VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Zpomalení počítače - otvírání aplikací

https://forum.viry.cz:443/viewtopic.php?t=144504

Stránka 1 z 1

Zpomalení počítače - otvírání aplikací

Napsal: 21 kvě 2015 12:03
od pajk
Zdravím,
před 14dny se zpomalil počítač, hlavně otvírání aplikací typu Office, hry, browser. Sken ochranou Comodo nic neukázal.
Čím by to mohlo být? Děkuji předem za pomoc či doporučení.

logy přikládám (FRSIT + FRST64)
Logfile of random's system information tool 1.10 (written by random/random)
Run by hasan at 2015-05-21 11:35:04
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 55 GB (24%) free of 229 GB
Total RAM: 8144 MB (69% free)

HijackThis download failed

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
"C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe"
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs

"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"taskhost.exe"
taskeng.exe {AA33EDAD-0D57-4267-A0BB-148B9EDF18D7}
"C:\Windows\system32\Dwm.exe"
"C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe" /service
C:\Windows\Explorer.EXE
C:\Windows\System32\WScript.exe "C:\Users\hasan\AppData\Roaming\Origin\update.vbe"
"C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe" /service
C:\Windows\System32\svchost.exe -k utcsvc
"C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\Foxit Cloud\FCUpdateService.exe"
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
"C:\Program Files (x86)\Tbccint\ToolbarService\ToolbarService.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\VIA XHCI UASP Utility\usb3Monitor.exe"
"C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe"
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Windows\SysWOW64\rundll32.exe" "C:\Users\hasan\AppData\Local\Tbccint\BackgroundContainer\BackgroundContainer.dll",DllRun
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
"C:\Users\hasan\AppData\Roaming\Dropbox\bin\Dropbox.exe" /systemstartup
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe" 3a8ef0a1-a356-4754-b1e2-d96c498d89b7 1
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\Windows\system32\conhost.exe "480011336-4693426052031705643149215398310809995231092906311-432704675-1645682206
\??\C:\Windows\system32\conhost.exe "2078850975-98956835-1882491000-7355519411414224017-8909388501040667174-497063628
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
szndesktop.exe default start
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"C:\Users\hasan\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe"
\??\C:\Windows\system32\conhost.exe "-569535178817225559706622721992026081-7882953401402470250-2085726102-1842907907
C:\Users\hasan\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="2996.0.2139656432\869995018" --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,19,42,51 --gpu-vendor-id=0x10de --gpu-device-id=0x1187 --gpu-driver-vendor=NVIDIA --gpu-driver-version=9.18.13.5286 --ignored=" --type=renderer " /prefetch:822062411
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="BackgroundRendererProcesses/AllowIdleFromBrowser/*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group8 pct:10h stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Manual install/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*NewProfileManagement/Enabled/OmniboxBundledExperimentV1/PP_Ethersuggest_A1_Stable_R8/*PasswordGeneration/Disabled/PasswordLinkInSettings/Disabled/PermissionBubbleRollout/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoId/*RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*ShowAppLauncherPromo/ShowPromoUntilDismissed/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_05/*UMA-Uniformity-Trial-10-Percent/group_05/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_12/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultDisabled/V8CacheOptions/control/*VoiceTrigger/Install/*WebRTC-IPv6Default/Disabled/*Win32kLockdown/Enabled/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --font-cache-shared-mem-suffix=2996 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --channel="2996.1.731922751\1885293671" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="*BackgroundRendererProcesses/AllowIdleFromBrowser/*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group8 pct:10h stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Manual install/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*NewProfileManagement/Enabled/OmniboxBundledExperimentV1/PP_Ethersuggest_A1_Stable_R8/*PasswordGeneration/Disabled/PasswordLinkInSettings/Disabled/PermissionBubbleRollout/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoId/*RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*ShowAppLauncherPromo/ShowPromoUntilDismissed/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_05/*UMA-Uniformity-Trial-10-Percent/group_05/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_12/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultDisabled/*V8CacheOptions/control/*VoiceTrigger/Install/*WebRTC-IPv6Default/Disabled/*Win32kLockdown/Enabled/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --font-cache-shared-mem-suffix=2996 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --channel="2996.2.335091245\1932380615" /prefetch:673131151
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe" /ModeAvMonitor -Embedding
"C:\Windows\System32\schtasks.exe" /create /sc onlogon /tn Origin /rl highest /ru System /tr "C:\Windows\system32\config\systemprofile\AppData\Roaming\Origin\update.vbe"
\??\C:\Windows\system32\conhost.exe "1351571291-175101607-33368441181235282412479685562016267758-20961356211479312156
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-b1149a49-e80e-4dda-b9f1-a0f4fe74cd3f -SystemEventPortName:HostProcess-b48bdba5-733a-4d64-8ca7-68dad45e0306 -IoCancelEventPortName:HostProcess-2331250d-6d06-4289-97c8-7fed5e068eb5 -NonStateChangingEventPortName:HostProcess-e30edd3d-a9c9-4079-8116-6ccc842443a1 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:c65dc924-4767-4d9f-ae00-902e1a760dc5 -DeviceGroupId:WpdFsGroup
"C:\Program Files\Microsoft Office\Office15\MsoSync.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\svchost.exe -k swprv
C:\Windows\system32\sppsvc.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\servicing\TrustedInstaller.exe
taskhost.exe $(Arg0)
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="*BackgroundRendererProcesses/AllowIdleFromBrowser/*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group8 pct:10h stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Manual install/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*NewProfileManagement/Enabled/*OmniboxBundledExperimentV1/PP_Ethersuggest_A1_Stable_R8/*PasswordGeneration/Disabled/PasswordLinkInSettings/Disabled/PermissionBubbleRollout/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoId/*RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*ShowAppLauncherPromo/ShowPromoUntilDismissed/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_05/*UMA-Uniformity-Trial-10-Percent/group_05/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_12/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultDisabled/*V8CacheOptions/control/*VoiceTrigger/Install/*WebRTC-IPv6Default/Disabled/*Win32kLockdown/Enabled/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --font-cache-shared-mem-suffix=2996 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --channel="2996.4.1612618945\1888896850" /prefetch:673131151
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 868 872 880 65536 876
"Z:\Plocha\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

=========Mozilla firefox=========

ProfilePath - C:\Users\hasan\AppData\Roaming\Mozilla\Firefox\Profiles\upm5lf2v.default

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 17.0.0.169 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_169.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf]
"Description"=
"Path"=C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp]
"Description"=
"Path"=C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf]
"Description"=
"Path"=C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.40.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.40.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/Lync,version=15.0]
"Description"=Microsoft Lync Plug-in for Firefox
"Path"=C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~2\Office15\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 17.0.0.169 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_169.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\MICROS~2\Office15\NPSPWRAP.DLL


C:\Program Files (x86)\Mozilla Firefox\plugins\
npMeetingJoinPluginOC.dll
nppdf32.dll

C:\Users\hasan\AppData\Roaming\Mozilla\Firefox\Profiles\upm5lf2v.default\extensions\
{31264a33-a653-46c4-af49-1232c59a7da5}
{ea614400-e918-4741-9a97-7a972ff7c30b}

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2015-03-31 219296]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2014-07-14 2117216]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office15\URLREDIR.DLL [2014-01-23 881880]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~1\MICROS~2\Office15\GROOVEEX.DLL [2015-04-14 2334936]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31264a33-a653-46c4-af49-1232c59a7da5}]
BS Player ControlBar B Toolbar - C:\Users\hasan\AppData\LocalLow\BS_Player_ControlBar_B\prxtbBS_0.dll [2014-09-23 423744]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2015-03-31 153760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll [2015-03-30 460712]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2014-07-14 1709152]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~2\Office15\URLREDIR.DLL [2014-01-22 707800]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~2\MICROS~2\Office15\GROOVEEX.DLL [2015-04-14 1729752]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-30 172968]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{31264a33-a653-46c4-af49-1232c59a7da5} - BS Player ControlBar B Toolbar - C:\Users\hasan\AppData\LocalLow\BS_Player_ControlBar_B\prxtbBS_0.dll [2014-09-23 423744]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2014-03-14 13671792]
"VIAxHCUtl"=C:\Program Files\VIA XHCI UASP Utility\usb3Monitor []
"COMODO Internet Security"=C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [2015-04-26 1426136]
"CDAServer"=C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [2012-03-09 462712]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2015-05-19 2685072]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2015-05-08 1570672]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2015-03-25 31682144]
"cz.seznam.software.autoupdate"=C:\Users\hasan\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
"cz.seznam.software.szndesktop"=C:\Users\hasan\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2013-04-12 92664]
"BackgroundContainerV2"=C:\Windows\SysWOW64\Rundll32.exe [2009-07-14 44544]
"GoogleChromeAutoLaunch_0978C5035855017179F4F4F2D05CDAB9"=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2015-05-17 812872]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2014-02-21 292848]
"ComodoFSChrome"=C:\Program Files (x86)\AdTrustMedia\PrivDog\FinalizeSetup.exe /c []
"MSStp"=C:\Windows\inf\msstp.vbe [2014-03-05 1584]
"mnchdpdejSrv"=C:\Windows\system32\mnchdpdej.vbe []
"mspnnupSrv"=C:\Windows\inf\mspnnup.vbe []
"seznam-listicka-distribuce"=C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-26 1022152]

C:\Users\hasan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Dropbox.lnk - C:\Users\hasan\AppData\Roaming\Dropbox\bin\Dropbox.exe

