VIRY.CZ

Dobrý den,
zhruba před 3 dny mi začal přetěžovat tento proces HDD do míry 99-100% kdy pc není použitelné, cokoliv co se na něm spustí je automaticky neodpovídající nebo se ani nezapne ....
přikládám log
Logfile of random's system information tool 1.10 (written by random/random)
Run by GlobalCZ at 2015-09-23 10:53:44
Microsoft Windows 10 Pro
System drive C: has 255 GB (27%) free of 953 GB
Total RAM: 8173 MB (60% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:53:58, on 23. 9. 2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10240.16412)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Users\GlobalCZ\AppData\Local\Microsoft\BingSvc\BingSvc.exe
C:\Users\GlobalCZ\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\GlobalCZ.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_60\bin\ssv.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_60\bin\jp2ssv.dll
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [BingSvc] C:\Users\GlobalCZ\AppData\Local\Microsoft\BingSvc\BingSvc.exe
O4 - HKCU\..\Run: [OneDrive] "C:\Users\GlobalCZ\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_FC3E0561EE9C6937EDAF9B477CFA4B86] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\GlobalCZ\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\GlobalCZ\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64"
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\GlobalCZ\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\GlobalCZ\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64"
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\GlobalCZ\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\GlobalCZ\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64"
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\System32\ngcsvc.dll,-100 (NgcSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)

Zdravím!
Dejte log FRST: http://forum.viry.cz/viewtopic.php?f=13&t=133100 .

Tak tady je ten log FRST :
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:23-09-2015
Ran by GlobalCZ (administrator) on PC-GLOBALCZ (23-09-2015 18:40:04)
Running from C:\Users\GlobalCZ\Downloads
Loaded Profiles: GlobalCZ (Available Profiles: GlobalCZ)
Platform: Windows 10 Pro (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(© 2015 Microsoft Corporation) C:\Users\GlobalCZ\AppData\Local\Microsoft\BingSvc\BingSvc.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Program Files\WindowsApps\Facebook.Facebook_1.4.0.9_x64__8xx8rvfyw5nnt\Facebook.exe
(Bartels Media GmbH) C:\Program Files (x86)\MouseRecorder\MouseRecorder.exe
(Microsoft Corporation) C:\Windows\System32\Taskmgr.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13885696 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2634872 2015-08-27] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597552 2015-08-04] (Oracle Corporation)
HKU\S-1-5-21-2288151445-4002470734-3444759538-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2899136 2015-08-19] (Valve Corporation)
HKU\S-1-5-21-2288151445-4002470734-3444759538-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8358680 2015-06-01] (Piriform Ltd)
HKU\S-1-5-21-2288151445-4002470734-3444759538-1001\...\Run: [BingSvc] => C:\Users\GlobalCZ\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-04-07] (© 2015 Microsoft Corporation)
HKU\S-1-5-21-2288151445-4002470734-3444759538-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [53736048 2015-08-07] (Skype Technologies S.A.)
HKU\S-1-5-21-2288151445-4002470734-3444759538-1001\...\Run: [GoogleChromeAutoLaunch_FC3E0561EE9C6937EDAF9B477CFA4B86] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [815944 2015-09-19] (Google Inc.)
HKU\S-1-5-21-2288151445-4002470734-3444759538-1001\...\RunOnce: [Uninstall C:\Users\GlobalCZ\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\GlobalCZ\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64"
HKU\S-1-5-21-2288151445-4002470734-3444759538-1001\...\RunOnce: [Uninstall C:\Users\GlobalCZ\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\GlobalCZ\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64"
HKU\S-1-5-21-2288151445-4002470734-3444759538-1001\...\RunOnce: [Uninstall C:\Users\GlobalCZ\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\GlobalCZ\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64"
HKU\S-1-5-21-2288151445-4002470734-3444759538-1001\...\MountPoints2: {24e5b863-5374-11e5-8266-902b34a1cd7f} - "E:\Startme.exe"
HKU\S-1-5-21-2288151445-4002470734-3444759538-1001\...\MountPoints2: {6887577e-21af-11e5-8250-806e6f6e6963} - "D:\Viewer\ppview32.exe" agaxzs\auto.ppt
HKU\S-1-5-21-2288151445-4002470734-3444759538-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\scrnsave.scr [31232 2015-07-10] (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.2.255.1 10.2.255.2
Tcpip\..\Interfaces\{c6806874-3f5c-4eb1-86d9-5eda4f2b7a3e}: [DhcpNameServer] 10.2.255.1 10.2.255.2

Internet Explorer:
==================
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\ssv.dll [2015-08-31] (Oracle Corporation)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-08-31] (Oracle Corporation)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\GlobalCZ\AppData\Roaming\Mozilla\Firefox\Profiles\xaqws2g4.default
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_19_0_0_185.dll [2015-09-21] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_185.dll [2015-09-21] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll [2015-08-31] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\plugin2\npjp2.dll [2015-08-31] (Oracle Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-08-25] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-08-25] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-20] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-20] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-07-03] (Adobe Systems Inc.)

Chrome:
=======
CHR HomePage: Default -> hxxp://www.msn.com/?pc=__PARAM__&ocid=__PARAM__DHP&osmkt=en-us
CHR StartupUrls: Default -> "hxxp://s10.sfgame.cz/","hxxp://s11.sfgame.cz/","hxxp://s12.sfgame.cz/","hxxp://s13.sfgame.cz/","hxxp://cz1.darkorbit.bigpoint.com/indexInternal.es?action=internalAuction","hxxp://listen.play.cz/player.html?shortcut=evropa2&format=&v=20130810","hxxps://www.facebook.com/"
CHR DefaultSearchURL: Default -> hxxp://www.bing.com/search?FORM=__PARAM__DF&PC ... earchTerms}
CHR DefaultSearchKeyword: Default -> bing.com

addition :

Additional scan result of Farbar Recovery Scan Tool (x64) Version:23-09-2015
Ran by GlobalCZ (2015-09-23 18:40:58)
Running from C:\Users\GlobalCZ\Downloads
Windows 10 Pro (X64) (2015-08-01 05:28:37)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2288151445-4002470734-3444759538-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2288151445-4002470734-3444759538-503 - Limited - Disabled)
GlobalCZ (S-1-5-21-2288151445-4002470734-3444759538-1001 - Administrator - Enabled) => C:\Users\GlobalCZ
Guest (S-1-5-21-2288151445-4002470734-3444759538-501 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 15.008.20082 - Adobe Systems Incorporated)
Adobe Flash Player 19 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 19.0.0.185 - Adobe Systems Incorporated)
Aktualizace NVIDIA 2.5.14.5 (Version: 2.5.14.5 - NVIDIA Corporation) Hidden
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{0A1FAC46-B899-421D-B1A2-470896DC45DB}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{E68DD413-B834-4923-8181-0A03B7555187}) (Version: - Microsoft)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
CCleaner (HKLM\...\CCleaner) (Version: 5.07 - Piriform)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve)
CPUID CPU-Z 1.72.1 (HKLM\...\CPUID CPU-Z_is1) (Version: - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 45.0.2454.99 - Google Inc.)
Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden
Grand Theft Auto V (HKLM-x32\...\Grand Theft Auto V_is1) (Version: 1.0.350.1 - Rockstar)
HAWKEN (HKLM-x32\...\Steam App 271290) (Version: - Reloaded Games)
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Java 8 Update 60 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218060F0}) (Version: 8.0.600.27 - Oracle Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
MouseRecorder v1.0.47 (HKLM-x32\...\MouseRecorder_is1) (Version: 1.0.47 - Bartels Media GmbH)
NVIDIA GeForce Experience 2.5.14.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.5.14.5 - NVIDIA Corporation)
NVIDIA Ovladač 3D Vision 355.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 355.82 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 355.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 355.82 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
Ovládací panel NVIDIA 355.82 (Version: 355.82 - NVIDIA Corporation) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7535 - Realtek Semiconductor Corp.)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.5.8 - Rockstar Games)
SHIELD Streaming (Version: 4.1.3000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.5.14.5 - NVIDIA Corporation) Hidden
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.4.0.9058 - Microsoft Corporation)
Skype™ 7.8 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.8.102 - Skype Technologies S.A.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKU\S-1-5-21-2288151445-4002470734-3444759538-1001\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
The Crew (HKLM-x32\...\Steam App 241560) (Version: - Ivory Tower in collaboration with Ubisoft Reflections)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Uplay (HKLM-x32\...\Uplay) (Version: 5.2 - Ubisoft)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
War Thunder (HKLM-x32\...\Steam App 236390) (Version: - Gaijin Entertainment)
WinRAR 5.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
World of Tanks (HKU\S-1-5-21-2288151445-4002470734-3444759538-1001\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812eu}_is1) (Version: - Wargaming.net)
World of Warships (HKU\S-1-5-21-2288151445-4002470734-3444759538-1001\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C814eu}_is1) (Version: - Wargaming.net)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Restore Points =========================

06-09-2015 16:56:33 Windows Update
09-09-2015 20:35:10 Windows Update
17-09-2015 22:46:39 Naplánovaný kontrolní bod
22-09-2015 22:47:30 Removed Razer Synapse.

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 15:25 - 2013-08-22 15:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0A998C38-7BBC-487F-A67C-EADBEB99A035} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {24811693-6202-48F3-9679-9E34D1336132} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-20] (Google Inc.)
Task: {3255EB32-A9E7-4DA3-9937-587717ED92FB} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {3763F22E-67DB-4A9D-9A91-FD9F9388B1CC} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {41F825DA-01F0-49B7-B568-9D605C6EA2EF} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {4A3A78C4-AECF-44DC-A971-D36F8860957D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-20] (Google Inc.)
Task: {4AC60823-EEC4-4F6E-8410-1B98E279A7A7} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {6C79B852-4630-4609-A733-80603DA18DA3} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {7935ECBF-1061-4BE9-B92F-846C94C94957} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {7A96C7F0-B43A-4DD9-BD70-2A0F20EB9371} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-09-21] (Adobe Systems Incorporated)
Task: {857ADA0A-5A0C-4E3D-881D-68E3E36C1877} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-06-01] (Piriform Ltd)
Task: {A6D06DE0-424F-475B-83CA-EE93D1D249BE} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated)
Task: {CADBA10A-9691-42A2-A15B-7B1A6EF8CE57} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {CEA99A27-1257-4D16-953E-15929E8F95DA} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {D05F93A4-8F12-4409-BC99-F2D36E21F85C} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {D9C8CBA4-AF51-4386-87CD-5B1706C25381} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {E8B679A3-3826-400D-B709-71D9D400BF9D} - \AutoKMS -> No File <==== ATTENTION
Task: {FAD4C019-8B59-4E82-A473-6EC59D412C99} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-08-26] (Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (Whitelisted) ==============

2015-08-01 01:27 - 2015-08-01 01:27 - 00032768 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll
2015-08-19 06:48 - 2015-08-11 11:14 - 00404480 _____ () C:\WINDOWS\System32\diagtrack_wininternal.dll
2015-08-01 08:36 - 2015-08-25 17:57 - 00116344 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-08-28 22:23 - 2015-08-18 09:56 - 02498808 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-08-28 22:23 - 2015-08-18 09:56 - 02498808 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2015-08-12 19:39 - 2015-08-03 03:11 - 06569472 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-07-10 13:00 - 2015-07-10 18:05 - 00471040 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-08-19 06:48 - 2015-08-11 10:58 - 01808384 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-08-12 19:39 - 2015-08-03 03:09 - 02274816 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-07-10 13:00 - 2015-07-10 18:05 - 00210432 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.ProxyStub.dll
2015-07-10 12:59 - 2015-07-10 12:59 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-07-10 12:59 - 2015-07-10 12:59 - 00143360 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\XamlTileRendering.dll
2015-06-01 19:28 - 2015-06-01 19:28 - 00047104 _____ () C:\Program Files\CCleaner\lang\lang-1029.dll
2015-07-09 21:11 - 2015-07-09 21:11 - 02394624 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_1.4.0.9_x64__8xx8rvfyw5nnt\Facebook.exe
2015-08-18 17:08 - 2015-08-18 17:08 - 10094080 _____ () C:\Users\GlobalCZ\AppData\Local\Packages\facebook.facebook_8xx8rvfyw5nnt\AC\Microsoft\CLR_v4.0\NativeImages\Facebook\9b4b7168d49bb0cb3083f1fb09c9f88c\Facebook.ni.exe
2015-08-18 17:07 - 2015-08-18 17:07 - 05971456 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Windows.UI.Xaml\0064c7f3927391418c988e043ce3cdd6\Windows.UI.Xaml.ni.dll
2015-08-18 17:07 - 2015-08-18 17:07 - 01054208 _____ () C:\Users\GlobalCZ\AppData\Local\Packages\facebook.facebook_8xx8rvfyw5nnt\AC\Microsoft\CLR_v4.0\NativeImages\Facebook-Win8-Base\315bad43ccab4cab44edce07e7a29626\Facebook-Win8-Base.ni.dll
2015-08-18 17:07 - 2015-08-18 17:07 - 00557568 _____ () C:\Users\GlobalCZ\AppData\Local\Packages\facebook.facebook_8xx8rvfyw5nnt\AC\Microsoft\CLR_v4.0\NativeImages\Facebook-Base\d2b5c969d217047f2c5e028f38d15074\Facebook-Base.ni.dll
2015-08-18 17:07 - 2015-08-18 17:07 - 01098240 _____ () C:\Users\GlobalCZ\AppData\Local\Packages\facebook.facebook_8xx8rvfyw5nnt\AC\Microsoft\CLR_v4.0\NativeImages\Facebook-Models\a0c63900ca4366a3cfa4f18d7079697d\Facebook-Models.ni.dll
2015-08-18 17:07 - 2015-08-18 17:07 - 05077504 _____ () C:\Users\GlobalCZ\AppData\Local\Packages\facebook.facebook_8xx8rvfyw5nnt\AC\Microsoft\CLR_v4.0\NativeImages\Facebook-Services\624df8ced88b437e5f2ec772ebb9847d\Facebook-Services.ni.dll
2015-08-18 17:07 - 2015-08-18 17:07 - 00961536 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Windows.Security\17b2f1dc4e6f8f2b2ba837c656b12243\Windows.Security.ni.dll
2015-08-18 17:07 - 2015-08-18 17:07 - 01173504 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Windows.Storage\9dfa032a6f6a3f35088ff19c8b877189\Windows.Storage.ni.dll
2015-08-18 17:07 - 2015-08-18 17:07 - 00497152 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Windows.Foundation\49d9e2eb148fe29623ae98ad26130766\Windows.Foundation.ni.dll
2015-08-18 17:08 - 2015-08-18 17:08 - 01305600 _____ () C:\Users\GlobalCZ\AppData\Local\Packages\facebook.facebook_8xx8rvfyw5nnt\AC\Microsoft\CLR_v4.0\NativeImages\Bing.Maps\3be9d02df87a03df6fb0a9b04a4a6c89\Bing.Maps.ni.dll
2015-08-18 17:07 - 2015-08-18 17:07 - 04125184 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Windows.Devices\bfab6b11eefab158e3b7aca58bc19010\Windows.Devices.ni.dll
2015-08-18 00:23 - 2015-08-18 00:23 - 04090880 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Windows.App640a3541#\a6d0b936baafc75d445cfeeea2c45692\Windows.ApplicationModel.ni.dll
2015-08-18 17:07 - 2015-08-18 17:07 - 01752576 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Windows.UI\8f320c4a308d2e39c6aa40c7cdf4ce49\Windows.UI.ni.dll
2015-08-18 17:07 - 2015-08-18 17:07 - 00438272 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Windows.System\22ee2eca5777d747cde4f70fc557030c\Windows.System.ni.dll
2015-08-18 17:07 - 2015-08-18 17:07 - 00935936 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Windows.Graphics\6272d6ba8e1d028c9f7627b642b3a258\Windows.Graphics.ni.dll
2015-08-18 17:07 - 2015-08-18 17:07 - 01808896 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Windows.Networking\5f64ee8e856ca2dcb210574542741fb3\Windows.Networking.ni.dll
2015-08-18 17:07 - 2015-08-18 17:07 - 00476160 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Windows.Data\c9ee06962fd760bac20a48a49086c5a4\Windows.Data.ni.dll
2015-08-18 17:07 - 2015-08-18 17:07 - 00020992 _____ () C:\Users\GlobalCZ\AppData\Local\Packages\facebook.facebook_8xx8rvfyw5nnt\AC\Microsoft\CLR_v4.0\NativeImages\Facebook-No02b98c3e#\f3e7ab46a558eaa1f53a85908a260972\Facebook-Notifications.ni.dll
2015-08-18 17:07 - 2015-08-18 17:07 - 00572928 _____ () C:\Users\GlobalCZ\AppData\Local\Packages\facebook.facebook_8xx8rvfyw5nnt\AC\Microsoft\CLR_v4.0\NativeImages\Notificatioc5a47191#\8be872644830a455bd8f305ccc3e17db\NotificationsExtensions.ni.dll
2015-07-03 20:39 - 2015-08-27 02:37 - 00011896 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2015-09-22 22:40 - 2015-09-19 00:13 - 01501512 _____ () C:\Program Files (x86)\Google\Chrome\Application\45.0.2454.99\libglesv2.dll
2015-09-22 22:40 - 2015-09-19 00:13 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\45.0.2454.99\libegl.dll
2015-09-22 22:40 - 2015-09-19 00:13 - 16487752 _____ () C:\Program Files (x86)\Google\Chrome\Application\45.0.2454.99\PepperFlash\pepflashplayer.dll
2015-08-24 15:49 - 2015-07-29 16:20 - 00137240 _____ () C:\Program Files (x86)\MouseRecorder\mrkey.dll
2015-08-24 15:49 - 2015-07-29 16:20 - 00058392 _____ () C:\Program Files (x86)\MouseRecorder\mrlang.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\GlobalCZ\SkyDrive:ms-properties

