakub\Downloads\VstupDat.java
2017-03-26 17:50 - 2017-03-26 17:50 - 00000509 _____ C:\Users\Jakub\Downloads\OpakujZadani.java
2017-03-26 17:23 - 2017-03-26 17:24 - 00000000 ____D C:\Users\Jakub\Desktop\soubory
2017-03-21 18:03 - 2017-03-21 18:09 - 102410045 _____ C:\Users\Jakub\Downloads\VA-Hans_Zimmer_The_Classics-2017-gF.rar
2017-03-20 13:03 - 2017-03-20 13:03 - 00000000 ____D C:\Users\Jakub\Desktop\Hudba
2017-03-19 19:45 - 2017-04-09 21:52 - 00000000 ____D C:\AdwCleaner
2017-03-19 19:44 - 2017-03-19 19:44 - 04031440 _____ C:\Users\Jakub\Desktop\adwcleaner_6.044.exe
2017-03-19 18:11 - 2017-04-09 22:24 - 00000000 ____D C:\FRST
2017-03-19 17:21 - 2017-03-19 17:26 - 00000000 ____D C:\rsit
2017-03-19 17:21 - 2017-03-19 17:25 - 00000000 ____D C:\Program Files\trend micro
2017-03-17 23:26 - 2017-02-24 00:56 - 00217528 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2017-03-17 23:26 - 2017-02-24 00:56 - 00047664 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2017-03-15 19:58 - 2017-03-15 20:01 - 00001143 _____ C:\Users\Jakub\Downloads\KU1.java
2017-03-14 20:55 - 2017-03-14 20:55 - 00978560 _____ C:\Users\Jakub\Downloads\T-Mobile, KOVO HMMC-leták.pdf
2017-03-14 18:27 - 2017-03-14 18:27 - 06847064 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-04-09 22:14 - 2017-02-17 09:50 - 00004946 _____ C:\Windows\System32\Tasks\Microsoft Office 15 Sync Maintenance for Jakub-PC-Jakub Jakub-PC
2017-04-09 22:02 - 2009-07-14 06:45 - 00021392 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-04-09 22:02 - 2009-07-14 06:45 - 00021392 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-04-09 22:00 - 2011-04-12 10:34 - 00668138 _____ C:\Windows\system32\perfh005.dat
2017-04-09 22:00 - 2011-04-12 10:34 - 00140798 _____ C:\Windows\system32\perfc005.dat
2017-04-09 22:00 - 2009-07-14 07:13 - 01582262 _____ C:\Windows\system32\PerfStringBackup.INI
2017-04-09 22:00 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf
2017-04-09 21:56 - 2016-08-20 20:48 - 00000000 ____D C:\Users\Jakub\AppData\Local\LogMeIn Hamachi
2017-04-09 21:55 - 2016-11-15 20:45 - 00000000 ____D C:\Users\Jakub\AppData\LocalLow\Mozilla
2017-04-09 21:54 - 2016-05-02 18:16 - 00000000 ____D C:\ProgramData\NVIDIA
2017-04-09 21:53 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-04-09 21:32 - 2016-10-01 16:05 - 00000000 ____D C:\Users\Jakub\Documents\Vlastní šablony Office
2017-04-09 21:13 - 2016-06-23 18:53 - 00000000 ____D C:\Users\Jakub\AppData\Local\Eclipse
2017-04-09 21:10 - 2016-04-22 15:39 - 00000000 ____D C:\Users\Jakub\AppData\Roaming\uTorrent
2017-04-08 00:06 - 2010-11-21 05:27 - 00532136 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2017-04-07 23:25 - 2016-04-22 11:51 - 00000000 ____D C:\Users\Jakub\AppData\Roaming\vlc
2017-04-07 22:59 - 2016-04-22 12:12 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2017-04-07 20:17 - 2016-04-22 12:14 - 00000000 ____D C:\ProgramData\Intel
2017-04-07 20:17 - 2016-04-22 12:14 - 00000000 ____D C:\Program Files\Intel
2017-04-07 20:17 - 2016-04-22 12:11 - 00000000 ____D C:\Program Files (x86)\Intel
2017-04-07 20:16 - 2016-04-22 10:37 - 00000000 ____D C:\Users\Jakub
2017-04-06 20:18 - 2016-04-22 12:12 - 00000000 ___HD C:\Program Files (x86)\Temp
2017-04-06 20:08 - 2016-04-22 12:12 - 00000000 ____D C:\Program Files (x86)\Realtek