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=lvcod64.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo"=vfwwdm32.dll
"MSVideo8"=VfWWDM32.dll
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"aux4"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-05-21 11:30:53 ----D---- C:\rsit
2015-05-21 11:30:53 ----D---- C:\Program Files\trend micro
2015-05-21 11:29:33 ----D---- C:\FRST
2015-05-19 00:24:25 ----A---- C:\Windows\SYSWOW64\nvStreaming.exe
2015-05-19 00:23:19 ----A---- C:\Windows\SYSWOW64\nvumdshim.dll
2015-05-19 00:23:19 ----A---- C:\Windows\SYSWOW64\nvopencl.dll
2015-05-19 00:23:19 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2015-05-19 00:23:19 ----A---- C:\Windows\SYSWOW64\nvoglshim32.dll
2015-05-19 00:23:19 ----A---- C:\Windows\SYSWOW64\nvinit.dll
2015-05-19 00:23:19 ----A---- C:\Windows\SYSWOW64\NvIFROpenGL.dll
2015-05-19 00:23:19 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2015-05-19 00:23:19 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2015-05-19 00:23:19 ----A---- C:\Windows\SYSWOW64\nvEncodeAPI.dll
2015-05-19 00:23:19 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2015-05-19 00:23:19 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2015-05-19 00:23:19 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2015-05-19 00:23:19 ----A---- C:\Windows\system32\nvumdshimx.dll
2015-05-19 00:23:19 ----A---- C:\Windows\system32\nvopencl.dll
2015-05-19 00:23:19 ----A---- C:\Windows\system32\nvoglv64.dll
2015-05-19 00:23:19 ----A---- C:\Windows\system32\nvoglshim64.dll
2015-05-19 00:23:19 ----A---- C:\Windows\system32\nvinitx.dll
2015-05-19 00:23:19 ----A---- C:\Windows\system32\NvIFROpenGL.dll
2015-05-19 00:23:19 ----A---- C:\Windows\system32\NvIFR64.dll
2015-05-19 00:23:19 ----A---- C:\Windows\system32\nvhdap64.dll
2015-05-19 00:23:19 ----A---- C:\Windows\system32\NvFBC64.dll
2015-05-19 00:23:19 ----A---- C:\Windows\system32\nvEncodeAPI64.dll
2015-05-19 00:23:19 ----A---- C:\Windows\system32\nvdispgenco6435286.dll
2015-05-19 00:23:19 ----A---- C:\Windows\system32\nvdispco6435286.dll
2015-05-19 00:23:19 ----A---- C:\Windows\system32\nvd3dumx.dll
2015-05-19 00:23:19 ----A---- C:\Windows\system32\nvcuvid.dll
2015-05-19 00:23:19 ----A---- C:\Windows\system32\nvcuda.dll
2015-05-19 00:23:19 ----A---- C:\Windows\system32\nvcompiler.dll
2015-05-19 00:23:19 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2015-05-19 00:23:19 ----A---- C:\Windows\system32\drivers\nvhda64v.sys
2015-05-13 13:10:26 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-05-13 13:10:26 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-05-13 11:41:25 ----A---- C:\Windows\SYSWOW64\schannel.dll
2015-05-13 11:41:25 ----A---- C:\Windows\SYSWOW64\certcli.dll
2015-05-13 11:41:25 ----A---- C:\Windows\system32\schannel.dll
2015-05-13 11:41:25 ----A---- C:\Windows\system32\certcli.dll
2015-05-13 11:41:23 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-05-13 11:41:23 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-05-13 11:41:23 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2015-05-13 11:41:23 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2015-05-13 11:41:23 ----A---- C:\Windows\system32\ieetwproxystub.dll
2015-05-13 11:41:23 ----A---- C:\Windows\system32\ieetwcollector.exe
2015-05-13 11:41:22 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-05-13 11:41:22 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-05-13 11:41:22 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-05-13 11:41:22 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-05-13 11:41:22 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2015-05-13 11:41:22 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2015-05-13 11:41:22 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-05-13 11:41:22 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-05-13 11:41:22 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-05-13 11:41:22 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-05-13 11:41:22 ----A---- C:\Windows\system32\iernonce.dll
2015-05-13 11:41:22 ----A---- C:\Windows\system32\ie4uinit.exe
2015-05-13 11:41:21 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2015-05-13 11:41:21 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2015-05-13 11:41:21 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-05-13 11:41:21 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2015-05-13 11:41:21 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-05-13 11:41:21 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-05-13 11:41:21 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-05-13 11:41:21 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-05-13 11:41:21 ----A---- C:\Windows\system32\urlmon.dll
2015-05-13 11:41:21 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2015-05-13 11:41:21 ----A---- C:\Windows\system32\msfeeds.dll
2015-05-13 11:41:21 ----A---- C:\Windows\system32\iesetup.dll
2015-05-13 11:41:21 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2015-05-13 11:41:21 ----A---- C:\Windows\system32\iedkcs32.dll
2015-05-13 11:41:21 ----A---- C:\Windows\system32\ieapfltr.dll
2015-05-13 11:41:21 ----A---- C:\Windows\system32\dxtrans.dll
2015-05-13 11:41:20 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-05-13 11:41:20 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-05-13 11:41:20 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2015-05-13 11:41:20 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-05-13 11:41:20 ----A---- C:\Windows\system32\vbscript.dll
2015-05-13 11:41:20 ----A---- C:\Windows\system32\jsproxy.dll
2015-05-13 11:41:20 ----A---- C:\Windows\system32\ieUnatt.exe
2015-05-13 11:41:20 ----A---- C:\Windows\system32\iertutil.dll
2015-05-13 11:41:19 ----A---- C:\Windows\system32\mshtmlmedia.dll
2015-05-13 11:41:19 ----A---- C:\Windows\system32\mshtmled.dll
2015-05-13 11:41:19 ----A---- C:\Windows\system32\jscript9diag.dll
2015-05-13 11:41:19 ----A---- C:\Windows\system32\jscript9.dll
2015-05-13 11:41:19 ----A---- C:\Windows\system32\jscript.dll
2015-05-13 11:41:19 ----A---- C:\Windows\system32\ieui.dll
2015-05-13 11:41:19 ----A---- C:\Windows\system32\ieframe.dll
2015-05-13 11:41:19 ----A---- C:\Windows\system32\dxtmsft.dll
2015-05-13 11:41:18 ----A---- C:\Windows\system32\wininet.dll
2015-05-13 11:41:18 ----A---- C:\Windows\system32\msrating.dll
2015-05-13 11:41:18 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-05-13 11:41:18 ----A---- C:\Windows\system32\mshtml.dll
2015-05-13 11:40:35 ----A---- C:\Windows\system32\services.exe
2015-05-13 11:40:33 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2015-05-13 11:40:33 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2015-05-13 11:40:33 ----A---- C:\Windows\system32\UtcResources.dll
2015-05-13 11:40:33 ----A---- C:\Windows\system32\tdh.dll
2015-05-13 11:40:33 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-05-13 11:40:33 ----A---- C:\Windows\system32\ntdll.dll
2015-05-13 11:40:33 ----A---- C:\Windows\system32\diagtrack.dll
2015-05-13 11:40:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2015-05-13 11:40:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-05-13 11:40:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2015-05-13 11:40:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-05-13 11:40:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-05-13 11:40:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-05-13 11:40:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2015-05-13 11:40:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-05-13 11:40:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-05-13 11:40:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-05-13 11:40:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-05-13 11:40:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-05-13 11:40:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-05-13 11:40:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-05-13 11:40:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-05-13 11:40:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-05-13 11:40:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-05-13 11:40:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2015-05-13 11:40:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-05-13 11:40:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-05-13 11:40:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-05-13 11:40:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2015-05-13 11:40:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-05-13 11:40:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-05-13 11:40:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-05-13 11:40:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-05-13 11:40:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-05-13 11:40:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2015-05-13 11:40:32 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-05-13 11:40:32 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-05-13 11:40:32 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-05-13 11:40:32 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-05-13 11:40:32 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-05-13 11:40:32 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-05-13 11:40:32 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-05-13 11:40:32 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-05-13 11:40:32 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-05-13 11:40:32 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-05-13 11:40:32 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-05-13 11:40:32 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-05-13 11:40:32 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-05-13 11:40:32 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-05-13 11:40:32 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-05-13 11:40:32 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-05-13 11:40:32 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-05-13 11:40:32 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-05-13 11:40:32 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-05-13 11:40:32 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-05-13 11:40:32 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-05-13 11:40:32 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-05-13 11:40:32 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-05-13 11:40:32 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-05-13 11:40:32 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-05-13 11:40:32 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-05-13 11:40:32 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-05-13 11:40:32 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-05-13 11:40:32 ----A---- C:\Windows\SYSWOW64\wow32.dll
2015-05-13 11:40:32 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2015-05-13 11:40:32 ----A---- C:\Windows\SYSWOW64\user.exe
2015-05-13 11:40:32 ----A---- C:\Windows\SYSWOW64\typeperf.exe
2015-05-13 11:40:32 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2015-05-13 11:40:32 ----A---- C:\Windows\SYSWOW64\tracerpt.exe
2015-05-13 11:40:32 ----A---- C:\Windows\SYSWOW64\tdh.dll
2015-05-13 11:40:32 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2015-05-13 11:40:32 ----A---- C:\Windows\SYSWOW64\srclient.dll
2015-05-13 11:40:32 ----A---- C:\Windows\SYSWOW64\setup16.exe
2015-05-13 11:40:32 ----A---- C:\Windows\SYSWOW64\sechost.dll
2015-05-13 11:40:32 ----A---- C:\Windows\SYSWOW64\secur32.dll
2015-05-13 11:40:32 ----A---- C:\Windows\SYSWOW64\relog.exe
2015-05-13 11:40:32 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2015-05-13 11:40:32 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2015-05-13 11:40:32 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2015-05-13 11:40:32 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-05-13 11:40:32 ----A---- C:\Windows\SYSWOW64\logman.exe
2015-05-13 11:40:32 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2015-05-13 11:40:32 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2015-05-13 11:40:32 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-05-13 11:40:32 ----A---- C:\Windows\SYSWOW64\instnm.exe
2015-05-13 11:40:32 ----A---- C:\Windows\SYSWOW64\diskperf.exe
2015-05-13 11:40:32 ----A---- C:\Windows\SYSWOW64\credssp.dll
2015-05-13 11:40:32 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2015-05-13 11:40:32 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2015-05-13 11:40:32 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2015-05-13 11:40:32 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2015-05-13 11:40:32 ----A---- C:\Windows\system32\wow64win.dll
2015-05-13 11:40:32 ----A---- C:\Windows\system32\wow64cpu.dll
2015-05-13 11:40:32 ----A---- C:\Windows\system32\wow64.dll
2015-05-13 11:40:32 ----A---- C:\Windows\system32\winsrv.dll
2015-05-13 11:40:32 ----A---- C:\Windows\system32\wdigest.dll
2015-05-13 11:40:32 ----A---- C:\Windows\system32\typeperf.exe
2015-05-13 11:40:32 ----A---- C:\Windows\system32\TSpkg.dll
2015-05-13 11:40:32 ----A---- C:\Windows\system32\tracerpt.exe
2015-05-13 11:40:32 ----A---- C:\Windows\system32\sspisrv.dll
2015-05-13 11:40:32 ----A---- C:\Windows\system32\sspicli.dll
2015-05-13 11:40:32 ----A---- C:\Windows\system32\srcore.dll
2015-05-13 11:40:32 ----A---- C:\Windows\system32\srclient.dll
2015-05-13 11:40:32 ----A---- C:\Windows\system32\smss.exe
2015-05-13 11:40:32 ----A---- C:\Windows\system32\sechost.dll
2015-05-13 11:40:32 ----A---- C:\Windows\system32\secur32.dll
2015-05-13 11:40:32 ----A---- C:\Windows\system32\rstrui.exe
2015-05-13 11:40:32 ----A---- C:\Windows\system32\relog.exe
2015-05-13 11:40:32 ----A---- C:\Windows\system32\ntvdm64.dll
2015-05-13 11:40:32 ----A---- C:\Windows\system32\ncrypt.dll
2015-05-13 11:40:32 ----A---- C:\Windows\system32\msv1_0.dll
2015-05-13 11:40:32 ----A---- C:\Windows\system32\lsass.exe
2015-05-13 11:40:32 ----A---- C:\Windows\system32\lsasrv.dll
2015-05-13 11:40:32 ----A---- C:\Windows\system32\logman.exe
2015-05-13 11:40:32 ----A---- C:\Windows\system32\KernelBase.dll
2015-05-13 11:40:32 ----A---- C:\Windows\system32\kernel32.dll
2015-05-13 11:40:32 ----A---- C:\Windows\system32\kerberos.dll
2015-05-13 11:40:32 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-05-13 11:40:32 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2015-05-13 11:40:32 ----A---- C:\Windows\system32\diskperf.exe
2015-05-13 11:40:32 ----A---- C:\Windows\system32\csrsrv.dll
2015-05-13 11:40:32 ----A---- C:\Windows\system32\credssp.dll
2015-05-13 11:40:32 ----A---- C:\Windows\system32\conhost.exe
2015-05-13 11:40:32 ----A---- C:\Windows\system32\auditpol.exe
2015-05-13 11:40:32 ----A---- C:\Windows\system32\apisetschema.dll
2015-05-13 11:40:32 ----A---- C:\Windows\system32\advapi32.dll
2015-05-13 11:40:32 ----A---- C:\Windows\system32\adtschema.dll
2015-05-13 11:40:31 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2015-05-13 11:40:31 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2015-05-13 11:40:31 ----A---- C:\Windows\system32\msobjs.dll
2015-05-13 11:40:31 ----A---- C:\Windows\system32\msaudite.dll
2015-05-13 11:40:29 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2015-05-13 11:40:29 ----A---- C:\Windows\system32\win32k.sys
2015-05-13 11:40:29 ----A---- C:\Windows\system32\FntCache.dll
2015-05-13 11:40:29 ----A---- C:\Windows\system32\DWrite.dll
2015-05-13 11:40:27 ----A---- C:\Windows\SYSWOW64\wpdshext.dll
2015-05-13 11:40:27 ----A---- C:\Windows\SYSWOW64\InkEd.dll
2015-05-13 11:40:27 ----A---- C:\Windows\system32\wpdshext.dll
2015-05-13 11:40:27 ----A---- C:\Windows\system32\jnwmon.dll
2015-05-13 11:40:27 ----A---- C:\Windows\system32\InkEd.dll
2015-05-13 11:40:26 ----A---- C:\Windows\SYSWOW64\shimeng.dll
2015-05-13 11:40:26 ----A---- C:\Windows\SYSWOW64\sdbinst.exe
2015-05-13 11:40:26 ----A---- C:\Windows\SYSWOW64\poqexec.exe
2015-05-13 11:40:26 ----A---- C:\Windows\SYSWOW64\apphelp.dll
2015-05-13 11:40:26 ----A---- C:\Windows\system32\shimeng.dll
2015-05-13 11:40:26 ----A---- C:\Windows\system32\sdbinst.exe
2015-05-13 11:40:26 ----A---- C:\Windows\system32\poqexec.exe
2015-05-13 11:40:26 ----A---- C:\Windows\system32\apphelp.dll
2015-05-13 11:40:26 ----A---- C:\Windows\system32\aelupsvc.dll
2015-05-09 16:54:08 ----D---- C:\ProgramData\mmlokenillohjnefmickbiknhngdnnhh
2015-05-09 16:53:45 ----D---- C:\ProgramData\nnfaajljblohjdigagngnglejmgmeknc
2015-05-05 23:43:46 ----A---- C:\Windows\system32\nvdispgenco6435012.dll
2015-05-05 23:43:46 ----A---- C:\Windows\system32\nvdispco6435012.dll
2015-04-25 09:25:29 ----D---- C:\Program Files (x86)\Mozilla Firefox