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2288151445-4002470734-3444759538-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\GlobalCZ\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 10.2.255.1 - 10.2.255.2
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2288151445-4002470734-3444759538-1001\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_FC3E0561EE9C6937EDAF9B477CFA4B86"
HKU\S-1-5-21-2288151445-4002470734-3444759538-1001\...\StartupApproved\Run: => "Steam"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [UDP Query User{071E0E8E-EF89-4068-A817-7EC7DC13C40F}C:\program files (x86)\steam\steamapps\common\war thunder\aces.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\war thunder\aces.exe
FirewallRules: [TCP Query User{26C4E78C-3F0B-493F-82BE-0FFE41418E14}C:\program files (x86)\steam\steamapps\common\war thunder\aces.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\war thunder\aces.exe
FirewallRules: [{914AA585-E94A-4F9C-BB05-735BD10C5A6B}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [{DA54D97B-62A9-4B58-B0F1-749B5D1E0FF7}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [UDP Query User{85D12EEB-E9BE-4F8A-AB66-D72591C83B26}C:\hry\grand theft auto v\gta5.exe] => (Allow) C:\hry\grand theft auto v\gta5.exe
FirewallRules: [TCP Query User{9DD1D66E-A394-4A21-9AA9-A2B2B3C690C9}C:\hry\grand theft auto v\gta5.exe] => (Allow) C:\hry\grand theft auto v\gta5.exe
FirewallRules: [{6E113EBE-5D68-4F32-B147-8D42081FA993}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{910F874C-EF96-4949-8AA5-19F1EAA9D00E}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [UDP Query User{5FD7E02C-A68D-414E-AC6E-DBA2586D5ED6}C:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe
FirewallRules: [TCP Query User{9F76C3B6-62DF-4515-A1EA-68AF39B0B24A}C:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe
FirewallRules: [UDP Query User{A9EF2074-AC82-47B7-8B50-5D8BA16EFA26}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe
FirewallRules: [TCP Query User{635F90B5-7F81-439F-B2FA-9470818AC9D1}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe
FirewallRules: [UDP Query User{A180B3CB-AC1D-471F-B5F0-F19166C1A8C9}C:\users\globalcz\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\globalcz\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [TCP Query User{41C8761E-C87B-4463-9B1E-F9B77C74DE09}C:\users\globalcz\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\globalcz\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{0140E858-F432-47D3-BAFD-C59FCF2C8923}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe
FirewallRules: [TCP Query User{09BC7D0A-939F-4829-A26D-93A138FDDABC}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe
FirewallRules: [UDP Query User{210258B1-1544-41B9-BC82-1C321AF262D3}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{0C470D69-32CF-4AAF-992E-54107DD9C357}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{CAA97F8F-9FEF-4F1C-A05B-5676D41475B7}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{7290AC07-2BE4-41F5-AD09-73BB83FA26E9}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{0262A281-B1E9-435F-95EE-79159B0AF38C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\War Thunder\launcher.exe
FirewallRules: [{69A9D6CF-C2B1-455C-9D75-8AC77BB12CC8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\War Thunder\launcher.exe
FirewallRules: [UDP Query User{98A2E932-343A-44FF-A6A3-6F30B4B94445}C:\users\globalcz\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\globalcz\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [TCP Query User{4E803FB6-9205-4926-A2CA-6D0293758753}C:\users\globalcz\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\globalcz\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [{A6F49A99-42C6-46F0-ADEE-C95C2200A320}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{85865BD7-1BB0-4294-9158-FC4EA886D83E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [UDP Query User{505654FC-672B-4627-8C9C-3A078C2E70A0}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe
FirewallRules: [TCP Query User{5DE317F0-E9DB-43C3-9C3B-65D663119FB4}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe
FirewallRules: [{75AE0FAF-9142-4422-9E0C-4D9754E81345}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Crew\TheCrew.exe
FirewallRules: [{84B2EC7A-0252-49C6-ADD9-519A99CE192F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Crew\TheCrew.exe
FirewallRules: [{9E1EB29A-1E8E-4703-9464-E7794CE2B5C3}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{E7401C54-ED4A-488C-8D3B-D3E057E9BF18}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{B190532A-421D-444B-A2FD-152EC45A9711}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{8579E896-8519-4782-81EB-1F25DEA5B814}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [UDP Query User{D615BB53-D89E-4CB5-9C29-17BABDEEE15B}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe
FirewallRules: [TCP Query User{AA5CCE1D-62BE-45CA-8B25-1B876A9B5477}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe
FirewallRules: [{B04DE257-9322-45A6-A5DC-DCDE5534CD6B}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{23A6BB76-326D-4BAE-9D95-9D9E2D8AB19B}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{3FA9CE65-0534-461E-89DE-CD70EB864445}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{BDC46992-F6B6-417C-B1BD-6F0E91ADDF13}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{B8777463-1089-44D5-BA53-51BFF025AFD5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{EAD3D385-8A0F-406E-B191-B5EF17A8B1D6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{FF50A9AF-9BC9-4045-914D-DB6DFEED48EB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{6BD9D143-CC5E-477D-BE1A-C1ED696CF9EC}] => (Allow) C:\Program Files (x86)\MouseRecorder\MouseRecorder.exe
FirewallRules: [{62C312B4-CB86-4E9D-A2AC-F73F39F9FB45}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{CFF692F3-52B4-4B65-90A5-402EE97D04AC}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [UDP Query User{78C4AFE4-EE1D-4C7E-B4D2-5086F0AB54E9}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [{F313F18F-C387-4844-8403-AE41E5B01A76}] => (Allow) C:\Games\World_of_Warships\WoWSLauncher.exe
FirewallRules: [{E48198A5-C8D3-4079-8C53-D8B592D24221}] => (Allow) C:\Games\World_of_Warships\WorldofWarships.exe
FirewallRules: [{4AFD06C9-A46D-4397-A9F3-936547858DC0}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (09/23/2015 10:25:50 AM) (Source: ESENT) (EventID: 413) (User: )
Description: SettingSyncHost (1716) Nový soubor protokolu se nedá vytvořit, protože databáze nemůže zapisovat na jednotku protokolu. Jednotka může být jen pro čtení, špatně nakonfigurovaná nebo poškozená nebo na ní nemusí být dost místa. Chyba: -1032

Error: (09/23/2015 10:25:50 AM) (Source: ESENT) (EventID: 488) (User: )
Description: SettingSyncHost (1716) Pokus o vytvoření souboru C:\WINDOWS\system32\edbtmp.log selhal. Došlo k systémové chybě 5 (0x00000005): Přístup byl odepřen. . Operace vytvoření souboru selže a dojde k chybě -1032 (0xfffffbf8).

Error: (09/23/2015 10:25:39 AM) (Source: ESENT) (EventID: 413) (User: )
Description: SettingSyncHost (1716) Nový soubor protokolu se nedá vytvořit, protože databáze nemůže zapisovat na jednotku protokolu. Jednotka může být jen pro čtení, špatně nakonfigurovaná nebo poškozená nebo na ní nemusí být dost místa. Chyba: -1032

Error: (09/23/2015 10:25:39 AM) (Source: ESENT) (EventID: 488) (User: )
Description: SettingSyncHost (1716) Pokus o vytvoření souboru C:\WINDOWS\system32\edbtmp.log selhal. Došlo k systémové chybě 5 (0x00000005): Přístup byl odepřen. . Operace vytvoření souboru selže a dojde k chybě -1032 (0xfffffbf8).

Error: (09/23/2015 10:25:29 AM) (Source: ESENT) (EventID: 413) (User: )
Description: SettingSyncHost (1716) Nový soubor protokolu se nedá vytvořit, protože databáze nemůže zapisovat na jednotku protokolu. Jednotka může být jen pro čtení, špatně nakonfigurovaná nebo poškozená nebo na ní nemusí být dost místa. Chyba: -1032

Error: (09/23/2015 10:25:29 AM) (Source: ESENT) (EventID: 488) (User: )
Description: SettingSyncHost (1716) Pokus o vytvoření souboru C:\WINDOWS\system32\edbtmp.log selhal. Došlo k systémové chybě 5 (0x00000005): Přístup byl odepřen. . Operace vytvoření souboru selže a dojde k chybě -1032 (0xfffffbf8).

Error: (09/23/2015 10:25:19 AM) (Source: ESENT) (EventID: 413) (User: )
Description: SettingSyncHost (1716) Nový soubor protokolu se nedá vytvořit, protože databáze nemůže zapisovat na jednotku protokolu. Jednotka může být jen pro čtení, špatně nakonfigurovaná nebo poškozená nebo na ní nemusí být dost místa. Chyba: -1032

Error: (09/23/2015 10:25:19 AM) (Source: ESENT) (EventID: 488) (User: )
Description: SettingSyncHost (1716) Pokus o vytvoření souboru C:\WINDOWS\system32\edbtmp.log selhal. Došlo k systémové chybě 5 (0x00000005): Přístup byl odepřen. . Operace vytvoření souboru selže a dojde k chybě -1032 (0xfffffbf8).

Error: (09/23/2015 10:25:08 AM) (Source: ESENT) (EventID: 413) (User: )
Description: SettingSyncHost (1716) Nový soubor protokolu se nedá vytvořit, protože databáze nemůže zapisovat na jednotku protokolu. Jednotka může být jen pro čtení, špatně nakonfigurovaná nebo poškozená nebo na ní nemusí být dost místa. Chyba: -1032

Error: (09/23/2015 10:25:08 AM) (Source: ESENT) (EventID: 488) (User: )
Description: SettingSyncHost (1716) Pokus o vytvoření souboru C:\WINDOWS\system32\edbtmp.log selhal. Došlo k systémové chybě 5 (0x00000005): Přístup byl odepřen. . Operace vytvoření souboru selže a dojde k chybě -1032 (0xfffffbf8).


System errors:
=============
Error: (09/22/2015 11:45:07 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 5

Error: (09/22/2015 11:44:50 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Přístup k uživatelským datům_Session1 byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.

Error: (09/22/2015 11:44:50 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Úložiště uživatelských dat_Session1 byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.

Error: (09/22/2015 11:44:50 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Data kontaktů_Session1 byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.

Error: (09/22/2015 11:44:50 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Hostitel synchronizace_Session1 byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.

Error: (09/22/2015 11:44:48 PM) (Source: DCOM) (EventID: 10010) (User: PC-GLOBALCZ)
Description: CortanaUI.AppXd4tad4d57t4wtdbnnmb8v2xtzym8c1n8.mca

Error: (09/22/2015 11:19:16 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: {F3B4E234-7A68-4E43-B813-E4BA55A065F6}

Error: (09/22/2015 10:17:08 PM) (Source: DCOM) (EventID: 10016) (User: PC-GLOBALCZ)
Description: výchozí pro počítačMístníAktivace{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}PC-GlobalCZGlobalCZS-1-5-21-2288151445-4002470734-3444759538-1001LocalHost (pomocí LRPC)Microsoft.WindowsStore_2015.9.9.0_x64__8wekyb3d8bbweS-1-15-2-1609473798-1231923017-684268153-4268514328-882773646-2760585773-1760938157

Error: (09/22/2015 10:15:49 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: specifické pro aplikaciMístníAktivace{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (pomocí LRPC)Není k dispoziciNení k dispozici

Error: (09/22/2015 10:15:48 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: specifické pro aplikaciMístníAktivace{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (pomocí LRPC)Není k dispoziciNení k dispozici


CodeIntegrity:
===================================
Date: 2015-09-22 23:20:06.307
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-09-15 10:22:57.382
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-09-15 10:22:54.539
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-09-15 10:22:51.005
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-09-15 10:22:49.661
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-09-15 10:22:49.654
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-09-13 20:20:58.198
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-09-08 18:37:31.158
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-09-05 17:41:21.580
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-08-24 18:01:03.321
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Memory info ===========================

Processor: AMD FX(tm)-6300 Six-Core Processor
Percentage of memory in use: 49%
Total physical RAM: 8173.43 MB
Available physical RAM: 4104.8 MB
Total Virtual: 9453.43 MB
Available Virtual: 4565.04 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:930.73 GB) (Free:248.86 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: E284FE74)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=930.7 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=450 MB) - (Type=27)

==================== End of Addition.txt ============================

Teď spusťte tuto utilitu:

Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

# AdwCleaner v5.008 - Logfile created 23/09/2015 at 19:57:01
# Updated 18/09/2015 by Xplode
# Database : 2015-09-23.1 [Server]
# Operating system : Windows 10 Pro (x64)
# Username : GlobalCZ - PC-GLOBALCZ
# Running from : C:\Users\GlobalCZ\Downloads\adwcleaner_5.008.exe
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****


***** [ Folders ] *****


***** [ Files ] *****


***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****


***** [ Registry ] *****


***** [ Web browsers ] *****

[-] [C:\Users\GlobalCZ\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : fcfenmboojpjinhpgggodefccipikbpd