2017-04-02 19:21 - 2016-05-02 18:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2017-04-02 19:16 - 2016-05-02 18:30 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2017-04-02 19:16 - 2016-05-02 18:15 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-04-02 19:16 - 2016-05-02 18:14 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2017-04-02 19:16 - 2016-05-02 18:12 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2017-04-02 19:09 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\Help
2017-04-02 19:06 - 2016-06-19 22:54 - 00000000 ____D C:\Users\Jakub\AppData\Local\CrashDumps
2017-04-02 19:05 - 2016-05-02 18:42 - 00000000 ____D C:\Users\Jakub\AppData\Roaming\NVIDIA
2017-03-30 12:54 - 2016-11-26 15:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2017-03-26 00:34 - 2016-05-03 15:07 - 00000000 ____D C:\ProgramData\Origin
2017-03-26 00:30 - 2016-05-03 15:08 - 00000000 ____D C:\Users\Jakub\AppData\Roaming\Origin
2017-03-22 15:27 - 2017-03-02 17:58 - 00000000 ____D C:\ProgramData\EA Logs
2017-03-22 15:00 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\NDF
2017-03-19 23:15 - 2016-04-22 16:03 - 00000000 ___SD C:\Users\Jakub\AppData\LocalLow\Temp
2017-03-17 23:19 - 2016-12-17 16:17 - 00004146 _____ C:\Windows\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-03-17 23:19 - 2016-11-05 17:37 - 00003852 _____ C:\Windows\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-03-17 23:19 - 2016-11-05 17:37 - 00001412 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2017-03-17 23:18 - 2016-11-05 17:37 - 00003738 _____ C:\Windows\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-03-17 23:18 - 2016-11-05 17:37 - 00003738 _____ C:\Windows\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-03-17 23:18 - 2016-11-05 17:37 - 00003730 _____ C:\Windows\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-03-17 23:18 - 2016-11-05 17:37 - 00003554 _____ C:\Windows\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-03-17 23:18 - 2016-11-05 17:36 - 00003494 _____ C:\Windows\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-03-17 02:59 - 2016-05-02 18:15 - 00042686 _____ C:\Windows\system32\nvinfo.pb
2017-03-14 18:27 - 2016-04-23 11:44 - 00802904 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2017-03-14 18:27 - 2016-04-23 11:44 - 00144472 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2017-03-14 18:27 - 2016-04-23 11:44 - 00004396 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2017-03-14 18:27 - 2016-04-23 11:44 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2017-03-14 18:27 - 2016-04-23 11:44 - 00000000 ____D C:\Windows\system32\Macromed

==================== Files in the root of some directories =======

2016-12-17 16:18 - 2017-02-02 21:05 - 0006140 _____ () C:\ProgramData\NvTelemetryContainer.log
2016-12-17 16:18 - 2017-02-01 22:04 - 0005110 _____ () C:\ProgramData\NvTelemetryContainer.log_backup1

Some files in TEMP:
====================
2017-04-02 19:05 - 2015-07-23 02:46 - 0783688 _____ (NVIDIA Corporation) C:\Users\Jakub\AppData\Local\Temp\nvStInst.exe

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2017-04-04 16:22

==================== End of FRST.txt ============================

VIRY.CZ

NT Kernel & System

NT Kernel & System

Re: NT Kernel & System

Re: NT Kernel & System

Re: NT Kernel & System

Re: NT Kernel & System

Re: NT Kernel & System

Re: NT Kernel & System

Re: NT Kernel & System

Re: NT Kernel & System

Re: NT Kernel & System

Re: NT Kernel & System

Re: NT Kernel & System

Re: NT Kernel & System

Re: NT Kernel & System

Re: NT Kernel & System