======List of files/folders modified in the last 1 month======

2015-05-21 11:33:25 ----D---- C:\Users\hasan\AppData\Roaming\Seznam.cz
2015-05-21 11:32:26 ----D---- C:\Windows\System32
2015-05-21 11:32:26 ----D---- C:\Windows\inf
2015-05-21 11:32:26 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-05-21 11:31:17 ----D---- C:\Windows\system32\config
2015-05-21 11:30:53 ----RD---- C:\Program Files
2015-05-21 11:30:12 ----D---- C:\Windows
2015-05-21 11:29:58 ----D---- C:\Users\hasan\AppData\Roaming\Skype
2015-05-21 11:28:45 ----D---- C:\Windows\Temp
2015-05-21 11:28:21 ----D---- C:\ProgramData\NVIDIA
2015-05-20 14:14:32 ----D---- C:\Windows\winsxs
2015-05-20 14:14:31 ----SD---- C:\Windows\SYSWOW64\GWX
2015-05-20 14:14:31 ----SD---- C:\Windows\system32\GWX
2015-05-20 14:14:29 ----SHD---- C:\System Volume Information
2015-05-20 10:23:50 ----D---- C:\Windows\SysWOW64
2015-05-20 10:23:28 ----D---- C:\Windows\system32\DriverStore
2015-05-20 10:21:54 ----D---- C:\Users\hasan\AppData\Roaming\Dropbox
2015-05-19 23:44:04 ----D---- C:\Users\hasan\AppData\Roaming\Azureus
2015-05-19 22:38:06 ----D---- C:\Program Files (x86)\Steam
2015-05-19 00:24:42 ----D---- C:\ProgramData\NVIDIA Corporation
2015-05-19 00:24:22 ----D---- C:\Windows\system32\drivers
2015-05-19 00:24:22 ----A---- C:\Windows\system32\nvhdagenco6420103.dll
2015-05-19 00:24:14 ----A---- C:\Windows\system32\nvvsvc.exe
2015-05-19 00:24:01 ----D---- C:\Program Files\NVIDIA Corporation
2015-05-19 00:23:55 ----A---- C:\Windows\SYSWOW64\nvapi.dll
2015-05-19 00:23:55 ----A---- C:\Windows\system32\nvwgf2umx.dll
2015-05-19 00:23:55 ----A---- C:\Windows\system32\nvapi64.dll
2015-05-19 00:23:54 ----A---- C:\Windows\SYSWOW64\OpenCL.dll
2015-05-19 00:23:54 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2015-05-19 00:23:54 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2015-05-19 00:23:54 ----A---- C:\Windows\system32\OpenCL.dll
2015-05-18 12:52:41 ----D---- C:\Program Files (x86)\The KMPlayer
2015-05-17 21:23:15 ----RD---- C:\Program Files (x86)
2015-05-17 21:23:10 ----D---- C:\Program Files (x86)\Google
2015-05-16 19:51:59 ----SHD---- C:\Windows\Installer
2015-05-16 19:46:54 ----D---- C:\Windows\Tasks
2015-05-14 12:49:21 ----D---- C:\Windows\rescache
2015-05-14 08:15:39 ----D---- C:\Windows\system32\catroot2
2015-05-13 23:48:14 ----D---- C:\Windows\Microsoft.NET
2015-05-13 23:47:25 ----RSD---- C:\Windows\assembly
2015-05-13 21:24:35 ----D---- C:\Windows\SYSWOW64\en-US
2015-05-13 21:24:35 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-05-13 21:24:35 ----D---- C:\Windows\system32\en-US
2015-05-13 21:24:35 ----D---- C:\Windows\system32\cs-CZ
2015-05-13 21:24:35 ----D---- C:\Program Files\Internet Explorer
2015-05-13 21:24:35 ----D---- C:\Program Files (x86)\Internet Explorer
2015-05-13 21:24:34 ----D---- C:\Windows\system32\AdvancedInstallers
2015-05-13 21:24:34 ----D---- C:\Windows\AppPatch
2015-05-13 21:24:34 ----D---- C:\Program Files\Windows Journal
2015-05-13 21:24:33 ----D---- C:\Windows\system32\drivers\UMDF
2015-05-13 13:17:27 ----D---- C:\ProgramData\Microsoft Help
2015-05-13 13:15:49 ----D---- C:\Windows\system32\MRT
2015-05-13 13:12:52 ----A---- C:\Windows\system32\MRT.exe
2015-05-13 13:12:24 ----A---- C:\Windows\win.ini
2015-05-13 13:08:48 ----D---- C:\Program Files\Microsoft Silverlight
2015-05-13 13:08:48 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2015-05-12 05:30:36 ----A---- C:\Windows\system32\nvsvcr.dll
2015-05-12 05:30:36 ----A---- C:\Windows\system32\nvshext.dll
2015-05-12 05:30:36 ----A---- C:\Windows\system32\nvmctray.dll
2015-05-12 05:30:35 ----A---- C:\Windows\system32\nvsvc64.dll
2015-05-12 05:30:35 ----A---- C:\Windows\system32\nvcpl.dll
2015-05-09 16:54:08 ----HD---- C:\ProgramData
2015-05-08 02:35:20 ----A---- C:\Windows\SYSWOW64\nvspcap.dll
2015-05-08 02:35:20 ----A---- C:\Windows\SYSWOW64\nvspbridge.dll
2015-05-08 02:34:36 ----A---- C:\Windows\system32\nvspcap64.dll
2015-05-08 02:34:36 ----A---- C:\Windows\system32\nvspbridge64.dll
2015-05-05 23:45:13 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2015-05-03 21:55:50 ----D---- C:\Windows\system32\NDF
2015-05-03 00:20:25 ----SD---- C:\Users\hasan\AppData\Roaming\Microsoft
2015-04-27 23:58:38 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2015-04-26 12:13:44 ----D---- C:\ProgramData\Skype
2015-04-22 23:57:01 ----D---- C:\Users\hasan\AppData\Roaming\The Creative Assembly

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2014-02-21 20464]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 cmderd;COMODO Internet Security Eradication Driver; C:\Windows\System32\DRIVERS\cmderd.sys [2015-04-01 20696]
R1 cmdGuard;COMODO Internet Security Sandbox Driver; C:\Windows\system32\DRIVERS\cmdguard.sys [2015-04-01 797280]
R1 cmdHlp;COMODO Internet Security Helper Driver; C:\Windows\System32\DRIVERS\cmdhlp.sys [2015-04-01 45880]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2014-08-13 283064]
R1 inspect;COMODO Internet Security Firewall Driver; C:\Windows\system32\DRIVERS\inspect.sys [2015-04-01 104608]
R2 SSPORT;SSPORT; \??\C:\Windows\system32\Drivers\SSPORT.sys [2013-11-26 11576]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2014-03-14 3896920]
R3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2014-02-21 370672]
R3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2014-02-21 791024]
R3 LVUSBS64;Logitech USB Monitor Filter; C:\Windows\system32\drivers\LVUSBS64.sys [2008-07-26 50072]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2013-09-16 99288]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2015-05-19 195912]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2015-05-08 19600]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2014-12-18 38032]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2014-03-18 906968]
R3 StillCam;Ovladač digitálního fotoaparátu pro sériový port; C:\Windows\system32\DRIVERS\serscan.sys [2009-07-14 12288]
R3 VUSB3HUB;VIA USB 3 Root Hub Service; C:\Windows\system32\DRIVERS\ViaHub3.sys [2013-09-25 225792]
R3 xhcdrv;VIA USB eXtensible Host Controller Service; C:\Windows\system32\DRIVERS\xhcdrv.sys [2013-09-25 296960]
S1 {75e31400-eac4-49b7-986c-d198f0b97db7}Gw64;{75e31400-eac4-49b7-986c-d198f0b97db7}Gw64; C:\Windows\system32\drivers\{75e31400-eac4-49b7-986c-d198f0b97db7}Gw64.sys []
S3 DrvAgent64;DrvAgent64; \??\C:\Windows\SysWOW64\Drivers\DrvAgent64.SYS [2014-11-19 21712]
S3 lvpepf64;Volume Adapter; C:\Windows\system32\DRIVERS\lv302a64.sys [2008-07-26 15768]
S3 LVRS64;Logitech RightSound Filter Driver; C:\Windows\system32\DRIVERS\lvrs64.sys [2008-07-26 790424]
S3 PID_PEPI;Logitech QuickCam IM(PID_PEPI); C:\Windows\system32\DRIVERS\LV302V64.SYS [2008-07-26 2624408]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S3 WinUsb;WinUsb; C:\Windows\system32\drivers\WinUsb.sys [2010-11-21 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-12-26 81088]
R2 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2015-03-14 1390176]
R2 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2015-03-14 1767520]
R2 CmdAgent;COMODO Internet Security Helper Service; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [2015-04-26 5540424]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 FoxitCloudUpdateService;Foxit Cloud Safe Update Service; C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\Foxit Cloud\FCUpdateService.exe [2015-04-25 244392]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2015-05-19 1152656]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2015-05-08 1884304]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2015-05-19 22997648]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2015-05-19 937288]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2015-05-19 410768]
R2 TBSrv;Toolbar Service; C:\Program Files (x86)\Tbccint\ToolbarService\ToolbarService.exe [2014-04-10 350528]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-08-12 116648]
S2 Service KMSELDI;Service KMSELDI; C:\Program Files\KMSpico\Service_KMS.exe []
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-02-18 315488]
S2 Update EnhanceEmpire;Update EnhanceEmpire; C:\Program Files (x86)\EnhanceEmpire\updateEnhanceEmpire.exe []
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-04-15 268464]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S3 cmdvirth;COMODO Virtual Service Manager; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2015-04-26 2265816]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-08-12 116648]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-05-13 114688]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-04-27 148080]
S3 Origin Client Service;Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2014-12-18 1903472]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2014-01-23 178760]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2012-10-01 5132888]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-01-24 834752]
S4 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-08-27 747520]
S4 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-08-27 828376]
S4 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-09-16 169432]
S4 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-09-16 390616]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]

-----------------EOF-----------------

Re: Zpomalení počítače - otvírání aplikací

Napsal: 21 kvě 2015 12:12
od pajk
ještě log z FRST

log z FRST
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 18-02-2015 01 (ATTENTION: ====> FRST version is 92 days old and could be outdated)
Ran by hasan (administrator) on PC-HASAN on 21-05-2015 11:29:48
Running from F:\Potvory
Loaded Profiles: hasan (Available profiles: hasan)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser not detected!)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Windows\System32\wscript.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Foxit Software Inc.) C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Skype Technologies) C:\Program Files (x86)\Skype\Updater\Updater.exe
(ClientConnect Ltd.) C:\Program Files (x86)\Tbccint\ToolbarService\ToolbarService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(VIA Technologies, Inc.) C:\Program Files\VIA XHCI UASP Utility\usb3Monitor.exe
() C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
() C:\Users\hasan\AppData\Roaming\Seznam.cz\szninstall.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Dropbox, Inc.) C:\Users\hasan\AppData\Roaming\Dropbox\bin\Dropbox.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
() C:\Users\hasan\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wscript.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
() C:\Users\hasan\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe
(NVIDIA Corporation) C:\Users\hasan\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
(Microsoft Corporation) C:\Windows\System32\schtasks.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office15\MSOSYNC.EXE
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13671792 2014-03-14] (Realtek Semiconductor)
HKLM\...\Run: [VIAxHCUtl] => C:\Program Files\VIA XHCI UASP Utility\usb3Monitor
HKLM\...\Run: [COMODO Internet Security] => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [1426136 2015-04-26] (COMODO)
HKLM\...\Run: [CDAServer] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [462712 2012-03-09] ()
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2685072 2015-05-19] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292848 2014-02-21] (Intel Corporation)
HKLM-x32\...\Run: [ComodoFSChrome] => "C:\Program Files (x86)\AdTrustMedia\PrivDog\FinalizeSetup.exe" /c
HKLM-x32\...\Run: [MSStp] => C:\Windows\inf\msstp.vbe [1584 2014-03-05] ()
HKLM-x32\...\Run: [mnchdpdejSrv] => C:\Windows\SysWOW64\mnchdpdej.vbe [7670 2014-03-05] ()
HKLM-x32\...\Run: [mspnnupSrv] => C:\Windows\inf\mspnnup.vbe
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2014-12-26] (Adobe Systems Incorporated)
HKU\S-1-5-21-3923068897-1019003612-719415689-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-3923068897-1019003612-719415689-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [31682144 2015-03-25] (Skype Technologies S.A.)
HKU\S-1-5-21-3923068897-1019003612-719415689-1000\...\Run: [cz.seznam.software.autoupdate] => C:\Users\hasan\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-3923068897-1019003612-719415689-1000\...\Run: [cz.seznam.software.szndesktop] => C:\Users\hasan\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [92664 2013-04-12] ()
HKU\S-1-5-21-3923068897-1019003612-719415689-1000\...\Run: [BackgroundContainerV2] => "C:\Windows\SysWOW64\Rundll32.exe" "C:\Users\hasan\AppData\Local\Tbccint\BackgroundContainer\BackgroundContainer.dll",DllRun
HKU\S-1-5-21-3923068897-1019003612-719415689-1000\...\Run: [GoogleChromeAutoLaunch_0978C5035855017179F4F4F2D05CDAB9] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [812872 2015-05-17] (Google Inc.)
HKU\S-1-5-21-3923068897-1019003612-719415689-1000\...\MountPoints2: {c76cfbf2-225d-11e4-b0bd-74d43513df53} - D:\Autorun.exe
HKU\S-1-5-21-3923068897-1019003612-719415689-1000\...\MountPoints2: {c76cfbf8-225d-11e4-b0bd-74d43513df53} - E:\setup.exe
Startup: C:\Users\hasan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\hasan\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\hasan\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\hasan\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\hasan\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\hasan\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\hasan\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\hasan\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\hasan\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\hasan\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\hasan\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\hasan\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\hasan\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\hasan\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\hasan\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\hasan\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\hasan\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\hasan\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-21-3923068897-1019003612-719415689-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/?clid=16194
URLSearchHook: HKLM-x32 - BS Player ControlBar B Toolbar - {31264a33-a653-46c4-af49-1232c59a7da5} - C:\Users\hasan\AppData\LocalLow\BS_Player_ControlBar_B\prxtbBS_0.dll (ClientConnect Ltd.)
URLSearchHook: HKU\S-1-5-21-3923068897-1019003612-719415689-1000 - BS Player ControlBar B Toolbar - {31264a33-a653-46c4-af49-1232c59a7da5} - C:\Users\hasan\AppData\LocalLow\BS_Player_ControlBar_B\prxtbBS_0.dll (ClientConnect Ltd.)
SearchScopes: HKU\S-1-5-21-3923068897-1019003612-719415689-1000 -> {2B7EECE0-492C-4285-A5E1-5B8AADD9B6BC} URL = http://search.seznam.cz/?q={searchTerms ... arch_16194
SearchScopes: HKU\S-1-5-21-3923068897-1019003612-719415689-1000 -> {378FC136-3DB7-4B91-9494-E6AA8C670E21} URL = http://www.zbozi.cz/?q={searchTerms}&r= ... arch_16194
SearchScopes: HKU\S-1-5-21-3923068897-1019003612-719415689-1000 -> {42D2BE81-69B6-4446-992B-F37AABA5FDCB} URL = http://encyklopedie.seznam.cz/search?q= ... arch_16194
SearchScopes: HKU\S-1-5-21-3923068897-1019003612-719415689-1000 -> {6B5F9D08-5827-4505-BA94-127666D3F938} URL = http://www.novinky.cz/hledej?w={searchT ... arch_16194
SearchScopes: HKU\S-1-5-21-3923068897-1019003612-719415689-1000 -> {7A96A0B1-F8CD-4F8A-BB37-A317500ECF91} URL = http://www.firmy.cz/?q={searchTerms}&so ... arch_16194
SearchScopes: HKU\S-1-5-21-3923068897-1019003612-719415689-1000 -> {90FB5839-D546-4FCF-8329-9DE2DB4BBADB} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_16194
SearchScopes: HKU\S-1-5-21-3923068897-1019003612-719415689-1000 -> {AA962973-2BC5-4356-8FC0-B50C174F58FC} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_16194
SearchScopes: HKU\S-1-5-21-3923068897-1019003612-719415689-1000 -> {AFDBDDAA-5D3F-42EE-B79C-185A7020515B} URL =
SearchScopes: HKU\S-1-5-21-3923068897-1019003612-719415689-1000 -> {BAB3C13F-EEE5-42DE-9990-046DAD733026} URL = http://tv.seznam.cz/hledej?w={searchTer ... arch_16194
SearchScopes: HKU\S-1-5-21-3923068897-1019003612-719415689-1000 -> {F0996344-7A1A-4AED-A55F-49E17F152AA1} URL = http://www.mapy.cz/?query={searchTerms} ... arch_16194
SearchScopes: HKU\S-1-5-21-3923068897-1019003612-719415689-1000 -> {F9AC7C37-5A1E-4CF9-93D9-8E53E4E666AE} URL = http://trovi.com/ResultsExt.aspx?q={sea ... 45159&UM=4
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: BS Player ControlBar B Toolbar -> {31264a33-a653-46c4-af49-1232c59a7da5} -> C:\Users\hasan\AppData\LocalLow\BS_Player_ControlBar_B\prxtbBS_0.dll (ClientConnect Ltd.)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll (Oracle Corporation)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM-x32 - BS Player ControlBar B Toolbar - {31264a33-a653-46c4-af49-1232c59a7da5} - C:\Users\hasan\AppData\LocalLow\BS_Player_ControlBar_B\prxtbBS_0.dll (ClientConnect Ltd.)
Toolbar: HKU\S-1-5-21-3923068897-1019003612-719415689-1000 -> No Name - {31264A33-A653-46C4-AF49-1232C59A7DA5} - No File
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL (Microsoft Corporation)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\hasan\AppData\Roaming\Mozilla\Firefox\Profiles\upm5lf2v.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_169.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_169.dll ()
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF user.js: detected! => C:\Users\hasan\AppData\Roaming\Mozilla\Firefox\Profiles\upm5lf2v.default\user.js
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Extension: BS Player ControlBar B - C:\Users\hasan\AppData\Roaming\Mozilla\Firefox\Profiles\upm5lf2v.default\Extensions\{31264a33-a653-46c4-af49-1232c59a7da5} [2015-02-16]
FF Extension: Seznam lištička - C:\Users\hasan\AppData\Roaming\Mozilla\Firefox\Profiles\upm5lf2v.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [2014-11-22]
FF Extension: PrivDog - C:\Users\hasan\AppData\Roaming\Mozilla\Firefox\Profiles\upm5lf2v.default\Extensions\PrivDog@AdTrustMedia.com.xpi [2014-08-13]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2015-04-25]
FF HKU\S-1-5-21-3923068897-1019003612-719415689-1000\...\Firefox\Extensions: [PrivDog@AdTrustMedia.com] - C:\Users\hasan\AppData\Roaming\Mozilla\Firefox\Profiles\upm5lf2v.default\extensions