*************************

:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [761 bytes] ##########

Dejte nový log FRST.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:23-09-2015
Ran by GlobalCZ (administrator) on PC-GLOBALCZ (23-09-2015 20:18:16)
Running from C:\Users\GlobalCZ\Downloads
Loaded Profiles: GlobalCZ (Available Profiles: GlobalCZ)
Platform: Windows 10 Pro (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(© 2015 Microsoft Corporation) C:\Users\GlobalCZ\AppData\Local\Microsoft\BingSvc\BingSvc.exe
(TeamSpeak Systems GmbH) C:\Users\GlobalCZ\AppData\Local\TeamSpeak 3 Client\ts3client_win64.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.6208.42001.0_x64__8wekyb3d8bbwe\HxTsr.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13885696 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2634872 2015-08-27] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597552 2015-08-04] (Oracle Corporation)
HKU\S-1-5-21-2288151445-4002470734-3444759538-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2899136 2015-08-19] (Valve Corporation)
HKU\S-1-5-21-2288151445-4002470734-3444759538-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8358680 2015-06-01] (Piriform Ltd)
HKU\S-1-5-21-2288151445-4002470734-3444759538-1001\...\Run: [BingSvc] => C:\Users\GlobalCZ\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-04-07] (© 2015 Microsoft Corporation)
HKU\S-1-5-21-2288151445-4002470734-3444759538-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [53736048 2015-08-07] (Skype Technologies S.A.)
HKU\S-1-5-21-2288151445-4002470734-3444759538-1001\...\Run: [GoogleChromeAutoLaunch_FC3E0561EE9C6937EDAF9B477CFA4B86] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [815944 2015-09-19] (Google Inc.)
HKU\S-1-5-21-2288151445-4002470734-3444759538-1001\...\RunOnce: [Uninstall C:\Users\GlobalCZ\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\GlobalCZ\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64"
HKU\S-1-5-21-2288151445-4002470734-3444759538-1001\...\RunOnce: [Uninstall C:\Users\GlobalCZ\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\GlobalCZ\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64"
HKU\S-1-5-21-2288151445-4002470734-3444759538-1001\...\RunOnce: [Uninstall C:\Users\GlobalCZ\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\GlobalCZ\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64"
HKU\S-1-5-21-2288151445-4002470734-3444759538-1001\...\MountPoints2: {24e5b863-5374-11e5-8266-902b34a1cd7f} - "E:\Startme.exe"
HKU\S-1-5-21-2288151445-4002470734-3444759538-1001\...\MountPoints2: {6887577e-21af-11e5-8250-806e6f6e6963} - "D:\Viewer\ppview32.exe" agaxzs\auto.ppt
HKU\S-1-5-21-2288151445-4002470734-3444759538-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\scrnsave.scr [31232 2015-07-10] (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.2.255.1 10.2.255.2
Tcpip\..\Interfaces\{c6806874-3f5c-4eb1-86d9-5eda4f2b7a3e}: [DhcpNameServer] 10.2.255.1 10.2.255.2

Internet Explorer:
==================
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\ssv.dll [2015-08-31] (Oracle Corporation)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-08-31] (Oracle Corporation)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)

Log není kompletní.

Omlouvám se
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:23-09-2015
Ran by GlobalCZ (administrator) on PC-GLOBALCZ (23-09-2015 21:08:29)
Running from C:\Users\GlobalCZ\Downloads
Loaded Profiles: GlobalCZ (Available Profiles: GlobalCZ)
Platform: Windows 10 Pro (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(© 2015 Microsoft Corporation) C:\Users\GlobalCZ\AppData\Local\Microsoft\BingSvc\BingSvc.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
() C:\Program Files\WindowsApps\Facebook.Facebook_1.4.0.9_x64__8xx8rvfyw5nnt\Facebook.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13885696 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2634872 2015-08-27] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597552 2015-08-04] (Oracle Corporation)
HKU\S-1-5-21-2288151445-4002470734-3444759538-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2899136 2015-08-19] (Valve Corporation)
HKU\S-1-5-21-2288151445-4002470734-3444759538-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8358680 2015-06-01] (Piriform Ltd)
HKU\S-1-5-21-2288151445-4002470734-3444759538-1001\...\Run: [BingSvc] => C:\Users\GlobalCZ\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-04-07] (© 2015 Microsoft Corporation)
HKU\S-1-5-21-2288151445-4002470734-3444759538-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [53736048 2015-08-07] (Skype Technologies S.A.)
HKU\S-1-5-21-2288151445-4002470734-3444759538-1001\...\Run: [GoogleChromeAutoLaunch_FC3E0561EE9C6937EDAF9B477CFA4B86] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [815944 2015-09-19] (Google Inc.)
HKU\S-1-5-21-2288151445-4002470734-3444759538-1001\...\RunOnce: [Uninstall C:\Users\GlobalCZ\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\GlobalCZ\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64"
HKU\S-1-5-21-2288151445-4002470734-3444759538-1001\...\RunOnce: [Uninstall C:\Users\GlobalCZ\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\GlobalCZ\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64"
HKU\S-1-5-21-2288151445-4002470734-3444759538-1001\...\RunOnce: [Uninstall C:\Users\GlobalCZ\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\GlobalCZ\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64"
HKU\S-1-5-21-2288151445-4002470734-3444759538-1001\...\MountPoints2: {24e5b863-5374-11e5-8266-902b34a1cd7f} - "E:\Startme.exe"
HKU\S-1-5-21-2288151445-4002470734-3444759538-1001\...\MountPoints2: {6887577e-21af-11e5-8250-806e6f6e6963} - "D:\Viewer\ppview32.exe" agaxzs\auto.ppt
HKU\S-1-5-21-2288151445-4002470734-3444759538-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\scrnsave.scr [31232 2015-07-10] (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.2.255.1 10.2.255.2
Tcpip\..\Interfaces\{c6806874-3f5c-4eb1-86d9-5eda4f2b7a3e}: [DhcpNameServer] 10.2.255.1 10.2.255.2

Internet Explorer:
==================
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\ssv.dll [2015-08-31] (Oracle Corporation)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-08-31] (Oracle Corporation)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\GlobalCZ\AppData\Roaming\Mozilla\Firefox\Profiles\xaqws2g4.default
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_19_0_0_185.dll [2015-09-21] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_185.dll [2015-09-21] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll [2015-08-31] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\plugin2\npjp2.dll [2015-08-31] (Oracle Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-08-25] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-08-25] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-20] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-20] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-07-03] (Adobe Systems Inc.)

Chrome:
=======
CHR HomePage: Default -> hxxp://www.msn.com/?pc=__PARAM__&ocid=__PARAM__DHP&osmkt=en-us
CHR StartupUrls: Default -> "hxxp://s10.sfgame.cz/","hxxp://s11.sfgame.cz/","hxxp://s12.sfgame.cz/","hxxp://s13.sfgame.cz/","hxxp://cz1.darkorbit.bigpoint.com/indexInternal.es?action=internalAuction","hxxp://listen.play.cz/player.html?shortcut=evropa2&format=&v=20130810","hxxps://www.facebook.com/"
CHR DefaultSearchURL: Default -> hxxp://www.bing.com/search?FORM=__PARAM__DF&PC ... earchTerms}
CHR DefaultSearchKeyword: Default -> bing.com
CHR Profile: C:\Users\GlobalCZ\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Users\GlobalCZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-09-20]
CHR Extension: (Dokumenty Google) - C:\Users\GlobalCZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-09-20]
CHR Extension: (Disk Google) - C:\Users\GlobalCZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-09-20]
CHR Extension: (YouTube) - C:\Users\GlobalCZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-20]
CHR Extension: (Vyhledávání Google) - C:\Users\GlobalCZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-09-20]
CHR Extension: (Bing) - C:\Users\GlobalCZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcfenmboojpjinhpgggodefccipikbpd [2015-09-23]
CHR Extension: (Tabulky Google) - C:\Users\GlobalCZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-09-20]
CHR Extension: (Dokumenty Google offline) - C:\Users\GlobalCZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-09-20]
CHR Extension: (AdBlock) - C:\Users\GlobalCZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-09-20]
CHR Extension: (Skype Click to Call) - C:\Users\GlobalCZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2015-09-20]
CHR Extension: (Tiësto) - C:\Users\GlobalCZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\mnmeobddjkkgkglnogihcaejaleikhdh [2015-09-20]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\GlobalCZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-09-20]
CHR Extension: (Gmail) - C:\Users\GlobalCZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-09-20]
CHR HKU\S-1-5-21-2288151445-4002470734-3444759538-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-05-01]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1394816 2015-05-01] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1772672 2015-05-01] (Microsoft Corporation)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1155192 2015-08-27] (NVIDIA Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1872504 2015-08-27] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5544568 2015-08-27] (NVIDIA Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19576 2015-08-27] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [50472 2015-08-11] (NVIDIA Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [587264 2015-07-10] (Realtek )
S3 RZSURROUNDVADService; C:\Windows\system32\drivers\RzSurroundVAD.sys [40640 2015-07-29] (Windows (R) Win 7 DDK provider)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
R2 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-09-23 19:58 - 2015-09-23 19:58 - 00016148 _____ C:\WINDOWS\system32\PC-GLOBALCZ_GlobalCZ_HistoryPrediction.bin
2015-09-23 19:51 - 2015-09-23 19:57 - 00000000 ____D C:\AdwCleaner
2015-09-23 19:50 - 2015-09-23 19:51 - 01662976 _____ C:\Users\GlobalCZ\Downloads\adwcleaner_5.008.exe
2015-09-23 18:40 - 2015-09-23 21:08 - 00014921 _____ C:\Users\GlobalCZ\Downloads\FRST.txt
2015-09-23 18:40 - 2015-09-23 18:41 - 00036919 _____ C:\Users\GlobalCZ\Downloads\Addition.txt
2015-09-23 18:39 - 2015-09-23 21:08 - 00000000 ____D C:\FRST
2015-09-23 18:39 - 2015-09-23 18:39 - 02192384 _____ (Farbar) C:\Users\GlobalCZ\Downloads\FRST64.exe
2015-09-23 10:53 - 2015-09-23 10:54 - 00000000 ____D C:\rsit
2015-09-23 10:53 - 2015-09-23 10:53 - 01222144 _____ C:\Users\GlobalCZ\Downloads\RSITx64.exe
2015-09-23 10:53 - 2015-09-23 10:53 - 00000000 ____D C:\Program Files\trend micro
2015-09-23 10:13 - 2015-09-23 10:13 - 00000000 ___HD C:\OneDriveTemp
2015-09-22 23:06 - 2015-09-23 15:40 - 583531882 _____ C:\Users\GlobalCZ\Downloads\Revoluce - Revolution S02E12 - Epidemie (CZ)(TvRip)_xvid.avi
2015-09-22 23:05 - 2015-09-23 15:33 - 477806466 _____ C:\Users\GlobalCZ\Downloads\Revoluce - Revolution S02E11 - Syn dvou otců (CZ)(TvRip)_xvid.avi
2015-09-22 23:05 - 2015-09-22 23:05 - 00018829 _____ C:\Users\GlobalCZ\Downloads\[CzT]Revoluce_Revolution_S02E11_Syn_dvou_otcu_CZ_TvRip_.torrent
2015-09-22 23:05 - 2015-09-22 23:05 - 00011724 _____ C:\Users\GlobalCZ\Downloads\[CzT]Revoluce_Revolution_S02E12_Epidemie_CZ_TvRip_.torrent
2015-09-22 22:50 - 2015-09-22 22:50 - 00000000 ____D C:\WINDOWS\system32\appmgmt
2015-09-22 22:30 - 2015-09-22 22:30 - 00000000 ____D C:\ProgramData\RzSurroundVAD_1.1.60.0
2015-09-22 22:29 - 2015-09-22 22:50 - 00000000 ____D C:\Program Files (x86)\Razer
2015-09-22 22:27 - 2015-09-22 22:50 - 00000000 ____D C:\Users\GlobalCZ\AppData\Local\Razer
2015-09-22 22:27 - 2015-09-22 22:50 - 00000000 ____D C:\ProgramData\Razer
2015-09-22 22:26 - 2015-09-22 22:27 - 02119872 _____ (Razer Inc.) C:\Users\GlobalCZ\Downloads\RazerSurroundInstaller_v2.0.29.2.exe
2015-09-21 22:01 - 2015-09-23 19:57 - 00021310 _____ C:\WINDOWS\PFRO.log
2015-09-21 21:43 - 2015-09-21 21:43 - 00075682 _____ C:\Users\GlobalCZ\Desktop\2-8 Pet.mrf
2015-09-21 20:59 - 2015-09-21 21:23 - 462755380 _____ C:\Users\GlobalCZ\Downloads\Revoluce - Revolution S02E09 - Všichni říkají Miluji tě (CZ)(TvRip)_xvid.avi
2015-09-21 20:58 - 2015-09-21 21:37 - 620274728 _____ C:\Users\GlobalCZ\Downloads\Revoluce - Revolution S02E10 - Tři amigos (CZ)(TvRip)_xvid.avi
2015-09-21 20:57 - 2015-09-21 21:21 - 400106128 _____ C:\Users\GlobalCZ\Downloads\Revoluce - Revolution S02E08 - Pán Horn (CZ)(TvRip)_xvid.avi
2015-09-21 20:57 - 2015-09-21 20:57 - 00012426 _____ C:\Users\GlobalCZ\Downloads\[CzT]Revoluce_Revolution_S02E10_Tri_amigos_CZ_TvRip_.torrent
2015-09-21 20:56 - 2015-09-21 20:56 - 00018263 _____ C:\Users\GlobalCZ\Downloads\[CzT]Revoluce_Revolution_S02E09_Vsichni_rikaji_Miluji_te_CZ_TvRip_.torrent
2015-09-21 20:56 - 2015-09-21 20:56 - 00015862 _____ C:\Users\GlobalCZ\Downloads\[CzT]Revoluce_Revolution_S02E08_Pan_Horn_CZ_TvRip_.torrent
2015-09-20 21:34 - 2015-09-23 20:39 - 00000980 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-09-20 21:34 - 2015-09-23 19:59 - 00000976 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-09-20 21:34 - 2015-09-22 22:40 - 00002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-09-20 21:34 - 2015-09-20 21:34 - 00929872 _____ (Google Inc.) C:\Users\GlobalCZ\Downloads\ChromeSetup.exe
2015-09-20 21:34 - 2015-09-20 21:34 - 00004038 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2015-09-20 21:34 - 2015-09-20 21:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-09-20 17:44 - 2015-09-20 17:45 - 00000000 ____D C:\WINDOWS\SysWOW64\directx
2015-09-20 17:44 - 2015-09-20 17:44 - 00000836 _____ C:\Users\Public\Desktop\World of Warships.lnk
2015-09-20 17:44 - 2015-09-20 17:44 - 00000000 ___HD C:\WINDOWS\msdownld.tmp
2015-09-20 17:44 - 2015-09-20 17:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Warships
2015-09-20 17:40 - 2015-09-20 17:41 - 06970488 _____ (Wargaming.net ) C:\Users\GlobalCZ\Downloads\WoWS_internet_install_eu.exe
2015-09-20 16:58 - 2015-09-20 17:05 - 58131024 _____ C:\Users\GlobalCZ\Downloads\[F4F]_Galactik_Football_07_CZ.avi.5b7alt6.partial
2015-09-20 16:46 - 2015-09-20 16:57 - 208069286 _____ C:\Users\GlobalCZ\Downloads\[F4F]_Galactik_Football_06_CZ.avi
2015-09-20 16:34 - 2015-09-20 16:46 - 209023198 _____ C:\Users\GlobalCZ\Downloads\[F4F]_Galactik_Football_05_CZ.avi
2015-09-20 16:22 - 2015-09-20 16:34 - 207673880 _____ C:\Users\GlobalCZ\Downloads\[F4F]_Galactik_Football_04_CZ.avi
2015-09-19 22:00 - 2015-09-19 22:11 - 208823342 _____ C:\Users\GlobalCZ\Downloads\[F4F]_Galactik_Football_03_CZ.avi
2015-09-19 21:47 - 2015-09-19 22:33 - 485646096 _____ C:\Users\GlobalCZ\Downloads\Revoluce - Revolution S02E07 - Vlastenecký čin (CZ)(TvRip)_xvid.avi
2015-09-19 21:46 - 2015-09-19 21:46 - 00019131 _____ C:\Users\GlobalCZ\Downloads\[CzT]Revoluce_Revolution_S02E07_Vlastenecky_cin_CZ_TvRip_.torrent
2015-09-19 19:31 - 2015-09-19 20:05 - 561888702 _____ C:\Users\GlobalCZ\Downloads\Revoluce - Revolution S02E06 - Mrtvý muž přichází (CZ)(TvRip)_xvid.avi
2015-09-19 19:31 - 2015-09-19 19:31 - 00011318 _____ C:\Users\GlobalCZ\Downloads\[CzT]Revoluce_Revolution_S02E06_Mrtvy_muz_prichazi_CZ_TvRip_.torrent
2015-09-19 18:52 - 2015-09-19 19:07 - 646025066 _____ C:\Users\GlobalCZ\Downloads\Revoluce - Revolution S02E05 - Jedna vzpoura, jeden ranger (CZ)(TvRip)_xvid.avi
2015-09-19 18:52 - 2015-09-19 18:52 - 00012942 _____ C:\Users\GlobalCZ\Downloads\[CzT]Revoluce_Revolution_S02E05_Jedna_vzpoura_jeden_ranger_CZ_TvRip_.torrent
2015-09-19 17:07 - 2015-09-19 17:08 - 550432374 _____ C:\Users\GlobalCZ\Downloads\Revoluce - Revolution S02E04 - Vysoká hra patriotů (CZ)(TvRip)_xvid.avi
2015-09-19 17:07 - 2015-09-19 17:07 - 00011096 _____ C:\Users\GlobalCZ\Downloads\[CzT]Revoluce_Revolution_S02E04_Vysoka_hra_patriotu_CZ_TvRip_.torrent
2015-09-19 13:26 - 2015-09-19 14:30 - 783996178 _____ C:\Users\GlobalCZ\Downloads\Revoluce - Revolution S02E03 - Milostný příběh (CZ)(TvRip)_xvid.avi
2015-09-19 12:50 - 2015-09-19 12:56 - 519710534 _____ C:\Users\GlobalCZ\Downloads\Revoluce - Revolution S02E02 - Až na krev (CZ)(TvRip)_xvid.avi
2015-09-19 12:28 - 2015-09-19 12:36 - 562052764 _____ C:\Users\GlobalCZ\Downloads\Revoluce - Revolution S02E01 - Narození v U.S.A (CZ)(TvRip)_xvid.avi
2015-09-18 22:05 - 2015-09-18 22:05 - 00044892 _____ C:\Users\GlobalCZ\Desktop\Macro_18. 9. 2015 22-05-34.mrf
2015-09-18 15:33 - 2015-09-18 15:40 - 00000000 ____D C:\Users\GlobalCZ\Downloads\Sakurasou no Pet na Kanojo
2015-09-18 15:26 - 2015-09-18 15:31 - 00000000 ____D C:\Users\GlobalCZ\Downloads\Sword Art Online II
2015-09-17 20:50 - 2015-09-17 22:23 - 00000000 ____D C:\Users\GlobalCZ\Downloads\sao
2015-09-17 17:46 - 2015-09-17 17:47 - 00000000 ____D C:\Users\GlobalCZ\Downloads\Mafia 2 - Special Extended Edition CZ
2015-09-17 17:38 - 2015-09-22 23:44 - 1876186720 _____ C:\Users\GlobalCZ\Downloads\Eragon (2006) 1080p CZ.mkv
2015-09-17 17:17 - 2015-09-17 17:17 - 00002210 _____ C:\Users\Public\Desktop\3D Vision Photo Viewer.lnk
2015-09-17 17:17 - 2015-08-25 16:18 - 00574072 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2015-09-17 17:15 - 2015-08-25 20:38 - 42840184 _____ C:\WINDOWS\system32\nvcompiler.dll
2015-09-17 17:15 - 2015-08-25 20:38 - 37819184 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll
2015-09-17 17:15 - 2015-08-25 20:38 - 22559352 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2015-09-17 17:15 - 2015-08-25 20:38 - 18569336 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2015-09-17 17:15 - 2015-08-25 20:38 - 16646624 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2015-09-17 17:15 - 2015-08-25 20:38 - 15630616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll
2015-09-17 17:15 - 2015-08-25 20:38 - 14945552 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2015-09-17 17:15 - 2015-08-25 20:38 - 13667032 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2015-09-17 17:15 - 2015-08-25 20:38 - 12192048 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2015-09-17 17:15 - 2015-08-25 20:38 - 02354808 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2015-09-17 17:15 - 2015-08-25 20:38 - 02105976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2015-09-17 17:15 - 2015-08-25 20:38 - 01898104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6435582.dll
2015-09-17 17:15 - 2015-08-25 20:38 - 01558648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6435582.dll
2015-09-17 17:15 - 2015-08-25 20:38 - 01178576 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvumdshimx.dll
2015-09-17 17:15 - 2015-08-25 20:38 - 01075320 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2015-09-17 17:15 - 2015-08-25 20:38 - 01064752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2015-09-17 17:15 - 2015-08-25 20:38 - 01001440 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvumdshim.dll
2015-09-17 17:15 - 2015-08-25 20:38 - 00986232 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2015-09-17 17:15 - 2015-08-25 20:38 - 00945272 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2015-09-17 17:15 - 2015-08-25 20:38 - 00787200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2015-09-17 17:15 - 2015-08-25 20:38 - 00632848 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2015-09-17 17:15 - 2015-08-25 20:38 - 00408368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2015-09-17 17:15 - 2015-08-25 20:38 - 00387536 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2015-09-17 17:15 - 2015-08-25 20:38 - 00376440 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll
2015-09-17 17:15 - 2015-08-25 20:38 - 00364152 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2015-09-17 17:15 - 2015-08-25 20:38 - 00339576 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll
2015-09-17 17:15 - 2015-08-25 20:38 - 00316120 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2015-09-17 17:15 - 2015-08-25 20:38 - 00176904 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll
2015-09-17 17:15 - 2015-08-25 20:38 - 00155976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll
2015-09-17 17:15 - 2015-08-25 20:38 - 00150648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglshim64.dll
2015-09-17 17:15 - 2015-08-25 20:38 - 00128512 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglshim32.dll
2015-09-17 17:15 - 2015-08-25 20:38 - 00040280 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll
2015-09-17 17:14 - 2015-09-22 22:30 - 00000078 _____ C:\WINDOWS\setupact.log
2015-09-17 17:14 - 2015-09-17 17:14 - 00000000 _____ C:\WINDOWS\setuperr.log
2015-09-17 13:01 - 2015-09-21 21:36 - 1499891712 _____ C:\Users\GlobalCZ\Downloads\Legenda o Jiřím a drakovi.avi
2015-09-17 12:24 - 2015-09-17 18:11 - 4137159197 _____ C:\Users\GlobalCZ\Downloads\Avatar.2009.EXTENDED.1080p.BluRay.x264-BestHD.AC3.CZ-iNKViZiT0R.mkv
2015-09-17 11:51 - 2015-09-23 18:36 - 3484682337 _____ C:\Users\GlobalCZ\Downloads\Sněhurka a sedm trpasliku DVD.mkv
2015-09-17 11:40 - 2015-09-17 15:16 - 527536731 _____ C:\Users\GlobalCZ\Downloads\Pacific.Rim.2013.1080p.BluRay.DTS.x264-HDMaNiAcS.mkv
2015-09-17 11:14 - 2015-09-17 11:14 - 00000000 ____D C:\Users\GlobalCZ\Downloads\Let’s Dance 1-4
2015-09-17 11:09 - 2015-09-17 11:13 - 1851385856 _____ C:\Users\GlobalCZ\Downloads\Step.Up.All.In.2014.480p.BDRip.XviD.AC3.CZ-4play.avi
2015-09-17 02:36 - 2015-09-20 15:22 - 3377992574 _____ C:\Users\GlobalCZ\Downloads\Turbo (2013)(CZ)(SK)[1080pHD][3D SBS].mkv
2015-09-17 02:35 - 2015-09-17 02:35 - 00000000 ____D C:\Users\GlobalCZ\Downloads\1080p - CZ, EN - Já, Robot
2015-09-16 23:31 - 2015-09-17 12:55 - 449104507 _____ C:\Users\GlobalCZ\Downloads\Souboj titanu.mkv
2015-09-16 22:55 - 2015-09-16 23:26 - 2709112832 _____ C:\Users\GlobalCZ\Downloads\Gladiator.avi
2015-09-16 22:52 - 2015-09-17 02:22 - 1575865522 _____ C:\Users\GlobalCZ\Downloads\Robin.Hood.2010.DVDRip.XviD.AC3.Cz-lukasenko79.avi
2015-09-16 22:04 - 2015-09-16 22:12 - 00000000 ____D C:\Users\GlobalCZ\Downloads\Živí Mrtví 4. série (CZ)
2015-09-16 21:56 - 2015-09-16 22:04 - 00000000 ____D C:\Users\GlobalCZ\Downloads\3. Série
2015-09-16 20:54 - 2015-09-16 20:54 - 00000000 ____D C:\Users\GlobalCZ\Downloads\THE WALKING DEAD
2015-09-16 15:18 - 2015-09-16 15:29 - 208523898 _____ C:\Users\GlobalCZ\Downloads\[F4F]_Galactik_Football_02_CZ.avi
2015-09-16 13:37 - 2015-09-16 13:49 - 208525528 _____ C:\Users\GlobalCZ\Downloads\[F4F]_Galactik_Football_01_CZ.avi
2015-09-15 10:15 - 2015-09-15 10:15 - 00000000 ____D C:\Users\GlobalCZ\AppData\Local\Macromedia
2015-09-15 10:14 - 2015-09-23 21:03 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-09-15 10:14 - 2015-09-21 20:03 - 00003900 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2015-09-14 18:01 - 2015-09-23 20:58 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log
2015-09-13 22:39 - 2015-09-13 22:39 - 00046080 _____ C:\Users\GlobalCZ\Downloads\predloha 14.9.2015.xls
2015-09-11 18:52 - 2015-09-13 11:40 - 00000000 ____D C:\Users\GlobalCZ\Downloads\Teorie.velkeho.tresku.S08
2015-09-11 08:32 - 2015-09-11 09:25 - 00000000 ____D C:\Users\GlobalCZ\Downloads\Teorie.velkeho.tresku.S07.WEB-DL.XviD.cz-iNG
2015-09-09 19:41 - 2015-09-02 02:25 - 03586560 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-09-09 19:41 - 2015-09-02 02:25 - 01382912 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-09-09 19:41 - 2015-08-27 08:36 - 03620736 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-09-09 19:41 - 2015-08-27 08:32 - 00608936 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2015-09-09 19:41 - 2015-08-27 08:04 - 21874688 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-09-09 19:41 - 2015-08-27 07:59 - 02880032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-09-09 19:41 - 2015-08-27 07:55 - 24594944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-09-09 19:41 - 2015-08-27 07:54 - 00541248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2015-09-09 19:41 - 2015-08-27 07:54 - 00365568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2015-09-09 19:41 - 2015-08-27 07:51 - 02350592 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2015-09-09 19:41 - 2015-08-27 07:51 - 01774592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2015-09-09 19:41 - 2015-08-27 07:49 - 01008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2015-09-09 19:41 - 2015-08-27 07:47 - 12503552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-09-09 19:41 - 2015-08-27 07:43 - 00826880 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-09-09 19:41 - 2015-08-27 07:43 - 00576000 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-09-09 19:41 - 2015-08-27 07:42 - 00596480 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2015-09-09 19:41 - 2015-08-27 07:42 - 00578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-09-09 19:41 - 2015-08-27 07:42 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.PicturePassword.dll
2015-09-09 19:41 - 2015-08-27 07:42 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\shacct.dll
2015-09-09 19:41 - 2015-08-27 07:23 - 19324416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-09-09 19:41 - 2015-08-27 07:23 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2015-09-09 19:41 - 2015-08-27 07:16 - 18806272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-09-09 19:41 - 2015-08-27 07:16 - 02153472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2015-09-09 19:41 - 2015-08-27 07:16 - 01612288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2015-09-09 19:41 - 2015-08-27 07:12 - 00650752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-09-09 19:41 - 2015-08-27 07:12 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-09-09 19:41 - 2015-08-27 07:11 - 00484352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2015-09-09 19:41 - 2015-08-27 07:11 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shacct.dll
2015-09-09 19:41 - 2015-08-27 07:09 - 11262464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-09-09 19:40 - 2015-09-02 03:20 - 00077400 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-09-09 19:40 - 2015-08-27 07:39 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2015-09-09 19:40 - 2015-08-27 07:08 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2015-09-09 09:55 - 2015-09-09 13:49 - 00000000 ____D C:\Users\GlobalCZ\Downloads\TBBT S06
2015-09-08 16:17 - 2015-09-08 16:18 - 27433790 _____ C:\Users\GlobalCZ\Desktop\Zuzka Maturitní práce.odt
2015-09-08 14:10 - 2015-09-08 14:11 - 22646583 _____ C:\Users\GlobalCZ\Downloads\Procesní listy k 7.9.2015.zip
2015-09-08 13:18 - 2015-09-08 13:18 - 00091200 _____ C:\Users\GlobalCZ\AppData\Local\GDIPFONTCACHEV1.DAT
2015-09-08 13:17 - 2015-09-08 13:17 - 25216107 _____ C:\Users\GlobalCZ\Downloads\MATURITNÍ PRÁCE.odt
2015-09-07 11:06 - 2015-09-07 11:17 - 00000000 ____D C:\Users\GlobalCZ\Downloads\Série 21
2015-09-06 21:31 - 2015-08-11 06:52 - 00069416 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2015-09-05 19:54 - 2015-09-05 19:54 - 00000000 ____D C:\$WINDOWS.~BT
2015-09-05 17:52 - 2015-09-05 17:52 - 00000000 ___HD C:\$Windows.~WS
2015-09-05 16:31 - 2015-09-05 17:52 - 19733696 _____ (Microsoft Corporation) C:\Users\GlobalCZ\Downloads\MediaCreationToolx64.exe
2015-09-05 16:27 - 2015-09-05 16:27 - 01473404 _____ C:\Users\GlobalCZ\Downloads\BootableUSB.zip
2015-09-05 16:27 - 2013-04-24 14:16 - 00000000 ____D C:\Users\GlobalCZ\Desktop\A Bootable USB
2015-09-02 19:28 - 2015-09-02 19:28 - 00014875 _____ C:\Users\GlobalCZ\Downloads\[CzT]Legenda_o_Jirim_a_drakovi_George_and_the_Dragon_2004_.torrent
2015-09-02 18:22 - 2015-09-02 18:22 - 00081772 _____ C:\Users\GlobalCZ\Downloads\[CzT]Avatar_1080p_.torrent
2015-09-02 18:21 - 2015-09-02 18:21 - 00070951 _____ C:\Users\GlobalCZ\Downloads\[CzT]Eragon_2006_CZ_EN_1080pHD_.torrent
2015-09-02 16:53 - 2015-09-06 20:23 - 04027000 _____ C:\Users\GlobalCZ\Downloads\Guardians.of.the.Galaxy.2014.1080p.BluRay.DTS.x264.CZ.4play.mkv
2015-09-02 12:02 - 2015-09-09 09:05 - 00000000 ____D C:\Users\GlobalCZ\Downloads\Big Bang theory CZ
2015-09-02 09:21 - 2015-09-02 14:48 - 00000000 ____D C:\Users\GlobalCZ\Downloads\Top Gear
2015-09-02 02:56 - 2015-09-02 07:44 - 00000000 ____D C:\Users\GlobalCZ\Downloads\Futurama CZ Komplet (1. - 8. série + futufilmy)
2015-09-02 00:04 - 2015-09-02 02:55 - 734386176 _____ C:\Users\GlobalCZ\Downloads\Medvídek (2007).avi
2015-09-01 21:24 - 2015-09-02 02:04 - 00000000 ____D C:\Users\GlobalCZ\Downloads\1. Séria
2015-09-01 20:17 - 2015-09-01 20:17 - 00017177 _____ C:\Users\GlobalCZ\Downloads\[CzT]Snehurka_a_sedm_trpasliku_Snow_White_and_the_Seven_Dwarfs_1937_CZ_.torrent
2015-09-01 20:11 - 2015-09-01 20:11 - 00085017 _____ C:\Users\GlobalCZ\Downloads\[CzT]Pacific_Rim_Utok_na_Zemi_Pacific_Rim_2013_CZ_1080pHD_.torrent
2015-09-01 19:50 - 2015-09-17 09:20 - 1835485184 _____ C:\Users\GlobalCZ\Downloads\Svet Zitrka hl film CZ.avi
2015-09-01 19:46 - 2015-09-17 14:32 - 00000000 ____D C:\Users\GlobalCZ\Downloads\Nedotknutelní
2015-09-01 19:44 - 2015-09-17 02:21 - 00000000 ____D C:\Users\GlobalCZ\Downloads\Thor.The.Dark.World.2013.1080p.BluRay.DTS.x264-HDMaNiAcS
2015-09-01 19:41 - 2015-09-18 13:30 - 00000000 ____D C:\Users\GlobalCZ\Downloads\Green Mile, The [1080p] (en,cz)
2015-09-01 19:37 - 2015-09-16 23:41 - 00000000 ____D C:\Users\GlobalCZ\Downloads\Tři mušketýři
2015-08-31 21:29 - 2015-08-31 21:29 - 00000000 ____D C:\Users\GlobalCZ\AppData\Roaming\Sun
2015-08-31 21:29 - 2015-08-31 21:29 - 00000000 ____D C:\Users\GlobalCZ\.oracle_jre_usage
2015-08-31 15:37 - 2015-09-15 10:17 - 00000000 ____D C:\Users\GlobalCZ\AppData\Local\Mozilla
2015-08-31 15:37 - 2015-08-31 15:37 - 00000000 ____D C:\Users\GlobalCZ\AppData\Roaming\Mozilla
2015-08-31 15:35 - 2015-08-31 15:37 - 41778720 _____ C:\Users\GlobalCZ\Downloads\Firefox Setup 40.0.2.exe
2015-08-31 09:40 - 2015-09-06 20:30 - 00000000 ____D C:\Users\GlobalCZ\Downloads\Top Gear S20 (CZ)(720p)
2015-08-31 09:39 - 2015-09-06 20:38 - 00000000 ____D C:\Users\GlobalCZ\Downloads\Topgear 19.serie
2015-08-31 09:27 - 2015-09-01 20:57 - 00000000 ____D C:\Users\GlobalCZ\Downloads\Suits S04 Season 4 Complete 480p HDTV x264 AAC E-Subs [GWC]
2015-08-30 05:26 - 2015-08-30 05:49 - 00000000 ____D C:\Users\GlobalCZ\Downloads\kravataci 3serie
2015-08-29 21:54 - 2015-08-30 00:38 - 00000000 ____D C:\Users\GlobalCZ\Downloads\Transformers Trilogy 1080p
2015-08-29 21:51 - 2015-08-29 22:29 - 00000000 ____D C:\Users\GlobalCZ\Downloads\Dr. House 1.-8. serie CZ
2015-08-28 22:23 - 2015-08-20 08:07 - 08019296 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-08-28 22:23 - 2015-08-20 08:06 - 00609592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2015-08-28 22:23 - 2015-08-20 08:02 - 22324656 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-08-28 22:23 - 2015-08-20 07:26 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2015-08-28 22:23 - 2015-08-20 07:21 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2015-08-28 22:23 - 2015-08-20 07:16 - 20857848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2015-08-28 22:23 - 2015-08-20 07:13 - 02235904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-08-28 22:23 - 2015-08-18 09:56 - 02498808 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2015-08-28 22:23 - 2015-08-18 09:55 - 00373072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2015-08-28 22:23 - 2015-08-18 09:54 - 01396064 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-08-28 22:23 - 2015-08-18 09:27 - 01771592 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2015-08-28 22:23 - 2015-08-18 09:24 - 00963920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2015-08-28 22:23 - 2015-08-18 09:13 - 00497664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll
2015-08-28 22:23 - 2015-08-18 09:13 - 00387584 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2015-08-28 22:23 - 2015-08-18 09:12 - 02225664 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-08-28 22:23 - 2015-08-18 09:07 - 02226688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2015-08-28 22:23 - 2015-08-18 09:04 - 01234944 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2015-08-28 22:23 - 2015-08-18 09:04 - 00859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2015-08-28 22:23 - 2015-08-18 08:59 - 01294336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcnwiz.dll
2015-08-28 22:23 - 2015-08-18 08:59 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnApi.dll
2015-08-28 22:23 - 2015-08-18 08:58 - 00187392 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2015-08-28 22:23 - 2015-08-18 08:58 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafWCN.dll
2015-08-28 22:23 - 2015-08-18 08:58 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWCN.dll
2015-08-28 22:23 - 2015-08-18 08:58 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnNetsh.dll
2015-08-28 22:23 - 2015-08-18 08:57 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2015-08-28 22:23 - 2015-08-18 08:56 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthRadioMedia.dll
2015-08-28 22:23 - 2015-08-18 08:55 - 02178560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-08-28 22:23 - 2015-08-18 08:54 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultsvc.dll
2015-08-28 22:23 - 2015-08-18 08:54 - 00247296 _____ C:\WINDOWS\system32\facecredentialprovider.dll
2015-08-28 22:23 - 2015-08-18 08:52 - 01888768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2015-08-28 22:23 - 2015-08-18 08:50 - 01795072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-08-28 22:23 - 2015-08-18 08:49 - 01061888 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2015-08-28 22:23 - 2015-08-18 08:49 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll
2015-08-28 22:23 - 2015-08-18 08:49 - 00246272 _____ (Microsoft Corporation) C:\WINDOWS\system32\PackageStateRoaming.dll
2015-08-28 22:23 - 2015-08-18 08:36 - 01226752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wcnwiz.dll
2015-08-28 22:23 - 2015-08-18 08:35 - 00100352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WcnApi.dll
2015-08-28 22:23 - 2015-08-18 08:35 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdWCN.dll
2015-08-28 22:23 - 2015-08-18 08:34 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfdprov.dll
2015-08-28 22:23 - 2015-08-18 08:29 - 01593344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2015-08-28 22:23 - 2015-08-18 08:26 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PackageStateRoaming.dll
2015-08-28 22:23 - 2015-08-18 06:44 - 00008847 _____ C:\WINDOWS\system32\ResPriHMImageList
2015-08-26 22:08 - 2015-09-20 19:02 - 00000000 ____D C:\Users\GlobalCZ\AppData\Roaming\vlc
2015-08-26 22:08 - 2015-08-26 22:08 - 00001143 _____ C:\Users\Public\Desktop\VLC media player.lnk
2015-08-26 22:08 - 2015-08-26 22:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2015-08-26 22:08 - 2015-08-26 22:08 - 00000000 ____D C:\Program Files (x86)\VideoLAN
2015-08-24 16:10 - 2015-08-24 16:10 - 00001814 _____ C:\Users\GlobalCZ\Desktop\Launch MouseRecorder.lnk
2015-08-24 15:49 - 2015-08-24 15:50 - 00000000 ____D C:\Users\GlobalCZ\AppData\Roaming\Mouse Recorder
2015-08-24 15:49 - 2015-08-24 15:49 - 00000000 ____D C:\ProgramData\MouseRecorder
2015-08-24 15:49 - 2015-08-24 15:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MouseRecorder
2015-08-24 15:49 - 2015-08-24 15:49 - 00000000 ____D C:\Program Files (x86)\MouseRecorder