Chrome:
=======
CHR HomePage: Default -> hxxp://www.msn.com/?pc=UP97&ocid=UP97DHP
CHR StartupUrls: Default -> "hxxp://seznam.cz/"
CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}{google:prefetchQuery}sugkey={google:suggestAPIKeyParameter}
CHR Profile: C:\Users\hasan\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\hasan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-08-12]
CHR Extension: (Google Drive) - C:\Users\hasan\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-08-12]
CHR Extension: (YouTube) - C:\Users\hasan\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-08-12]
CHR Extension: (Google Search) - C:\Users\hasan\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-08-12]
CHR Extension: (Bookmark Manager) - C:\Users\hasan\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik [2015-01-23]
CHR Extension: (Skype Click to Call) - C:\Users\hasan\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2015-03-15]
CHR Extension: (Google Wallet) - C:\Users\hasan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-08-12]
CHR Extension: (Gmail) - C:\Users\hasan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-08-12]
CHR HKLM-x32\...\Chrome\Extension: [cmaiofennmphjldldcpphcechfnnohja] - C:\Program Files (x86)\AdTrustMedia\PrivDog\PrivDog_chrome.crx [2014-08-12]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-07-14]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390176 2015-03-14] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1767520 2015-03-14] (Microsoft Corporation)
R2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [5540424 2015-04-26] (COMODO)
S3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2265816 2015-04-26] (COMODO)
R2 DiagTrack; C:\Windows\system32\diagtrack.dll [1254400 2015-05-13] (Microsoft Corporation)
R2 FoxitCloudUpdateService; C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\Foxit Cloud\FCUpdateService.exe [244392 2015-04-25] (Foxit Software Inc.)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1152656 2015-05-19] (NVIDIA Corporation)
S4 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]
S4 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
S4 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-16] (Intel Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1884304 2015-05-08] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [22997648 2015-05-19] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [1903472 2014-12-18] (Electronic Arts)
R2 TBSrv; C:\Program Files (x86)\Tbccint\ToolbarService\ToolbarService.exe [350528 2014-04-10] (ClientConnect Ltd.)
S4 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
S2 Service KMSELDI; C:\Program Files\KMSpico\Service_KMS.exe [X]
S2 Update EnhanceEmpire; "C:\Program Files (x86)\EnhanceEmpire\updateEnhanceEmpire.exe" [X]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R1 cmderd; C:\Windows\System32\DRIVERS\cmderd.sys [20696 2015-04-01] (COMODO)
R1 cmdGuard; C:\Windows\System32\DRIVERS\cmdguard.sys [797280 2015-04-01] (COMODO)
R1 cmdHlp; C:\Windows\System32\DRIVERS\cmdhlp.sys [45880 2015-04-01] (COMODO)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2014-08-13] (Disc Soft Ltd)
R1 inspect; C:\Windows\System32\DRIVERS\inspect.sys [104608 2015-04-01] (COMODO)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [99288 2013-09-16] (Intel Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-05-08] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [38032 2014-12-18] (NVIDIA Corporation)
R3 VUSB3HUB; C:\Windows\System32\DRIVERS\ViaHub3.sys [225792 2013-09-25] (VIA Technologies, Inc.)
R3 xhcdrv; C:\Windows\System32\DRIVERS\xhcdrv.sys [296960 2013-09-25] (VIA Technologies, Inc.)
S1 {75e31400-eac4-49b7-986c-d198f0b97db7}Gw64; system32\drivers\{75e31400-eac4-49b7-986c-d198f0b97db7}Gw64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-05-21 11:29 - 2015-05-21 11:29 - 00000000 ____D () C:\FRST
2015-05-19 00:24 - 2015-05-19 00:24 - 00571024 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2015-05-19 00:23 - 2015-05-19 00:24 - 00195912 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2015-05-19 00:23 - 2015-05-19 00:24 - 00031552 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2015-05-19 00:23 - 2015-05-19 00:23 - 37741712 _____ () C:\Windows\SysWOW64\nvcompiler.dll
2015-05-19 00:23 - 2015-05-19 00:23 - 30478992 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2015-05-19 00:23 - 2015-05-19 00:23 - 22945424 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2015-05-19 00:23 - 2015-05-19 00:23 - 16145176 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2015-05-19 00:23 - 2015-05-19 00:23 - 15858728 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2015-05-19 00:23 - 2015-05-19 00:23 - 14455296 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2015-05-19 00:23 - 2015-05-19 00:23 - 13263568 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2015-05-19 00:23 - 2015-05-19 00:23 - 11790144 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2015-05-19 00:23 - 2015-05-19 00:23 - 10972304 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2015-05-19 00:23 - 2015-05-19 00:23 - 02932368 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2015-05-19 00:23 - 2015-05-19 00:23 - 02599056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2015-05-19 00:23 - 2015-05-19 00:23 - 01898312 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6435286.dll
2015-05-19 00:23 - 2015-05-19 00:23 - 01557648 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6435286.dll
2015-05-19 00:23 - 2015-05-19 00:23 - 01099808 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2015-05-19 00:23 - 2015-05-19 00:23 - 01059984 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2015-05-19 00:23 - 2015-05-19 00:23 - 01050256 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2015-05-19 00:23 - 2015-05-19 00:23 - 00982672 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2015-05-19 00:23 - 2015-05-19 00:23 - 00974480 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2015-05-19 00:23 - 2015-05-19 00:23 - 00939080 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2015-05-19 00:23 - 2015-05-19 00:23 - 00502896 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2015-05-19 00:23 - 2015-05-19 00:23 - 00408208 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2015-05-19 00:23 - 2015-05-19 00:23 - 00407296 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2015-05-19 00:23 - 2015-05-19 00:23 - 00364176 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2015-05-19 00:23 - 2015-05-19 00:23 - 00176064 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2015-05-19 00:23 - 2015-05-19 00:23 - 00154256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2015-05-19 00:23 - 2015-05-19 00:23 - 00150832 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2015-05-19 00:23 - 2015-05-19 00:23 - 00128512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2015-05-19 00:23 - 2015-05-12 08:27 - 42718864 _____ () C:\Windows\system32\nvcompiler.dll
2015-05-17 21:23 - 2015-05-17 21:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-05-13 13:10 - 2015-05-01 15:17 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-05-13 13:10 - 2015-05-01 15:16 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-05-13 11:41 - 2015-05-13 11:41 - 24971776 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-05-13 11:41 - 2015-05-13 11:41 - 19691008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-05-13 11:41 - 2015-05-13 11:41 - 14401536 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-05-13 11:41 - 2015-05-13 11:41 - 12828672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-05-13 11:41 - 2015-05-13 11:41 - 06025728 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-05-13 11:41 - 2015-05-13 11:41 - 04305920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-05-13 11:41 - 2015-05-13 11:41 - 02885120 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-05-13 11:41 - 2015-05-13 11:41 - 02352128 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-05-13 11:41 - 2015-05-13 11:41 - 02278400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-05-13 11:41 - 2015-05-13 11:41 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-05-13 11:41 - 2015-05-13 11:41 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-05-13 11:41 - 2015-05-13 11:41 - 01882112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-05-13 11:41 - 2015-05-13 11:41 - 01547264 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-05-13 11:41 - 2015-05-13 11:41 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-05-13 11:41 - 2015-05-13 11:41 - 01310208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-05-13 11:41 - 2015-05-13 11:41 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2015-05-13 11:41 - 2015-05-13 11:41 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-05-13 11:41 - 2015-05-13 11:41 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-05-13 11:41 - 2015-05-13 11:41 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-05-13 11:41 - 2015-05-13 11:41 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-05-13 11:41 - 2015-05-13 11:41 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-05-13 11:41 - 2015-05-13 11:41 - 00720384 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-05-13 11:41 - 2015-05-13 11:41 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-05-13 11:41 - 2015-05-13 11:41 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-05-13 11:41 - 2015-05-13 11:41 - 00664576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-05-13 11:41 - 2015-05-13 11:41 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-05-13 11:41 - 2015-05-13 11:41 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-05-13 11:41 - 2015-05-13 11:41 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-05-13 11:41 - 2015-05-13 11:41 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-05-13 11:41 - 2015-05-13 11:41 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-05-13 11:41 - 2015-05-13 11:41 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-05-13 11:41 - 2015-05-13 11:41 - 00460800 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2015-05-13 11:41 - 2015-05-13 11:41 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-05-13 11:41 - 2015-05-13 11:41 - 00389840 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-05-13 11:41 - 2015-05-13 11:41 - 00342736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-05-13 11:41 - 2015-05-13 11:41 - 00342016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2015-05-13 11:41 - 2015-05-13 11:41 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-05-13 11:41 - 2015-05-13 11:41 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-05-13 11:41 - 2015-05-13 11:41 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-05-13 11:41 - 2015-05-13 11:41 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-05-13 11:41 - 2015-05-13 11:41 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-05-13 11:41 - 2015-05-13 11:41 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-05-13 11:41 - 2015-05-13 11:41 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-05-13 11:41 - 2015-05-13 11:41 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-05-13 11:41 - 2015-05-13 11:41 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-05-13 11:41 - 2015-05-13 11:41 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-05-13 11:41 - 2015-05-13 11:41 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-05-13 11:41 - 2015-05-13 11:41 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-05-13 11:41 - 2015-05-13 11:41 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-05-13 11:41 - 2015-05-13 11:41 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-05-13 11:41 - 2015-05-13 11:41 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-05-13 11:41 - 2015-05-13 11:41 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-05-13 11:41 - 2015-05-13 11:41 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-05-13 11:41 - 2015-05-13 11:41 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-05-13 11:41 - 2015-05-13 11:41 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-05-13 11:41 - 2015-05-13 11:41 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2015-05-13 11:41 - 2015-05-13 11:41 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-05-13 11:41 - 2015-05-13 11:41 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-05-13 11:41 - 2015-05-13 11:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-05-13 11:41 - 2015-05-13 11:41 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-05-13 11:41 - 2015-04-21 19:08 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-05-13 11:41 - 2015-04-21 18:50 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-05-13 11:41 - 2015-04-21 18:25 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-05-13 11:41 - 2015-04-21 18:09 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-05-13 11:40 - 2015-05-13 11:40 - 05569984 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-05-13 11:40 - 2015-05-13 11:40 - 03989440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-05-13 11:40 - 2015-05-13 11:40 - 03934144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-05-13 11:40 - 2015-05-13 11:40 - 03204608 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-05-13 11:40 - 2015-05-13 11:40 - 02543104 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 02311168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpdshext.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 01728960 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 01647104 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 01310744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 01254400 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 01250816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 01179136 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 01162752 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00641536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00635392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00404992 _____ (Microsoft Corporation) C:\Windows\system32\tracerpt.exe
2015-05-13 11:40 - 2015-05-13 11:40 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tracerpt.exe
2015-05-13 11:40 - 2015-05-13 11:40 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2015-05-13 11:40 - 2015-05-13 11:40 - 00328704 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2015-05-13 11:40 - 2015-05-13 11:40 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-05-13 11:40 - 2015-05-13 11:40 - 00295936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apphelp.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00275456 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00216064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InkEd.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-05-13 11:40 - 2015-05-13 11:40 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2015-05-13 11:40 - 2015-05-13 11:40 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2015-05-13 11:40 - 2015-05-13 11:40 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\sechost.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-05-13 11:40 - 2015-05-13 11:40 - 00104448 _____ (Microsoft Corporation) C:\Windows\system32\logman.exe
2015-05-13 11:40 - 2015-05-13 11:40 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-05-13 11:40 - 2015-05-13 11:40 - 00092160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sechost.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\logman.exe
2015-05-13 11:40 - 2015-05-13 11:40 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\aelupsvc.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-05-13 11:40 - 2015-05-13 11:40 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2015-05-13 11:40 - 2015-05-13 11:40 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\typeperf.exe
2015-05-13 11:40 - 2015-05-13 11:40 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\relog.exe
2015-05-13 11:40 - 2015-05-13 11:40 - 00040448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\typeperf.exe
2015-05-13 11:40 - 2015-05-13 11:40 - 00037888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\relog.exe
2015-05-13 11:40 - 2015-05-13 11:40 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-05-13 11:40 - 2015-05-13 11:40 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2015-05-13 11:40 - 2015-05-13 11:40 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\jnwmon.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\sdbinst.exe
2015-05-13 11:40 - 2015-05-13 11:40 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sdbinst.exe
2015-05-13 11:40 - 2015-05-13 11:40 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\diskperf.exe
2015-05-13 11:40 - 2015-05-13 11:40 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\diskperf.exe
2015-05-13 11:40 - 2015-05-13 11:40 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2015-05-13 11:40 - 2015-05-13 11:40 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\shimeng.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shimeng.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-05-13 11:40 - 2015-05-13 11:40 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2015-05-09 16:54 - 2015-05-09 16:54 - 00000000 ____D () C:\ProgramData\mmlokenillohjnefmickbiknhngdnnhh
2015-05-09 16:53 - 2015-05-09 16:53 - 00000000 ____D () C:\ProgramData\nnfaajljblohjdigagngnglejmgmeknc
2015-05-05 23:43 - 2015-05-05 23:44 - 01895568 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6435012.dll
2015-05-05 23:43 - 2015-05-05 23:44 - 01557648 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6435012.dll
2015-04-25 09:25 - 2015-05-20 14:02 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-05-21 11:29 - 2014-12-09 21:14 - 00004958 _____ () C:\Windows\System32\Tasks\Microsoft Office 15 Sync Maintenance for pc-hasan-hasan pc-hasan
2015-05-21 11:29 - 2014-08-13 10:02 - 00000479 _____ () C:\Users\hasan\rgut
2015-05-21 11:29 - 2014-08-12 22:58 - 00000000 ____D () C:\Users\hasan\AppData\Roaming\Skype
2015-05-21 11:28 - 2014-12-10 08:01 - 00067481 _____ () C:\Windows\setupact.log
2015-05-21 11:28 - 2014-08-12 22:09 - 00000948 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-05-21 11:28 - 2014-08-12 21:19 - 00000000 ____D () C:\ProgramData\NVIDIA
2015-05-21 11:28 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-05-20 14:14 - 2015-04-05 02:10 - 00000000 ___SD () C:\Windows\SysWOW64\GWX
2015-05-20 14:14 - 2015-04-05 02:10 - 00000000 ___SD () C:\Windows\system32\GWX
2015-05-20 14:14 - 2014-08-12 20:16 - 01370583 _____ () C:\Windows\WindowsUpdate.log
2015-05-20 13:51 - 2014-08-12 22:09 - 00000952 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-05-20 13:17 - 2014-08-12 22:38 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-05-20 12:04 - 2009-07-14 06:45 - 00028320 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-05-20 12:04 - 2009-07-14 06:45 - 00028320 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-05-20 10:27 - 2011-04-12 10:34 - 00801850 _____ () C:\Windows\system32\perfh005.dat
2015-05-20 10:27 - 2011-04-12 10:34 - 00184524 _____ () C:\Windows\system32\perfc005.dat
2015-05-20 10:27 - 2009-07-14 07:13 - 01762914 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-05-20 10:26 - 2014-11-22 15:29 - 00000000 ____D () C:\Users\hasan\AppData\Roaming\Seznam.cz
2015-05-20 10:21 - 2014-08-13 13:18 - 00000000 ___RD () C:\Users\hasan\Dropbox
2015-05-20 10:21 - 2014-08-13 13:17 - 00000000 ____D () C:\Users\hasan\AppData\Roaming\Dropbox
2015-05-19 23:44 - 2014-08-12 22:28 - 00000000 ____D () C:\Users\hasan\AppData\Roaming\Azureus
2015-05-19 22:38 - 2014-08-12 22:21 - 00000000 ____D () C:\Program Files (x86)\Steam
2015-05-19 00:24 - 2015-01-31 14:19 - 01558848 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2015-05-19 00:24 - 2014-11-19 17:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-05-19 00:24 - 2014-08-12 21:19 - 00937288 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2015-05-19 00:24 - 2014-08-12 21:19 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2015-05-19 00:24 - 2014-08-12 21:19 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2015-05-19 00:23 - 2014-08-12 21:38 - 12849056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2015-05-19 00:23 - 2014-08-12 21:38 - 02971776 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2015-05-19 00:23 - 2014-08-12 21:19 - 00112784 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2015-05-19 00:23 - 2014-08-12 21:19 - 00105288 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2015-05-19 00:23 - 2014-03-20 23:03 - 17540416 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2015-05-19 00:23 - 2014-03-20 23:03 - 15048816 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2015-05-19 00:23 - 2014-03-20 23:02 - 03363224 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2015-05-18 12:52 - 2014-08-12 22:54 - 00000000 ____D () C:\Program Files (x86)\The KMPlayer
2015-05-18 09:13 - 2010-11-21 05:47 - 00081706 _____ () C:\Windows\PFRO.log
2015-05-17 21:23 - 2014-08-12 22:09 - 00000000 ____D () C:\Program Files (x86)\Google
2015-05-17 21:13 - 2014-08-31 10:44 - 00000000 ____D () C:\Users\hasan\AppData\Local\Tbccint
2015-05-16 19:46 - 2014-08-12 22:09 - 00003948 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-05-16 19:46 - 2014-08-12 22:09 - 00003696 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-05-14 16:02 - 2014-09-03 12:42 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2015-05-14 12:49 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
2015-05-13 21:25 - 2009-07-14 06:45 - 00433288 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-05-13 21:24 - 2011-04-12 10:45 - 00000000 ____D () C:\Program Files\Windows Journal
2015-05-13 21:24 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\AdvancedInstallers
2015-05-13 13:17 - 2014-08-13 01:28 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2015-05-13 13:17 - 2014-08-13 01:26 - 00000000 ____D () C:\ProgramData\Microsoft Help
2015-05-13 13:15 - 2014-08-12 20:56 - 00000000 ____D () C:\Windows\system32\MRT
2015-05-13 13:12 - 2014-08-12 20:56 - 140425016 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-05-13 13:12 - 2009-07-14 04:34 - 00000580 _____ () C:\Windows\win.ini
2015-05-13 13:09 - 2014-11-23 11:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-05-13 13:08 - 2014-11-23 11:06 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2015-05-13 13:08 - 2014-11-23 11:06 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2015-05-13 00:40 - 2014-10-29 10:31 - 00000099 _____ () C:\Users\Public\LMDebug.log
2015-05-12 08:27 - 2014-03-20 23:02 - 00031710 _____ () C:\Windows\system32\nvinfo.pb
2015-05-12 05:30 - 2014-08-12 21:19 - 06872392 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2015-05-12 05:30 - 2014-08-12 21:19 - 03490448 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2015-05-12 05:30 - 2014-08-12 21:19 - 02558608 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2015-05-12 05:30 - 2014-08-12 21:19 - 00385352 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2015-05-12 05:30 - 2014-08-12 21:19 - 00062608 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2015-05-11 23:44 - 2014-08-13 13:17 - 00000000 ____D () C:\Users\hasan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-05-11 19:01 - 2014-08-12 21:19 - 04391871 _____ () C:\Windows\system32\nvcoproc.bin
2015-05-08 02:35 - 2014-11-19 17:23 - 01316184 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2015-05-08 02:35 - 2014-11-19 17:23 - 01316000 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2015-05-08 02:34 - 2014-11-19 17:23 - 01756424 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2015-05-08 02:34 - 2014-11-19 17:23 - 01570672 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2015-05-05 23:45 - 2014-08-12 21:19 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2015-05-03 21:55 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\NDF
2015-05-03 11:20 - 2009-07-14 07:09 - 00000000 ____D () C:\Windows\System32\Tasks\WPD
2015-05-03 11:19 - 2009-07-14 07:08 - 00032522 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2015-05-03 00:20 - 2011-04-12 10:45 - 00000000 ___RD () C:\Users\Public\Recorded TV
2015-05-03 00:19 - 2009-07-14 06:57 - 00001547 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2015-04-27 23:58 - 2014-08-12 22:33 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2015-04-27 00:36 - 2014-12-12 08:04 - 00044488 _____ () C:\Windows\system32\Drivers\fvstore.dat
2015-04-26 12:13 - 2014-08-12 22:58 - 00000000 ____D () C:\ProgramData\Skype
2015-04-22 23:56 - 2014-08-12 23:30 - 00045035 _____ () C:\Windows\DirectX.log
2015-04-22 22:37 - 2014-08-12 22:24 - 00000000 ____D () C:\Users\hasan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam

==================== Files in the root of some directories =======

2014-08-12 20:31 - 2014-08-12 20:31 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Files to move or delete:
====================
C:\Users\hasan\AppData\Roaming\Origin\update.vbe


Some content of TEMP:
====================
C:\Users\hasan\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp9ut6lj.dll
C:\Users\hasan\AppData\Local\Temp\FoxitUpdater.exe
C:\Users\hasan\AppData\Local\Temp\jre-8u40-windows-au.exe
C:\Users\hasan\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\hasan\AppData\Local\Temp\nvSCPAPISvr.exe
C:\Users\hasan\AppData\Local\Temp\nvStInst.exe
C:\Users\hasan\AppData\Local\Temp\ose00000.exe
C:\Users\hasan\AppData\Local\Temp\Runner.exe
C:\Users\hasan\AppData\Local\Temp\SkypeSetup.exe
C:\Users\hasan\AppData\Local\Temp\UninstallTrustedAds.exe
C:\Users\hasan\AppData\Local\Temp\update.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-05-14 12:42

==================== End Of Log ============================

Re: Zpomalení počítače - otvírání aplikací

Napsal: 21 kvě 2015 12:19
od vyosek
Zdravim :)

PROSIM CTETE DUKLADNE NAVOD - TATO UTILITA MA VELKOU SCHOPNOST MAZAT A JE NUTNE JI APLIKOVAT JEN NA DOPORUCENI, JINAK VAM MUZE JIT SYSTEM DO KYTEK
:arrow: Stahnete a ulozte na plochu Combofix http://download.bleepingcomputer.com/sUBs/ComboFix.exe
  • Vypnete vsechny rezidentni bezpecnostní programy - firewally, antiviry, antispywary apod.
  • Pokud mate Win XP spustte pod uctem Spravce\Administratora
  • Pokud mate Win Vista ci Win 7, kliknete na Combofix pravym a dejte Run As Administrator ci Spustit jako spravce
  • Ihned po startu se zobrazi stranka s licencnim ujednanim, pokracujte kliknutim na Ano
  • Pokud Vam CF nabidne instalaci Konzoly pro zotaveni, tak souhlaste
  • Dale postupujte dle pokynu, behem scanu nechte PC naprosto v klidu - nespoustejte zadne aplikace a neklikejte do zobrazujiciho se okna
  • Scan by mel trvat cca 10 min, ale pokud bude PC hodne zaneseno, muze se cas prodlouzit
  • Po dokonceni skenu a pripadnem restartu CF zobrazi log, pripadne jej najdete zde C:\ComboFix.txt, jeho obsah sem vlozte
  • Detailni postup vc. obrazku mate zde http://www.bleepingcomputer.com/combofi ... t-combofix

Re: Zpomalení počítače - otvírání aplikací

Napsal: 21 kvě 2015 15:20
od pajk
Log z Combofixu¨

ComboFix 15-05-19.01 - hasan 21.05.2015 16:14:33.1.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.8144.6432 [GMT 2:00]
Spuštěný z: c:\users\hasan\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KPPTTMAO\ComboFix.exe
SP: Spybot - Search and Destroy *Enabled/Outdated* {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\END
c:\programdata\Tbccint
c:\programdata\Tbccint\IE\CT3329621\configutaion.json
c:\programdata\Tbccint\IE\CT3329621\SetupIcon.ico
c:\programdata\Tbccint\IE\CT3329621\UninstallerUI.exe
c:\programdata\Tbccint\Multi\CT3329621\configutaion.json
c:\programdata\Tbccint\Multi\CT3329621\SetupIcon.ico
c:\programdata\Tbccint\Multi\CT3329621\UninstallerUI.exe
c:\users\hasan\AppData\Local\BrowserSafeguard
c:\users\hasan\AppData\Local\BrowserSafeguard\cookies.dat
c:\users\hasan\AppData\Local\Microsoft\Windows\Temporary Internet Files\EnhanceEmpire_iels
c:\users\hasan\AppData\Local\Tbccint
c:\users\hasan\AppData\Local\Tbccint\BackgroundContainer\BackgroundContainer.dll
c:\users\hasan\AppData\Local\Tbccint\BackgroundContainer\TBUpdaterLogic_1.0.0.1.dll
c:\users\hasan\AppData\Local\Tbccint\BackgroundContainer\TBUpdaterLogic_3.0.0.11.dll
c:\users\hasan\AppData\Local\Tbccint\Community Alerts\Aler0.dll
c:\users\hasan\AppData\Local\Tbccint\Community Alerts\Alert.dll
c:\users\hasan\AppData\Local\Tbccint\CT3329621\BS_Player_ControlBar_BAutoUpdateHelper.exe
c:\users\hasan\AppData\Local\Tbccint\CT3329621\BS_Player_ControlBar_BToolbarHelper.exe
c:\windows\iun6002.exe
Z:\install.exe
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_Service KMSELDI
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2015-04-21 do 2015-05-21 )))))))))))))))))))))))))))))))
.
.
2015-05-21 14:16 . 2015-05-21 14:16 -------- d-----w- c:\users\Default\AppData\Local\temp
2015-05-21 13:40 . 2015-05-21 13:40 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup-2\Markup.dll
2015-05-21 13:40 . 2015-05-21 13:40 483952 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight-2\SpotlightResources.dll
2015-05-21 13:37 . 2010-08-06 06:46 729704 ----a-w- c:\windows\system32\drivers\RTL8192cu.sys
2015-05-21 13:34 . 2015-05-21 14:12 -------- d-----w- c:\programdata\Spybot - Search & Destroy
2015-05-21 13:34 . 2013-09-20 08:49 21040 ----a-w- c:\windows\system32\sdnclean64.exe
2015-05-21 13:34 . 2015-05-21 13:36 -------- d-----w- c:\program files (x86)\Spybot - Search & Destroy 2
2015-05-21 09:30 . 2015-05-21 09:30 -------- d-----w- C:\rsit
2015-05-21 09:30 . 2015-05-21 09:30 -------- d-----w- c:\program files\trend micro
2015-05-21 09:29 . 2015-05-21 09:30 -------- d-----w- C:\FRST
2015-05-18 22:24 . 2015-05-18 22:24 571024 ----a-w- c:\windows\SysWow64\nvStreaming.exe
2015-05-13 11:10 . 2015-05-01 13:17 124112 ----a-w- c:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-05-13 11:10 . 2015-05-01 13:16 102608 ----a-w- c:\windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll
2015-05-13 09:40 . 2015-05-13 09:40 328704 ----a-w- c:\windows\system32\services.exe
2015-05-09 14:54 . 2015-05-09 14:54 -------- d-----w- c:\programdata\mmlokenillohjnefmickbiknhngdnnhh
2015-05-09 14:53 . 2015-05-09 14:53 -------- d-----w- c:\programdata\nnfaajljblohjdigagngnglejmgmeknc
2015-05-05 21:43 . 2015-05-05 21:44 1895568 ----a-w- c:\windows\system32\nvdispco6435012.dll
2015-05-05 21:43 . 2015-05-05 21:44 1557648 ----a-w- c:\windows\system32\nvdispgenco6435012.dll
2015-05-02 22:22 . 2015-05-02 22:22 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll
2015-05-02 22:21 . 2015-05-02 22:21 483952 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2015-04-22 15:27 . 2015-04-22 15:27 26815168 ----a-w- c:\program files (x86)\Common Files\Microsoft Shared\OFFICE15\MSO.DLL
2015-04-22 15:27 . 2015-04-22 15:27 112455352 ----a-w- c:\program files (x86)\Common Files\Microsoft Shared\OFFICE15\MSORES.DLL
2015-04-22 15:22 . 2015-04-22 15:22 3645120 ----a-w- c:\program files\Common Files\Microsoft Shared\OFFICE15\1033\MSOINTL.DLL
2015-04-22 15:22 . 2015-04-22 15:22 112455352 ----a-w- c:\program files\Common Files\Microsoft Shared\OFFICE15\MSORES.DLL
2015-04-22 15:22 . 2015-04-22 15:22 37380288 ----a-w- c:\program files\Common Files\Microsoft Shared\OFFICE15\MSO.DLL
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2015-05-18 22:24 . 2015-01-31 12:19 1558848 ----a-w- c:\windows\system32\nvhdagenco6420103.dll
2015-05-18 22:24 . 2014-08-12 19:19 937288 ----a-w- c:\windows\system32\nvvsvc.exe
2015-05-18 22:23 . 2014-08-12 19:38 2971776 ----a-w- c:\windows\SysWow64\nvapi.dll
2015-05-18 22:23 . 2014-03-20 21:03 17540416 ----a-w- c:\windows\system32\nvwgf2umx.dll
2015-05-18 22:23 . 2014-03-20 21:02 3363224 ----a-w- c:\windows\system32\nvapi64.dll
2015-05-18 22:23 . 2014-08-12 19:38 12849056 ----a-w- c:\windows\SysWow64\nvd3dum.dll
2015-05-18 22:23 . 2014-08-12 19:19 112784 ----a-w- c:\windows\system32\OpenCL.dll
2015-05-18 22:23 . 2014-08-12 19:19 105288 ----a-w- c:\windows\SysWow64\OpenCL.dll
2015-05-18 22:23 . 2014-03-20 21:03 15048816 ----a-w- c:\windows\SysWow64\nvwgf2um.dll
2015-05-13 11:12 . 2014-08-12 18:56 140425016 ----a-w- c:\windows\system32\MRT.exe
2015-05-13 09:41 . 2015-05-13 09:41 342016 ----a-w- c:\windows\system32\schannel.dll
2015-05-13 09:41 . 2015-05-13 09:41 248832 ----a-w- c:\windows\SysWow64\schannel.dll
2015-05-13 09:40 . 2015-05-13 09:40 92160 ----a-w- c:\windows\SysWow64\sechost.dll
2015-05-13 09:40 . 2015-05-13 09:40 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2015-05-13 09:40 . 2015-05-13 09:40 113664 ----a-w- c:\windows\system32\sechost.dll
2015-05-13 09:40 . 2015-05-13 09:40 470528 ----a-w- c:\windows\apppatch\AcSpecfc.dll
2015-05-13 09:40 . 2015-05-13 09:40 309248 ----a-w- c:\windows\apppatch\AppPatch64\AcGenral.dll
2015-05-13 09:40 . 2015-05-13 09:40 2560 ----a-w- c:\windows\apppatch\AcRes.dll
2015-05-13 09:40 . 2015-05-13 09:40 2178560 ----a-w- c:\windows\apppatch\AcGenral.dll
2015-05-13 09:40 . 2015-05-13 09:40 103424 ----a-w- c:\windows\apppatch\AppPatch64\acspecfc.dll
2015-05-12 03:30 . 2014-08-12 19:19 62608 ----a-w- c:\windows\system32\nvshext.dll
2015-05-12 03:30 . 2014-08-12 19:19 385352 ----a-w- c:\windows\system32\nvmctray.dll
2015-05-12 03:30 . 2014-08-12 19:19 2558608 ----a-w- c:\windows\system32\nvsvcr.dll
2015-05-12 03:30 . 2014-08-12 19:19 6872392 ----a-w- c:\windows\system32\nvcpl.dll
2015-05-12 03:30 . 2014-08-12 19:19 3490448 ----a-w- c:\windows\system32\nvsvc64.dll
2015-05-11 17:01 . 2014-08-12 19:19 4391871 ----a-w- c:\windows\system32\nvcoproc.bin
2015-05-08 00:35 . 2014-11-19 15:23 1316184 ----a-w- c:\windows\SysWow64\nvspbridge.dll
2015-05-08 00:35 . 2014-11-19 15:23 1316000 ----a-w- c:\windows\SysWow64\nvspcap.dll
2015-05-08 00:34 . 2014-11-19 15:23 1756424 ----a-w- c:\windows\system32\nvspbridge64.dll
2015-05-08 00:34 . 2014-11-19 15:23 1570672 ----a-w- c:\windows\system32\nvspcap64.dll
2015-04-15 08:20 . 2015-04-15 08:20 98304 ----a-w- c:\windows\system32\wudriver.dll
2015-04-15 08:20 . 2015-04-15 08:20 92672 ----a-w- c:\windows\SysWow64\wudriver.dll
2015-04-15 08:20 . 2015-04-15 08:20 696320 ----a-w- c:\windows\system32\wuapi.dll
2015-04-15 08:20 . 2015-04-15 08:20 60416 ----a-w- c:\windows\system32\WinSetupUI.dll
2015-04-15 08:20 . 2015-04-15 08:20 566784 ----a-w- c:\windows\SysWow64\wuapi.dll
2015-04-15 08:20 . 2015-04-15 08:20 37376 ----a-w- c:\windows\system32\wups2.dll
2015-04-15 08:20 . 2015-04-15 08:20 36864 ----a-w- c:\windows\system32\wuapp.exe
2015-04-15 08:20 . 2015-04-15 08:20 35328 ----a-w- c:\windows\system32\wups.dll
2015-04-15 08:20 . 2015-04-15 08:20 33792 ----a-w- c:\windows\SysWow64\wuapp.exe
2015-04-15 08:20 . 2015-04-15 08:20 3298816 ----a-w- c:\windows\system32\wucltux.dll
2015-04-15 08:20 . 2015-04-15 08:20 29696 ----a-w- c:\windows\SysWow64\wups.dll
2015-04-15 08:20 . 2015-04-15 08:20 2553856 ----a-w- c:\windows\system32\wuaueng.dll
2015-04-15 08:20 . 2015-04-15 08:20 191488 ----a-w- c:\windows\system32\wuwebv.dll
2015-04-15 08:20 . 2015-04-15 08:20 173056 ----a-w- c:\windows\SysWow64\wuwebv.dll
2015-04-15 08:20 . 2015-04-15 08:20 135168 ----a-w- c:\windows\system32\wuauclt.exe
2015-04-15 08:20 . 2015-04-15 08:20 12288 ----a-w- c:\windows\system32\wu.upgrade.ps.dll
2015-04-15 08:20 . 2015-04-15 08:20 957952 ----a-w- c:\windows\system32\appraiser.dll
2015-04-15 08:20 . 2015-04-15 08:20 769536 ----a-w- c:\windows\system32\invagent.dll
2015-04-15 08:20 . 2015-04-15 08:20 726528 ----a-w- c:\windows\system32\generaltel.dll
2015-04-15 08:20 . 2015-04-15 08:20 419840 ----a-w- c:\windows\system32\devinv.dll
2015-04-15 08:20 . 2015-04-15 08:20 30720 ----a-w- c:\windows\system32\acmigration.dll
2015-04-15 08:20 . 2015-04-15 08:20 227328 ----a-w- c:\windows\system32\aepdu.dll
2015-04-15 08:20 . 2015-04-15 08:20 192000 ----a-w- c:\windows\system32\aepic.dll
2015-04-15 08:20 . 2015-04-15 08:20 1239720 ----a-w- c:\windows\system32\aitstatic.exe
2015-04-15 08:20 . 2015-04-15 08:20 1111552 ----a-w- c:\windows\system32\aeinv.dll
2015-04-15 08:20 . 2015-04-15 08:20 2048 ----a-w- c:\windows\SysWow64\msxml3r.dll
2015-04-15 08:20 . 2015-04-15 08:20 2048 ----a-w- c:\windows\system32\msxml3r.dll
2015-04-15 08:20 . 2015-04-15 08:20 1237504 ----a-w- c:\windows\SysWow64\msxml3.dll
2015-04-15 08:20 . 2015-04-15 08:20 754688 ----a-w- c:\windows\system32\drivers\http.sys
2015-04-15 08:19 . 2015-04-15 08:19 367552 ----a-w- c:\windows\system32\clfs.sys
2015-04-15 08:19 . 2015-04-15 08:19 79360 ----a-w- c:\windows\system32\clfsw32.dll
2015-04-15 08:19 . 2015-04-15 08:19 58880 ----a-w- c:\windows\SysWow64\clfsw32.dll
2015-04-15 08:17 . 2014-08-12 20:38 778416 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2015-04-15 08:17 . 2014-08-12 20:38 142512 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2015-03-30 07:10 . 2015-01-20 15:09 98216 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2015-03-23 22:09 . 2015-03-23 22:08 1896136 ----a-w- c:\windows\system32\nvdispco6434788.dll
2015-03-23 22:09 . 2015-03-23 22:08 1557648 ----a-w- c:\windows\system32\nvdispgenco6434788.dll
2015-03-11 07:22 . 2015-03-11 07:22 70656 ----a-w- c:\windows\SysWow64\fontsub.dll
2015-03-11 07:22 . 2015-03-11 07:22 46080 ----a-w- c:\windows\system32\atmlib.dll
2015-03-11 07:22 . 2015-03-11 07:22 41984 ----a-w- c:\windows\system32\lpk.dll
2015-03-11 07:22 . 2015-03-11 07:22 372224 ----a-w- c:\windows\system32\atmfd.dll
2015-03-11 07:22 . 2015-03-11 07:22 34304 ----a-w- c:\windows\SysWow64\atmlib.dll
2015-03-11 07:22 . 2015-03-11 07:22 299008 ----a-w- c:\windows\SysWow64\atmfd.dll
2015-03-11 07:22 . 2015-03-11 07:22 25600 ----a-w- c:\windows\SysWow64\lpk.dll
2015-03-11 07:22 . 2015-03-11 07:22 14336 ----a-w- c:\windows\system32\dciman32.dll
2015-03-11 07:22 . 2015-03-11 07:22 10240 ----a-w- c:\windows\SysWow64\dciman32.dll
2015-03-11 07:22 . 2015-03-11 07:22 100864 ----a-w- c:\windows\system32\fontsub.dll
2015-03-11 07:22 . 2015-03-11 07:22 988160 ----a-w- c:\windows\SysWow64\drmv2clt.dll
2015-03-11 07:22 . 2015-03-11 07:22 842240 ----a-w- c:\windows\system32\blackbox.dll
2015-03-11 07:22 . 2015-03-11 07:22 744960 ----a-w- c:\windows\SysWow64\blackbox.dll
2015-03-11 07:22 . 2015-03-11 07:22 14632960 ----a-w- c:\windows\system32\wmp.dll
2015-03-11 07:22 . 2015-03-11 07:22 1202176 ----a-w- c:\windows\system32\drmv2clt.dll
2015-03-11 07:22 . 2015-03-11 07:22 782848 ----a-w- c:\windows\system32\wmdrmsdk.dll
2015-03-11 07:22 . 2015-03-11 07:22 663552 ----a-w- c:\windows\system32\drivers\PEAuth.sys
2015-03-11 07:22 . 2015-03-11 07:22 631808 ----a-w- c:\windows\system32\evr.dll
2015-03-11 07:22 . 2015-03-11 07:22 617984 ----a-w- c:\windows\SysWow64\wmdrmsdk.dll
2015-03-11 07:22 . 2015-03-11 07:22 497664 ----a-w- c:\windows\system32\drmmgrtn.dll
2015-03-11 07:22 . 2015-03-11 07:22 406016 ----a-w- c:\windows\SysWow64\drmmgrtn.dll
2015-03-11 07:22 . 2015-03-11 07:22 3209728 ----a-w- c:\windows\SysWow64\mf.dll
2015-03-11 07:22 . 2015-03-11 07:22 1574400 ----a-w- c:\windows\system32\quartz.dll
2015-03-11 07:22 . 2015-03-11 07:22 1480192 ----a-w- c:\windows\system32\crypt32.dll
2015-03-11 07:22 . 2015-03-11 07:22 1174528 ----a-w- c:\windows\SysWow64\crypt32.dll
2015-03-11 07:22 . 2015-03-11 07:22 94656 ----a-w- c:\windows\system32\drivers\mountmgr.sys
2015-03-11 07:22 . 2015-03-11 07:22 82432 ----a-w- c:\windows\system32\cryptsp.dll
2015-03-11 07:22 . 2015-03-11 07:22 81408 ----a-w- c:\windows\SysWow64\cryptsp.dll
2015-03-11 07:22 . 2015-03-11 07:22 693176 ----a-w- c:\windows\system32\winload.efi
2015-03-11 07:22 . 2015-03-11 07:22 680960 ----a-w- c:\windows\system32\audiosrv.dll
2015-03-11 07:22 . 2015-03-11 07:22 641024 ----a-w- c:\windows\system32\msscp.dll
2015-03-11 07:22 . 2015-03-11 07:22 619056 ----a-w- c:\windows\system32\winload.exe
2015-03-11 07:22 . 2015-03-11 07:22 616360 ----a-w- c:\windows\system32\winresume.efi
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{31264a33-a653-46c4-af49-1232c59a7da5}"= "c:\users\hasan\AppData\LocalLow\BS_Player_ControlBar_B\prxtbBS_0.dll" [2014-09-23 423744]
.
[HKEY_CLASSES_ROOT\clsid\{31264a33-a653-46c4-af49-1232c59a7da5}]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{31264a33-a653-46c4-af49-1232c59a7da5}]
2014-09-23 10:37 423744 ----a-w- c:\users\hasan\AppData\LocalLow\BS_Player_ControlBar_B\prxtbBS_0.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar]