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-09-23 21:06 - 2015-07-04 15:12 - 00000000 ____D C:\Users\GlobalCZ\AppData\Roaming\TS3Client
2015-09-23 21:03 - 2015-07-11 11:04 - 00000000 ____D C:\Users\GlobalCZ\AppData\Roaming\Skype
2015-09-23 20:59 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\sru
2015-09-23 20:10 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-09-23 19:59 - 2015-07-04 16:43 - 00000000 ___DO C:\Users\GlobalCZ\SkyDrive
2015-09-23 19:58 - 2015-07-10 14:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-09-23 19:58 - 2015-07-03 20:38 - 00000000 ____D C:\ProgramData\NVIDIA
2015-09-23 19:57 - 2015-07-10 11:05 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2015-09-23 18:36 - 2015-07-06 13:51 - 00000000 ____D C:\Users\GlobalCZ\AppData\Roaming\uTorrent
2015-09-23 16:52 - 2015-07-03 20:27 - 00004210 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{6AC8C149-5310-4FFA-B4B5-A2E23507244A}
2015-09-22 22:04 - 2015-08-03 21:33 - 00000000 ____D C:\Users\GlobalCZ\Downloads\Windows 8.1 + crack
2015-09-21 21:59 - 2015-08-01 00:40 - 00000000 ____D C:\Users\GlobalCZ
2015-09-21 19:14 - 2015-07-10 12:55 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-09-20 21:34 - 2015-07-03 20:28 - 00003806 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2015-09-20 21:34 - 2015-07-03 20:28 - 00000000 ____D C:\Program Files (x86)\Google
2015-09-20 21:34 - 2015-07-03 20:27 - 00000000 ____D C:\Users\GlobalCZ\AppData\Local\Google
2015-09-20 20:26 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2015-09-20 19:03 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\NDF
2015-09-20 17:44 - 2015-07-03 20:56 - 00000000 ____D C:\Games
2015-09-20 17:12 - 2015-07-03 23:40 - 00000000 ____D C:\Program Files (x86)\Steam
2015-09-20 16:57 - 2015-07-27 14:57 - 00000000 ____D C:\Users\GlobalCZ\AppData\Local\Battle.net
2015-09-20 16:57 - 2015-07-27 14:57 - 00000000 ____D C:\Program Files (x86)\Battle.net
2015-09-20 16:49 - 2015-07-04 15:12 - 00000000 ____D C:\Users\GlobalCZ\AppData\Local\TeamSpeak 3 Client
2015-09-17 17:17 - 2015-08-01 00:34 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-09-17 17:17 - 2015-07-03 20:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-09-16 10:39 - 2015-07-03 20:17 - 00000000 ____D C:\Users\GlobalCZ\AppData\Local\Packages
2015-09-15 13:24 - 2015-08-01 07:33 - 00002371 _____ C:\Users\GlobalCZ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-09-15 10:15 - 2015-08-17 13:21 - 00000000 ____D C:\Users\GlobalCZ\AppData\Local\Adobe
2015-09-13 06:32 - 2015-07-10 14:20 - 00346808 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-09-13 06:30 - 2015-07-10 18:05 - 00000000 ____D C:\Program Files\Windows Journal
2015-09-13 06:30 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-09-10 19:11 - 2015-07-27 15:06 - 00000000 ____D C:\Program Files (x86)\Hearthstone
2015-09-09 20:44 - 2015-07-28 20:49 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-09-09 20:42 - 2015-07-04 10:27 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-09-06 21:32 - 2015-07-03 20:41 - 00001454 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2015-09-06 16:57 - 2015-07-28 20:49 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2015-09-06 15:00 - 2015-08-01 00:53 - 01674756 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-09-06 15:00 - 2015-07-10 18:02 - 00710988 _____ C:\WINDOWS\system32\perfh005.dat
2015-09-06 15:00 - 2015-07-10 18:02 - 00141564 _____ C:\WINDOWS\system32\perfc005.dat
2015-09-05 19:54 - 2015-08-01 01:30 - 00000000 ___DC C:\WINDOWS\Panther
2015-09-05 19:54 - 2015-07-31 20:37 - 00262624 _____ C:\WINDOWS\diagerr.xml
2015-09-05 19:54 - 2015-07-31 20:37 - 00012123 _____ C:\WINDOWS\diagwrn.xml
2015-09-05 17:49 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\rescache
2015-09-05 04:15 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\oobe
2015-09-02 09:16 - 2015-08-17 23:17 - 217061671 _____ C:\Users\GlobalCZ\Downloads\Transformer.Age.Of.Extinction.2014.1080p.BluRay.DD.5.1.x264-LEGi0N (cz).mkv
2015-08-31 21:37 - 2015-07-24 15:20 - 00000000 ____D C:\ProgramData\Oracle
2015-08-31 21:30 - 2015-07-24 15:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-08-31 21:30 - 2015-07-24 15:20 - 00000000 ____D C:\Program Files (x86)\Java
2015-08-31 21:29 - 2015-07-24 15:20 - 00097888 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2015-08-31 14:36 - 2015-07-03 20:17 - 00000000 ____D C:\Users\GlobalCZ\AppData\Roaming\Adobe
2015-08-31 12:34 - 2015-07-06 20:36 - 00000000 ____D C:\Users\GlobalCZ\Documents\ProfileCache
2015-08-31 12:28 - 2015-07-06 20:36 - 00000000 ____D C:\Users\GlobalCZ\Documents\The Crew
2015-08-31 00:47 - 2015-08-01 07:43 - 11188880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2015-08-27 02:37 - 2015-07-03 20:39 - 01423120 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2015-08-27 02:37 - 2015-07-03 20:39 - 01316000 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
2015-08-27 02:36 - 2015-07-03 20:39 - 01756424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll
2015-08-27 02:36 - 2015-07-03 20:39 - 01710568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2015-08-26 18:37 - 2015-07-04 10:26 - 134753440 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-08-25 20:38 - 2015-08-01 07:44 - 00112760 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2015-08-25 20:38 - 2015-08-01 07:44 - 00105080 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2015-08-25 20:38 - 2015-08-01 07:43 - 17932648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll
2015-08-25 20:38 - 2015-08-01 07:43 - 15334976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2015-08-25 20:38 - 2015-08-01 07:43 - 12611824 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll
2015-08-25 20:38 - 2015-08-01 07:43 - 03480792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2015-08-25 20:38 - 2015-08-01 07:43 - 03074776 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2015-08-25 20:38 - 2015-08-01 07:43 - 00034044 _____ C:\WINDOWS\system32\nvinfo.pb
2015-08-25 20:38 - 2015-04-16 19:03 - 00204648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2015-08-25 20:38 - 2015-04-16 07:19 - 01567576 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco6420103.dll
2015-08-25 17:57 - 2015-08-01 08:36 - 06884984 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2015-08-25 17:57 - 2015-08-01 08:36 - 03496752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2015-08-25 17:57 - 2015-08-01 08:36 - 02558584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2015-08-25 17:57 - 2015-08-01 08:36 - 00937592 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2015-08-25 17:57 - 2015-08-01 08:36 - 00385144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2015-08-25 17:57 - 2015-08-01 08:36 - 00062584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2015-08-25 16:59 - 2015-08-23 22:05 - 00000000 ____D C:\Users\GlobalCZ\Documents\AutomaticSolution Software
2015-08-25 16:58 - 2015-07-03 23:54 - 00000000 ____D C:\Users\GlobalCZ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2015-08-25 15:02 - 2015-08-01 08:36 - 05165808 _____ C:\WINDOWS\system32\nvcoproc.bin

Some files in TEMP:
====================
C:\Users\GlobalCZ\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\GlobalCZ\AppData\Local\Temp\nvSCPAPI64.dll
C:\Users\GlobalCZ\AppData\Local\Temp\nvStInst.exe
C:\Users\GlobalCZ\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-09-13 20:20

==================== End of FRST.txt ============================

Otevřte poznámkový blok a zkopírujte do něj:

Start
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597552 2015-08-04] (Oracle Corporation)
HKU\S-1-5-21-2288151445-4002470734-3444759538-1001\...\Run: [BingSvc] => C:\Users\GlobalCZ\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-04-07] (© 2015 Microsoft Corporation)
C:\Users\GlobalCZ\AppData\Local\Microsoft\BingSvc
HKU\S-1-5-21-2288151445-4002470734-3444759538-1001\...\MountPoints2: {24e5b863-5374-11e5-8266-902b34a1cd7f} - "E:\Startme.exe"
HKU\S-1-5-21-2288151445-4002470734-3444759538-1001\...\MountPoints2: {6887577e-21af-11e5-8250-806e6f6e6963} - "D:\Viewer\ppview32.exe" agaxzs\auto.ppt
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
C:\Program Files (x86)\Skype\Toolbars
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
CHR StartupUrls: Default -> "hxxp://s10.sfgame.cz/","hxxp://s11.sfgame.cz/","hxxp://s12.sfgame.cz/","hxxp://s13.sfgame.cz/","hxxp://cz1.darkorbit.bigpoint.com/indexInternal.es?action=internalAuction","hxxp://listen.play.cz/player.html?shortcut=evropa2&format=&v=20130810","hxxps://www.facebook.com/"
CHR DefaultSearchURL: Default -> hxxp://www.bing.com/search?FORM=__PARAM ... PARAM__&q={searchTerms}
CHR DefaultSearchKeyword: Default -> bing.com
CHR Extension: (Bing) - C:\Users\GlobalCZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcfenmboojpjinhpgggodefccipikbpd [2015-09-23]
CHR Extension: (Tiësto) - C:\Users\GlobalCZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\mnmeobddjkkgkglnogihcaejaleikhdh [2015-09-20]
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1394816 2015-05-01] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1772672 2015-05-01] (Microsoft Corporation)
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\msdownld.tmp
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
C:\Users\GlobalCZ\AppData\Local\Temp
End

Uložte do C:\Users\GlobalCZ\Downloads jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Fix :
Fix result of Farbar Recovery Scan Tool (x64) Version:23-09-2015
Ran by GlobalCZ (2015-09-24 17:59:23) Run:1
Running from C:\Users\GlobalCZ\Downloads
Loaded Profiles: GlobalCZ (Available Profiles: GlobalCZ)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597552 2015-08-04] (Oracle Corporation)
HKU\S-1-5-21-2288151445-4002470734-3444759538-1001\...\Run: [BingSvc] => C:\Users\GlobalCZ\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-04-07] (© 2015 Microsoft Corporation)
C:\Users\GlobalCZ\AppData\Local\Microsoft\BingSvc
HKU\S-1-5-21-2288151445-4002470734-3444759538-1001\...\MountPoints2: {24e5b863-5374-11e5-8266-902b34a1cd7f} - "E:\Startme.exe"
HKU\S-1-5-21-2288151445-4002470734-3444759538-1001\...\MountPoints2: {6887577e-21af-11e5-8250-806e6f6e6963} - "D:\Viewer\ppview32.exe" agaxzs\auto.ppt
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
C:\Program Files (x86)\Skype\Toolbars
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
CHR StartupUrls: Default -> "hxxp://s10.sfgame.cz/","hxxp://s11.sfgame.cz/","hxxp://s12.sfgame.cz/","hxxp://s13.sfgame.cz/","hxxp://cz1.darkorbit.bigpoint.com/indexInternal.es?action=internalAuction","hxxp://listen.play.cz/player.html?shortcut=evropa2&format=&v=20130810","hxxps://www.facebook.com/"
CHR DefaultSearchURL: Default -> hxxp://www.bing.com/search?FORM=__PARAM ... PARAM__&q={searchTerms}
CHR DefaultSearchKeyword: Default -> bing.com
CHR Extension: (Bing) - C:\Users\GlobalCZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcfenmboojpjinhpgggodefccipikbpd [2015-09-23]
CHR Extension: (Tiësto) - C:\Users\GlobalCZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\mnmeobddjkkgkglnogihcaejaleikhdh [2015-09-20]
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1394816 2015-05-01] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1772672 2015-05-01] (Microsoft Corporation)
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\msdownld.tmp
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
C:\Users\GlobalCZ\AppData\Local\Temp
End
*****************

HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => value removed successfully
HKU\S-1-5-21-2288151445-4002470734-3444759538-1001\Software\Microsoft\Windows\CurrentVersion\Run\\BingSvc => value removed successfully
C:\Users\GlobalCZ\AppData\Local\Microsoft\BingSvc => moved successfully
"HKU\S-1-5-21-2288151445-4002470734-3444759538-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{24e5b863-5374-11e5-8266-902b34a1cd7f}" => key removed successfully
HKCR\CLSID\{24e5b863-5374-11e5-8266-902b34a1cd7f} => key not found.
"HKU\S-1-5-21-2288151445-4002470734-3444759538-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{6887577e-21af-11e5-8250-806e6f6e6963}" => key removed successfully
HKCR\CLSID\{6887577e-21af-11e5-8250-806e6f6e6963} => key not found.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}" => key removed successfully
"HKCR\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}" => key removed successfully
C:\Program Files (x86)\Skype\Toolbars => moved successfully
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}" => key removed successfully
"HKCR\Wow6432Node\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}" => key removed successfully
"HKCR\PROTOCOLS\Handler\skypec2c" => key removed successfully
"HKCR\CLSID\{91774881-D725-4E58-B298-07617B9B86A8}" => key removed successfully
HKCR\Wow6432Node\PROTOCOLS\Handler\skypec2c => key not found.
"HKCR\Wow6432Node\CLSID\{91774881-D725-4E58-B298-07617B9B86A8}" => key removed successfully
Chrome StartupUrls removed successfully
Chrome DefaultSearchURL removed successfully
Chrome DefaultSearchKeyword removed successfully
C:\Users\GlobalCZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcfenmboojpjinhpgggodefccipikbpd => not found
C:\Users\GlobalCZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\mnmeobddjkkgkglnogihcaejaleikhdh => moved successfully
c2cautoupdatesvc => Unable to stop service.
c2cautoupdatesvc => service removed successfully
c2cpnrsvc => Unable to stop service.
c2cpnrsvc => service removed successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully
C:\WINDOWS\msdownld.tmp => moved successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully

"C:\Users\GlobalCZ\AppData\Local\Temp" folder move:

Could not move "C:\Users\GlobalCZ\AppData\Local\Temp" => Scheduled to move on reboot.


Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 2015-09-24 18:01:41)<=

C:\Users\GlobalCZ\AppData\Local\Temp => moved successfully

==== End of Fixlog 18:01:44 ====

Po Fixu :

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:23-09-2015
Ran by GlobalCZ (administrator) on PC-GLOBALCZ (24-09-2015 18:05:31)
Running from C:\Users\GlobalCZ\Downloads
Loaded Profiles: GlobalCZ (Available Profiles: GlobalCZ)
Platform: Windows 10 Pro (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)



==================== Registry (Whitelisted) ===========================

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.2.255.1 10.2.255.2
Tcpip\..\Interfaces\{c6806874-3f5c-4eb1-86d9-5eda4f2b7a3e}: [DhcpNameServer] 10.2.255.1 10.2.255.2

Internet Explorer:
==================
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\ssv.dll [2015-08-31] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-08-31] (Oracle Corporation)

FireFox:
========
FF ProfilePath: C:\Users\GlobalCZ\AppData\Roaming\Mozilla\Firefox\Profiles\xaqws2g4.default
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_19_0_0_185.dll [2015-09-21] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_185.dll [2015-09-21] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll [2015-08-31] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\plugin2\npjp2.dll [2015-08-31] (Oracle Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-08-25] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-08-25] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-20] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-20] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-07-03] (Adobe Systems Inc.)

Chrome:
=======
CHR Profile: C:\Users\GlobalCZ\AppData\Local\Google\Chrome\User Data\Default
CHR HKU\S-1-5-21-2288151445-4002470734-3444759538-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx <not found>

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1155192 2015-08-27] (NVIDIA Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1872504 2015-08-27] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5544568 2015-08-27] (NVIDIA Corporation)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19576 2015-08-27] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [50472 2015-08-11] (NVIDIA Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [587264 2015-07-10] (Realtek )
S3 RZSURROUNDVADService; C:\Windows\system32\drivers\RzSurroundVAD.sys [40640 2015-07-29] (Windows (R) Win 7 DDK provider)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
R2 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-09-24 18:02 - 2015-09-24 18:02 - 00000000 ___HD C:\OneDriveTemp
2015-09-24 18:01 - 2015-09-24 18:01 - 00016148 _____ C:\WINDOWS\system32\PC-GLOBALCZ_GlobalCZ_HistoryPrediction.bin
2015-09-23 19:51 - 2015-09-23 19:57 - 00000000 ____D C:\AdwCleaner
2015-09-23 19:50 - 2015-09-23 19:51 - 01662976 _____ C:\Users\GlobalCZ\Downloads\adwcleaner_5.008.exe
2015-09-23 18:40 - 2015-09-24 18:05 - 00005832 _____ C:\Users\GlobalCZ\Downloads\FRST.txt
2015-09-23 18:40 - 2015-09-23 18:41 - 00036919 _____ C:\Users\GlobalCZ\Downloads\Addition.txt
2015-09-23 18:39 - 2015-09-24 18:05 - 00000000 ____D C:\FRST
2015-09-23 18:39 - 2015-09-23 18:39 - 02192384 _____ (Farbar) C:\Users\GlobalCZ\Downloads\FRST64.exe
2015-09-23 10:53 - 2015-09-23 10:54 - 00000000 ____D C:\rsit
2015-09-23 10:53 - 2015-09-23 10:53 - 01222144 _____ C:\Users\GlobalCZ\Downloads\RSITx64.exe
2015-09-23 10:53 - 2015-09-23 10:53 - 00000000 ____D C:\Program Files\trend micro
2015-09-22 23:06 - 2015-09-23 15:40 - 583531882 _____ C:\Users\GlobalCZ\Downloads\Revoluce - Revolution S02E12 - Epidemie (CZ)(TvRip)_xvid.avi
2015-09-22 23:05 - 2015-09-23 15:33 - 477806466 _____ C:\Users\GlobalCZ\Downloads\Revoluce - Revolution S02E11 - Syn dvou otců (CZ)(TvRip)_xvid.avi
2015-09-22 23:05 - 2015-09-22 23:05 - 00018829 _____ C:\Users\GlobalCZ\Downloads\[CzT]Revoluce_Revolution_S02E11_Syn_dvou_otcu_CZ_TvRip_.torrent
2015-09-22 23:05 - 2015-09-22 23:05 - 00011724 _____ C:\Users\GlobalCZ\Downloads\[CzT]Revoluce_Revolution_S02E12_Epidemie_CZ_TvRip_.torrent
2015-09-22 22:50 - 2015-09-22 22:50 - 00000000 ____D C:\WINDOWS\system32\appmgmt
2015-09-22 22:30 - 2015-09-22 22:30 - 00000000 ____D C:\ProgramData\RzSurroundVAD_1.1.60.0
2015-09-22 22:29 - 2015-09-22 22:50 - 00000000 ____D C:\Program Files (x86)\Razer
2015-09-22 22:27 - 2015-09-22 22:50 - 00000000 ____D C:\Users\GlobalCZ\AppData\Local\Razer
2015-09-22 22:27 - 2015-09-22 22:50 - 00000000 ____D C:\ProgramData\Razer
2015-09-22 22:26 - 2015-09-22 22:27 - 02119872 _____ (Razer Inc.) C:\Users\GlobalCZ\Downloads\RazerSurroundInstaller_v2.0.29.2.exe
2015-09-21 22:01 - 2015-09-23 19:57 - 00021310 _____ C:\WINDOWS\PFRO.log
2015-09-21 21:43 - 2015-09-21 21:43 - 00075682 _____ C:\Users\GlobalCZ\Desktop\2-8 Pet.mrf
2015-09-21 20:59 - 2015-09-21 21:23 - 462755380 _____ C:\Users\GlobalCZ\Downloads\Revoluce - Revolution S02E09 - Všichni říkají Miluji tě (CZ)(TvRip)_xvid.avi
2015-09-21 20:58 - 2015-09-21 21:37 - 620274728 _____ C:\Users\GlobalCZ\Downloads\Revoluce - Revolution S02E10 - Tři amigos (CZ)(TvRip)_xvid.avi
2015-09-21 20:57 - 2015-09-21 21:21 - 400106128 _____ C:\Users\GlobalCZ\Downloads\Revoluce - Revolution S02E08 - Pán Horn (CZ)(TvRip)_xvid.avi
2015-09-21 20:57 - 2015-09-21 20:57 - 00012426 _____ C:\Users\GlobalCZ\Downloads\[CzT]Revoluce_Revolution_S02E10_Tri_amigos_CZ_TvRip_.torrent
2015-09-21 20:56 - 2015-09-21 20:56 - 00018263 _____ C:\Users\GlobalCZ\Downloads\[CzT]Revoluce_Revolution_S02E09_Vsichni_rikaji_Miluji_te_CZ_TvRip_.torrent
2015-09-21 20:56 - 2015-09-21 20:56 - 00015862 _____ C:\Users\GlobalCZ\Downloads\[CzT]Revoluce_Revolution_S02E08_Pan_Horn_CZ_TvRip_.torrent
2015-09-20 21:34 - 2015-09-22 22:40 - 00002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-09-20 21:34 - 2015-09-20 21:34 - 00929872 _____ (Google Inc.) C:\Users\GlobalCZ\Downloads\ChromeSetup.exe
2015-09-20 21:34 - 2015-09-20 21:34 - 00004038 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2015-09-20 21:34 - 2015-09-20 21:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-09-20 17:44 - 2015-09-20 17:45 - 00000000 ____D C:\WINDOWS\SysWOW64\directx
2015-09-20 17:44 - 2015-09-20 17:44 - 00000836 _____ C:\Users\Public\Desktop\World of Warships.lnk
2015-09-20 17:44 - 2015-09-20 17:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Warships
2015-09-20 17:40 - 2015-09-20 17:41 - 06970488 _____ (Wargaming.net ) C:\Users\GlobalCZ\Downloads\WoWS_internet_install_eu.exe
2015-09-20 16:58 - 2015-09-20 17:05 - 58131024 _____ C:\Users\GlobalCZ\Downloads\[F4F]_Galactik_Football_07_CZ.avi.5b7alt6.partial
2015-09-20 16:46 - 2015-09-20 16:57 - 208069286 _____ C:\Users\GlobalCZ\Downloads\[F4F]_Galactik_Football_06_CZ.avi
2015-09-20 16:34 - 2015-09-20 16:46 - 209023198 _____ C:\Users\GlobalCZ\Downloads\[F4F]_Galactik_Football_05_CZ.avi
2015-09-20 16:22 - 2015-09-20 16:34 - 207673880 _____ C:\Users\GlobalCZ\Downloads\[F4F]_Galactik_Football_04_CZ.avi
2015-09-19 22:00 - 2015-09-19 22:11 - 208823342 _____ C:\Users\GlobalCZ\Downloads\[F4F]_Galactik_Football_03_CZ.avi
2015-09-19 21:47 - 2015-09-19 22:33 - 485646096 _____ C:\Users\GlobalCZ\Downloads\Revoluce - Revolution S02E07 - Vlastenecký čin (CZ)(TvRip)_xvid.avi
2015-09-19 21:46 - 2015-09-19 21:46 - 00019131 _____ C:\Users\GlobalCZ\Downloads\[CzT]Revoluce_Revolution_S02E07_Vlastenecky_cin_CZ_TvRip_.torrent
2015-09-19 19:31 - 2015-09-19 20:05 - 561888702 _____ C:\Users\GlobalCZ\Downloads\Revoluce - Revolution S02E06 - Mrtvý muž přichází (CZ)(TvRip)_xvid.avi
2015-09-19 19:31 - 2015-09-19 19:31 - 00011318 _____ C:\Users\GlobalCZ\Downloads\[CzT]Revoluce_Revolution_S02E06_Mrtvy_muz_prichazi_CZ_TvRip_.torrent
2015-09-19 18:52 - 2015-09-19 19:07 - 646025066 _____ C:\Users\GlobalCZ\Downloads\Revoluce - Revolution S02E05 - Jedna vzpoura, jeden ranger (CZ)(TvRip)_xvid.avi
2015-09-19 18:52 - 2015-09-19 18:52 - 00012942 _____ C:\Users\GlobalCZ\Downloads\[CzT]Revoluce_Revolution_S02E05_Jedna_vzpoura_jeden_ranger_CZ_TvRip_.torrent
2015-09-19 17:07 - 2015-09-19 17:08 - 550432374 _____ C:\Users\GlobalCZ\Downloads\Revoluce - Revolution S02E04 - Vysoká hra patriotů (CZ)(TvRip)_xvid.avi
2015-09-19 17:07 - 2015-09-19 17:07 - 00011096 _____ C:\Users\GlobalCZ\Downloads\[CzT]Revoluce_Revolution_S02E04_Vysoka_hra_patriotu_CZ_TvRip_.torrent
2015-09-19 13:26 - 2015-09-19 14:30 - 783996178 _____ C:\Users\GlobalCZ\Downloads\Revoluce - Revolution S02E03 - Milostný příběh (CZ)(TvRip)_xvid.avi
2015-09-19 12:50 - 2015-09-19 12:56 - 519710534 _____ C:\Users\GlobalCZ\Downloads\Revoluce - Revolution S02E02 - Až na krev (CZ)(TvRip)_xvid.avi
2015-09-19 12:28 - 2015-09-19 12:36 - 562052764 _____ C:\Users\GlobalCZ\Downloads\Revoluce - Revolution S02E01 - Narození v U.S.A (CZ)(TvRip)_xvid.avi
2015-09-18 22:05 - 2015-09-18 22:05 - 00044892 _____ C:\Users\GlobalCZ\Desktop\Macro_18. 9. 2015 22-05-34.mrf
2015-09-18 15:33 - 2015-09-18 15:40 - 00000000 ____D C:\Users\GlobalCZ\Downloads\Sakurasou no Pet na Kanojo
2015-09-18 15:26 - 2015-09-18 15:31 - 00000000 ____D C:\Users\GlobalCZ\Downloads\Sword Art Online II
2015-09-17 20:50 - 2015-09-17 22:23 - 00000000 ____D C:\Users\GlobalCZ\Downloads\sao
2015-09-17 17:46 - 2015-09-17 17:47 - 00000000 ____D C:\Users\GlobalCZ\Downloads\Mafia 2 - Special Extended Edition CZ
2015-09-17 17:38 - 2015-09-22 23:44 - 1876186720 _____ C:\Users\GlobalCZ\Downloads\Eragon (2006) 1080p CZ.mkv
2015-09-17 17:17 - 2015-09-17 17:17 - 00002210 _____ C:\Users\Public\Desktop\3D Vision Photo Viewer.lnk
2015-09-17 17:17 - 2015-08-25 16:18 - 00574072 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2015-09-17 17:15 - 2015-08-25 20:38 - 42840184 _____ C:\WINDOWS\system32\nvcompiler.dll
2015-09-17 17:15 - 2015-08-25 20:38 - 37819184 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll
2015-09-17 17:15 - 2015-08-25 20:38 - 22559352 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2015-09-17 17:15 - 2015-08-25 20:38 - 18569336 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2015-09-17 17:15 - 2015-08-25 20:38 - 16646624 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2015-09-17 17:15 - 2015-08-25 20:38 - 15630616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll
2015-09-17 17:15 - 2015-08-25 20:38 - 14945552 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2015-09-17 17:15 - 2015-08-25 20:38 - 13667032 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2015-09-17 17:15 - 2015-08-25 20:38 - 12192048 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2015-09-17 17:15 - 2015-08-25 20:38 - 02354808 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2015-09-17 17:15 - 2015-08-25 20:38 - 02105976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2015-09-17 17:15 - 2015-08-25 20:38 - 01898104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6435582.dll
2015-09-17 17:15 - 2015-08-25 20:38 - 01558648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6435582.dll
2015-09-17 17:15 - 2015-08-25 20:38 - 01178576 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvumdshimx.dll
2015-09-17 17:15 - 2015-08-25 20:38 - 01075320 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2015-09-17 17:15 - 2015-08-25 20:38 - 01064752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2015-09-17 17:15 - 2015-08-25 20:38 - 01001440 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvumdshim.dll
2015-09-17 17:15 - 2015-08-25 20:38 - 00986232 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2015-09-17 17:15 - 2015-08-25 20:38 - 00945272 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2015-09-17 17:15 - 2015-08-25 20:38 - 00787200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2015-09-17 17:15 - 2015-08-25 20:38 - 00632848 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2015-09-17 17:15 - 2015-08-25 20:38 - 00408368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2015-09-17 17:15 - 2015-08-25 20:38 - 00387536 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2015-09-17 17:15 - 2015-08-25 20:38 - 00376440 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll
2015-09-17 17:15 - 2015-08-25 20:38 - 00364152 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2015-09-17 17:15 - 2015-08-25 20:38 - 00339576 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll
2015-09-17 17:15 - 2015-08-25 20:38 - 00316120 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2015-09-17 17:15 - 2015-08-25 20:38 - 00176904 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll
2015-09-17 17:15 - 2015-08-25 20:38 - 00155976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll
2015-09-17 17:15 - 2015-08-25 20:38 - 00150648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglshim64.dll
2015-09-17 17:15 - 2015-08-25 20:38 - 00128512 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglshim32.dll
2015-09-17 17:15 - 2015-08-25 20:38 - 00040280 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll
2015-09-17 17:14 - 2015-09-22 22:30 - 00000078 _____ C:\WINDOWS\setupact.log
2015-09-17 17:14 - 2015-09-17 17:14 - 00000000 _____ C:\WINDOWS\setuperr.log
2015-09-17 13:01 - 2015-09-21 21:36 - 1499891712 _____ C:\Users\GlobalCZ\Downloads\Legenda o Jiřím a drakovi.avi
2015-09-17 12:24 - 2015-09-17 18:11 - 4137159197 _____ C:\Users\GlobalCZ\Downloads\Avatar.2009.EXTENDED.1080p.BluRay.x264-BestHD.AC3.CZ-iNKViZiT0R.mkv
2015-09-17 11:51 - 2015-09-23 18:36 - 3484682337 _____ C:\Users\GlobalCZ\Downloads\Sněhurka a sedm trpasliku DVD.mkv
2015-09-17 11:40 - 2015-09-17 15:16 - 527536731 _____ C:\Users\GlobalCZ\Downloads\Pacific.Rim.2013.1080p.BluRay.DTS.x264-HDMaNiAcS.mkv
2015-09-17 11:14 - 2015-09-17 11:14 - 00000000 ____D C:\Users\GlobalCZ\Downloads\Let’s Dance 1-4
2015-09-17 11:09 - 2015-09-17 11:13 - 1851385856 _____ C:\Users\GlobalCZ\Downloads\Step.Up.All.In.2014.480p.BDRip.XviD.AC3.CZ-4play.avi
2015-09-17 02:36 - 2015-09-20 15:22 - 3377992574 _____ C:\Users\GlobalCZ\Downloads\Turbo (2013)(CZ)(SK)[1080pHD][3D SBS].mkv
2015-09-17 02:35 - 2015-09-17 02:35 - 00000000 ____D C:\Users\GlobalCZ\Downloads\1080p - CZ, EN - Já, Robot
2015-09-16 23:31 - 2015-09-17 12:55 - 449104507 _____ C:\Users\GlobalCZ\Downloads\Souboj titanu.mkv
2015-09-16 22:55 - 2015-09-16 23:26 - 2709112832 _____ C:\Users\GlobalCZ\Downloads\Gladiator.avi
2015-09-16 22:52 - 2015-09-17 02:22 - 1575865522 _____ C:\Users\GlobalCZ\Downloads\Robin.Hood.2010.DVDRip.XviD.AC3.Cz-lukasenko79.avi
2015-09-16 22:04 - 2015-09-16 22:12 - 00000000 ____D C:\Users\GlobalCZ\Downloads\Živí Mrtví 4. série (CZ)
2015-09-16 21:56 - 2015-09-16 22:04 - 00000000 ____D C:\Users\GlobalCZ\Downloads\3. Série
2015-09-16 20:54 - 2015-09-16 20:54 - 00000000 ____D C:\Users\GlobalCZ\Downloads\THE WALKING DEAD
2015-09-16 15:18 - 2015-09-16 15:29 - 208523898 _____ C:\Users\GlobalCZ\Downloads\[F4F]_Galactik_Football_02_CZ.avi
2015-09-16 13:37 - 2015-09-16 13:49 - 208525528 _____ C:\Users\GlobalCZ\Downloads\[F4F]_Galactik_Football_01_CZ.avi
2015-09-15 10:15 - 2015-09-15 10:15 - 00000000 ____D C:\Users\GlobalCZ\AppData\Local\Macromedia
2015-09-15 10:14 - 2015-09-24 18:03 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-09-15 10:14 - 2015-09-21 20:03 - 00003900 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2015-09-14 18:01 - 2015-09-24 18:01 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log
2015-09-13 22:39 - 2015-09-13 22:39 - 00046080 _____ C:\Users\GlobalCZ\Downloads\predloha 14.9.2015.xls
2015-09-11 18:52 - 2015-09-13 11:40 - 00000000 ____D C:\Users\GlobalCZ\Downloads\Teorie.velkeho.tresku.S08
2015-09-11 08:32 - 2015-09-11 09:25 - 00000000 ____D C:\Users\GlobalCZ\Downloads\Teorie.velkeho.tresku.S07.WEB-DL.XviD.cz-iNG
2015-09-09 19:41 - 2015-09-02 02:25 - 03586560 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-09-09 19:41 - 2015-09-02 02:25 - 01382912 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-09-09 19:41 - 2015-08-27 08:36 - 03620736 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-09-09 19:41 - 2015-08-27 08:32 - 00608936 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2015-09-09 19:41 - 2015-08-27 08:04 - 21874688 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-09-09 19:41 - 2015-08-27 07:59 - 02880032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-09-09 19:41 - 2015-08-27 07:55 - 24594944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-09-09 19:41 - 2015-08-27 07:54 - 00541248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2015-09-09 19:41 - 2015-08-27 07:54 - 00365568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2015-09-09 19:41 - 2015-08-27 07:51 - 02350592 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2015-09-09 19:41 - 2015-08-27 07:51 - 01774592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2015-09-09 19:41 - 2015-08-27 07:49 - 01008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2015-09-09 19:41 - 2015-08-27 07:47 - 12503552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-09-09 19:41 - 2015-08-27 07:43 - 00826880 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-09-09 19:41 - 2015-08-27 07:43 - 00576000 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-09-09 19:41 - 2015-08-27 07:42 - 00596480 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2015-09-09 19:41 - 2015-08-27 07:42 - 00578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-09-09 19:41 - 2015-08-27 07:42 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.PicturePassword.dll
2015-09-09 19:41 - 2015-08-27 07:42 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\shacct.dll
2015-09-09 19:41 - 2015-08-27 07:23 - 19324416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-09-09 19:41 - 2015-08-27 07:23 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2015-09-09 19:41 - 2015-08-27 07:16 - 18806272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-09-09 19:41 - 2015-08-27 07:16 - 02153472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2015-09-09 19:41 - 2015-08-27 07:16 - 01612288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2015-09-09 19:41 - 2015-08-27 07:12 - 00650752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-09-09 19:41 - 2015-08-27 07:12 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-09-09 19:41 - 2015-08-27 07:11 - 00484352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2015-09-09 19:41 - 2015-08-27 07:11 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shacct.dll
2015-09-09 19:41 - 2015-08-27 07:09 - 11262464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-09-09 19:40 - 2015-09-02 03:20 - 00077400 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-09-09 19:40 - 2015-08-27 07:39 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2015-09-09 19:40 - 2015-08-27 07:08 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2015-09-09 09:55 - 2015-09-09 13:49 - 00000000 ____D C:\Users\GlobalCZ\Downloads\TBBT S06
2015-09-08 16:17 - 2015-09-08 16:18 - 27433790 _____ C:\Users\GlobalCZ\Desktop\Zuzka Maturitní práce.odt
2015-09-08 14:10 - 2015-09-08 14:11 - 22646583 _____ C:\Users\GlobalCZ\Downloads\Procesní listy k 7.9.2015.zip
2015-09-08 13:18 - 2015-09-08 13:18 - 00091200 _____ C:\Users\GlobalCZ\AppData\Local\GDIPFONTCACHEV1.DAT
2015-09-08 13:17 - 2015-09-08 13:17 - 25216107 _____ C:\Users\GlobalCZ\Downloads\MATURITNÍ PRÁCE.odt
2015-09-07 11:06 - 2015-09-07 11:17 - 00000000 ____D C:\Users\GlobalCZ\Downloads\Série 21
2015-09-06 21:31 - 2015-08-11 06:52 - 00069416 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2015-09-05 19:54 - 2015-09-05 19:54 - 00000000 ____D C:\$WINDOWS.~BT
2015-09-05 17:52 - 2015-09-05 17:52 - 00000000 ___HD C:\$Windows.~WS
2015-09-05 16:31 - 2015-09-05 17:52 - 19733696 _____ (Microsoft Corporation) C:\Users\GlobalCZ\Downloads\MediaCreationToolx64.exe
2015-09-05 16:27 - 2015-09-05 16:27 - 01473404 _____ C:\Users\GlobalCZ\Downloads\BootableUSB.zip
2015-09-05 16:27 - 2013-04-24 14:16 - 00000000 ____D C:\Users\GlobalCZ\Desktop\A Bootable USB
2015-09-02 19:28 - 2015-09-02 19:28 - 00014875 _____ C:\Users\GlobalCZ\Downloads\[CzT]Legenda_o_Jirim_a_drakovi_George_and_the_Dragon_2004_.torrent
2015-09-02 18:22 - 2015-09-02 18:22 - 00081772 _____ C:\Users\GlobalCZ\Downloads\[CzT]Avatar_1080p_.torrent
2015-09-02 18:21 - 2015-09-02 18:21 - 00070951 _____ C:\Users\GlobalCZ\Downloads\[CzT]Eragon_2006_CZ_EN_1080pHD_.torrent
2015-09-02 16:53 - 2015-09-06 20:23 - 04027000 _____ C:\Users\GlobalCZ\Downloads\Guardians.of.the.Galaxy.2014.1080p.BluRay.DTS.x264.CZ.4play.mkv
2015-09-02 12:02 - 2015-09-09 09:05 - 00000000 ____D C:\Users\GlobalCZ\Downloads\Big Bang theory CZ
2015-09-02 09:21 - 2015-09-02 14:48 - 00000000 ____D C:\Users\GlobalCZ\Downloads\Top Gear
2015-09-02 02:56 - 2015-09-02 07:44 - 00000000 ____D C:\Users\GlobalCZ\Downloads\Futurama CZ Komplet (1. - 8. série + futufilmy)
2015-09-02 00:04 - 2015-09-02 02:55 - 734386176 _____ C:\Users\GlobalCZ\Downloads\Medvídek (2007).avi
2015-09-01 21:24 - 2015-09-02 02:04 - 00000000 ____D C:\Users\GlobalCZ\Downloads\1. Séria
2015-09-01 20:17 - 2015-09-01 20:17 - 00017177 _____ C:\Users\GlobalCZ\Downloads\[CzT]Snehurka_a_sedm_trpasliku_Snow_White_and_the_Seven_Dwarfs_1937_CZ_.torrent
2015-09-01 20:11 - 2015-09-01 20:11 - 00085017 _____ C:\Users\GlobalCZ\Downloads\[CzT]Pacific_Rim_Utok_na_Zemi_Pacific_Rim_2013_CZ_1080pHD_.torrent
2015-09-01 19:50 - 2015-09-17 09:20 - 1835485184 _____ C:\Users\GlobalCZ\Downloads\Svet Zitrka hl film CZ.avi
2015-09-01 19:46 - 2015-09-17 14:32 - 00000000 ____D C:\Users\GlobalCZ\Downloads\Nedotknutelní
2015-09-01 19:44 - 2015-09-17 02:21 - 00000000 ____D C:\Users\GlobalCZ\Downloads\Thor.The.Dark.World.2013.1080p.BluRay.DTS.x264-HDMaNiAcS
2015-09-01 19:41 - 2015-09-18 13:30 - 00000000 ____D C:\Users\GlobalCZ\Downloads\Green Mile, The [1080p] (en,cz)
2015-09-01 19:37 - 2015-09-16 23:41 - 00000000 ____D C:\Users\GlobalCZ\Downloads\Tři mušketýři
2015-08-31 21:29 - 2015-08-31 21:29 - 00000000 ____D C:\Users\GlobalCZ\AppData\Roaming\Sun
2015-08-31 21:29 - 2015-08-31 21:29 - 00000000 ____D C:\Users\GlobalCZ\.oracle_jre_usage
2015-08-31 15:37 - 2015-09-15 10:17 - 00000000 ____D C:\Users\GlobalCZ\AppData\Local\Mozilla
2015-08-31 15:37 - 2015-08-31 15:37 - 00000000 ____D C:\Users\GlobalCZ\AppData\Roaming\Mozilla
2015-08-31 15:35 - 2015-08-31 15:37 - 41778720 _____ C:\Users\GlobalCZ\Downloads\Firefox Setup 40.0.2.exe
2015-08-31 09:40 - 2015-09-06 20:30 - 00000000 ____D C:\Users\GlobalCZ\Downloads\Top Gear S20 (CZ)(720p)
2015-08-31 09:39 - 2015-09-06 20:38 - 00000000 ____D C:\Users\GlobalCZ\Downloads\Topgear 19.serie
2015-08-31 09:27 - 2015-09-01 20:57 - 00000000 ____D C:\Users\GlobalCZ\Downloads\Suits S04 Season 4 Complete 480p HDTV x264 AAC E-Subs [GWC]
2015-08-30 05:26 - 2015-08-30 05:49 - 00000000 ____D C:\Users\GlobalCZ\Downloads\kravataci 3serie
2015-08-29 21:54 - 2015-08-30 00:38 - 00000000 ____D C:\Users\GlobalCZ\Downloads\Transformers Trilogy 1080p
2015-08-29 21:51 - 2015-08-29 22:29 - 00000000 ____D C:\Users\GlobalCZ\Downloads\Dr. House 1.-8. serie CZ
2015-08-28 22:23 - 2015-08-20 08:07 - 08019296 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-08-28 22:23 - 2015-08-20 08:06 - 00609592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2015-08-28 22:23 - 2015-08-20 08:02 - 22324656 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-08-28 22:23 - 2015-08-20 07:26 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2015-08-28 22:23 - 2015-08-20 07:21 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2015-08-28 22:23 - 2015-08-20 07:16 - 20857848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2015-08-28 22:23 - 2015-08-20 07:13 - 02235904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-08-28 22:23 - 2015-08-18 09:56 - 02498808 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2015-08-28 22:23 - 2015-08-18 09:55 - 00373072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2015-08-28 22:23 - 2015-08-18 09:54 - 01396064 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-08-28 22:23 - 2015-08-18 09:27 - 01771592 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2015-08-28 22:23 - 2015-08-18 09:24 - 00963920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2015-08-28 22:23 - 2015-08-18 09:13 - 00497664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll
2015-08-28 22:23 - 2015-08-18 09:13 - 00387584 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2015-08-28 22:23 - 2015-08-18 09:12 - 02225664 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-08-28 22:23 - 2015-08-18 09:07 - 02226688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2015-08-28 22:23 - 2015-08-18 09:04 - 01234944 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2015-08-28 22:23 - 2015-08-18 09:04 - 00859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2015-08-28 22:23 - 2015-08-18 08:59 - 01294336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcnwiz.dll
2015-08-28 22:23 - 2015-08-18 08:59 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnApi.dll
2015-08-28 22:23 - 2015-08-18 08:58 - 00187392 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2015-08-28 22:23 - 2015-08-18 08:58 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafWCN.dll
2015-08-28 22:23 - 2015-08-18 08:58 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWCN.dll
2015-08-28 22:23 - 2015-08-18 08:58 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnNetsh.dll
2015-08-28 22:23 - 2015-08-18 08:57 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2015-08-28 22:23 - 2015-08-18 08:56 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthRadioMedia.dll
2015-08-28 22:23 - 2015-08-18 08:55 - 02178560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-08-28 22:23 - 2015-08-18 08:54 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultsvc.dll
2015-08-28 22:23 - 2015-08-18 08:54 - 00247296 _____ C:\WINDOWS\system32\facecredentialprovider.dll
2015-08-28 22:23 - 2015-08-18 08:52 - 01888768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2015-08-28 22:23 - 2015-08-18 08:50 - 01795072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-08-28 22:23 - 2015-08-18 08:49 - 01061888 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2015-08-28 22:23 - 2015-08-18 08:49 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll
2015-08-28 22:23 - 2015-08-18 08:49 - 00246272 _____ (Microsoft Corporation) C:\WINDOWS\system32\PackageStateRoaming.dll
2015-08-28 22:23 - 2015-08-18 08:36 - 01226752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wcnwiz.dll
2015-08-28 22:23 - 2015-08-18 08:35 - 00100352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WcnApi.dll
2015-08-28 22:23 - 2015-08-18 08:35 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdWCN.dll
2015-08-28 22:23 - 2015-08-18 08:34 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfdprov.dll
2015-08-28 22:23 - 2015-08-18 08:29 - 01593344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2015-08-28 22:23 - 2015-08-18 08:26 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PackageStateRoaming.dll
2015-08-28 22:23 - 2015-08-18 06:44 - 00008847 _____ C:\WINDOWS\system32\ResPriHMImageList
2015-08-26 22:08 - 2015-09-20 19:02 - 00000000 ____D C:\Users\GlobalCZ\AppData\Roaming\vlc
2015-08-26 22:08 - 2015-08-26 22:08 - 00001143 _____ C:\Users\Public\Desktop\VLC media player.lnk
2015-08-26 22:08 - 2015-08-26 22:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2015-08-26 22:08 - 2015-08-26 22:08 - 00000000 ____D C:\Program Files (x86)\VideoLAN

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-09-24 18:05 - 2015-07-03 23:40 - 00000000 ____D C:\Program Files (x86)\Steam
2015-09-24 18:04 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-09-24 18:04 - 2015-07-04 15:12 - 00000000 ____D C:\Users\GlobalCZ\AppData\Roaming\TS3Client
2015-09-24 18:02 - 2015-07-11 11:04 - 00000000 ____D C:\Users\GlobalCZ\AppData\Roaming\Skype
2015-09-24 18:02 - 2015-07-04 16:43 - 00000000 ___DO C:\Users\GlobalCZ\SkyDrive
2015-09-24 18:00 - 2015-07-10 14:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-09-24 18:00 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\sru
2015-09-24 18:00 - 2015-07-10 11:05 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2015-09-24 18:00 - 2015-07-03 20:38 - 00000000 ____D C:\ProgramData\NVIDIA
2015-09-24 17:59 - 2015-07-11 11:04 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-09-23 21:16 - 2015-07-10 12:55 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-09-23 18:36 - 2015-07-06 13:51 - 00000000 ____D C:\Users\GlobalCZ\AppData\Roaming\uTorrent
2015-09-23 16:52 - 2015-07-03 20:27 - 00004210 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{6AC8C149-5310-4FFA-B4B5-A2E23507244A}
2015-09-22 22:04 - 2015-08-03 21:33 - 00000000 ____D C:\Users\GlobalCZ\Downloads\Windows 8.1 + crack
2015-09-21 21:59 - 2015-08-01 00:40 - 00000000 ____D C:\Users\GlobalCZ
2015-09-20 21:34 - 2015-07-03 20:28 - 00000000 ____D C:\Program Files (x86)\Google
2015-09-20 21:34 - 2015-07-03 20:27 - 00000000 ____D C:\Users\GlobalCZ\AppData\Local\Google
2015-09-20 20:26 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2015-09-20 19:03 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\NDF
2015-09-20 17:44 - 2015-07-03 20:56 - 00000000 ____D C:\Games
2015-09-20 16:57 - 2015-07-27 14:57 - 00000000 ____D C:\Users\GlobalCZ\AppData\Local\Battle.net
2015-09-20 16:57 - 2015-07-27 14:57 - 00000000 ____D C:\Program Files (x86)\Battle.net
2015-09-20 16:49 - 2015-07-04 15:12 - 00000000 ____D C:\Users\GlobalCZ\AppData\Local\TeamSpeak 3 Client
2015-09-17 17:17 - 2015-08-01 00:34 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-09-17 17:17 - 2015-07-03 20:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-09-16 10:39 - 2015-07-03 20:17 - 00000000 ____D C:\Users\GlobalCZ\AppData\Local\Packages
2015-09-15 18:12 - 2015-07-10 13:06 - 00812008 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-09-15 18:12 - 2015-07-10 13:06 - 00178152 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-09-15 13:24 - 2015-08-01 07:33 - 00002371 _____ C:\Users\GlobalCZ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-09-15 10:15 - 2015-08-17 13:21 - 00000000 ____D C:\Users\GlobalCZ\AppData\Local\Adobe
2015-09-13 06:32 - 2015-07-10 14:20 - 00346808 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-09-13 06:30 - 2015-07-10 18:05 - 00000000 ____D C:\Program Files\Windows Journal
2015-09-13 06:30 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-09-10 19:11 - 2015-07-27 15:06 - 00000000 ____D C:\Program Files (x86)\Hearthstone
2015-09-09 20:44 - 2015-07-28 20:49 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-09-09 20:42 - 2015-07-04 10:27 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-09-06 21:32 - 2015-07-03 20:41 - 00001454 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2015-09-06 16:57 - 2015-07-28 20:49 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2015-09-06 15:00 - 2015-08-01 00:53 - 01674756 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-09-06 15:00 - 2015-07-10 18:02 - 00710988 _____ C:\WINDOWS\system32\perfh005.dat
2015-09-06 15:00 - 2015-07-10 18:02 - 00141564 _____ C:\WINDOWS\system32\perfc005.dat
2015-09-05 19:54 - 2015-08-01 01:30 - 00000000 ___DC C:\WINDOWS\Panther
2015-09-05 19:54 - 2015-07-31 20:37 - 00262624 _____ C:\WINDOWS\diagerr.xml
2015-09-05 19:54 - 2015-07-31 20:37 - 00012123 _____ C:\WINDOWS\diagwrn.xml
2015-09-05 17:49 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\rescache
2015-09-05 04:15 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\oobe
2015-09-02 09:16 - 2015-08-17 23:17 - 217061671 _____ C:\Users\GlobalCZ\Downloads\Transformer.Age.Of.Extinction.2014.1080p.BluRay.DD.5.1.x264-LEGi0N (cz).mkv
2015-08-31 21:37 - 2015-07-24 15:20 - 00000000 ____D C:\ProgramData\Oracle
2015-08-31 21:30 - 2015-07-24 15:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-08-31 21:30 - 2015-07-24 15:20 - 00000000 ____D C:\Program Files (x86)\Java
2015-08-31 21:29 - 2015-07-24 15:20 - 00097888 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2015-08-31 14:36 - 2015-07-03 20:17 - 00000000 ____D C:\Users\GlobalCZ\AppData\Roaming\Adobe
2015-08-31 12:34 - 2015-07-06 20:36 - 00000000 ____D C:\Users\GlobalCZ\Documents\ProfileCache
2015-08-31 12:28 - 2015-07-06 20:36 - 00000000 ____D C:\Users\GlobalCZ\Documents\The Crew
2015-08-31 00:47 - 2015-08-01 07:43 - 11188880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2015-08-27 02:37 - 2015-07-03 20:39 - 01423120 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2015-08-27 02:37 - 2015-07-03 20:39 - 01316000 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
2015-08-27 02:36 - 2015-07-03 20:39 - 01756424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll
2015-08-27 02:36 - 2015-07-03 20:39 - 01710568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2015-08-26 18:37 - 2015-07-04 10:26 - 134753440 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-08-25 20:38 - 2015-08-01 07:44 - 00112760 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2015-08-25 20:38 - 2015-08-01 07:44 - 00105080 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2015-08-25 20:38 - 2015-08-01 07:43 - 17932648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll
2015-08-25 20:38 - 2015-08-01 07:43 - 15334976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2015-08-25 20:38 - 2015-08-01 07:43 - 12611824 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll
2015-08-25 20:38 - 2015-08-01 07:43 - 03480792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2015-08-25 20:38 - 2015-08-01 07:43 - 03074776 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2015-08-25 20:38 - 2015-08-01 07:43 - 00034044 _____ C:\WINDOWS\system32\nvinfo.pb
2015-08-25 20:38 - 2015-04-16 19:03 - 00204648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2015-08-25 20:38 - 2015-04-16 07:19 - 01567576 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco6420103.dll
2015-08-25 17:57 - 2015-08-01 08:36 - 06884984 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2015-08-25 17:57 - 2015-08-01 08:36 - 03496752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2015-08-25 17:57 - 2015-08-01 08:36 - 02558584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2015-08-25 17:57 - 2015-08-01 08:36 - 00937592 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2015-08-25 17:57 - 2015-08-01 08:36 - 00385144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2015-08-25 17:57 - 2015-08-01 08:36 - 00062584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2015-08-25 16:59 - 2015-08-23 22:05 - 00000000 ____D C:\Users\GlobalCZ\Documents\AutomaticSolution Software
2015-08-25 16:58 - 2015-07-03 23:54 - 00000000 ____D C:\Users\GlobalCZ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2015-08-25 15:02 - 2015-08-01 08:36 - 05165808 _____ C:\WINDOWS\system32\nvcoproc.bin

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-09-23 21:16

==================== End of FRST.txt ============================

Smazáno. Nastala nějaká změna?

Bohužel, stále mi to točí HDD na 100% :/

Udělejte kompletní sken MBAM: http://www.malwarebytes.org/mbam.php a dejte log. Předem nic nemažte.

zátěž HDD je teď hodně náhodná... Občas to hodí na 100% a třeba to po 10 minutách spadne ... Log doložím po dokončení skenu