"{31264a33-a653-46c4-af49-1232c59a7da5}"= "c:\users\hasan\AppData\LocalLow\BS_Player_ControlBar_B\prxtbBS_0.dll" [2014-09-23 423744]
.
[HKEY_CLASSES_ROOT\clsid\{31264a33-a653-46c4-af49-1232c59a7da5}]
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)]
@="{8BA85C75-763B-4103-94EB-9470F12FE0F7}"
[HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}]
2015-04-14 15:19 1729752 ----a-w- c:\progra~2\MICROS~2\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)]
@="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}"
[HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}]
2015-04-14 15:19 1729752 ----a-w- c:\progra~2\MICROS~2\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)]
@="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}"
[HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}]
2015-04-14 15:19 1729752 ----a-w- c:\progra~2\MICROS~2\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt1"]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2015-02-11 01:12 152544 ----a-w- c:\users\hasan\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt2"]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2015-02-11 01:12 152544 ----a-w- c:\users\hasan\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt3"]
@="{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}]
2015-02-11 01:12 152544 ----a-w- c:\users\hasan\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt4"]
@="{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}]
2015-02-11 01:12 152544 ----a-w- c:\users\hasan\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt5"]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2015-02-11 01:12 152544 ----a-w- c:\users\hasan\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt6"]
@="{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}]
2015-02-11 01:12 152544 ----a-w- c:\users\hasan\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt7"]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2015-02-11 01:12 152544 ----a-w- c:\users\hasan\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt8"]
@="{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}]
2015-02-11 01:12 152544 ----a-w- c:\users\hasan\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2014-03-04 3696912]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2015-03-25 31682144]
"cz.seznam.software.autoupdate"="c:\users\hasan\AppData\Roaming\Seznam.cz\szninstall.exe" [2013-05-16 1062472]
"cz.seznam.software.szndesktop"="c:\users\hasan\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" [2013-04-12 92664]
"GoogleChromeAutoLaunch_0978C5035855017179F4F4F2D05CDAB9"="c:\program files (x86)\Google\Chrome\Application\chrome.exe" [2015-05-17 812872]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"="c:\program files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" [2014-02-21 292848]
"MSStp"="c:\windows\inf\msstp.vbe" [2014-03-05 1584]
"mnchdpdejSrv"="c:\windows\system32\mnchdpdej.vbe" [2014-03-05 7670]
"seznam-listicka-distribuce"="c:\program files (x86)\Seznam.cz\distribution\szninstall.exe" [2013-05-16 1062472]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2014-12-26 1022152]
"SDTray"="c:\program files (x86)\Spybot - Search & Destroy 2\SDTray.exe" [2014-06-24 4101576]
.
c:\users\hasan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Dropbox.lnk - c:\users\hasan\AppData\Roaming\Dropbox\bin\Dropbox.exe /systemstartup [2015-5-5 43374104]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0\0sdnclean64.exe
.
R1 {75e31400-eac4-49b7-986c-d198f0b97db7}Gw64;{75e31400-eac4-49b7-986c-d198f0b97db7}Gw64;c:\windows\system32\drivers\{75e31400-eac4-49b7-986c-d198f0b97db7}Gw64.sys;c:\windows\SYSNATIVE\drivers\{75e31400-eac4-49b7-986c-d198f0b97db7}Gw64.sys [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 Update EnhanceEmpire;Update EnhanceEmpire;c:\program files (x86)\EnhanceEmpire\updateEnhanceEmpire.exe;c:\program files (x86)\EnhanceEmpire\updateEnhanceEmpire.exe [x]
R3 DrvAgent64;DrvAgent64;c:\windows\SysWOW64\Drivers\DrvAgent64.SYS;c:\windows\SysWOW64\Drivers\DrvAgent64.SYS [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 lvpepf64;Volume Adapter;c:\windows\system32\DRIVERS\lv302a64.sys;c:\windows\SYSNATIVE\DRIVERS\lv302a64.sys [x]
R3 LVRS64;Logitech RightSound Filter Driver;c:\windows\system32\DRIVERS\lvrs64.sys;c:\windows\SYSNATIVE\DRIVERS\lvrs64.sys [x]
R3 NvStreamKms;NvStreamKms;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [x]
R3 Origin Client Service;Origin Client Service;c:\program files (x86)\Origin\OriginClientService.exe;c:\program files (x86)\Origin\OriginClientService.exe [x]
R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R4 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe;c:\program files\Intel\iCLS Client\HeciServer.exe [x]
R4 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface;c:\program files\Intel\iCLS Client\SocketHeciServer.exe;c:\program files\Intel\iCLS Client\SocketHeciServer.exe [x]
R4 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [x]
S0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3hcs.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hcs.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S2 c2cautoupdatesvc;Skype Click to Call Updater;c:\program files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe;c:\program files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [x]
S2 c2cpnrsvc;Skype Click to Call PNR Service;c:\program files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe;c:\program files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [x]
S2 DiagTrack;Diagnostics Tracking Service;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S2 FoxitCloudUpdateService;Foxit Cloud Safe Update Service;c:\program files (x86)\FOXIT SOFTWARE\FOXIT READER\Foxit Cloud\FCUpdateService.exe;c:\program files (x86)\FOXIT SOFTWARE\FOXIT READER\Foxit Cloud\FCUpdateService.exe [x]
S2 GfExperienceService;NVIDIA GeForce Experience Service;c:\program files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe;c:\program files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [x]
S2 NvNetworkService;NVIDIA Network Service;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [x]
S2 NvStreamSvc;NVIDIA Streamer Service;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [x]
S2 SDScannerService;Spybot-S&D 2 Scanner Service;c:\program files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe;c:\program files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [x]
S2 SDUpdateService;Spybot-S&D 2 Updating Service;c:\program files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe;c:\program files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [x]
S2 SDWSCService;Spybot-S&D 2 Security Center Service;c:\program files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe;c:\program files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [x]
S2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
S2 SSPORT;SSPORT;c:\windows\system32\Drivers\SSPORT.sys;c:\windows\SYSNATIVE\Drivers\SSPORT.sys [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S2 TBSrv;Toolbar Service;c:\program files (x86)\Tbccint\ToolbarService\ToolbarService.exe;c:\program files (x86)\Tbccint\ToolbarService\ToolbarService.exe [x]
S3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hub.sys [x]
S3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3xhc.sys [x]
S3 LVUSBS64;Logitech USB Monitor Filter;c:\windows\system32\drivers\LVUSBS64.sys;c:\windows\SYSNATIVE\drivers\LVUSBS64.sys [x]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad64v.sys;c:\windows\SYSNATIVE\drivers\nvvad64v.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 RTL8192cu;Realtek RTL8192CU Wireless LAN 802.11n USB 2.0 Network Adapter;c:\windows\system32\DRIVERS\RTL8192cu.sys;c:\windows\SYSNATIVE\DRIVERS\RTL8192cu.sys [x]
S3 VUSB3HUB;VIA USB 3 Root Hub Service;c:\windows\system32\DRIVERS\ViaHub3.sys;c:\windows\SYSNATIVE\DRIVERS\ViaHub3.sys [x]
S3 xhcdrv;VIA USB eXtensible Host Controller Service;c:\windows\system32\DRIVERS\xhcdrv.sys;c:\windows\SYSNATIVE\DRIVERS\xhcdrv.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2015-05-17 19:23 988488 ----a-w- c:\program files (x86)\Google\Chrome\Application\42.0.2311.152\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2015-05-21 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-08-12 08:17]
.
2015-05-21 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2014-08-12 20:09]
.
2015-05-21 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2014-08-12 20:09]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)]
@="{8BA85C75-763B-4103-94EB-9470F12FE0F7}"
[HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}]
2015-04-14 15:14 2334936 ----a-w- c:\progra~1\MICROS~2\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)]
@="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}"
[HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}]
2015-04-14 15:14 2334936 ----a-w- c:\progra~1\MICROS~2\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)]
@="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}"
[HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}]
2015-04-14 15:14 2334936 ----a-w- c:\progra~1\MICROS~2\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt1"]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2015-02-11 01:12 185824 ----a-w- c:\users\hasan\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt2"]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2015-02-11 01:12 185824 ----a-w- c:\users\hasan\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt3"]
@="{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}]
2015-02-11 01:12 185824 ----a-w- c:\users\hasan\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt4"]
@="{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}]
2015-02-11 01:12 185824 ----a-w- c:\users\hasan\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt5"]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2015-02-11 01:12 185824 ----a-w- c:\users\hasan\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt6"]
@="{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}]
2015-02-11 01:12 185824 ----a-w- c:\users\hasan\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt7"]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2015-02-11 01:12 185824 ----a-w- c:\users\hasan\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt8"]
@="{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}]
2015-02-11 01:12 185824 ----a-w- c:\users\hasan\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"VIAxHCUtl"="c:\program files\VIA XHCI UASP Utility\usb3Monitor" [X]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2014-03-14 13671792]
"CDAServer"="c:\program files\Common Files\Common Desktop Agent\CDASrv.exe" [2012-03-09 462712]
"NvBackend"="c:\program files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe" [2015-05-19 2685072]
"ShadowPlay"="c:\windows\system32\nvspcap64.dll" [2015-05-08 1570672]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.seznam.cz/?clid=16194
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = <-loopback>
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office15\EXCEL.EXE/3000
IE: Se&nd to OneNote - c:\progra~1\MICROS~2\Office15\ONBttnIE.dll/105
Trusted Zone: clonewarsadventures.com
Trusted Zone: freerealms.com
Trusted Zone: soe.com
Trusted Zone: sony.com
TCP: DhcpNameServer = 192.168.1.1
TCP: Interfaces\{651C5805-D87D-44FC-9E83-7C81B8690C1C}: NameServer = 192.168.1.1
Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - c:\program files (x86)\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL
FF - ProfilePath - c:\users\hasan\AppData\Roaming\Mozilla\Firefox\Profiles\upm5lf2v.default\
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Wow6432Node-HKCU-Run-BackgroundContainerV2 - c:\users\hasan\AppData\Local\Tbccint\BackgroundContainer\BackgroundContainer.dll
Wow6432Node-HKLM-Run-ComodoFSChrome - c:\program files (x86)\AdTrustMedia\PrivDog\FinalizeSetup.exe
Wow6432Node-HKLM-Run-mspnnupSrv - c:\windows\inf\mspnnup.vbe
Notify-SDWinLogon - SDWinLogon.dll
WebBrowser-{31264A33-A653-46C4-AF49-1232C59A7DA5} - (no file)
AddRemove-Cool's_Codec_pack_4.12 - c:\windows\iun6002.exe
AddRemove-IECT3329621 - c:\programdata\Tbccint\IE\CT3329621\UninstallerUI.exe
AddRemove-Q2FsbG9mRHV0eUFkdmFuY2VkV2FyZmFyZQ==_is1 - c:\program files (x86)\Call of Duty Advanced Warfare\unins001.exe
AddRemove-Setup - Call of Duty Advanced Warfare (c) Activision - c:\program files (x86)\Call of Duty Advanced Warfare\unins000.exe
AddRemove-Setup - Call of Duty Advanced Warfare Update 2 (c) Activision - c:\program files (x86)\Call of Duty Advanced Warfare\unins000.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\users\hasan\AppData\Roaming\Dropbox\bin\Dropbox.exe
c:\users\hasan\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
c:\windows\SysWOW64\WScript.exe
c:\users\hasan\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe
.
**************************************************************************
.
Celkový čas: 2015-05-21 16:19:13 - počítač byl restartován
ComboFix-quarantined-files.txt 2015-05-21 14:19
.
Před spuštěním: Volných bajtů: 58 040 692 736
Po spuštění: Volných bajtů: 58 773 299 200
.
- - End Of File - - 17AA7270BB70354576F5B9C3E6CBFF88
A36C5E4F47E84449FF07ED3517B43A31

Re: Zpomalení počítače - otvírání aplikací

Napsal: 21 kvě 2015 15:58
od vyosek
:arrow: Odinstalujte Spybota - je zastaraly a neucinny proti novym typum haveti

:arrow: Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
  • Ulozte nejlepe na plochu
  • Ukoncete vsechny programy
  • Po spusteni probehne stazeni databaze
  • Kliknete na Scan a nasledne Clean
  • Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte

Re: Zpomalení počítače - otvírání aplikací

Napsal: 21 kvě 2015 17:10
od pajk
Provedeno:

# AdwCleaner v4.205 - Log vytvořen 21/05/2015 v 18:03:35
# Aktualizováno 21/05/2015 by Xplode
# Databáze : 2015-05-21.2 [Server]
# Operační system : Windows 7 Home Premium Service Pack 1 (x64)
# Uživatelské jméno : hasan - PC-HASAN
# Spuštěno z : Z:\Plocha\AdwCleaner.exe
# Nastavení : Čištění

***** [ Služby ] *****

[#] Služba Smazáno : TBSrv
[#] Služba Smazáno : {75e31400-eac4-49b7-986c-d198f0b97db7}Gw64

***** [ Soubory / Složky ] *****

Složka Smazáno : C:\ProgramData\AdTrustMedia
Složka Smazáno : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverToolkit
Složka Smazáno : C:\Program Files (x86)\eSupport.com
Složka Smazáno : C:\Program Files (x86)\Tbccint
Složka Smazáno : C:\Program Files (x86)\AdTrustMedia
Složka Smazáno : C:\Program Files (x86)\DriverToolkit
Složka Smazáno : C:\Program Files\AdTrustMedia
Složka Smazáno : C:\Users\hasan\AppData\Local\eSupport.com
Složka Smazáno : C:\Users\hasan\AppData\Local\AdTrustMedia
Složka Smazáno : C:\Users\hasan\AppData\Local\DriverToolkit
Složka Smazáno : C:\Users\hasan\AppData\LocalLow\Tbccint
Složka Smazáno : C:\Users\hasan\AppData\LocalLow\BS_Player_ControlBar_B
Složka Smazáno : C:\Users\hasan\AppData\Roaming\AdTrustMedia
Složka Smazáno : C:\Users\hasan\AppData\Roaming\Mozilla\Firefox\Profiles\upm5lf2v.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
Složka Smazáno : C:\Users\hasan\AppData\Roaming\Mozilla\Firefox\Profiles\upm5lf2v.default\Extensions\{31264a33-a653-46c4-af49-1232c59a7da5}
Složka Smazáno : C:\Users\hasan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Složka Smazáno : C:\Users\hasan\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
Složka Smazáno : C:\Users\hasan\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik
Složka Smazáno : C:\Users\hasan\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl
Složka Smazáno : C:\Users\hasan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Složka Smazáno : C:\ProgramData\mmlokenillohjnefmickbiknhngdnnhh
Složka Smazáno : C:\ProgramData\nnfaajljblohjdigagngnglejmgmeknc
Složka Smazáno : C:\Users\hasan\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\cmaiofennmphjldldcpphcechfnnohja
Složka Smazáno : C:\Users\hasan\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Soubor Smazáno : C:\Users\hasan\AppData\Roaming\Mozilla\Firefox\Profiles\upm5lf2v.default\Extensions\PrivDog@AdTrustMedia.com.xpi
Soubor Smazáno : C:\Users\hasan\AppData\Roaming\Mozilla\Firefox\Profiles\upm5lf2v.default\user.js
Soubor Smazáno : C:\Users\hasan\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_plarium.com_0.localstorage
Soubor Smazáno : C:\Users\hasan\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_plarium.com_0.localstorage-journal
Soubor Smazáno : C:\Users\hasan\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_wlogin.icq.com_0.localstorage
Soubor Smazáno : C:\Users\hasan\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_wlogin.icq.com_0.localstorage-journal

***** [ Naplánované úlohy ] *****


***** [ Zástupci ] *****


***** [ Registry ] *****

Hodnota Smazáno : HKCU\Software\Mozilla\Firefox\Extensions [PrivDog@AdTrustMedia.com]
Klíč Smazáno : HKLM\SOFTWARE\Google\Chrome\Extensions\cmaiofennmphjldldcpphcechfnnohja
Klíč Smazáno : HKLM\SOFTWARE\Google\Chrome\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IECT3329621
Klíč Smazáno : HKLM\SOFTWARE\Classes\Toolbar.CT3329621
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{3A1209A4-8568-40F0-9B5E-4A06A2A06417}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31264A33-A653-46C4-AF49-1232C59A7DA5}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{31264A33-A653-46C4-AF49-1232C59A7DA5}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{31264A33-A653-46C4-AF49-1232C59A7DA5}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{3A1209A4-8568-40F0-9B5E-4A06A2A06417}
Hodnota Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{31264A33-A653-46C4-AF49-1232C59A7DA5}]
Hodnota Smazáno : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{31264A33-A653-46C4-AF49-1232C59A7DA5}]
Hodnota Smazáno : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{31264A33-A653-46C4-AF49-1232C59A7DA5}]
Hodnota Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{31264A33-A653-46C4-AF49-1232C59A7DA5}]
Klíč Smazáno : [x64] HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Klíč Smazáno : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{F9AC7C37-5A1E-4CF9-93D9-8E53E4E666AE}
Klíč Smazáno : HKCU\Software\Conduit
Klíč Smazáno : HKCU\Software\eSupport.com
Klíč Smazáno : HKCU\Software\Softonic
Klíč Smazáno : HKCU\Software\Tbccint
Klíč Smazáno : HKCU\Software\Tbccint_HKLM
Klíč Smazáno : HKCU\Software\BS_Player_ControlBar_B
Klíč Smazáno : HKCU\Software\DriverToolkit
Klíč Smazáno : HKCU\Software\AppDataLow\Toolbar
Klíč Smazáno : HKCU\Software\AppDataLow\Software\Tbccint
Klíč Smazáno : HKCU\Software\AppDataLow\Software\TbccintSearchScopes
Klíč Smazáno : HKCU\Software\AppDataLow\Software\BS_Player_ControlBar_B
Klíč Smazáno : HKCU\Software\AppDataLow\Software\BackgroundContainerV2
Klíč Smazáno : HKLM\SOFTWARE\Conduit
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{D66BF89F-B0A2-48F5-A2E4-242EB645AB76}_is1
Klíč Smazáno : [x64] HKLM\SOFTWARE\Speedchecker Limited
Data Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyOverride] - <-loopback>

***** [ Prohlížeče ] *****

-\\ Internet Explorer v11.0.9600.17801


-\\ Mozilla Firefox v37.0.2 (x86 cs)

[upm5lf2v.default\prefs.js] - Řádek Smazáno : user_pref("extensions.trusted-ads.ExLst", "{\"u\":{\"v\":\"1.70\",\"d\":\"032414\"},\"h\":{\"pogo.com\":{\"p\":[{\"e\":\"/.*/\",\"r\":[\"/connect\\\\.facebook\\\\.net\\\\/en_US\\\\/all\\\\.js$/i\"]}]}[...]
[upm5lf2v.default\prefs.js] - Řádek Smazáno : user_pref("extensions.trusted-ads.TrustAd", "{\"r\":[{\"t\":\"FQDN\",\"r\":\"trustedads.adtrustmedia.com\",\"c\":[{\"i\":\"1\",\"s\":[\"mmgads.com\",\"www.ad2ad.ir\",\"www.projectwonderful.com\",\"ads[...]
[upm5lf2v.default\prefs.js] - Řádek Smazáno : user_pref("extensions.trusted-ads.list_api", "{\"r\":[\"hxxp://24x7homesecurity.com/\",\"hxxp://8tracks.com/\",\"hxxp://a1supplements.com/\",\"hxxp://aactionair.net/\",\"hxxp://abcnews.go.com/\",\"htt[...]
[upm5lf2v.default\prefs.js] - Řádek Smazáno : user_pref("extensions.trusted-ads.options", "{\"categories\":{\"1\":{\"title\":\"Ad Networks\",\"total\":2037,\"threats\":[\"iklanblogger.com\",\"beyintr.com\",\"hitlake.com\",\"mas.midkotamedia.com\"[...]
[upm5lf2v.default\prefs.js] - Řádek Smazáno : user_pref("extensions.trusted-ads.serpInject", "{\"u\":{\"v\":\"2.72\",\"d\":\"061714\"},\"l\":\"hxxp://search.adtrustmedia.com/search_safecontent.php\",\"e\":[{\"u\":\"hxxp://ads.adtrustmedia.com/con[...]
[upm5lf2v.default\prefs.js] - Řádek Smazáno : user_pref("extensions.trusted-ads.serp_mywebsearch", "\"%2F*!%20serp-mywebsearch%20-%20v3.12.5%20-%202015-03-16%2012%3A45%3A55%20*%2F%0D%0ACORE.prototype.initJQuery%20%3D%20function%20()%20%7B%0D%0A%2[...]
[upm5lf2v.default\prefs.js] - Řádek Smazáno : user_pref("extensions.xpiState", "{\"app-profile\":{\"PrivDog@AdTrustMedia.com\":{\"d\":\"C:\\\\Users\\\\hasan\\\\AppData\\\\Roaming\\\\Mozilla\\\\Firefox\\\\Profiles\\\\upm5lf2v.default\\\\extensions[...]
[upm5lf2v.default\prefs.js] - Řádek Smazáno : user_pref("smartbar.machineId", "TM/LDWBLINLV4YFLF1IUIP3EYFO1AHTYO9PZMGN6G23F7BMH2OMQIZAK7CDQTNWCQE0CS50U1Q5HKUEOOXH5HG");

-\\ Google Chrome v42.0.2311.152

[C:\Users\hasan\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] - Smazáno [Extension] : cmaiofennmphjldldcpphcechfnnohja
[C:\Users\hasan\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] - Smazáno [Extension] : aohghmighlieiainnegkcijnfilokake
[C:\Users\hasan\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] - Smazáno [Extension] : apdfllckaahabafndbhieahigkjlhalf
[C:\Users\hasan\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] - Smazáno [Extension] : gmlllbghnfkpflemihljekbapjopfjik
[C:\Users\hasan\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] - Smazáno [Extension] : lifbcibllhkdhoafpjfnlhfpfgnpldfl
[C:\Users\hasan\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] - Smazáno [Extension] : nmmhkkegccagdldgiimedpiccmgmieda
[C:\Users\hasan\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] - Smazáno [Extension] : mmlokenillohjnefmickbiknhngdnnhh
[C:\Users\hasan\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] - Smazáno [Extension] : nnfaajljblohjdigagngnglejmgmeknc

-\\ Comodo Dragon v

[C:\Users\hasan\AppData\Local\Comodo\Dragon\User Data\Default\Preferences] - Smazáno [Extension] : cmaiofennmphjldldcpphcechfnnohja
[C:\Users\hasan\AppData\Local\Comodo\Dragon\User Data\Default\Preferences] - Smazáno [Extension] : nmmhkkegccagdldgiimedpiccmgmieda
[C:\Users\hasan\AppData\Local\Comodo\Dragon\User Data\Default\Preferences] - Smazáno [Extension] : mmlokenillohjnefmickbiknhngdnnhh
[C:\Users\hasan\AppData\Local\Comodo\Dragon\User Data\Default\Preferences] - Smazáno [Extension] : nnfaajljblohjdigagngnglejmgmeknc

*************************

AdwCleaner[R0].txt - [11023 bytů] - [21/05/2015 18:02:53]
AdwCleaner[S0].txt - [10323 bytů] - [21/05/2015 18:03:35]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [10382 bytů] ##########

Re: Zpomalení počítače - otvírání aplikací

Napsal: 23 kvě 2015 10:35
od vyosek
:arrow: Pokud nemate, tak presunte Combofix na plochu
  • Spustte poznamkovy blok (Start-spustit-notepad)
  • Zkopirujte skript nize

  • Kód: Vybrat vše

    KillAll::

Folder::
c:\programdata\Spybot - Search & Destroy
c:\program files (x86)\Spybot - Search & Destroy 2
c:\programdata\mmlokenillohjnefmickbiknhngdnnhh
c:\programdata\nnfaajljblohjdigagngnglejmgmeknc
c:\users\hasan\AppData\LocalLow\BS_Player_ControlBar_B
c:\program files (x86)\EnhanceEmpire
c:\program files (x86)\Skype\Toolbars
c:\program files (x86)\Tbccint

File::
c:\windows\system32\sdnclean64.exe
c:\windows\Tasks\Adobe Flash Player Updater.job
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job

Registry::
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{31264a33-a653-46c4-af49-1232c59a7da5}"=-
[-HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{31264a33-a653-46c4-af49-1232c59a7da5}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar]
"{31264a33-a653-46c4-af49-1232c59a7da5}"=-
[-HKEY_CLASSES_ROOT\clsid\{31264a33-a653-46c4-af49-1232c59a7da5}]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=-
"Skype"=-
"cz.seznam.software.autoupdate"=-
"cz.seznam.software.szndesktop"=-
"GoogleChromeAutoLaunch_0978C5035855017179F4F4F2D05CDAB9"=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"MSStp"=-
"mnchdpdejSrv"=-
"seznam-listicka-distribuce"=-
"Adobe ARM"=-
"SDTray"=-

Collect::
c:\windows\system32\mnchdpdej.vbe
c:\windows\inf\msstp.vbe

Driver::
c2cautoupdatesvc
Update EnhanceEmpire
c2cpnrsvc
SDScannerService
SDUpdateService
SDWSCService
TBSrv

DDS::
uInternet Settings,ProxyOverride = <-loopback>
Trusted Zone: clonewarsadventures.com
Trusted Zone: freerealms.com
Trusted Zone: soe.com
Trusted Zone: sony.com

RegLock::
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]

ClearJavaCache::

Reboot::
  • Ulozte vytvoreny TXT jako CFScript.txt
  • Pretahnete vytvoreny CFScript.txt nad Combofix a pustte (viz obrazek nize)
    Obrázek
  • Po aplikaci skriptu (a pripadnem restartu) na Vas vypadne log, jeho obsah sem vlozte
:arrow: Pokud vyskoci hlaska "Pokus pouzit neplatnou operaci na klic registru, ktery je oznacen pro odstraneni", tak jen restartujte PC - registr se da do kupy - jedna se o vnitrni chybu, kterou zpusobuje CF a autor ji zatim neumi bohuzel opravit

:arrow: Muze se stat, ze po aplikaci skriptu nenabehnou windows, v tomto pripade restartuje PC a mackejte F8 a zvolte Posledni znamou konfiguraci
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz