VIRY.CZ

zdravim,byl bych rád za radu,co stim -děkuji

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:30-09-2015
Ran by jemin (administrator) on JEMIN-PC (01-10-2015 19:16:25)
Running from C:\Users\jemin\Desktop
Loaded Profiles: jemin (Available Profiles: jemin)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ABBYY) C:\Program Files (x86)\Common Files\ABBYY\FineReader\10.00\Licensing\Home\NetworkLicenseServer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(SlimWare Utilities, Inc.) C:\Program Files\SlimService\SlimServiceFactory.exe
(PS Media s.r.o.) C:\Windows\SysWOW64\ssins.exe
(DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(SlimWare Utilities, Inc.) C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Disc Soft Ltd) C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Google Inc.) C:\Users\jemin\AppData\Local\Temp\3582-490\GOOGLE~1.EXE
(Google Inc.) C:\Users\jemin\AppData\Local\Temp\3582-490\GOOGLE~2.EXE
(Google Inc.) C:\Users\jemin\AppData\Local\Temp\3582-490\GOOGLE~1.EXE
(Google Inc.) C:\Users\jemin\AppData\Local\Temp\3582-490\GOOGLE~2.EXE
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Google Inc.) C:\Users\jemin\AppData\Local\Temp\3582-490\GOOGLE~1.EXE
(Google Inc.) C:\Users\jemin\AppData\Local\Temp\3582-490\GOOGLE~2.EXE
() C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_64.exe
(Microsoft Corporation) C:\Windows\System32\pcaui.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-07] (Intel Corporation)
HKLM\...\Run: [MSC] => C:\Program Files\Microsoft Security Client\msseces.exe [1337000 2015-04-30] (Microsoft Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2634872 2015-08-27] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [Start WingMan Profiler] => C:\Program Files\Logitech\Gaming Software\LWEMon.exe [190536 2000-01-01] (Logitech Inc.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13876952 2000-01-01] (Realtek Semiconductor)
HKLM\...\Run: [3bd13f8af846694af836aa5a2c763ceb] => "C:\ProgramData\system32.exe" ..
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [334320 2015-10-01] ()
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2015-10-01] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
Winlogon\Notify\igfxcui: igfxdev.dll [X]
HKU\S-1-5-21-3158200304-2993081581-1989350980-1000\...\Run: [Sv�tky a v�ro**�<*>] => C:\Program Files (x86)\OKsoftware\Svátky a výročí\Vyroci.exe [ ] () <===== ATTENTION (Value Name with invalid characters)
HKU\S-1-5-21-3158200304-2993081581-1989350980-1000\...\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] => C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe [194608 2015-10-01] ()
HKU\S-1-5-21-3158200304-2993081581-1989350980-1000\...\Run: [HP Deskjet 3520 series (NET)] => C:\Program Files\HP\HP Deskjet 3520 series\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett-Packard Co.)
HKU\S-1-5-21-3158200304-2993081581-1989350980-1000\...\Run: [DAEMON Tools Pro Agent] => C:\Program Files (x86)\DAEMON Tools Pro\DTAgent.exe [3169312 2015-10-01] ()
HKU\S-1-5-21-3158200304-2993081581-1989350980-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [53736048 2015-08-07] (Skype Technologies S.A.)
HKU\S-1-5-21-3158200304-2993081581-1989350980-1000\...\Run: [SlimCleaner Plus] => C:\Program Files\SlimCleaner Plus\SlimCleanerPlus.exe [26169624 2015-09-08] (SlimWare Utilities, Inc.)
HKU\S-1-5-21-3158200304-2993081581-1989350980-1000\...\Run: [eeghnaujgi] => wscript.exe //B "C:\ProgramData\eeghnaujgi.vbs"
HKU\S-1-5-21-3158200304-2993081581-1989350980-1000\...\Run: [awmboplwtl] => wscript.exe //B "C:\ProgramData\awmboplwtl.vbs"
HKU\S-1-5-21-3158200304-2993081581-1989350980-1000\...\Run: [tmpF6E6] => wscript.exe //B "C:\Users\jemin\AppData\Roaming\tmpF6E6.tmp.vbs"
HKU\S-1-5-21-3158200304-2993081581-1989350980-1000\...\Run: [tmp3C12] => wscript.exe //B "C:\Users\jemin\AppData\Roaming\tmp3C12.tmp.vbs"
HKU\S-1-5-21-3158200304-2993081581-1989350980-1000\...\Run: [tmp5666] => wscript.exe //B "C:\Users\jemin\AppData\Roaming\tmp5666.tmp.vbs"
HKU\S-1-5-21-3158200304-2993081581-1989350980-1000\...\Run: [tmp2359] => wscript.exe //B "C:\Users\jemin\tmp2359.tmp.vbs"
HKU\S-1-5-21-3158200304-2993081581-1989350980-1000\...\Run: [tmp401D] => wscript.exe //B "C:\Users\jemin\tmp401D.tmp.vbs"
HKU\S-1-5-21-3158200304-2993081581-1989350980-1000\...\Run: [tmp78AB] => wscript.exe //B "C:\Users\jemin\tmp78AB.tmp.vbs"
HKU\S-1-5-21-3158200304-2993081581-1989350980-1000\...\Run: [tmp92FF] => wscript.exe //B "C:\Users\jemin\tmp92FF.tmp.vbs"
HKU\S-1-5-21-3158200304-2993081581-1989350980-1000\...\Run: [tmpB57B] => wscript.exe //B "C:\Users\jemin\tmpB57B.tmp.vbs"
HKU\S-1-5-21-3158200304-2993081581-1989350980-1000\...\Run: [tmpD24F] => wscript.exe //B "C:\Users\jemin\tmpD24F.tmp.vbs"
HKU\S-1-5-21-3158200304-2993081581-1989350980-1000\...\Run: [78da0422172bb1c4bf8f5b473fa4639a] => "C:\Users\jemin\AppData\Local\Temp\dorogomyi.exe" .. <===== ATTENTION
HKU\S-1-5-21-3158200304-2993081581-1989350980-1000\...\Run: [CO] => wscript.exe //B "C:\Users\jemin\AppData\Local\Temp\CO.vbs" <===== ATTENTION
HKU\S-1-5-21-3158200304-2993081581-1989350980-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\SysWOW64\CUCKOO~1.SCR [842752 2008-03-28] (3Planesoft)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-07-29] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-07-29] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-07-29] (Google)
ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43} => No File
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\GamePark klient 2.lnk [2014-03-22]
ShortcutTarget: GamePark klient 2.lnk -> C:\Program Files\GamePark2\gpcl.exe (Allstar Group, s.r.o.)
Startup: C:\Users\jemin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\3107e2cc85325510acbf81112a41804e.exe [2015-10-01] ()
Startup: C:\Users\jemin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\3bd13f8af846694af836aa5a2c763ceb.exe [2015-09-28] ()
Startup: C:\Users\jemin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\78da0422172bb1c4bf8f5b473fa4639a.exe [2015-09-30] ()
Startup: C:\Users\jemin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\awmboplwtl.vbs [2015-09-27] ()
Startup: C:\Users\jemin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\CO.vbs [2015-09-28] ()
Startup: C:\Users\jemin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\dorogomyi.exe [2015-09-30] ()
Startup: C:\Users\jemin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\eeghnaujgi.vbs [2015-09-27] ()
Startup: C:\Users\jemin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sledovat výstrahy inkoustu - HP Deskjet 3520 series (Síť).lnk [2014-05-21]
ShortcutTarget: Sledovat výstrahy inkoustu - HP Deskjet 3520 series (Síť).lnk -> C:\Program Files\HP\HP Deskjet 3520 series\Bin\HPStatusBL.dll (Hewlett-Packard Co.)
Startup: C:\Users\jemin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Vesmír na dlani.lnk [2014-03-28]
ShortcutTarget: Vesmír na dlani.lnk -> C:\Program Files (x86)\Noční obloha\vesmir.exe ()

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{D3772582-8A4C-49F2-A2DC-A95D5181C2B6}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-3158200304-2993081581-1989350980-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-3158200304-2993081581-1989350980-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-3158200304-2993081581-1989350980-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.seznam.cz/
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3158200304-2993081581-1989350980-1000 -> {1A366EDE-D70D-49EE-A453-A757CE160C68} URL = hxxps://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-3158200304-2993081581-1989350980-1000 -> {5630B555-ECD5-4CB2-89C5-14866469CFC3} URL = hxxp://search.centrum.cz/index.php?utm_source=ch-browser&utm_medium=IE-9&utm_content=searchbox&channel_id=custom-browser,IE-9&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3158200304-2993081581-1989350980-1000 -> {9BB47C17-9C68-4BB3-B188-DD9AF0FD2488} URL =
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2014-05-30] (Oracle Corporation)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-09-24] (Google Inc.)
BHO: Lišta Centrum.cz - pomocný objekt -> {C91BA35D-6516-489F-A203-2992ED9A4132} -> C:\Program Files (x86)\Centrum Holdings s.r.o\Lišta Centrum.cz\cenbho64.dll [2013-01-23] ()
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-05-30] (Oracle Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-09-24] (Google Inc.)
BHO-x32: Lišta Centrum.cz - pomocný objekt -> {C91BA35D-6516-489F-A203-2992ED9A4132} -> C:\Program Files (x86)\Centrum Holdings s.r.o\Lišta Centrum.cz\cenbho32.dll [2013-01-23] ()
BHO-x32: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\BingExt.dll [2012-01-25] (Microsoft Corporation.)
Toolbar: HKLM - Lišta Centrum.cz - {5D9C17C6-093D-43E5-BF3D-4A13D162AB74} - C:\Program Files (x86)\Centrum Holdings s.r.o\Lišta Centrum.cz\cenbho64.dll [2013-01-23] ()
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-09-24] (Google Inc.)
Toolbar: HKLM-x32 - Lišta Centrum.cz - {5D9C17C6-093D-43E5-BF3D-4A13D162AB74} - C:\Program Files (x86)\Centrum Holdings s.r.o\Lišta Centrum.cz\cenbho32.dll [2013-01-23] ()
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\BingExt.dll [2012-01-25] (Microsoft Corporation.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-09-24] (Google Inc.)
Toolbar: HKU\S-1-5-21-3158200304-2993081581-1989350980-1000 -> No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
Toolbar: HKU\S-1-5-21-3158200304-2993081581-1989350980-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-09-24] (Google Inc.)
DPF: HKLM-x32 {17492023-C23A-453E-A040-C7C580BBF700} hxxp://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=10.55.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll [2014-05-30] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.55.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2014-05-30] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-16] ( Microsoft Corporation)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-09-13] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-09-13] (NVIDIA Corporation)
FF Plugin-x32: @rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5 -> C:\Users\jemin\AppData\Roaming\Visan\plugins\npRLSecurePluginLayer.dll [2011-05-13] (RocketLife, LLP)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-02-05] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-06-29] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3158200304-2993081581-1989350980-1000: @rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5 -> C:\Users\jemin\AppData\Roaming\Visan\plugins\npRLSecurePluginLayer.dll [2011-05-13] (RocketLife, LLP)
FF Plugin HKU\S-1-5-21-3158200304-2993081581-1989350980-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\jemin\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-09-05] (Unity Technologies ApS)

Chrome:
=======
CHR Profile: C:\Users\jemin\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Users\jemin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-12-20]
CHR Extension: (Dokumenty Google) - C:\Users\jemin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-03-23]
CHR Extension: (Disk Google) - C:\Users\jemin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-03-23]
CHR Extension: (YouTube) - C:\Users\jemin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-03-23]
CHR Extension: (Vyhledávání Google) - C:\Users\jemin\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-03-23]
CHR Extension: (Tabulky Google) - C:\Users\jemin\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-12-20]
CHR Extension: (Dokumenty Google offline) - C:\Users\jemin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-09-04]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\jemin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-03-23]
CHR Extension: (Gmail) - C:\Users\jemin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-03-23]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ABBYY.Licensing.FineReader.Home.10.0; C:\Program Files (x86)\Common Files\ABBYY\FineReader\10.00\Licensing\Home\NetworkLicenseServer.exe [814344 2010-07-21] (ABBYY)
S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] ()
S2 BBSvc; C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\BBSvc.exe [234264 2015-09-30] () [File not signed]
S3 BBUpdate; C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\SeaPort.exe [281880 2015-10-01] () [File not signed]
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe [178960 2015-09-30] () [File not signed]
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1155192 2015-08-27] (NVIDIA Corporation)
S2 gupdate; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [185672 2015-09-30] () [File not signed]
S3 gupdatem; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [185672 2015-09-30] () [File not signed]
S3 gusvc; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [235504 2015-09-30] () [File not signed]
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-07] (Intel Corporation)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [319080 2000-01-01] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
S2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [252376 2015-10-01] () [File not signed]
S2 LMS; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [473560 2015-10-01] () [File not signed]
S3 Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [106328 2015-09-30] () [File not signed]
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [23816 2015-04-30] (Microsoft Corporation)
S3 NBService; C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe [815616 2015-09-30] () [File not signed]
R3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [366544 2015-04-30] (Microsoft Corporation)
S3 NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [313392 2015-10-01] () [File not signed]
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1872504 2015-08-27] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5544568 2015-08-27] (NVIDIA Corporation)
S3 odserv; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [482168 2015-09-30] () [File not signed]
S3 ose; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [186656 2015-09-30] () [File not signed]
S2 SkypeUpdate; C:\Program Files (x86)\Skype\Updater\Updater.exe [368768 2015-09-30] () [File not signed]
R2 SlimService; C:\Program Files\SlimService\SlimServiceFactory.exe [245016 2015-09-08] (SlimWare Utilities, Inc.)
R2 ssinstall; C:\Windows\SysWOW64\ssins.exe [2324216 2015-05-13] (PS Media s.r.o.)
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-10-13] (DEVGURU Co., LTD.)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5426448 2014-12-15] (TeamViewer GmbH)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 androidusb; C:\Windows\System32\Drivers\androidusb.sys [32768 2010-04-29] (Google Inc)
R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [21584 2013-02-19] ()
R1 avgtp; C:\Windows\system32\drivers\avgtpx64.sys [50464 2014-05-30] (AVG Technologies)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2014-06-28] (Disc Soft Ltd)
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28008 2013-08-07] (Intel Corporation)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [99288 2013-09-16] (Intel Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [280376 2015-03-04] (Microsoft Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [124568 2015-03-04] (Microsoft Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19576 2015-08-27] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [50472 2015-08-11] (NVIDIA Corporation)
S3 SWDUMon; C:\Windows\System32\DRIVERS\SWDUMon.sys [16056 2015-10-01] (SlimWare Utilities, Inc.)
S1 UsbCharger; C:\Windows\System32\DRIVERS\UsbCharger.sys [21584 2013-05-06] ()
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 cpuz136; \??\C:\Windows\TEMP\cpuz136\cpuz136_x64.sys [X]
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 gdrv; \??\C:\Windows\gdrv.sys [X]
S1 MpKsl561a97af; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{29CE705E-E86C-4B09-9E9E-6B47C8595B0B}\MpKsl561a97af.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-10-01 19:16 - 2015-10-01 19:16 - 00025892 _____ C:\Users\jemin\Desktop\FRST.txt
2015-10-01 19:15 - 2015-10-01 19:16 - 02192384 _____ (Farbar) C:\Users\jemin\Desktop\FRST64.exe
2015-10-01 19:15 - 2015-10-01 19:16 - 00000000 ____D C:\FRST
2015-10-01 19:10 - 2015-10-01 19:10 - 00001011 _____ C:\Users\jemin\Desktop\CCleaner.lnk
2015-10-01 19:10 - 2015-10-01 19:10 - 00000000 ____D C:\Users\jemin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-10-01 19:08 - 2015-10-01 19:08 - 00000540 _____ C:\Windows\PFRO.log
2015-10-01 19:08 - 2015-09-27 20:18 - 00014278 _____ C:\ProgramData\awmboplwtl.vbs
2015-10-01 19:08 - 2015-09-27 20:03 - 00014278 _____ C:\ProgramData\eeghnaujgi.vbs
2015-10-01 19:07 - 2015-10-01 19:07 - 00037031 _____ C:\ComboFix.txt
2015-10-01 19:06 - 2015-10-01 19:16 - 00000073 _____ C:\Windows\directx.sys
2015-10-01 18:51 - 2015-10-01 18:51 - 00350800 _____ C:\Windows\Minidump\100115-6474-01.dmp
2015-10-01 18:28 - 2015-10-01 18:51 - 01712128 _____ C:\Users\jemin\Desktop\adwcleaner_5.009.exe
2015-10-01 18:26 - 2015-10-01 19:08 - 00041472 _____ C:\Windows\svchost.com
2015-10-01 17:50 - 2015-10-01 17:50 - 00003216 _____ C:\Windows\System32\Tasks\{FB6429D6-6C14-4633-A83B-164E822229EA}
2015-09-30 17:40 - 2015-09-30 17:40 - 00003480 _____ C:\Windows\System32\Tasks\savhost
2015-09-29 21:07 - 2015-09-29 21:07 - 00014273 _____ C:\Users\jemin\tmpD24F.tmp.vbs
2015-09-29 21:07 - 2015-09-29 21:07 - 00014273 _____ C:\Users\jemin\tmpB57B.tmp.vbs
2015-09-29 15:27 - 2015-09-29 15:27 - 00014273 _____ C:\Users\jemin\tmp92FF.tmp.vbs
2015-09-29 15:27 - 2015-09-29 15:27 - 00014273 _____ C:\Users\jemin\tmp78AB.tmp.vbs
2015-09-29 15:25 - 2015-09-29 15:25 - 00014273 _____ C:\Users\jemin\tmp401D.tmp.vbs
2015-09-29 15:25 - 2015-09-29 15:25 - 00014273 _____ C:\Users\jemin\tmp2359.tmp.vbs
2015-09-28 16:30 - 2015-09-28 16:30 - 00000000 ____D C:\Users\jemin\Documents\KONAMI
2015-09-28 16:30 - 2015-09-28 16:30 - 00000000 ____D C:\ProgramData\KONAMI
2015-09-27 21:01 - 2015-10-01 18:26 - 00000000 ____D C:\Users\jemin\Documents\MSDCSC
2015-09-27 19:56 - 2015-09-29 20:25 - 00000000 ____D C:\ProgramData\Isolated Storage
2015-09-24 18:04 - 2015-09-24 18:04 - 00000615 _____ C:\Users\Public\Desktop\Pro Evolution Soccer 2016.lnk
2015-09-24 18:04 - 2015-09-24 18:04 - 00000615 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pro Evolution Soccer 2016.lnk
2015-09-24 09:04 - 2015-09-13 23:50 - 00574072 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2015-09-24 09:03 - 2015-09-14 02:29 - 42840368 _____ C:\Windows\system32\nvcompiler.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 37819000 _____ C:\Windows\SysWOW64\nvcompiler.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 22525560 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 18543736 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 16637528 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 14936264 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 13660648 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 12185344 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 11096696 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2015-09-24 09:03 - 2015-09-14 02:29 - 02940024 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 02627192 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 01898288 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6435598.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 01558832 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6435598.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 01105976 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 01074808 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 01064056 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 00986232 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 00944760 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 00943712 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 00512904 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 00421544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 00408184 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 00364152 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 00176904 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 00155792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 00150832 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 00128512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2015-09-24 08:01 - 2015-09-24 08:01 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2015-09-24 08:00 - 2015-09-24 08:00 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2015-09-24 08:00 - 2015-09-24 08:00 - 00000000 ____D C:\Program Files\Realtek
2015-09-24 08:00 - 2000-01-01 02:00 - 72113152 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat
2015-09-24 08:00 - 2000-01-01 02:00 - 07164176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 07087448 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64A.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 04467928 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2015-09-24 08:00 - 2000-01-01 02:00 - 03218800 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 02907864 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 02846424 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 02702040 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2015-09-24 08:00 - 2000-01-01 02:00 - 02014958 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2015-09-24 08:00 - 2000-01-01 02:00 - 01939800 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64A.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 01756264 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 01739992 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 01568360 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 01486952 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 01316056 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 00728680 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 00712296 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 00693352 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 00631000 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 00491112 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 00434960 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 00432744 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 00428648 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 00315736 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64A.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 00261464 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 00242792 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 00242792 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 00241768 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 00168816 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 00141584 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 00124176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 00109848 _____ C:\Windows\system32\AcpiServiceVnA64.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 00096568 _____ C:\Windows\system32\audioLibVc.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 00075024 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2015-09-24 07:54 - 2015-09-24 07:54 - 00000144 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2015-09-24 07:14 - 2015-09-24 07:14 - 00019486 _____ C:\Windows\system32\results.xml
2015-09-24 07:14 - 2015-09-24 07:14 - 00000451 _____ C:\Windows\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2015-09-23 18:58 - 2015-10-01 19:07 - 00000366 _____ C:\Windows\Tasks\SlimCleaner Plus (Scheduled Scan - jemin).job
2015-09-23 18:58 - 2015-09-23 18:58 - 00003024 _____ C:\Windows\System32\Tasks\SlimCleaner Plus (Scheduled Scan - jemin)
2015-09-23 18:12 - 2015-09-23 18:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2015-09-23 18:12 - 2015-09-23 18:12 - 00000000 ____D C:\Program Files\Logitech
2015-09-23 18:12 - 2015-09-23 18:12 - 00000000 ____D C:\Program Files\Common Files\Logitech
2015-09-23 18:10 - 2015-09-23 18:10 - 00000704 _____ C:\Users\Public\Desktop\Intel(R) HD Graphics Control Panel.lnk
2015-09-23 18:09 - 2000-01-01 02:00 - 22905344 _____ (Intel Corporation) C:\Windows\system32\igdfcl64.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 17837568 _____ (Intel Corporation) C:\Windows\SysWOW64\igdfcl32.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 12218376 _____ (Intel Corporation) C:\Windows\system32\igd10iumd64.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 11793480 _____ (Intel Corporation) C:\Windows\SysWOW64\igd10iumd32.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 10948400 _____ (Intel Corporation) C:\Windows\system32\igdumdim64.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 10474552 _____ (Intel Corporation) C:\Windows\SysWOW64\igdumdim32.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 08593920 _____ (Intel Corporation) C:\Windows\system32\ig75icd64.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 06587904 _____ (Intel Corporation) C:\Windows\SysWOW64\ig75icd32.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 04587608 _____ (Intel Corporation) C:\Windows\system32\igdusc64.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 04362344 _____ (Intel Corporation) C:\Windows\system32\Gfxv4_0.exe
2015-09-23 18:09 - 2000-01-01 02:00 - 04358760 _____ (Intel Corporation) C:\Windows\system32\Gfxv2_0.exe
2015-09-23 18:09 - 2000-01-01 02:00 - 03788728 _____ (Intel Corporation) C:\Windows\system32\Drivers\igdkmd64.sys
2015-09-23 18:09 - 2000-01-01 02:00 - 03628160 _____ (Intel Corporation) C:\Windows\SysWOW64\igdusc32.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 02027008 _____ (Intel Corporation) C:\Windows\system32\igfxcmjit64.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 01985536 _____ (Intel Corporation) C:\Windows\system32\igdrcl64.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 01784320 _____ (Intel Corporation) C:\Windows\SysWOW64\igdrcl32.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 01758208 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxcmjit32.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 01137120 _____ (Intel Corporation) C:\Windows\system32\iglhsip64.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 01133000 _____ (Intel Corporation) C:\Windows\SysWOW64\iglhsip32.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00959592 _____ (Intel Corporation) C:\Windows\system32\GfxUIEx.exe
2015-09-23 18:09 - 2000-01-01 02:00 - 00734720 _____ (Intel Corporation) C:\Windows\system32\MetroIntelGenericUIFramework.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00670208 _____ (Intel Corporation) C:\Windows\system32\igfxDH.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00545896 _____ (Intel Corporation) C:\Windows\system32\DPTopologyApp.exe
2015-09-23 18:09 - 2000-01-01 02:00 - 00545384 _____ (Intel Corporation) C:\Windows\system32\DPTopologyAppv2_0.exe
2015-09-23 18:09 - 2000-01-01 02:00 - 00530536 _____ (Intel Corporation) C:\Windows\system32\igfxEM.exe
2015-09-23 18:09 - 2000-01-01 02:00 - 00454760 _____ (Intel Corporation) C:\Windows\system32\igdmd64.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00454416 _____ (Intel(R) Corporation) C:\Windows\system32\Drivers\IntcDAud.sys
2015-09-23 18:09 - 2000-01-01 02:00 - 00399976 _____ (Intel Corporation) C:\Windows\system32\CustomModeApp.exe
2015-09-23 18:09 - 2000-01-01 02:00 - 00399464 _____ (Intel Corporation) C:\Windows\system32\CustomModeAppv2_0.exe
2015-09-23 18:09 - 2000-01-01 02:00 - 00384104 _____ (Intel Corporation) C:\Windows\system32\igfxTray.exe
2015-09-23 18:09 - 2000-01-01 02:00 - 00384000 _____ (Intel Corporation) C:\Windows\system32\igfxOSP.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00376832 _____ (Intel Corporation) C:\Windows\system32\IntelOpenCL64.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00366680 _____ (Intel Corporation) C:\Windows\SysWOW64\igdmd32.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00365568 _____ (Intel Corporation) C:\Windows\system32\igdbcl64.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00320512 _____ (Intel Corporation) C:\Windows\SysWOW64\igdbcl32.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00319080 _____ (Intel Corporation) C:\Windows\system32\igfxCUIService.exe
2015-09-23 18:09 - 2000-01-01 02:00 - 00286720 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelOpenCL32.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00280680 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe
2015-09-23 18:09 - 2000-01-01 02:00 - 00276480 _____ (Intel Corporation) C:\Windows\system32\igfxDI.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00255488 _____ C:\Windows\system32\igfxCPL.cpl
2015-09-23 18:09 - 2000-01-01 02:00 - 00252416 _____ (Intel Corporation) C:\Windows\system32\igfxLHM.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00247400 _____ (Intel Corporation) C:\Windows\system32\igfxHK.exe
2015-09-23 18:09 - 2000-01-01 02:00 - 00224256 _____ C:\Windows\system32\igdde64.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00220160 _____ (Intel Corporation) C:\Windows\system32\igfxDTCM.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00218848 _____ (Intel Corporation) C:\Windows\system32\iglhcp64.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00194664 _____ (Intel Corporation) C:\Windows\system32\igfxext.exe
2015-09-23 18:09 - 2000-01-01 02:00 - 00188496 _____ (Intel Corporation) C:\Windows\system32\igfxcmrt64.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00187844 _____ C:\Windows\system32\resTHA.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00185856 _____ C:\Windows\SysWOW64\igdde32.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00184832 _____ (Intel Corporation) C:\Windows\system32\igfx11cmrt64.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00183840 _____ (Intel Corporation) C:\Windows\SysWOW64\iglhcp32.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00183296 _____ (Intel Corporation) C:\Windows\system32\igfxCoIn_v4226.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00180644 _____ C:\Windows\system32\resELL.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00176500 _____ C:\Windows\system32\resRUS.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00162356 _____ C:\Windows\system32\resARA.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00162304 _____ C:\Windows\system32\igdail64.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00161812 _____ C:\Windows\system32\resHEB.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00161764 _____ C:\Windows\system32\resJPN.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00159096 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxcmrt32.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00157172 _____ C:\Windows\system32\resFRA.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00157156 _____ C:\Windows\system32\resHUN.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00155460 _____ C:\Windows\system32\resKOR.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00155364 _____ C:\Windows\system32\resITA.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00155364 _____ C:\Windows\system32\resDEU.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00155204 _____ C:\Windows\system32\resROM.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00155136 _____ (Intel Corporation) C:\Windows\SysWOW64\igfx11cmrt32.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00155092 _____ C:\Windows\system32\resESN.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00154728 _____ (Intel Corporation) C:\Windows\system32\difx64.exe
2015-09-23 18:09 - 2000-01-01 02:00 - 00154660 _____ C:\Windows\system32\resPLK.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00154516 _____ C:\Windows\system32\resSKY.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00154324 _____ C:\Windows\system32\resNLD.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00153764 _____ C:\Windows\system32\resPTB.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00153620 _____ C:\Windows\system32\resTRK.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00153604 _____ C:\Windows\system32\resCSY.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00153460 _____ C:\Windows\system32\resPTG.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00153060 _____ C:\Windows\system32\resFIN.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00152612 _____ C:\Windows\system32\resHRV.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00152164 _____ C:\Windows\system32\resSVE.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00152004 _____ C:\Windows\system32\resSLV.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00151060 _____ C:\Windows\system32\resNOR.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00150548 _____ C:\Windows\system32\resDAN.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00149236 _____ C:\Windows\system32\resENU.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00147460 _____ C:\Windows\system32\resCHT.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00146628 _____ C:\Windows\system32\resCHS.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00143872 _____ C:\Windows\SysWOW64\igdail32.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00086528 _____ C:\Windows\system32\igfxCUIServicePS.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00069632 _____ ( ) C:\Windows\system32\igfxDHLibv2_0.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00059392 _____ ( ) C:\Windows\system32\igfxDHLib.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00031448 _____ (Intel Corporation) C:\Windows\system32\igfxexps.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00030720 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxexps32.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00010752 _____ ( ) C:\Windows\system32\igfxDILib.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00010240 _____ ( ) C:\Windows\system32\igfxEMLibv2_0.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00010240 _____ ( ) C:\Windows\system32\igfxEMLib.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00010240 _____ ( ) C:\Windows\system32\igfxDILibv2_0.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00005120 _____ ( ) C:\Windows\system32\igfxLHMLibv2_0.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00005120 _____ ( ) C:\Windows\system32\igfxLHMLib.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00002564 _____ C:\Windows\system32\iglhxs64.vp
2015-09-23 18:08 - 2015-09-23 18:08 - 00000000 ____D C:\ProgramData\SlimWare Utilities, Inc
2015-09-23 18:07 - 2015-09-23 18:07 - 00002465 _____ C:\Users\Public\Desktop\SlimCleaner Plus.lnk
2015-09-23 18:07 - 2015-09-23 18:07 - 00000000 ____D C:\Users\Public\Documents\Downloaded Installers
2015-09-23 18:07 - 2015-09-23 18:07 - 00000000 ____D C:\Users\jemin\AppData\Local\Downloaded Installers
2015-09-23 18:07 - 2015-09-23 18:07 - 00000000 ____D C:\ProgramData\SlimWare Utilities Inc
2015-09-23 18:07 - 2015-09-23 18:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SlimCleaner Plus
2015-09-23 18:07 - 2015-09-23 18:07 - 00000000 ____D C:\Program Files\SlimService
2015-09-23 18:07 - 2015-09-23 18:07 - 00000000 ____D C:\Program Files\SlimCleaner Plus
2015-09-23 18:06 - 2015-09-30 18:02 - 01023064 _____ C:\Users\jemin\Desktop\SlimDrivers-setup.exe
2015-09-23 18:05 - 2015-10-01 19:08 - 00016056 _____ (SlimWare Utilities, Inc.) C:\Windows\system32\Drivers\SWDUMon.sys
2015-09-23 18:05 - 2015-10-01 19:08 - 00002836 _____ C:\Windows\System32\Tasks\SlimDrivers Startup
2015-09-23 18:05 - 2015-10-01 19:08 - 00000410 _____ C:\Windows\Tasks\SlimDrivers Startup.job
2015-09-23 18:05 - 2015-09-23 18:58 - 00000000 ____D C:\Users\jemin\AppData\Local\SlimWare Utilities Inc
2015-09-23 18:05 - 2015-09-23 18:07 - 00002483 _____ C:\Users\Public\Desktop\SlimDrivers.lnk
2015-09-23 17:37 - 2015-09-23 17:37 - 00002566 _____ C:\Windows\diagwrn.xml
2015-09-23 17:37 - 2015-09-23 17:37 - 00001908 _____ C:\Windows\diagerr.xml
2015-09-22 16:59 - 2015-09-22 16:59 - 00000147 _____ C:\Users\jemin\Desktop\Nový textový dokument.txt
2015-09-22 16:10 - 2015-09-22 16:10 - 00000000 ____D C:\Users\jemin\Desktop\kaja
2015-09-22 16:07 - 2015-09-22 16:07 - 00000000 ____D C:\Users\jemin\Documents\Electronic Arts
2015-09-22 15:47 - 2015-09-22 15:47 - 00001307 _____ C:\Users\jemin\Desktop\The Sims 4 Deluxe Edition.lnk
2015-09-22 15:47 - 2015-09-22 15:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GMT-MAX.ORG
2015-09-21 16:14 - 2015-07-15 01:35 - 00000000 ____D C:\Users\jemin\Desktop\3DMGAME-The.Sims.4.Crack.Only-3DM
2015-09-20 01:05 - 2015-09-30 18:02 - 06562656 _____ C:\Users\jemin\Downloads\FileZilla_3.14.0_win64-setup.exe
2015-09-15 13:46 - 2015-09-24 08:29 - 00000000 ____D C:\Users\jemin\Desktop\MalwareBytes.Anti-Malware.Premium.v2.1.6.1022.Incl.Keygen-AMPED
2015-09-14 12:26 - 2015-09-14 12:26 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-09-14 12:26 - 2015-09-14 12:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-10-01 19:15 - 2009-07-14 06:45 - 00020192 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-10-01 19:15 - 2009-07-14 06:45 - 00020192 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-10-01 19:14 - 2009-07-26 20:41 - 00669904 _____ C:\Windows\system32\perfh005.dat
2015-10-01 19:14 - 2009-07-26 20:41 - 00142062 _____ C:\Windows\system32\perfc005.dat
2015-10-01 19:14 - 2009-07-14 07:13 - 01587976 _____ C:\Windows\system32\PerfStringBackup.INI
2015-10-01 19:11 - 2014-03-18 17:11 - 01288938 _____ C:\Windows\WindowsUpdate.log
2015-10-01 19:10 - 2014-11-16 09:32 - 00000000 ____D C:\Program Files (x86)\CCleaner
2015-10-01 19:09 - 2014-03-18 17:15 - 00000948 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-10-01 19:08 - 2015-08-30 11:23 - 00005451 _____ C:\Windows\setupact.log
2015-10-01 19:08 - 2015-05-13 16:20 - 00000000 _____ C:\Windows\SysWOW64\sinstall.log
2015-10-01 19:08 - 2014-03-20 12:12 - 00000000 ____D C:\ProgramData\NVIDIA
2015-10-01 19:08 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-10-01 19:07 - 2015-08-09 06:36 - 00000000 ____D C:\Qoobox
2015-10-01 19:06 - 2009-07-14 04:34 - 00000215 _____ C:\Windows\system.ini
2015-10-01 19:00 - 2014-06-27 11:32 - 00000000 ____D C:\Users\jemin\Documents\antiviry
2015-10-01 18:51 - 2015-08-31 20:03 - 704750146 _____ C:\Windows\MEMORY.DMP
2015-10-01 18:51 - 2015-06-24 16:08 - 00000402 _____ C:\Windows\Tasks\HP Photo Creations Communicator.job
2015-10-01 18:51 - 2014-04-11 19:06 - 00000000 ____D C:\Windows\Minidump
2015-10-01 18:43 - 2015-04-16 12:58 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-10-01 18:40 - 2014-03-18 17:15 - 00000952 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-10-01 18:28 - 2014-05-10 17:37 - 00000000 ____D C:\AdwCleaner
2015-10-01 18:27 - 2014-03-20 16:53 - 00000000 ____D C:\Users\jemin\AppData\Roaming\Skype
2015-10-01 18:27 - 2014-03-20 15:14 - 00003138 _____ C:\Windows\System32\Tasks\FRAPS
2015-10-01 18:27 - 2014-03-20 15:14 - 00000000 ____D C:\Fraps
2015-10-01 18:26 - 2014-03-18 17:12 - 00000000 ____D C:\Users\jemin
2015-10-01 18:25 - 2014-03-20 16:53 - 00000000 ____D C:\ProgramData\Skype
2015-10-01 18:25 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\Globalization
2015-10-01 17:51 - 2014-05-11 07:47 - 00113880 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-10-01 17:49 - 2014-03-20 15:30 - 00000000 ____D C:\Users\jemin\AppData\Local\CrashDumps
2015-10-01 17:38 - 2014-05-08 14:35 - 00008776 _____ C:\Windows\SysWOW64\Cuckoo Clock.log
2015-10-01 15:50 - 2014-03-23 16:59 - 00003970 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{6E8F5136-D671-44DD-8634-E280556768FA}
2015-09-30 18:02 - 2015-07-18 14:25 - 02614864 _____ C:\Users\jemin\Documents\TrueCrypt-7.2.exe
2015-09-30 18:02 - 2015-05-10 07:15 - 06560744 _____ C:\Users\jemin\Documents\Setup_FreeConverter.exe
2015-09-30 18:02 - 2015-03-30 17:01 - 01618984 _____ C:\Users\jemin\Documents\cpu-z_1.71-setup-en.exe
2015-09-30 17:17 - 2014-11-11 20:03 - 00000000 ____D C:\Users\jemin\AppData\Roaming\FileZilla
2015-09-24 18:11 - 2015-04-15 12:07 - 00129697 _____ C:\Windows\DirectX.log
2015-09-24 09:04 - 2014-05-30 10:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-09-24 09:04 - 2014-03-18 17:27 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-09-24 08:45 - 2014-03-18 17:15 - 00000000 ____D C:\Users\jemin\AppData\Local\Google
2015-09-24 08:01 - 2014-03-18 17:19 - 00000000 ___HD C:\Program Files (x86)\Temp
2015-09-24 08:00 - 2014-03-18 17:18 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2015-09-23 17:37 - 2015-08-30 11:23 - 00000000 _____ C:\Windows\setuperr.log
2015-09-23 15:12 - 2014-11-18 16:56 - 00000000 ____D C:\Users\jemin\Documents\Assassin's Creed Unity
2015-09-22 16:04 - 2015-08-31 20:03 - 00000000 ____D C:\temp
2015-09-22 16:04 - 2014-10-20 18:13 - 00000000 ____D C:\Windows\SysWOW64\directx
2015-09-22 16:03 - 2014-03-20 15:08 - 00000000 ____D C:\ProgramData\Package Cache
2015-09-22 15:11 - 2015-04-16 12:58 - 00780488 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-09-22 15:11 - 2015-04-16 12:58 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-09-22 15:11 - 2015-04-16 12:58 - 00003852 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-09-21 16:27 - 2014-11-11 20:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
2015-09-21 16:27 - 2014-11-11 20:03 - 00000000 ____D C:\Program Files (x86)\FileZilla FTP Client
2015-09-19 20:54 - 2009-07-14 07:08 - 00032582 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2015-09-19 20:53 - 2014-03-18 17:15 - 00000000 ____D C:\ProgramData\Google
2015-09-19 20:53 - 2014-03-18 17:15 - 00000000 ____D C:\Program Files\Google
2015-09-19 20:53 - 2014-03-18 17:15 - 00000000 ____D C:\Program Files (x86)\Google
2015-09-19 20:51 - 2014-04-03 16:18 - 00000000 ____D C:\Users\jemin\AppData\Local\Adobe
2015-09-16 21:35 - 2014-03-18 17:15 - 00003948 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-09-16 21:35 - 2014-03-18 17:15 - 00003696 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-09-16 10:41 - 2015-04-27 17:46 - 00000000 ____D C:\Users\jemin\AppData\Roaming\Trine3
2015-09-16 10:32 - 2015-05-20 02:18 - 00000000 ____D C:\Users\jemin\Documents\The Witcher 3
2015-09-14 02:29 - 2015-08-13 18:27 - 15513208 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2015-09-14 02:29 - 2015-07-30 21:40 - 14635600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2015-09-14 02:29 - 2014-08-09 08:24 - 17082928 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2015-09-14 02:29 - 2014-08-09 08:24 - 12514824 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2015-09-14 02:29 - 2014-08-09 08:24 - 03530608 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2015-09-14 02:29 - 2014-03-20 12:12 - 00033079 _____ C:\Windows\system32\nvinfo.pb
2015-09-14 02:29 - 2014-03-20 12:11 - 03116160 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2015-09-14 00:09 - 2014-03-20 12:12 - 06884984 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2015-09-14 00:09 - 2014-03-20 12:12 - 03496056 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2015-09-14 00:09 - 2014-03-20 12:12 - 02558584 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2015-09-14 00:09 - 2014-03-20 12:12 - 00937776 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2015-09-14 00:09 - 2014-03-20 12:12 - 00385144 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2015-09-14 00:09 - 2014-03-20 12:12 - 00062584 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2015-09-11 14:17 - 2014-03-20 12:12 - 05231082 _____ C:\Windows\system32\nvcoproc.bin

==================== Files in the root of some directories =======

2014-03-20 19:44 - 2014-03-20 19:45 - 0000156 _____ () C:\Users\jemin\AppData\Roaming\default.rss
2014-10-08 16:49 - 2014-05-24 21:09 - 0042496 ___SH (Open Source Software community project) C:\Users\jemin\AppData\Roaming\pthreadGC2-w64.dll
2014-03-29 09:04 - 2015-08-14 16:32 - 0017920 _____ () C:\Users\jemin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-05-30 07:41 - 2014-06-02 06:48 - 0007618 _____ () C:\Users\jemin\AppData\Local\Resmon.ResmonCfg
2014-03-31 15:50 - 2014-03-31 15:50 - 0000080 _____ () C:\Users\jemin\AppData\Local\X-Plane Installer.prf
2014-03-31 15:28 - 2014-03-31 15:28 - 0000020 _____ () C:\Users\jemin\AppData\Local\x-plane_install_10.txt
2014-05-21 14:50 - 2014-05-21 14:50 - 0000057 _____ () C:\ProgramData\Ament.ini
2015-10-01 19:08 - 2015-09-27 20:18 - 0014278 _____ () C:\ProgramData\awmboplwtl.vbs
2015-09-24 08:01 - 2015-09-24 08:01 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2015-10-01 19:08 - 2015-09-27 20:03 - 0014278 _____ () C:\ProgramData\eeghnaujgi.vbs

Files to move or delete:
====================
C:\Program Files (x86)\OKsoftware\Svátky a výročí\Vyroci.exe
C:\ProgramData\awmboplwtl.vbs
C:\ProgramData\eeghnaujgi.vbs
C:\Users\jemin\tmp2359.tmp.vbs
C:\Users\jemin\tmp401D.tmp.vbs
C:\Users\jemin\tmp78AB.tmp.vbs
C:\Users\jemin\tmp92FF.tmp.vbs
C:\Users\jemin\tmpB57B.tmp.vbs
C:\Users\jemin\tmpD24F.tmp.vbs

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2015-09-21 13:53

==================== End of FRST.txt ============================

Zdravím!
Spusťte tuto utilitu:

Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

ydravim -log :

# AdwCleaner v5.009 - Logfile created 01/10/2015 at 20:38:08
# Updated 27/09/2015 by Xplode
# Database : 2015-09-30.1 [Server]
# Operating system : Windows 7 Ultimate Service Pack 1 (x64)
# Username : jemin - JEMIN-PC
# Running from : C:\Users\jemin\Desktop\adwcleaner_5.009.exe
# Option : Scan
# Support : http://toolslib.net/forum

***** [ Services ] *****

***** [ Folders ] *****

Folder Found : C:\Program Files\slimcleaner plus
Folder Found : C:\Program Files\slimservice
Folder Found : C:\ProgramData\slimware utilities inc
Folder Found : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\slimcleaner plus
Folder Found : C:\Users\jemin\AppData\Local\slimware utilities inc

***** [ Files ] *****

File Found : C:\Users\Public\Desktop\slimcleaner plus.lnk

***** [ Shortcuts ] *****

***** [ Scheduled tasks ] *****

Task Found : Adobe Flash Player Updater

***** [ Registry ] *****

Key Found : HKCU\Software\78da0422172bb1c4bf8f5b473fa4639a
Key Found : HKLM\SOFTWARE\Classes\Interface\{A8F7D0A5-7074-40B8-9BDC-1174BDD0A132}
Key Found : HKLM\SOFTWARE\Classes\Interface\{D14D64BC-A0E4-42E3-BB72-FB41EA43C198}
Key Found : HKLM\SOFTWARE\Classes\Interface\{DD1F043F-ABC8-4643-8B95-D2C5B22BB019}
Key Found : HKLM\SOFTWARE\Classes\Interface\{E3F3E8F9-F747-4DD6-BA6B-82A6CE1E0860}
Key Found : HKLM\SOFTWARE\Classes\Interface\{ED0B64D4-BF27-4521-AD27-190F49BF5EA7}
Key Found : HKLM\SOFTWARE\Classes\Interface\{023E9EC8-B147-40EB-B0B3-DF90618FB371}
Key Found : HKLM\SOFTWARE\Classes\Interface\{0522D9A4-4D57-437D-978D-E5B3B6C9005D}
Key Found : HKLM\SOFTWARE\Classes\Interface\{07F41522-AF7D-4F26-B394-094F059FDB8A}
Key Found : HKLM\SOFTWARE\Classes\Interface\{0C40F472-7407-4467-8914-1DEA7C326972}
Key Found : HKLM\SOFTWARE\Classes\Interface\{212E6D43-6062-492A-B8CC-144669FF11ED}
Key Found : HKLM\SOFTWARE\Classes\Interface\{224FE662-1E6D-4BC0-AEBB-9E2FB4057BE9}
Key Found : HKLM\SOFTWARE\Classes\Interface\{3A807417-B46D-4D37-8C9A-19AC6DE204F9}
Key Found : HKLM\SOFTWARE\Classes\Interface\{3CC60715-D6C5-429D-830E-43FA3F86C61D}
Key Found : HKLM\SOFTWARE\Classes\Interface\{4517D94C-19BA-46FA-BE66-2A30CEAC4A85}
Key Found : HKLM\SOFTWARE\Classes\Interface\{555D7146-94A8-4C94-AE76-C39CDC7F7705}
Key Found : HKLM\SOFTWARE\Classes\Interface\{59D188FA-757A-424E-8C93-F58FFD896BD7}
Key Found : HKLM\SOFTWARE\Classes\Interface\{8120D9D6-785C-4413-9C0C-DF2028C56FAD}
Key Found : HKLM\SOFTWARE\Classes\Interface\{823AE2EB-E62C-4847-B192-C99B91B92416}
Key Found : HKLM\SOFTWARE\Classes\Interface\{9B4F7CFE-987D-410E-A8E4-20182E0B3C24}
Key Found : HKLM\SOFTWARE\Classes\Interface\{9B9A45F4-18FC-484A-BACA-076D78273D8E}
Key Found : HKLM\SOFTWARE\Classes\Interface\{A6D54287-7939-466A-8579-92546D946C8C}
Key Found : HKLM\SOFTWARE\Classes\Interface\{A78EDAFB-926F-4D93-AB13-8232D7378EB1}
Key Found : HKCU\Software\SlimWare Utilities Inc
Key Found : HKLM\SOFTWARE\SlimWare Utilities Inc
Key Found : HKLM\SOFTWARE\SLIMWARE UTILITIES, INC.
Key Found : [x64] HKCU\Software\SlimWare Utilities Inc
Key Found : [x64] HKLM\SOFTWARE\SLIMWARE UTILITIES, INC.

***** [ Web browsers ] *****

########## EOF - C:\AdwCleaner\AdwCleaner[S13].txt - [3128 bytes] ##########

Neklikl jste na >Clean<. V logu je nesmazaný nález. Postup zopakujte.

# AdwCleaner v5.009 - Logfile created 01/10/2015 at 21:33:58
# Updated 27/09/2015 by Xplode
# Database : 2015-09-30.1 [Server]
# Operating system : Windows 7 Ultimate Service Pack 1 (x64)
# Username : jemin - JEMIN-PC
# Running from : C:\Users\jemin\Desktop\adwcleaner_5.009.exe
# Option : Scan
# Support : http://toolslib.net/forum

***** [ Services ] *****

***** [ Folders ] *****

Folder Found : C:\Program Files\slimcleaner plus
Folder Found : C:\Program Files\slimservice
Folder Found : C:\ProgramData\slimware utilities inc
Folder Found : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\slimcleaner plus
Folder Found : C:\Users\jemin\AppData\Local\slimware utilities inc

***** [ Files ] *****

File Found : C:\Users\Public\Desktop\slimcleaner plus.lnk

***** [ Shortcuts ] *****

***** [ Scheduled tasks ] *****

Task Found : Adobe Flash Player Updater

***** [ Registry ] *****

Key Found : HKCU\Software\78da0422172bb1c4bf8f5b473fa4639a
Key Found : HKLM\SOFTWARE\Classes\Interface\{A8F7D0A5-7074-40B8-9BDC-1174BDD0A132}
Key Found : HKLM\SOFTWARE\Classes\Interface\{D14D64BC-A0E4-42E3-BB72-FB41EA43C198}
Key Found : HKLM\SOFTWARE\Classes\Interface\{DD1F043F-ABC8-4643-8B95-D2C5B22BB019}
Key Found : HKLM\SOFTWARE\Classes\Interface\{E3F3E8F9-F747-4DD6-BA6B-82A6CE1E0860}
Key Found : HKLM\SOFTWARE\Classes\Interface\{ED0B64D4-BF27-4521-AD27-190F49BF5EA7}
Key Found : HKLM\SOFTWARE\Classes\Interface\{023E9EC8-B147-40EB-B0B3-DF90618FB371}
Key Found : HKLM\SOFTWARE\Classes\Interface\{0522D9A4-4D57-437D-978D-E5B3B6C9005D}
Key Found : HKLM\SOFTWARE\Classes\Interface\{07F41522-AF7D-4F26-B394-094F059FDB8A}
Key Found : HKLM\SOFTWARE\Classes\Interface\{0C40F472-7407-4467-8914-1DEA7C326972}
Key Found : HKLM\SOFTWARE\Classes\Interface\{212E6D43-6062-492A-B8CC-144669FF11ED}
Key Found : HKLM\SOFTWARE\Classes\Interface\{224FE662-1E6D-4BC0-AEBB-9E2FB4057BE9}
Key Found : HKLM\SOFTWARE\Classes\Interface\{3A807417-B46D-4D37-8C9A-19AC6DE204F9}
Key Found : HKLM\SOFTWARE\Classes\Interface\{3CC60715-D6C5-429D-830E-43FA3F86C61D}
Key Found : HKLM\SOFTWARE\Classes\Interface\{4517D94C-19BA-46FA-BE66-2A30CEAC4A85}
Key Found : HKLM\SOFTWARE\Classes\Interface\{555D7146-94A8-4C94-AE76-C39CDC7F7705}
Key Found : HKLM\SOFTWARE\Classes\Interface\{59D188FA-757A-424E-8C93-F58FFD896BD7}
Key Found : HKLM\SOFTWARE\Classes\Interface\{8120D9D6-785C-4413-9C0C-DF2028C56FAD}
Key Found : HKLM\SOFTWARE\Classes\Interface\{823AE2EB-E62C-4847-B192-C99B91B92416}
Key Found : HKLM\SOFTWARE\Classes\Interface\{9B4F7CFE-987D-410E-A8E4-20182E0B3C24}
Key Found : HKLM\SOFTWARE\Classes\Interface\{9B9A45F4-18FC-484A-BACA-076D78273D8E}
Key Found : HKLM\SOFTWARE\Classes\Interface\{A6D54287-7939-466A-8579-92546D946C8C}
Key Found : HKLM\SOFTWARE\Classes\Interface\{A78EDAFB-926F-4D93-AB13-8232D7378EB1}
Key Found : HKCU\Software\SlimWare Utilities Inc
Key Found : HKLM\SOFTWARE\SlimWare Utilities Inc
Key Found : HKLM\SOFTWARE\SLIMWARE UTILITIES, INC.
Key Found : [x64] HKCU\Software\SlimWare Utilities Inc
Key Found : [x64] HKLM\SOFTWARE\SLIMWARE UTILITIES, INC.

***** [ Web browsers ] *****

########## EOF - C:\AdwCleaner\AdwCleaner[S17].txt - [3128 bytes] ##########

Opět jste neklikl na >clean<. Výsledný log musí vypadat nějak takto: http://forum.viry.cz/viewtopic.php?f=13 ... 9#p1418630 . V logu musí jasně být >deleted<. Teprve pak je smazáno.

# AdwCleaner v5.009 - Logfile created 02/10/2015 at 01:09:36
# Updated 27/09/2015 by Xplode
# Database : 2015-09-30.1 [Server]
# Operating system : Windows 7 Ultimate Service Pack 1 (x64)
# Username : jemin - JEMIN-PC
# Running from : C:\Users\jemin\Desktop\adwcleaner_5.009.exe
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****

***** [ Folders ] *****

[-] Folder Deleted : C:\Program Files\slimcleaner plus
[-] Folder Deleted : C:\Program Files\slimservice
[-] Folder Deleted : C:\ProgramData\slimware utilities inc
[-] Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\slimcleaner plus
[-] Folder Deleted : C:\Users\jemin\AppData\Local\slimware utilities inc

***** [ Files ] *****

[-] File Deleted : C:\Users\Public\Desktop\slimcleaner plus.lnk

***** [ Shortcuts ] *****

***** [ Scheduled tasks ] *****

[-] Task Deleted : Adobe Flash Player Updater

***** [ Registry ] *****

[-] Key Deleted : HKCU\Software\78da0422172bb1c4bf8f5b473fa4639a
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A8F7D0A5-7074-40B8-9BDC-1174BDD0A132}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D14D64BC-A0E4-42E3-BB72-FB41EA43C198}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DD1F043F-ABC8-4643-8B95-D2C5B22BB019}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E3F3E8F9-F747-4DD6-BA6B-82A6CE1E0860}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{ED0B64D4-BF27-4521-AD27-190F49BF5EA7}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{023E9EC8-B147-40EB-B0B3-DF90618FB371}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0522D9A4-4D57-437D-978D-E5B3B6C9005D}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{07F41522-AF7D-4F26-B394-094F059FDB8A}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0C40F472-7407-4467-8914-1DEA7C326972}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{212E6D43-6062-492A-B8CC-144669FF11ED}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{224FE662-1E6D-4BC0-AEBB-9E2FB4057BE9}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3A807417-B46D-4D37-8C9A-19AC6DE204F9}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3CC60715-D6C5-429D-830E-43FA3F86C61D}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4517D94C-19BA-46FA-BE66-2A30CEAC4A85}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{555D7146-94A8-4C94-AE76-C39CDC7F7705}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{59D188FA-757A-424E-8C93-F58FFD896BD7}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8120D9D6-785C-4413-9C0C-DF2028C56FAD}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{823AE2EB-E62C-4847-B192-C99B91B92416}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9B4F7CFE-987D-410E-A8E4-20182E0B3C24}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9B9A45F4-18FC-484A-BACA-076D78273D8E}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A6D54287-7939-466A-8579-92546D946C8C}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A78EDAFB-926F-4D93-AB13-8232D7378EB1}
[-] Key Deleted : HKCU\Software\SlimWare Utilities Inc
[-] Key Deleted : HKLM\SOFTWARE\SlimWare Utilities Inc
[-] Key Deleted : HKLM\SOFTWARE\SLIMWARE UTILITIES, INC.
[!] Key Not Deleted : [x64] HKCU\Software\SlimWare Utilities Inc
[-] Key Deleted : [x64] HKLM\SOFTWARE\SLIMWARE UTILITIES, INC.

***** [ Web browsers ] *****

*************************

:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C7].txt - [3406 bytes] ##########

Teď je to OK. Dejte nový log RSIT.

Additional scan result of Farbar Recovery Scan Tool (x64) Version:30-09-2015
Ran by jemin (2015-10-02 08:04:26)
Running from C:\Users\jemin\Desktop
Windows 7 Ultimate Service Pack 1 (X64) (2014-03-18 15:12:06)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

Administrator (S-1-5-21-3158200304-2993081581-1989350980-500 - Administrator - Disabled)
Guest (S-1-5-21-3158200304-2993081581-1989350980-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3158200304-2993081581-1989350980-1002 - Limited - Enabled)
jemin (S-1-5-21-3158200304-2993081581-1989350980-1000 - Administrator - Enabled) => C:\Users\jemin

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Microsoft Security Essentials (Enabled - Up to date) {B7ECF8CD-0188-6703-DBA4-AA65C6ACFB0A}
AS: Microsoft Security Essentials (Enabled - Up to date) {0C8D1929-27B2-688D-E114-9117BD2BB1B7}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

3GP Player 1.1.7 (HKLM-x32\...\3GP Player_is1) (Version: - Bobabo)
3Planesoft Screensaver Manager 1.2 (HKLM-x32\...\3Planesoft Screensaver Manager_is1) (Version: 1.2 - 3Planesoft)
7-Zip 9.20 (HKLM-x32\...\7-Zip) (Version: - )
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
ABBYY FineReader 10 Home Edition (HKLM-x32\...\{F1000000-0012-0000-0000-074957833700}) (Version: 10.00.91.8953 - ABBYY)
Action Henk (HKLM-x32\...\Action Henk_is1) (Version: - )
Adobe Flash Player 19 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 19.0.0.185 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.12) - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.12 - Adobe Systems Incorporated)
Aktualizace NVIDIA 2.5.14.5 (Version: 2.5.14.5 - NVIDIA Corporation) Hidden
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISER_{0A1FAC46-B899-421D-B1A2-470896DC45DB}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISER_{5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISER_{E68DD413-B834-4923-8181-0A03B7555187}) (Version: - Microsoft)
Alternative Look for Triss (HKLM-x32\...\Alternative Look for Triss_is1) (Version: 1.0.0.0 - GOG.com)
Alternative Look for Yennefer (HKLM-x32\...\Alternative Look for Yennefer_is1) (Version: 1.0.0.0 - GOG.com)
AoA Audio Extractor (HKLM-x32\...\{D1725D54-279A-40C5-A70D-23C1785DB920}_is1) (Version: - AoAMedia.com)
Assassins Creed Unity Update v1.4 (HKLM-x32\...\QXNzYXNzaW5zQ3JlZWRVbml0eQ==_is1) (Version: 1 - )
Ballad Heroes - Neutral Gwent Card Set (HKLM-x32\...\Ballad Heroes - Neutral Gwent Card Set_is1) (Version: 1.0.0.0 - GOG.com)
Batman Arkham Knight (HKLM-x32\...\Batman Arkham Knight_is1) (Version: 1.0.4.5 - Релиз от R.G. Steamgames)
Battlefield 4 (HKLM-x32\...\{7BA57455-8B68-427C-9BF0-9028F0536514}) (Version: 6.0 - Black Box)
Beard and Hairstyle Set (HKLM-x32\...\Beard and Hairstyle Set_is1) (Version: 1.0.0.0 - GOG.com)
Bing Bar (HKLM-x32\...\{3611CA6C-5FCA-4900-A329-6A118123CCFC}) (Version: 7.1.355.0 - Microsoft Corporation)
BitTorrent (HKU\S-1-5-21-3158200304-2993081581-1989350980-1000\...\BitTorrent) (Version: 7.9.2.34312 - BitTorrent Inc.)
Broken Sword 5 (HKLM-x32\...\Broken Sword 5_is1) (Version: - Revolution Software Ltd)
Call of Duty Advanced Warfare (HKLM-x32\...\Call of Duty Advanced Warfare_is1) (Version: - )
Call of Duty Advanced Warfare Update 2 (HKLM-x32\...\Q2FsbG9mRHV0eUFkdmFuY2VkV2FyZmFyZQ==_is1) (Version: 1 - )
Call of Duty Ghosts (HKLM-x32\...\Q2FsbG9mRHV0eUdob3N0cw==_is1) (Version: 1 - )
Call of Duty(R) 2 (HKLM-x32\...\InstallShield_{D0A05794-48C2-4424-A15A-9F20FCFDD374}) (Version: 1.00.0000 - Activision)
Call of Duty(R) 2 (x32 Version: 1.00.0000 - Activision) Hidden
Call of Duty(R) 2 Patch 1.3 (HKLM-x32\...\{C13E90B0-4E1C-11DB-6784-0152EAA218BE}) (Version: 1.3 - Activision)
CCleaner (HKLM\...\CCleaner) (Version: 4.12 - Piriform)
CCleaner (HKLM-x32\...\CCleaner) (Version: 2.36 - Piriform)
CoD 2 čeština 1.1 (HKLM-x32\...\CoD 2 čeština_is1) (Version: - #'Pan[S[al!er!)
Crysis®3 (HKLM-x32\...\{4198AE83-A3C6-4C41-85C8-EC63E990696E}) (Version: 1.1.0.0 - Electronic Arts)
Cuckoo Clock 3D Screensaver 1.0 (HKLM-x32\...\Cuckoo Clock 3D Screensaver_is1) (Version: 1.0 - 3Planesoft)
DAEMON Tools Pro (HKLM-x32\...\DAEMON Tools Pro) (Version: 5.5.0.0387 - Disc Soft Ltd)
Dead Rising 3 (HKLM-x32\...\Dead Rising 3_is1) (Version: - )
Depth Hunter 2 - Deep Dive (HKLM-x32\...\Depth Hunter 2 - Deep Dive_is1) (Version: - )
Far Cry 4 Update v1.7 (HKLM-x32\...\RmFyQ3J5NA==_is1) (Version: 1 - )
FileZilla Client 3.14.0 (HKLM-x32\...\FileZilla Client) (Version: 3.14.0 - Tim Kosse)
Fraps (HKLM-x32\...\Fraps) (Version: - )
Futuremark SystemInfo (HKLM-x32\...\{BEE64C14-BEF1-4610-8A68-A16EAA47B882}) (Version: 4.15.0 - Futuremark Corporation)
Gameforge Live 2.0.5 (HKLM-x32\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 2.0.5 - Gameforge)
GamePark klient 2.0.9.0 (HKLM\...\{52E5D8A7-B129-4A29-AD4B-EBB749DCC3A3}_is1) (Version: 2.0.9.0 - GamePark)
Google Drive (HKLM-x32\...\{12ADFB82-D5A3-43E4-B2F4-FCD9B690315B}) (Version: 1.24.9931.5480 - Google, Inc.)
Google Earth (HKLM-x32\...\{817750FA-EC6A-485D-9901-0683AE6FFDF1}) (Version: 7.1.5.1557 - Google)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 45.0.2454.101 - Google Inc.)
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.6904.2028 - Google Inc.)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden
Grand Theft Auto IV (HKLM-x32\...\{579BA58C-F33D-4970-9953-B94B43768AC3}) (Version: 1.00.0000 - Rockstar Games)
Grand Theft Auto V (HKLM-x32\...\R3JhbmRUaGVmdEF1dG9W_is1) (Version: 1 - )
Hand of Fate (HKLM-x32\...\Hand of Fate_is1) (Version: - )
HP Deskjet 3520 series Nápověda (HKLM-x32\...\{D259C419-D776-4163-B27C-19722C555237}) (Version: 27.0.0 - Hewlett Packard)
HP Deskjet 3520 series Setup Guide (HKLM-x32\...\{AEEDCEB7-00B8-4BE1-B492-AB04803D5F1E}) (Version: 27.0.0 - Hewlett Packard)
HP FWUpdateEDO2 (HKLM-x32\...\{415FA9AD-DA10-4ABE-97B6-5051D4795C90}) (Version: 1.2.0.0 - Hewlett-Packard)
HP Photo Creations (HKU\S-1-5-21-3158200304-2993081581-1989350980-1000\...\HP Photo Creations) (Version: 1.0.0.18702 - HP)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HPDiagnosticAlert (x32 Version: 1.00.0001 - Microsoft) Hidden
Christmas Bells 3D Screensaver 1.0 (HKLM-x32\...\Christmas Bells 3D Screensaver_is1) (Version: 1.0 - 3Planesoft)
Ice Age Continental Drift (HKLM-x32\...\Ice Age Continental Drift_is1) (Version: - Martin)
ImagXpress (x32 Version: 7.0.74.0 - Nero AG) Hidden
IncrediMail (x32 Version: 6.6.0.5288 - IncrediMail) Hidden
IncrediMail 2.5 (HKLM-x32\...\IncrediMail) (Version: 6.6.0.5288 - IncrediMail Ltd.)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.15.1730 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4226 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.0.1016 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 2.5.0.19 - Intel Corporation)
Java 7 Update 55 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417055FF}) (Version: 7.0.550 - Oracle)
Kings Bounty Dark Side (HKLM-x32\...\Kings Bounty Dark Side_is1) (Version: - )
King's Bounty Dark Side (HKLM-x32\...\King's Bounty Dark Side_R.G. Gamblers_is1) (Version: - R.G. Gamblers, Fanfar)
K-Lite Mega Codec Pack 10.3.5 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 10.3.5 - )
Lišta Centrum.cz (HKLM-x32\...\{6533CC5B-8474-4E6E-A5DB-CAC502DA7C86}) (Version: 1.1.2.0 - Centrum Holdings s.r.o.)
Logitech Gaming Software 5.09 (HKLM\...\{84057C9C-2F85-4C67-A035-FD75FFE2DE88}) (Version: 5.09.131 - Logitech)
Malwarebytes Anti-Malware verze 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
Mariáš 3.1 (HKLM-x32\...\{BA58C040-B206-41BB-92CF-D0A2975477BB}) (Version: 3.1.0 - Ganttsoft)
Men of War: Assault Squad 2 Airborne (HKLM-x32\...\TWVub2ZXYXJBc3NhdWx0U3F1YWQy_is1) (Version: 1 - )
Metin2 (HKLM-x32\...\Metin2_is1) (Version: - Gameforge 4D GmbH)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{59E4543A-D49D-4489-B445-473D763C79AF}) (Version: 2.0.672.0 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.8.204.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{3C3D696B-0DB7-3C6D-A356-3DB8CE541918}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Mortal Kombat X Premium Edition v.1.0 (HKLM-x32\...\Mortal Kombat X Premium Edition_is1) (Version: - )
Mortal Kombat X Update 20150709 (HKLM-x32\...\TW9ydGFsS29tYmF0WA==_is1) (Version: 1 - )
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
My Program version 1.5 (HKLM-x32\...\My Program_is1) (Version: 1.5 - )
Need For Speed Rivals (HKLM-x32\...\{0657F865-25B6-4391-A3B5-9917CF291AB3}) (Version: 6.0 - Black Box)
Need for Speed Rivals Update v1.4 (HKLM-x32\...\TmVlZGZvclNwZWVkUml2YWxz_is1) (Version: 1 - )
Need for Speed™ Rivals (HKLM-x32\...\{E0A32336-AA27-4053-99B2-C3380B7B95AC}) (Version: 1.3.0.0 - Electronic Arts)
Nero 7 Ultra Edition (HKLM-x32\...\{4F2CE68F-EDBB-4592-BF07-5AC930A51029}) (Version: 7.02.6446 - Nero AG)
Nero Backup Drivers (HKLM\...\{D600D357-5CB9-4DE9-8FD4-14E208BD1970}) (Version: 1.0.10000.1.0 - Nero AG)
New Quest - Contract - Skellige's Most Wanted (HKLM-x32\...\New Quest - Contract: Skellige's Most Wanted_is1) (Version: 1.0.0.0 - GOG.com)
New Quest - Contract Missing Miners (HKLM-x32\...\New Quest - Contract Missing Miners_is1) (Version: 1.0.0.0 - GOG.com)
New Quest - Fool's Gold (HKLM-x32\...\New Quest - Fool's Gold_is1) (Version: 1.0.0.0 - GOG.com)
New Quest - Scavenger Hunt - Wolf School Gear (HKLM-x32\...\New Quest - Scavenger Hunt: Wolf School Gear_is1) (Version: 1.0.0.0 - GOG.com)
New Quest - Where the Cat and Wolf Play... (HKLM-x32\...\New Quest - Where the Cat and Wolf Play..._is1) (Version: 1.0.0.0 - GOG.com)
Noční obloha 1.5 (HKLM-x32\...\Noční obloha_is1) (Version: - )
Norpalla (HKLM\...\Norpalla) (Version: 2014.07.11.040549 - Norpalla) <==== ATTENTION
NVIDIA GeForce Experience 2.5.14.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.5.14.5 - NVIDIA Corporation)
NVIDIA Ovladač 3D Vision 355.98 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 355.98 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 355.98 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 355.98 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
Oddworld - New 'n' Tasty (HKLM-x32\...\1424782569_is1) (Version: 2.0.0.1 - GOG.com)
ON_OFF Charge 2 B13.0910.1 (HKLM-x32\...\InstallShield_{6B4ED6F7-BB88-4945-B0C6-01410E1BAC3A}) (Version: 1.00.0000 - GIGABYTE)
ON_OFF Charge 2 B13.0910.1 (x32 Version: 1.00.0000 - GIGABYTE) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Orca (HKLM-x32\...\{85F4CBCB-9BBC-4B50-A7D8-E1106771498D}) (Version: 3.1.3790.0000 - Microsoft Corporation)
Ori and the Blind Forest (HKLM-x32\...\Ori and the Blind Forest_is1) (Version: - )
Ovládací panel NVIDIA 355.98 (Version: 355.98 - NVIDIA Corporation) Hidden
Photo Notifier and Animation Creator (HKLM-x32\...\Photo Notifier and Animation Creator) (Version: 1.0.0.1009 - IncrediMail Ltd.)
Polda 6 verze 1.0 (HKLM-x32\...\Polda 6_is1) (Version: 1.0 - Centauri production)
Posel Smrti 3 (HKLM-x32\...\Posel Smrti 3_is1) (Version: 1.0 - TopQer, s.r.o.)
Princezna a žabák (HKLM-x32\...\{DE5ECBF6-8A4A-4855-98D0-D6576145EBFF}) (Version: 1.00.0000 - Disney Interactive Studios)
Pro Evolution Soccer 2016 (HKLM-x32\...\UHJvRXZvbHV0aW9uU29jY2VyMjAxNg==_is1) (Version: 1 - )
Program Killer (HKLM-x32\...\{0E93A023-62F0-44BE-ABCA-953AB1FA409B}) (Version: 1.0.0 - DOKSoft.com / IPKomarov.ru)
Project CARS Update v1.2 (HKLM-x32\...\UHJvamVjdENBUlM=_is1) (Version: 1 - )
QuadcoreM2 (HKLM-x32\...\QuadcoreM2 1.12.2012) (Version: 1.12.2012 - Quadcore Games)
QuadcoreM2 (x32 Version: 1.12.2012 - Quadcore Games) Hidden
Rainy Screensaver 2.2.17 (HKLM-x32\...\{EA94A9DF-0E66-4749-880A-637CDF37B61E}) (Version: - )
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.65.1025.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7503 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.51 - Piriform)
Resident Evil Revelations 2 (HKLM-x32\...\Resident Evil Revelations 2_is1) (Version: - )
Risen 3 - Titan Lords (HKLM-x32\...\Risen 3 - Titan Lords_is1) (Version: - Deep Silver)
Rockstar Games Social Club (HKLM-x32\...\{08B3869E-D282-424C-9AFC-870E04A4BA14}) (Version: 1.00.0000 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.5.8 - Rockstar Games)
Ryse Son of Rome (HKLM-x32\...\Ryse Son of Rome_is1) (Version: - )
Samsung Content Viewer (HKLM-x32\...\InstallShield_{980DDB3E-8957-4750-98EB-5D04F61CCEDC}) (Version: 1.0.2 - Samsung)
Samsung Content Viewer (x32 Version: 1.0.2 - Samsung) Hidden
Samsung Kies3 (HKLM-x32\...\InstallShield_{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.15041.2 - Samsung Electronics Co., Ltd.)
Samsung Kies3 (x32 Version: 3.2.15041.2 - Samsung Electronics Co., Ltd.) Hidden
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.49.0 - SAMSUNG Electronics Co., Ltd.)
Santa Claus 3D Screensaver 1.0 (HKLM-x32\...\Santa Claus 3D Screensaver_is1) (Version: 1.0 - 3Planesoft)
Seznam Instalátor (HKLM-x32\...\ssinstall) (Version: - Seznam.cz)
Sherlock Holmes Crimes and Punishments (HKLM-x32\...\Sherlock Holmes Crimes and Punishments_is1) (Version: - )
SHIELD Streaming (Version: 4.1.3000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.5.14.5 - NVIDIA Corporation) Hidden
Skellige Armor Set (HKLM-x32\...\Skellige Armor Set_is1) (Version: 1.0.0.0 - GOG.com)
Ski Challenge 15 (HKU\S-1-5-21-3158200304-2993081581-1989350980-1000\...\sc15-GAMETWIST_MAIN) (Version: - )
Skispringen 2007 (HKLM-x32\...\Skispringen 2007_0001) (Version: - )
Skype™ 7.8 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.8.102 - Skype Technologies S.A.)
SlimCleaner Plus (HKLM\...\{C66FE9B8-B7BC-4FBE-A8F9-BB979EFBA47F}) (Version: 2.2.2 - SlimWare Utilities, Inc.)
SlimDrivers (HKLM-x32\...\{746AB259-6474-4111-8966-1C62F9A6E063}) (Version: 2.3.1 - SlimWare Utilities, Inc.)
Sniper Elite 3 (HKLM-x32\...\U25pcGVyRWxpdGUz_is1) (Version: 1 - )
Studie vylepšování produktu HP Deskjet 3520 series (HKLM\...\{B7AED02F-7D1B-4806-831B-C06841A282C4}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
Super Ovladač (HKLM-x32\...\Super Ovladač_is1) (Version: 10.0 - Driver-Soft Inc.)
Svátky a výročí (HKLM-x32\...\{CB28705C-ED60-499A-90DE-E8BC41F75B65}) (Version: 2.09.0115 - Igor Gottwald - OKsoftware)
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.36897 - TeamViewer)
TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version: - TechPowerUp)
Temerian Armor Set (HKLM-x32\...\Temerian Armor Set_is1) (Version: 1.0.0.0 - GOG.com)
The Evil Within (HKLM-x32\...\The Evil Within_is1) (Version: - )
The Sims 4 Deluxe Edition version 1.0.732.20 Update 5 (HKLM-x32\...\The Sims 4 Deluxe Edition_is1) (Version: 1.0.732.20 Update 5 - GMT-MAX.ORG)
The Witcher 3: Wild Hunt - Alternative Look for Ciri (HKLM-x32\...\Alternative Look for Ciri_is1) (Version: 1.0.0.0 - GOG.com)
The Witcher 3: Wild Hunt - New Finisher Animations (HKLM-x32\...\New Finisher Animations_is1) (Version: 1.0.0.0 - GOG.com)
The Witcher 3: Wild Hunt (Not-cracked Repack) (HKLM-x32\...\The Witcher 3: Wild Hunt (Not-cracked Repack)_is1) (Version: - )
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.50 - Ghisler Software GmbH)
Toy Story 3 (HKLM-x32\...\{AAFD160A-2333-40D8-AA25-42D1989CA0F2}) (Version: 1.00.0000 - Disney Interactive Studios)
Trine 3 The Artifacts of Power (HKLM-x32\...\Trine 3 The Artifacts of Power_is1) (Version: - )
Unity Web Player (HKU\S-1-5-21-3158200304-2993081581-1989350980-1000\...\UnityWebPlayer) (Version: 4.5.4f1 - Unity Technologies ApS)
Unlocker 1.9.2 (HKLM\...\Unlocker) (Version: 1.9.2 - Cedrick Collomb)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Uplay (HKLM-x32\...\Uplay) (Version: 4.3 - Ubisoft)
VLC media player 2.1.3 (HKLM-x32\...\VLC media player) (Version: 2.1.3 - VideoLAN)
Vypínač na dobrou noc verze 2.0 (HKLM-x32\...\Vypínač na dobrou noc_is1) (Version: - )
WATCH_DOGS (HKLM-x32\...\Uplay Install 274) (Version: - Ubisoft)
WinRAR 5.00 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.00.0 - win.rar GmbH)
WinRAR 5.00 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.00.0 - win.rar GmbH)
Wolfenstein The Old Blood (HKLM-x32\...\Wolfenstein The Old Blood_is1) (Version: - )
Wolfenstein: The New Order Update 1 (HKLM-x32\...\V29sZmVuc3RlaW5UaGVOZXdPcmRlcg==_is1) (Version: 1 - )
Xilisoft Download YouTube Video (HKLM-x32\...\Xilisoft Download YouTube Video) (Version: 5.1.1.20131226 - Xilisoft)
Základní software zařízení HP Deskjet 3520 series (HKLM\...\{7EBD8BA7-DF64-4BF9-9BC1-B0D53984FC6E}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
Zkušební verze produktu Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISER) (Version: 12.0.6612.1000 - Microsoft Corporation)
Zombie Army Trilogy (HKLM-x32\...\Zombie Army Trilogy_is1) (Version: - )

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3158200304-2993081581-1989350980-1000_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation)

==================== Restore Points =========================

23-09-2015 18:05:31 Installed SlimDrivers
23-09-2015 18:08:13 SlimDrivers Installing Drivers
23-09-2015 18:11:59 SlimDrivers Installing Drivers
24-09-2015 07:26:51 SlimDrivers Installing Drivers
24-09-2015 07:38:06 Windows Update
24-09-2015 07:51:51 SlimDrivers Installing Drivers
24-09-2015 07:53:59 IIF_MSI
24-09-2015 07:55:19 SlimDrivers Installing Drivers
24-09-2015 07:57:46 Odstraněno Realtek High Definition Audio Driver
24-09-2015 08:00:37 Instalováno Realtek High Definition Audio Driver
24-09-2015 18:10:45 Nainstalováno rozhraní DirectX
27-09-2015 11:48:08 Windows Update
30-09-2015 14:26:39 Windows Update

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2015-10-01 19:05 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {1941AEF7-DF9D-4217-8D67-2F7659B66842} - System32\Tasks\{D27AFE4E-B181-4D0A-9FBC-C05DA6B64160} => pcalua.exe -a E:\FreeRapid-0.9u3\frd.exe -d E:\FreeRapid-0.9u3
Task: {1E7B4DAF-F5F3-47D0-A498-9289928F5684} - System32\Tasks\HP AR Program Upload - 15bdd154090248ff83bf738ef41d8acb0a8af20927154115b3f4bb34278b954e => C:\Program Files\HP\HP Deskjet 3520 series\bin\HPRewards.exe [2012-10-17] (TODO: <Company name>)
Task: {517F3191-92BA-4F67-8705-734550650116} - System32\Tasks\HPCustParticipation HP Deskjet 3520 series => C:\Program Files\HP\HP Deskjet 3520 series\Bin\HPCustPartic.exe [2012-10-17] (Hewlett-Packard Co.)
Task: {557BC1F0-85C2-4457-8C51-BAB17AAD538E} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-03-18] (Piriform Ltd)
Task: {5E502661-C251-457F-B0FA-8CAF52FB20EB} - System32\Tasks\HP AR Program Upload - ebd9bb931b784a29a946f5237ef49361000942cece6b438a93db3d0b7fc6e111 => C:\Program Files\HP\HP Deskjet 3520 series\bin\HPRewards.exe [2012-10-17] (TODO: <Company name>)
Task: {5F8E9919-F403-4E5B-AC2A-1793FC28D3D2} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-30] ()
Task: {64918761-A7A3-4CF6-9A83-AC5BBF40580D} - System32\Tasks\{73001685-F357-48A1-99C6-356222FF07ED} => pcalua.exe -a H:\Setup.exe -d H:\
Task: {64F87439-92E3-4E79-80C9-37B8496ABBEC} - System32\Tasks\HP AR Program Upload - ee281cd3164949909d054632e6dccc66fee3533cfade49c99672947277d7e396 => C:\Program Files\HP\HP Deskjet 3520 series\bin\HPRewards.exe [2012-10-17] (TODO: <Company name>)
Task: {6874E146-675C-4465-A470-025DE68F6074} - System32\Tasks\{55B5D951-DA1A-47CA-A5FA-7A51408516CE} => E:\jemin\animace\dreams aktivátor\Windows 7 DreamScene Activator 1.1.exe [2015-10-01] (The Windows Club)
Task: {7E77D404-BBBD-4245-8E3D-553687AEF778} - System32\Tasks\{F221DBD7-CF1E-4115-BE48-E3959564C6FB} => H:\Setup.exe
Task: {8FC84B15-C239-4530-A98E-57602B5F81FE} - System32\Tasks\Java Updater => C:\Users\jemin\AppData\Roaming\nircmd.exe
Task: {94DFC7C4-254F-4093-A383-C1F69E47AB9D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-30] ()
Task: {98926049-C0CE-499D-AF19-8A64FBDBD1FA} - System32\Tasks\FRAPS => C:\Fraps\fraps.exe [2015-10-01] ()
Task: {9EFD5EAA-8262-456C-9945-6821529DB8B5} - System32\Tasks\{19792CD0-F7CF-4B73-BDE8-0960E3D89A0D} => pcalua.exe -a H:\Setup.exe -d H:\
Task: {A3543FFF-2952-485C-8D2B-9C404D7B7956} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-09-30] ()
Task: {A922D12A-BF20-465A-BA59-08FB1B565A2A} - System32\Tasks\HP Photo Creations Communicator => C:\Users\jemin\AppData\Roaming\HP Photo Creations\Communicator.exe [2015-09-30] ()
Task: {B02A64E8-0A65-486F-9410-F6E5926388E9} - System32\Tasks\savhost => C:\Users\jemin\AppData\Local\Temp\tmpFFB7.tmp.exe <==== ATTENTION
Task: {BCB114CF-1799-48A7-8AC4-3B232B56B0B5} - System32\Tasks\{E3135F68-FF59-4CBF-80A4-A30959DBD722} => pcalua.exe -a "E:\jemin\Hry\Call of Duty 2\CallOfDuty2.exe" -d "E:\jemin\Hry\Call of Duty 2"
Task: {C673DF1B-732E-455C-975A-DD22B5636F78} - System32\Tasks\SlimCleaner Plus (Scheduled Scan - jemin) => C:\Program Files\SlimCleaner Plus\SlimCleanerPlus.exe
Task: {D0C843E2-B17B-4C18-9378-048B6E5BB715} - System32\Tasks\{C6242714-9FFA-4F3B-858C-0D95F2C9C642} => pcalua.exe -a H:\SETUP.EXE -d H:\
Task: {DC7B46BE-2B5D-4831-8EBF-3312594B6DAC} - System32\Tasks\SlimDrivers Startup => C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe [2015-08-19] (SlimWare Utilities, Inc.)
Task: {F10C09C5-604A-4000-A811-3DFB777B48D9} - System32\Tasks\{FB6429D6-6C14-4633-A83B-164E822229EA} => pcalua.exe -a C:\Windows\svchost.com -d "C:\Program Files (x86)\Malwarebytes Anti-Malware" -c "C:\PROGRA~2\MALWAR~1\mbam.exe"
Task: {FE0D20C1-BCDE-41E0-B819-8136411B500B} - System32\Tasks\{B9C5C637-D195-4826-B163-FC338A55A564} => E:\soft\Soft - Bosch Esitronic 2013\Esi2.exe

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\HP Photo Creations Communicator.job => C:\Users\jemin\AppData\Roaming\HP Photo Creations\Communicator.exe
Task: C:\Windows\Tasks\SlimCleaner Plus (Scheduled Scan - jemin).job => C:\Program Files\SlimCleaner Plus\SlimCleanerPlus.exe
Task: C:\Windows\Tasks\SlimDrivers Startup.job => C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe

==================== Loaded Modules (Whitelisted) ==============

2014-03-20 12:12 - 2015-09-14 00:09 - 00116344 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-09-16 14:12 - 2015-09-16 14:12 - 00043480 _____ () C:\Program Files (x86)\FileZilla FTP Client\fzshellext_64.dll
2015-09-29 15:36 - 2015-09-30 18:02 - 00214456 _____ () C:\Users\jemin\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\OAWrapper.exe
2015-09-19 20:52 - 2015-10-01 19:04 - 00351176 _____ () C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe
2015-04-01 12:25 - 2015-08-27 02:37 - 00011896 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData:{6C007200-6300-7500-3800-4F0036006F00}
AlternateDataStreams: C:\Users\All Users:{6C007200-6300-7500-3800-4F0036006F00}
AlternateDataStreams: C:\ProgramData\Application Data:{6C007200-6300-7500-3800-4F0036006F00}
AlternateDataStreams: C:\ProgramData\Data aplikací:{6C007200-6300-7500-3800-4F0036006F00}
AlternateDataStreams: C:\Users\jemin\AppData\Local\Temp:{4D006E00-6200-4A00-6600-730072007200}
AlternateDataStreams: C:\Users\jemin\AppData\Local\Temp:{51007100-4F00-6F00-5300-4F0072005900}
AlternateDataStreams: C:\Users\jemin\AppData\Local\Temp:{68005900-5000-5500-3600-31007A003200}
AlternateDataStreams: C:\Users\jemin\AppData\Local\Temp:{6C007200-6300-7500-3800-4F0036006F00}
AlternateDataStreams: C:\Users\jemin\AppData\Local\Temp:{78002F00-7800-4A00-5900-670073006400}
AlternateDataStreams: C:\Users\jemin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup:{51007100-4F00-6F00-5300-4F0072005900}
AlternateDataStreams: C:\Users\jemin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup:{6C007200-6300-7500-3800-4F0036006F00}

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

HKLM\...\exefile\open\command: C:\Windows\svchost.com "%1" %* <===== ATTENTION

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3158200304-2993081581-1989350980-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\jemin\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Program Killer.lnk => C:\Windows\pss\Program Killer.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^jemin^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^MyPC Backup.lnk => C:\Windows\pss\MyPC Backup.lnk.Startup
MSCONFIG\startupreg: GSplay.exe => D:\GSplay.exe

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{EC9F93CA-EAB4-4BA5-8439-06F1E85ADB9E}] => (Allow) D:\Games\Crysis 3\Bin32\Crysis3.exe
FirewallRules: [{FF96ED0C-31D5-48A0-8884-224972FBBE25}] => (Allow) D:\Games\Crysis 3\Bin32\Crysis3.exe
FirewallRules: [TCP Query User{926C15F9-B9E5-4E5A-A3C7-5750472C1E6E}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre7\bin\javaw.exe
FirewallRules: [UDP Query User{0C535B2A-95EF-48C7-940A-CC352591D8C3}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre7\bin\javaw.exe
FirewallRules: [TCP Query User{93E44B6C-F664-4F3E-8349-D6815A8DFE17}C:\program files (x86)\java\jre7\launch4j-tmp\frd.exe] => (Allow) C:\program files (x86)\java\jre7\launch4j-tmp\frd.exe
FirewallRules: [UDP Query User{0A1331B3-B10A-48E4-AE77-7AF6496A5413}C:\program files (x86)\java\jre7\launch4j-tmp\frd.exe] => (Allow) C:\program files (x86)\java\jre7\launch4j-tmp\frd.exe
FirewallRules: [{C29D7043-3F90-4CAD-AD0D-20429043E7A9}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{23586E04-0CE6-4129-9338-D5085F64A374}] => (Allow) D:\Games\Need for Speed Rivals\NFS14_x86.exe
FirewallRules: [{5EE8387E-9245-4C4F-BE84-3431A6AA675F}] => (Allow) D:\Games\Need for Speed Rivals\NFS14_x86.exe
FirewallRules: [{19B04F70-CB5C-4DC2-9928-088A254D0B5A}] => (Allow) D:\Games\Need for Speed Rivals\NFS14.exe
FirewallRules: [{450917FA-4471-4C79-9AC0-FAEC65D8209F}] => (Allow) D:\Games\Need for Speed Rivals\NFS14.exe
FirewallRules: [{B5E1DE1D-2ECB-44D1-BA69-E41DAFB2DD6B}] => (Allow) D:\Program Files (x86)\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe
FirewallRules: [{26107DBA-396A-4DBD-8131-97FF203E84F5}] => (Allow) D:\Program Files (x86)\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe
FirewallRules: [{9FBC0D03-DC3E-486D-978D-B52CBDD16742}] => (Allow) D:\Program Files (x86)\Rockstar Games\Grand Theft Auto IV\LaunchGTAIV.exe
FirewallRules: [{419F148D-477E-41A8-B71B-39628FB7F4EA}] => (Allow) D:\Program Files (x86)\Rockstar Games\Grand Theft Auto IV\LaunchGTAIV.exe
FirewallRules: [TCP Query User{6638CA37-529A-4308-9B92-3D1367B8695E}D:\program files (x86)\rockstar games\grand theft auto iv\gtaiv.exe] => (Block) D:\program files (x86)\rockstar games\grand theft auto iv\gtaiv.exe
FirewallRules: [UDP Query User{2F4BAC82-FA21-48D9-9CDF-2A5B0403F0E2}D:\program files (x86)\rockstar games\grand theft auto iv\gtaiv.exe] => (Block) D:\program files (x86)\rockstar games\grand theft auto iv\gtaiv.exe
FirewallRules: [TCP Query User{E1032D29-2390-40BA-A592-A9D1175B1E67}D:\program files (x86)\activision\call of duty 2\cod2mp_s.exe] => (Allow) D:\program files (x86)\activision\call of duty 2\cod2mp_s.exe
FirewallRules: [UDP Query User{EA1C51AF-BD92-47F8-A3DE-6BBDC30D258A}D:\program files (x86)\activision\call of duty 2\cod2mp_s.exe] => (Allow) D:\program files (x86)\activision\call of duty 2\cod2mp_s.exe
FirewallRules: [TCP Query User{0647F3C4-B230-4E23-837F-9C49F331CBC4}C:\users\jemin\gsplay\counter-strike\hl.exe] => (Block) C:\users\jemin\gsplay\counter-strike\hl.exe
FirewallRules: [UDP Query User{B29FF24F-D5E9-4B7F-94F5-91E4EEEA7A20}C:\users\jemin\gsplay\counter-strike\hl.exe] => (Block) C:\users\jemin\gsplay\counter-strike\hl.exe
FirewallRules: [TCP Query User{DC4D6EA1-9025-4B5C-A336-88326C026F7F}D:\program files (x86)\battlefield 4\bf4_x86.exe] => (Block) D:\program files (x86)\battlefield 4\bf4_x86.exe
FirewallRules: [UDP Query User{04BE027B-75E2-4C61-9774-A3C05864A30E}D:\program files (x86)\battlefield 4\bf4_x86.exe] => (Block) D:\program files (x86)\battlefield 4\bf4_x86.exe
FirewallRules: [TCP Query User{E9B865DB-7F1F-4482-85BA-3D6217996E0A}D:\program files (x86)\battlefield 4\bf4.exe] => (Block) D:\program files (x86)\battlefield 4\bf4.exe
FirewallRules: [UDP Query User{8F2E56A9-D064-4184-AF8E-011C84569BD1}D:\program files (x86)\battlefield 4\bf4.exe] => (Block) D:\program files (x86)\battlefield 4\bf4.exe
FirewallRules: [TCP Query User{674B0ADD-CA97-4B76-A3A2-F763924AA51D}D:\program files (x86)\mxgp\mxgp.exe] => (Block) D:\program files (x86)\mxgp\mxgp.exe
FirewallRules: [UDP Query User{E29E23DE-D12E-44A1-974E-8A710BEC5B4E}D:\program files (x86)\mxgp\mxgp.exe] => (Block) D:\program files (x86)\mxgp\mxgp.exe
FirewallRules: [TCP Query User{A9A381D7-2A47-4A32-BD24-FE9AD3A5A09D}C:\totalcmd\totalcmd64.exe] => (Allow) C:\totalcmd\totalcmd64.exe
FirewallRules: [UDP Query User{1BFE3E96-FCB6-4B05-B3BD-D3D03C0EAB15}C:\totalcmd\totalcmd64.exe] => (Allow) C:\totalcmd\totalcmd64.exe
FirewallRules: [TCP Query User{EF825647-5D12-470A-9457-ADDC535CFA4C}D:\program files (x86)\mortal kombat komplete edition\disccontentpc\mkke.exe] => (Block) D:\program files (x86)\mortal kombat komplete edition\disccontentpc\mkke.exe
FirewallRules: [UDP Query User{F9887EB4-44A5-430C-82E7-7AF0E4F930A7}D:\program files (x86)\mortal kombat komplete edition\disccontentpc\mkke.exe] => (Block) D:\program files (x86)\mortal kombat komplete edition\disccontentpc\mkke.exe
FirewallRules: [{70A14FFA-288A-4E1F-A900-FE69E1177396}] => (Allow) C:\Program Files\HP\HP Deskjet 3520 series\Bin\DeviceSetup.exe
FirewallRules: [{A0109409-1BB2-4935-9C4E-79DDD2829F52}] => (Allow) C:\Program Files\HP\HP Deskjet 3520 series\Bin\HPNetworkCommunicator.exe
FirewallRules: [{7B9E5515-D8C5-4C22-8A73-834C820F5543}] => (Allow) C:\Program Files\HP\HP Deskjet 3520 series\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [TCP Query User{72C76A57-4851-47A8-A9B4-D7E213094DB8}D:\program files (x86)\wolfenstein the new order\wolfneworder_x64.exe] => (Block) D:\program files (x86)\wolfenstein the new order\wolfneworder_x64.exe
FirewallRules: [UDP Query User{B1A1D8ED-9CC3-4F1F-A72A-1210A3529AEE}D:\program files (x86)\wolfenstein the new order\wolfneworder_x64.exe] => (Block) D:\program files (x86)\wolfenstein the new order\wolfneworder_x64.exe
FirewallRules: [{12BCDDCC-3BB7-4367-BAFF-6AA818C7EB99}] => (Allow) D:\Program Files\Ubisoft\WATCH_DOGS\bin\Watch_Dogs.exe
FirewallRules: [{F9636AD5-884A-44A5-BB24-727BEF15F7BB}] => (Allow) D:\Program Files\Ubisoft\WATCH_DOGS\bin\Watch_Dogs.exe
FirewallRules: [{199E15AF-AA9C-4863-B65C-290FE1901D82}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{682CE1A4-46B6-4F00-8D40-1256CED1A280}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [TCP Query User{DA40A7B5-2CF5-48A2-8BA1-796F9304B857}C:\program files\java\jre7\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre7\launch4j-tmp\frd.exe
FirewallRules: [UDP Query User{F1CF21AF-A2FC-48A3-9BAE-20514FE0F853}C:\program files\java\jre7\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre7\launch4j-tmp\frd.exe
FirewallRules: [TCP Query User{DF666C7D-7013-4AD6-9F55-DB3FF2FC49A9}C:\users\jemin\gsplay\csko\hl.exe] => (Block) C:\users\jemin\gsplay\csko\hl.exe
FirewallRules: [UDP Query User{33A94344-B2F7-4912-AF6A-7183D630529F}C:\users\jemin\gsplay\csko\hl.exe] => (Block) C:\users\jemin\gsplay\csko\hl.exe
FirewallRules: [{5B2538EA-6D22-4587-BB20-4CC0F23D5603}] => (Allow) C:\Program Files (x86)\IncrediMail\Bin\ImpCnt.exe
FirewallRules: [{07006C59-779E-4C7F-9C0B-46CBDB32BADB}] => (Allow) C:\Program Files (x86)\IncrediMail\Bin\ImpCnt.exe
FirewallRules: [TCP Query User{11A502A9-D141-4337-98C0-7F5FF26E0438}D:\program files (x86)\enemy front proper\bin32\enemyfront.exe] => (Block) D:\program files (x86)\enemy front proper\bin32\enemyfront.exe
FirewallRules: [UDP Query User{B6D65920-8EFD-44E4-9EAE-6BCE0DECD2C7}D:\program files (x86)\enemy front proper\bin32\enemyfront.exe] => (Block) D:\program files (x86)\enemy front proper\bin32\enemyfront.exe
FirewallRules: [{261E553F-8589-4B8E-BF46-F386B9465BED}] => (Allow) C:\Users\jemin\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{FD71908E-03D7-46E6-9B33-6040291186B8}] => (Allow) C:\Users\jemin\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [TCP Query User{269073B2-1617-4E64-9894-57937EE6AF9F}C:\program files (x86)\torntv.com\torntv downloader.exe] => (Allow) C:\program files (x86)\torntv.com\torntv downloader.exe
FirewallRules: [UDP Query User{1730FA74-8CF5-46ED-A351-AE24A30D9BBC}C:\program files (x86)\torntv.com\torntv downloader.exe] => (Allow) C:\program files (x86)\torntv.com\torntv downloader.exe
FirewallRules: [TCP Query User{B2B7F401-5ADA-412D-9863-CD0A3BD0806C}D:\program files (x86)\real boxing\binaries\win32\realboxing.exe] => (Block) D:\program files (x86)\real boxing\binaries\win32\realboxing.exe
FirewallRules: [UDP Query User{6E6A316E-857B-4F39-8E52-5F3C22F75A9E}D:\program files (x86)\real boxing\binaries\win32\realboxing.exe] => (Block) D:\program files (x86)\real boxing\binaries\win32\realboxing.exe
FirewallRules: [TCP Query User{E6576750-61E5-404B-86FA-58D414FB0CB1}C:\program files (x86)\quadcorem2\pack\core.bin] => (Allow) C:\program files (x86)\quadcorem2\pack\core.bin
FirewallRules: [UDP Query User{10CFF7EB-A58E-4FA6-B4C5-468171558AD4}C:\program files (x86)\quadcorem2\pack\core.bin] => (Allow) C:\program files (x86)\quadcorem2\pack\core.bin
FirewallRules: [TCP Query User{00F2E9F2-A2F1-437E-8A79-97D384C5A709}C:\users\jemin\desktop\spaceworldlauncher.exe] => (Allow) C:\users\jemin\desktop\spaceworldlauncher.exe
FirewallRules: [UDP Query User{4C330470-572B-47B7-AF1C-5103966A5B1D}C:\users\jemin\desktop\spaceworldlauncher.exe] => (Allow) C:\users\jemin\desktop\spaceworldlauncher.exe
FirewallRules: [TCP Query User{0DA20475-78B6-43B7-BA7C-602E13126D17}C:\users\jemin\desktop\nová složka\spaceworldlauncher.exe] => (Allow) C:\users\jemin\desktop\nová složka\spaceworldlauncher.exe
FirewallRules: [UDP Query User{D5DDED2A-B7ED-4D0E-BCED-72A7C97DE860}C:\users\jemin\desktop\nová složka\spaceworldlauncher.exe] => (Allow) C:\users\jemin\desktop\nová složka\spaceworldlauncher.exe
FirewallRules: [TCP Query User{6CABB974-EE02-4BE4-9056-443D1BB0FB5B}C:\users\jemin\desktop\spaceworld\spaceworldlauncher.exe] => (Allow) C:\users\jemin\desktop\spaceworld\spaceworldlauncher.exe
FirewallRules: [UDP Query User{114D6444-3AF3-41F9-88D6-5DF829CFA147}C:\users\jemin\desktop\spaceworld\spaceworldlauncher.exe] => (Allow) C:\users\jemin\desktop\spaceworld\spaceworldlauncher.exe
FirewallRules: [TCP Query User{7C6DB9DE-E974-4981-B6B7-4D76752A12A1}C:\users\jemin\desktop\spaceworld\zcsk.dll] => (Allow) C:\users\jemin\desktop\spaceworld\zcsk.dll
FirewallRules: [UDP Query User{048A9E14-77F3-48B0-90D8-0FE111E4D647}C:\users\jemin\desktop\spaceworld\zcsk.dll] => (Allow) C:\users\jemin\desktop\spaceworld\zcsk.dll
FirewallRules: [TCP Query User{AD284F0E-F35E-494D-ACE3-FAB78938F2E8}D:\program files (x86)\lichdom battlemage\bin64\lichdombattlemage.exe] => (Block) D:\program files (x86)\lichdom battlemage\bin64\lichdombattlemage.exe
FirewallRules: [UDP Query User{60D70A45-0FC4-40DE-9F3A-3292F3150836}D:\program files (x86)\lichdom battlemage\bin64\lichdombattlemage.exe] => (Block) D:\program files (x86)\lichdom battlemage\bin64\lichdombattlemage.exe
FirewallRules: [TCP Query User{F10050C1-7767-4A42-9B1A-90F0C2D690A9}D:\program files (x86)\lichdom battlemage\bin32\lichdombattlemage.exe] => (Block) D:\program files (x86)\lichdom battlemage\bin32\lichdombattlemage.exe
FirewallRules: [UDP Query User{25860A31-7CB2-45D8-9338-B8CD49F86F86}D:\program files (x86)\lichdom battlemage\bin32\lichdombattlemage.exe] => (Block) D:\program files (x86)\lichdom battlemage\bin32\lichdombattlemage.exe
FirewallRules: [{6F898F04-5959-4514-A10C-C0125F49B556}] => (Allow) C:\Program Files (x86)\GameforgeLive\gfl_client.exe
FirewallRules: [TCP Query User{5F448F50-63AC-4EFD-94EE-CDF53D1DF42C}D:\program files (x86)\the vanishing of ethan carter\binaries\win64\astronautsgame-win64-shipping.exe] => (Block) D:\program files (x86)\the vanishing of ethan carter\binaries\win64\astronautsgame-win64-shipping.exe
FirewallRules: [UDP Query User{8B174938-BA0E-47F1-B417-7B3F71B6C0F3}D:\program files (x86)\the vanishing of ethan carter\binaries\win64\astronautsgame-win64-shipping.exe] => (Block) D:\program files (x86)\the vanishing of ethan carter\binaries\win64\astronautsgame-win64-shipping.exe
FirewallRules: [TCP Query User{AB4EBAAA-9306-4B0E-99B3-00E6AF1D6AEC}D:\program files (x86)\alien isolation\ai.exe] => (Block) D:\program files (x86)\alien isolation\ai.exe
FirewallRules: [UDP Query User{A477087F-9B32-4134-B611-F88EE3601D03}D:\program files (x86)\alien isolation\ai.exe] => (Block) D:\program files (x86)\alien isolation\ai.exe
FirewallRules: [TCP Query User{AF18B9DC-D514-47EE-8260-EEADAE19D6F0}D:\attomey ---\metin2client.bin] => (Allow) D:\attomey ---\metin2client.bin
FirewallRules: [UDP Query User{728CAEFD-BD93-428B-9920-8ADDA1BEF20F}D:\attomey ---\metin2client.bin] => (Allow) D:\attomey ---\metin2client.bin
FirewallRules: [TCP Query User{C4EAF14C-B9C9-4EA0-9741-2EF205E01F62}D:\program files (x86)\far cry 4\bin\farcry4.exe] => (Block) D:\program files (x86)\far cry 4\bin\farcry4.exe
FirewallRules: [UDP Query User{C46FF19A-8F17-4DAB-A67B-6358AC4B0B3E}D:\program files (x86)\far cry 4\bin\farcry4.exe] => (Block) D:\program files (x86)\far cry 4\bin\farcry4.exe
FirewallRules: [TCP Query User{82FEE81E-5F40-4C6C-98FC-C6EA13FDE949}D:\program files (x86)\motorcycle club\motorcycleclub.exe] => (Block) D:\program files (x86)\motorcycle club\motorcycleclub.exe
FirewallRules: [UDP Query User{705A062D-89EE-4621-BD91-030D8F6CDF4A}D:\program files (x86)\motorcycle club\motorcycleclub.exe] => (Block) D:\program files (x86)\motorcycle club\motorcycleclub.exe
FirewallRules: [{F3AE242D-661A-4E38-8F94-8C02791F51BD}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{D9A754BC-0A38-47AD-A9EA-09CCBACA7012}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{D41201DB-7A7E-4864-87B2-5EAE7150DE55}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{3568D9B6-3947-40D6-A9B1-1A996409D579}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [TCP Query User{CA4AEBC9-9736-40E3-B0E7-5AE2D1E03DAF}D:\program files (x86)\dying light\dyinglightgame.exe] => (Block) D:\program files (x86)\dying light\dyinglightgame.exe
FirewallRules: [UDP Query User{E112A944-E494-4999-88B8-09AE7A5A5F96}D:\program files (x86)\dying light\dyinglightgame.exe] => (Block) D:\program files (x86)\dying light\dyinglightgame.exe
FirewallRules: [TCP Query User{AD894AE0-5682-4F01-BA3D-0B8273ED72C3}E:\program files (x86)\evolve\bin64_steamretail\evolve.exe] => (Block) E:\program files (x86)\evolve\bin64_steamretail\evolve.exe
FirewallRules: [UDP Query User{085B61B9-76E4-4F66-BFF9-B24784B0AF7C}E:\program files (x86)\evolve\bin64_steamretail\evolve.exe] => (Block) E:\program files (x86)\evolve\bin64_steamretail\evolve.exe
FirewallRules: [TCP Query User{FCBB2A40-EF8A-4DE2-A7F9-EA7C4D71298F}E:\gog games\oddworld - new 'n' tasty\nnt.exe] => (Block) E:\gog games\oddworld - new 'n' tasty\nnt.exe
FirewallRules: [UDP Query User{FB974618-CBCA-460E-98E2-4349CEFC001C}E:\gog games\oddworld - new 'n' tasty\nnt.exe] => (Block) E:\gog games\oddworld - new 'n' tasty\nnt.exe
FirewallRules: [TCP Query User{D406DDB8-736C-4D64-8A64-330F6EF33AA2}D:\program files (x86)\ride\ride.exe] => (Block) D:\program files (x86)\ride\ride.exe
FirewallRules: [UDP Query User{3280A57F-A878-498E-BF7A-225EE091E953}D:\program files (x86)\ride\ride.exe] => (Block) D:\program files (x86)\ride\ride.exe
FirewallRules: [TCP Query User{E1BF8BCD-FBB7-493F-A294-C611CC18DC09}D:\gog games\oddworld - new 'n' tasty\nnt.exe] => (Block) D:\gog games\oddworld - new 'n' tasty\nnt.exe
FirewallRules: [UDP Query User{A73E6B8D-3692-4768-84BA-659FC11A5CB1}D:\gog games\oddworld - new 'n' tasty\nnt.exe] => (Block) D:\gog games\oddworld - new 'n' tasty\nnt.exe
FirewallRules: [TCP Query User{1920DDF9-74F5-4569-B0B8-DE4C19B53EB9}E:\gta v\gta5.exe] => (Block) E:\gta v\gta5.exe
FirewallRules: [UDP Query User{DCF4F7B1-79DA-484E-83B7-72EDF3F39F1F}E:\gta v\gta5.exe] => (Block) E:\gta v\gta5.exe
FirewallRules: [TCP Query User{4810C075-7AD4-4C94-8320-570B0DED076E}E:\gta v\gta5.exe] => (Block) E:\gta v\gta5.exe
FirewallRules: [UDP Query User{065F9BC8-7506-4C69-87BE-C7ABC24CE5DE}E:\gta v\gta5.exe] => (Block) E:\gta v\gta5.exe
FirewallRules: [{DF64C37C-20E6-4F64-946D-5ECCAB993947}] => (Block) E:\gta v\gta5.exe
FirewallRules: [{F99BD298-6530-4933-810B-D5599C854F66}] => (Block) E:\gta v\gta5.exe
FirewallRules: [TCP Query User{C855F89A-25E7-4B42-B98D-70863034358E}E:\program files (x86)\assassins creed chronicles china\binaries\win32\accgame-win32-shipping.exe] => (Block) E:\program files (x86)\assassins creed chronicles china\binaries\win32\accgame-win32-shipping.exe
FirewallRules: [UDP Query User{A0FC2257-AF0C-4E11-9C01-E0F89CF57C08}E:\program files (x86)\assassins creed chronicles china\binaries\win32\accgame-win32-shipping.exe] => (Block) E:\program files (x86)\assassins creed chronicles china\binaries\win32\accgame-win32-shipping.exe
FirewallRules: [TCP Query User{DB118817-FEAE-49A1-88C6-3DD782080CAC}E:\program files (x86)\grand theft auto v\gta5.exe] => (Block) E:\program files (x86)\grand theft auto v\gta5.exe
FirewallRules: [UDP Query User{05423F75-F5CE-4EED-A2B0-7AD33121FE7F}E:\program files (x86)\grand theft auto v\gta5.exe] => (Block) E:\program files (x86)\grand theft auto v\gta5.exe
FirewallRules: [{29D20AC8-D110-4C19-96FF-C1D92CFB011A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{86F3B563-B3DD-46B2-98D1-95D3AAAE669D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{66C17E1B-DB18-4EEB-9203-D8D7BAA96E67}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{03C1F0DA-C2CD-4F71-9C3E-70A59C7848E8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{8C30C089-2041-4518-A4E8-74F3DDEAC6F7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{9E52B9A5-3321-42BB-96A1-16B9CD680120}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{4C2513FC-698E-4F86-87DF-57D6E5350437}E:\program files (x86)\pro evolution soccer 2016\pes2016.exe] => (Block) E:\program files (x86)\pro evolution soccer 2016\pes2016.exe
FirewallRules: [UDP Query User{F5AF05F2-DC6E-478E-B5B9-6EEB75CE4985}E:\program files (x86)\pro evolution soccer 2016\pes2016.exe] => (Block) E:\program files (x86)\pro evolution soccer 2016\pes2016.exe
FirewallRules: [{7E137C57-5BC6-449F-A3EF-3BAE266F7AA4}] => (Allow) C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe
FirewallRules: [{AA12EE51-A632-4F82-81DB-0839865EEDC6}] => (Allow) C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe
FirewallRules: [{8877150F-1A00-4508-A93E-F4D5EC882DBF}] => (Allow) C:\Program Files (x86)\IncrediMail\Bin\ImApp.exe
FirewallRules: [{BB4A0403-1BCF-434C-9AFF-85A98A96962A}] => (Allow) C:\Program Files (x86)\IncrediMail\Bin\ImApp.exe
FirewallRules: [{E06C7E46-8FEE-45F2-894B-38788B1585C7}] => (Allow) C:\ProgramData\system32.exe
FirewallRules: [{470C7554-8BFE-4234-86C3-63C61596846E}] => (Allow) C:\ProgramData\system32.exe
FirewallRules: [{716A58E4-C7D9-46A6-9A00-AF54DA0C79AD}] => (Allow) C:\Users\jemin\AppData\Local\Temp\Skype.exe
FirewallRules: [{704FDEAE-22E6-4204-AE3B-362E55281C8E}] => (Allow) C:\Users\jemin\AppData\Local\Temp\Skype.exe

==================== Faulty Device Manager Devices =============

Name: MpKsl561a97af
Description: MpKsl561a97af
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: MpKsl561a97af
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

==================== Event log errors: =========================

Application errors:
==================
Error: (10/02/2015 01:12:09 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: LMS.exe, verze: 9.5.10.1628, časové razítko: 0x51cb6db4
Název chybujícího modulu: LMS.exe, verze: 9.5.10.1628, časové razítko: 0x51cb6db4
Kód výjimky: 0xc0000005
Posun chyby: 0x00007672
ID chybujícího procesu: 0x92c
Čas spuštění chybující aplikace: 0xLMS.exe0
Cesta k chybující aplikaci: LMS.exe1
Cesta k chybujícímu modulu: LMS.exe2
ID zprávy: LMS.exe3

Error: (10/02/2015 01:08:08 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: COMMUN~1.EXE, verze: 0.0.0.0, časové razítko: 0x5580ae32
Název chybujícího modulu: COMMUN~1.EXE, verze: 0.0.0.0, časové razítko: 0x5580ae32
Kód výjimky: 0xc0000005
Posun chyby: 0x0000ee4d
ID chybujícího procesu: 0x15e8
Čas spuštění chybující aplikace: 0xCOMMUN~1.EXE0
Cesta k chybující aplikaci: COMMUN~1.EXE1
Cesta k chybujícímu modulu: COMMUN~1.EXE2
ID zprávy: COMMUN~1.EXE3

Error: (10/01/2015 09:59:08 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: COMMUN~1.EXE, verze: 0.0.0.0, časové razítko: 0x5580ae32
Název chybujícího modulu: COMMUN~1.EXE, verze: 0.0.0.0, časové razítko: 0x5580ae32
Kód výjimky: 0xc0000005
Posun chyby: 0x0000ee4d
ID chybujícího procesu: 0x5d8
Čas spuštění chybující aplikace: 0xCOMMUN~1.EXE0
Cesta k chybující aplikaci: COMMUN~1.EXE1
Cesta k chybujícímu modulu: COMMUN~1.EXE2
ID zprávy: COMMUN~1.EXE3

Error: (10/01/2015 09:16:51 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: COMMUN~1.EXE, verze: 0.0.0.0, časové razítko: 0x5580ae32
Název chybujícího modulu: COMMUN~1.EXE, verze: 0.0.0.0, časové razítko: 0x5580ae32
Kód výjimky: 0xc0000005
Posun chyby: 0x0000ee4d
ID chybujícího procesu: 0x1f88
Čas spuštění chybující aplikace: 0xCOMMUN~1.EXE0
Cesta k chybující aplikaci: COMMUN~1.EXE1
Cesta k chybujícímu modulu: COMMUN~1.EXE2
ID zprávy: COMMUN~1.EXE3

Error: (10/01/2015 07:32:35 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: LMS.exe, verze: 9.5.10.1628, časové razítko: 0x51cb6db4
Název chybujícího modulu: LMS.exe, verze: 9.5.10.1628, časové razítko: 0x51cb6db4
Kód výjimky: 0xc0000005
Posun chyby: 0x00007672
ID chybujícího procesu: 0x1004
Čas spuštění chybující aplikace: 0xLMS.exe0
Cesta k chybující aplikaci: LMS.exe1
Cesta k chybujícímu modulu: LMS.exe2
ID zprávy: LMS.exe3

Error: (10/01/2015 07:10:11 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: LMS.exe, verze: 9.5.10.1628, časové razítko: 0x51cb6db4
Název chybujícího modulu: LMS.exe, verze: 9.5.10.1628, časové razítko: 0x51cb6db4
Kód výjimky: 0xc0000005
Posun chyby: 0x00007672
ID chybujícího procesu: 0x1034
Čas spuštění chybující aplikace: 0xLMS.exe0
Cesta k chybující aplikaci: LMS.exe1
Cesta k chybujícímu modulu: LMS.exe2
ID zprávy: LMS.exe3

Error: (10/01/2015 07:08:12 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: NvStreamNetworkService.exe, verze: 4.1.1989.3729, časové razítko: 0x55db9fb4
Název chybujícího modulu: ntdll.dll, verze: 6.1.7601.18869, časové razítko: 0x556366f2
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000004f8b6
ID chybujícího procesu: 0xf78
Čas spuštění chybující aplikace: 0xNvStreamNetworkService.exe0
Cesta k chybující aplikaci: NvStreamNetworkService.exe1
Cesta k chybujícímu modulu: NvStreamNetworkService.exe2
ID zprávy: NvStreamNetworkService.exe3

Error: (10/01/2015 05:49:40 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Vyroci.exe, verze: 2.2006.112.92, časové razítko: 0x2a425e19
Název chybujícího modulu: KERNELBASE.dll, verze: 6.1.7601.18869, časové razítko: 0x556363bc
Kód výjimky: 0x0eedfade
Posun chyby: 0x0000c42d
ID chybujícího procesu: 0xfa0
Čas spuštění chybující aplikace: 0xVyroci.exe0
Cesta k chybující aplikaci: Vyroci.exe1
Cesta k chybujícímu modulu: Vyroci.exe2
ID zprávy: Vyroci.exe3

Error: (10/01/2015 05:47:01 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: COMMUN~1.EXE, verze: 0.0.0.0, časové razítko: 0x5580ae32
Název chybujícího modulu: COMMUN~1.EXE, verze: 0.0.0.0, časové razítko: 0x5580ae32
Kód výjimky: 0xc0000005
Posun chyby: 0x0000ee4d
ID chybujícího procesu: 0x492c
Čas spuštění chybující aplikace: 0xCOMMUN~1.EXE0
Cesta k chybující aplikaci: COMMUN~1.EXE1
Cesta k chybujícímu modulu: COMMUN~1.EXE2
ID zprávy: COMMUN~1.EXE3

Error: (10/01/2015 04:47:00 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: COMMUN~1.EXE, verze: 0.0.0.0, časové razítko: 0x5580ae32
Název chybujícího modulu: COMMUN~1.EXE, verze: 0.0.0.0, časové razítko: 0x5580ae32
Kód výjimky: 0xc0000005
Posun chyby: 0x0000ee4d
ID chybujícího procesu: 0x46c
Čas spuštění chybující aplikace: 0xCOMMUN~1.EXE0
Cesta k chybující aplikaci: COMMUN~1.EXE1
Cesta k chybujícímu modulu: COMMUN~1.EXE2
ID zprávy: COMMUN~1.EXE3

System errors:
=============
Error: (10/02/2015 08:03:10 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Intel(R) Capability Licensing Service Interface byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 0 milisekund: Restartovat službu.

Error: (10/02/2015 08:03:10 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Zavedení následujícího ovladače pro spouštění počítače nebo systému se nezdařilo:
UsbCharger

Error: (10/02/2015 08:03:08 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba SlimWare Utility Service Launcher neuspěla při spuštění v důsledku následující chyby:
%%2

Error: (10/02/2015 08:03:08 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Skype Updater bylo dosaženo časového limitu (30000 ms).

Error: (10/02/2015 08:03:08 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba BingBar Service neuspěla při spuštění v důsledku následující chyby:
%%1053

Error: (10/02/2015 08:03:08 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby BingBar Service bylo dosaženo časového limitu (30000 ms).

Error: (10/02/2015 01:12:08 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Intel(R) Management and Security Application Local Management Service neuspěla při spuštění v důsledku následující chyby:
%%1053

Error: (10/02/2015 01:12:08 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Intel(R) Management and Security Application Local Management Service bylo dosaženo časového limitu (30000 ms).

Error: (10/02/2015 01:12:08 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Intel(R) Dynamic Application Loader Host Interface Service neuspěla při spuštění v důsledku následující chyby:
%%1053

Error: (10/02/2015 01:12:08 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Intel(R) Dynamic Application Loader Host Interface Service bylo dosaženo časového limitu (30000 ms).

CodeIntegrity:
===================================
Date: 2015-10-01 19:04:58.595
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-10-01 19:04:58.580
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-10-01 19:04:58.564
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-10-01 19:04:58.549
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-08-09 06:41:03.549
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-08-09 06:41:03.502
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

==================== Memory info ===========================

Processor: Intel(R) Core(TM) i5-4670K CPU @ 3.40GHz
Percentage of memory in use: 19%
Total physical RAM: 8079.14 MB
Available physical RAM: 6493.98 MB
Total Virtual: 16156.48 MB
Available Virtual: 14489.03 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:167.58 GB) (Free:46.39 GB) NTFS
Drive d: () (Fixed) (Total:931.51 GB) (Free:189.75 GB) NTFS
Drive e: () (Fixed) (Total:931.51 GB) (Free:203.22 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 167.7 GB) (Disk ID: 7B8D3EAE)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=167.6 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 7B8D3ED1)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

========================================================
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 7B8D3ED9)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:30-09-2015
Ran by jemin (administrator) on JEMIN-PC (02-10-2015 08:04:11)
Running from C:\Users\jemin\Desktop
Loaded Profiles: jemin (Available Profiles: jemin)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ABBYY) C:\Program Files (x86)\Common Files\ABBYY\FineReader\10.00\Licensing\Home\NetworkLicenseServer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(PS Media s.r.o.) C:\Windows\SysWOW64\ssins.exe
(DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(SlimWare Utilities, Inc.) C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Disc Soft Ltd) C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe
(Microsoft Corporation) C:\Windows\SysWOW64\runonce.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
() C:\Users\jemin\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\OAWrapper.exe
(Microsoft Corporation) C:\Windows\System32\consent.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\consent.exe
(Microsoft Corporation) C:\Windows\System32\consent.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Microsoft Corporation) C:\Windows\System32\consent.exe
(Microsoft Corporation) C:\Windows\System32\consent.exe
(Microsoft Corporation) C:\Windows\System32\consent.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
() C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe
(Microsoft Corporation) C:\Windows\System32\pcaui.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-07] (Intel Corporation)
HKLM\...\Run: [MSC] => C:\Program Files\Microsoft Security Client\msseces.exe [1337000 2015-04-30] (Microsoft Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2634872 2015-08-27] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [Start WingMan Profiler] => C:\Program Files\Logitech\Gaming Software\LWEMon.exe [190536 2000-01-01] (Logitech Inc.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13876952 2000-01-01] (Realtek Semiconductor)
HKLM\...\Run: [3bd13f8af846694af836aa5a2c763ceb] => "C:\ProgramData\system32.exe" ..
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [417264 2015-10-02] ()
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [137528 2015-10-01] ()
HKLM-x32\...\Run: [] => [X]
Winlogon\Notify\igfxcui: igfxdev.dll [X]
HKU\S-1-5-21-3158200304-2993081581-1989350980-1000\...\Run: [Sv�tky a v�ro**�<*>] => C:\Program Files (x86)\OKsoftware\Svátky a výročí\Vyroci.exe [ ] () <===== ATTENTION (Value Name with invalid characters)
HKU\S-1-5-21-3158200304-2993081581-1989350980-1000\...\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] => C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe [194608 2015-10-01] ()
HKU\S-1-5-21-3158200304-2993081581-1989350980-1000\...\Run: [HP Deskjet 3520 series (NET)] => C:\Program Files\HP\HP Deskjet 3520 series\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett-Packard Co.)
HKU\S-1-5-21-3158200304-2993081581-1989350980-1000\...\Run: [DAEMON Tools Pro Agent] => C:\Program Files (x86)\DAEMON Tools Pro\DTAgent.exe [3169312 2015-10-01] ()
HKU\S-1-5-21-3158200304-2993081581-1989350980-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [53736048 2015-08-07] (Skype Technologies S.A.)
HKU\S-1-5-21-3158200304-2993081581-1989350980-1000\...\Run: [SlimCleaner Plus] => "C:\Program Files\SlimCleaner Plus\SlimCleanerPlus.exe" /minimize /boot
HKU\S-1-5-21-3158200304-2993081581-1989350980-1000\...\Run: [tmpF6E6] => wscript.exe //B "C:\Users\jemin\AppData\Roaming\tmpF6E6.tmp.vbs"
HKU\S-1-5-21-3158200304-2993081581-1989350980-1000\...\Run: [tmp3C12] => wscript.exe //B "C:\Users\jemin\AppData\Roaming\tmp3C12.tmp.vbs"
HKU\S-1-5-21-3158200304-2993081581-1989350980-1000\...\Run: [tmp5666] => wscript.exe //B "C:\Users\jemin\AppData\Roaming\tmp5666.tmp.vbs"
HKU\S-1-5-21-3158200304-2993081581-1989350980-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\SysWOW64\CUCKOO~1.SCR [842752 2008-03-28] (3Planesoft)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-07-29] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-07-29] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-07-29] (Google)
ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43} => No File
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\GamePark klient 2.lnk [2014-03-22]
ShortcutTarget: GamePark klient 2.lnk -> C:\Program Files\GamePark2\gpcl.exe (Allstar Group, s.r.o.)
Startup: C:\Users\jemin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\3107e2cc85325510acbf81112a41804e.exe [2015-10-01] ()
Startup: C:\Users\jemin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\3bd13f8af846694af836aa5a2c763ceb.exe [2015-09-28] ()
Startup: C:\Users\jemin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\78da0422172bb1c4bf8f5b473fa4639a.exe [2015-09-30] ()
Startup: C:\Users\jemin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\dorogomyi.exe [2015-09-30] ()
Startup: C:\Users\jemin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sledovat výstrahy inkoustu - HP Deskjet 3520 series (Síť).lnk [2014-05-21]
ShortcutTarget: Sledovat výstrahy inkoustu - HP Deskjet 3520 series (Síť).lnk -> C:\Program Files\HP\HP Deskjet 3520 series\Bin\HPStatusBL.dll (Hewlett-Packard Co.)
Startup: C:\Users\jemin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Vesmír na dlani.lnk [2014-03-28]
ShortcutTarget: Vesmír na dlani.lnk -> C:\Program Files (x86)\Noční obloha\vesmir.exe ()

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{D3772582-8A4C-49F2-A2DC-A95D5181C2B6}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-3158200304-2993081581-1989350980-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-3158200304-2993081581-1989350980-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-3158200304-2993081581-1989350980-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.seznam.cz/
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3158200304-2993081581-1989350980-1000 -> {1A366EDE-D70D-49EE-A453-A757CE160C68} URL = hxxps://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-3158200304-2993081581-1989350980-1000 -> {5630B555-ECD5-4CB2-89C5-14866469CFC3} URL = hxxp://search.centrum.cz/index.php?utm_source=ch-browser&utm_medium=IE-9&utm_content=searchbox&channel_id=custom-browser,IE-9&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3158200304-2993081581-1989350980-1000 -> {9BB47C17-9C68-4BB3-B188-DD9AF0FD2488} URL =
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2014-05-30] (Oracle Corporation)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-09-24] (Google Inc.)
BHO: Lišta Centrum.cz - pomocný objekt -> {C91BA35D-6516-489F-A203-2992ED9A4132} -> C:\Program Files (x86)\Centrum Holdings s.r.o\Lišta Centrum.cz\cenbho64.dll [2013-01-23] ()
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-05-30] (Oracle Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-09-24] (Google Inc.)
BHO-x32: Lišta Centrum.cz - pomocný objekt -> {C91BA35D-6516-489F-A203-2992ED9A4132} -> C:\Program Files (x86)\Centrum Holdings s.r.o\Lišta Centrum.cz\cenbho32.dll [2013-01-23] ()
BHO-x32: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\BingExt.dll [2012-01-25] (Microsoft Corporation.)
Toolbar: HKLM - Lišta Centrum.cz - {5D9C17C6-093D-43E5-BF3D-4A13D162AB74} - C:\Program Files (x86)\Centrum Holdings s.r.o\Lišta Centrum.cz\cenbho64.dll [2013-01-23] ()
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-09-24] (Google Inc.)
Toolbar: HKLM-x32 - Lišta Centrum.cz - {5D9C17C6-093D-43E5-BF3D-4A13D162AB74} - C:\Program Files (x86)\Centrum Holdings s.r.o\Lišta Centrum.cz\cenbho32.dll [2013-01-23] ()
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\BingExt.dll [2012-01-25] (Microsoft Corporation.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-09-24] (Google Inc.)
Toolbar: HKU\S-1-5-21-3158200304-2993081581-1989350980-1000 -> No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
Toolbar: HKU\S-1-5-21-3158200304-2993081581-1989350980-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-09-24] (Google Inc.)
DPF: HKLM-x32 {17492023-C23A-453E-A040-C7C580BBF700} hxxp://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=10.55.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll [2014-05-30] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.55.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2014-05-30] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-16] ( Microsoft Corporation)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-09-13] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-09-13] (NVIDIA Corporation)
FF Plugin-x32: @rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5 -> C:\Users\jemin\AppData\Roaming\Visan\plugins\npRLSecurePluginLayer.dll [2011-05-13] (RocketLife, LLP)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-02-05] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-06-29] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3158200304-2993081581-1989350980-1000: @rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5 -> C:\Users\jemin\AppData\Roaming\Visan\plugins\npRLSecurePluginLayer.dll [2011-05-13] (RocketLife, LLP)
FF Plugin HKU\S-1-5-21-3158200304-2993081581-1989350980-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\jemin\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-09-05] (Unity Technologies ApS)

Chrome:
=======
CHR Profile: C:\Users\jemin\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Users\jemin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-12-20]
CHR Extension: (Dokumenty Google) - C:\Users\jemin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-03-23]
CHR Extension: (Disk Google) - C:\Users\jemin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-03-23]
CHR Extension: (YouTube) - C:\Users\jemin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-03-23]
CHR Extension: (Vyhledávání Google) - C:\Users\jemin\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-03-23]
CHR Extension: (Tabulky Google) - C:\Users\jemin\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-12-20]
CHR Extension: (Dokumenty Google offline) - C:\Users\jemin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-09-04]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\jemin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-03-23]
CHR Extension: (Gmail) - C:\Users\jemin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-03-23]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ABBYY.Licensing.FineReader.Home.10.0; C:\Program Files (x86)\Common Files\ABBYY\FineReader\10.00\Licensing\Home\NetworkLicenseServer.exe [814344 2010-07-21] (ABBYY)
S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] ()
S2 BBSvc; C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\BBSvc.exe [234264 2015-09-30] () [File not signed]
S3 BBUpdate; C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\SeaPort.exe [281880 2015-10-01] () [File not signed]
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe [178960 2015-09-30] () [File not signed]
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1155192 2015-08-27] (NVIDIA Corporation)
S2 gupdate; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [185672 2015-09-30] () [File not signed]
S3 gupdatem; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [185672 2015-09-30] () [File not signed]
S3 gusvc; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [235504 2015-09-30] () [File not signed]
S2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-07] (Intel Corporation)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [319080 2000-01-01] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
S2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [252376 2015-10-01] () [File not signed]
S2 LMS; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [473560 2015-10-01] () [File not signed]
S3 Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [106328 2015-09-30] () [File not signed]
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [23816 2015-04-30] (Microsoft Corporation)
S3 NBService; C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe [815616 2015-09-30] () [File not signed]
R3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [366544 2015-04-30] (Microsoft Corporation)
S3 NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [313392 2015-10-01] () [File not signed]
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1872504 2015-08-27] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5544568 2015-08-27] (NVIDIA Corporation)
S3 odserv; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [482168 2015-09-30] () [File not signed]
S3 ose; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [186656 2015-09-30] () [File not signed]
S2 SkypeUpdate; C:\Program Files (x86)\Skype\Updater\Updater.exe [368768 2015-09-30] () [File not signed]
R2 ssinstall; C:\Windows\SysWOW64\ssins.exe [2324216 2015-05-13] (PS Media s.r.o.)
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-10-13] (DEVGURU Co., LTD.)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5426448 2014-12-15] (TeamViewer GmbH)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
S2 SlimService; "C:\Program Files\SlimService\SlimServiceFactory.exe" [X]

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 androidusb; C:\Windows\System32\Drivers\androidusb.sys [32768 2010-04-29] (Google Inc)
R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [21584 2013-02-19] ()
R1 avgtp; C:\Windows\system32\drivers\avgtpx64.sys [50464 2014-05-30] (AVG Technologies)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2014-06-28] (Disc Soft Ltd)
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28008 2013-08-07] (Intel Corporation)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [99288 2013-09-16] (Intel Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [280376 2015-03-04] (Microsoft Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [124568 2015-03-04] (Microsoft Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19576 2015-08-27] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [50472 2015-08-11] (NVIDIA Corporation)
S3 SWDUMon; C:\Windows\System32\DRIVERS\SWDUMon.sys [16056 2015-10-02] (SlimWare Utilities, Inc.)
S1 UsbCharger; C:\Windows\System32\DRIVERS\UsbCharger.sys [21584 2013-05-06] ()
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 cpuz136; \??\C:\Windows\TEMP\cpuz136\cpuz136_x64.sys [X]
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 gdrv; \??\C:\Windows\gdrv.sys [X]
S1 MpKsl561a97af; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{29CE705E-E86C-4B09-9E9E-6B47C8595B0B}\MpKsl561a97af.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-10-02 08:04 - 2015-10-02 08:04 - 00023936 _____ C:\Users\jemin\Desktop\FRST.txt
2015-10-02 01:10 - 2015-10-02 08:03 - 00016056 _____ (SlimWare Utilities, Inc.) C:\Windows\system32\Drivers\SWDUMon.sys
2015-10-02 01:10 - 2015-10-02 01:10 - 00000000 ____D C:\Users\jemin\AppData\Local\SlimWare Utilities Inc
2015-10-02 01:08 - 2015-10-02 01:10 - 01753600 _____ C:\Users\jemin\Desktop\adwcleaner_5.009.exe
2015-10-01 19:30 - 2015-10-01 19:30 - 00041472 _____ C:\Windows\svchost.com
2015-10-01 19:15 - 2015-10-02 08:04 - 02192384 _____ (Farbar) C:\Users\jemin\Desktop\FRST64.exe
2015-10-01 19:15 - 2015-10-02 08:04 - 00000000 ____D C:\FRST
2015-10-01 19:10 - 2015-10-01 19:10 - 00001011 _____ C:\Users\jemin\Desktop\CCleaner.lnk
2015-10-01 19:10 - 2015-10-01 19:10 - 00000000 ____D C:\Users\jemin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-10-01 19:08 - 2015-10-02 01:10 - 00003782 _____ C:\Windows\PFRO.log
2015-10-01 19:07 - 2015-10-01 19:07 - 00037031 _____ C:\ComboFix.txt
2015-10-01 19:06 - 2015-10-02 08:04 - 00000035 _____ C:\Windows\directx.sys
2015-10-01 18:51 - 2015-10-01 18:51 - 00350800 _____ C:\Windows\Minidump\100115-6474-01.dmp
2015-10-01 17:50 - 2015-10-01 17:50 - 00003216 _____ C:\Windows\System32\Tasks\{FB6429D6-6C14-4633-A83B-164E822229EA}
2015-09-30 17:40 - 2015-09-30 17:40 - 00003480 _____ C:\Windows\System32\Tasks\savhost
2015-09-28 16:30 - 2015-09-28 16:30 - 00000000 ____D C:\Users\jemin\Documents\KONAMI
2015-09-28 16:30 - 2015-09-28 16:30 - 00000000 ____D C:\ProgramData\KONAMI
2015-09-27 21:01 - 2015-10-01 18:26 - 00000000 ____D C:\Users\jemin\Documents\MSDCSC
2015-09-27 19:56 - 2015-09-29 20:25 - 00000000 ____D C:\ProgramData\Isolated Storage
2015-09-24 18:04 - 2015-09-24 18:04 - 00000615 _____ C:\Users\Public\Desktop\Pro Evolution Soccer 2016.lnk
2015-09-24 18:04 - 2015-09-24 18:04 - 00000615 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pro Evolution Soccer 2016.lnk
2015-09-24 09:04 - 2015-09-13 23:50 - 00574072 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2015-09-24 09:03 - 2015-09-14 02:29 - 42840368 _____ C:\Windows\system32\nvcompiler.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 37819000 _____ C:\Windows\SysWOW64\nvcompiler.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 22525560 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 18543736 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 16637528 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 14936264 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 13660648 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 12185344 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 11096696 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2015-09-24 09:03 - 2015-09-14 02:29 - 02940024 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 02627192 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 01898288 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6435598.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 01558832 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6435598.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 01105976 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 01074808 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 01064056 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 00986232 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 00944760 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 00943712 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 00512904 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 00421544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 00408184 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 00364152 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 00176904 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 00155792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 00150832 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 00128512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2015-09-24 08:01 - 2015-09-24 08:01 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2015-09-24 08:00 - 2015-09-24 08:00 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2015-09-24 08:00 - 2015-09-24 08:00 - 00000000 ____D C:\Program Files\Realtek
2015-09-24 08:00 - 2000-01-01 02:00 - 72113152 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat
2015-09-24 08:00 - 2000-01-01 02:00 - 07164176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 07087448 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64A.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 04467928 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2015-09-24 08:00 - 2000-01-01 02:00 - 03218800 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 02907864 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 02846424 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 02702040 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2015-09-24 08:00 - 2000-01-01 02:00 - 02014958 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2015-09-24 08:00 - 2000-01-01 02:00 - 01939800 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64A.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 01756264 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 01739992 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 01568360 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 01486952 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 01316056 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 00728680 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 00712296 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 00693352 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 00631000 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 00491112 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 00434960 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 00432744 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 00428648 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 00315736 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64A.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 00261464 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 00242792 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 00242792 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 00241768 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 00168816 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 00141584 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 00124176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 00109848 _____ C:\Windows\system32\AcpiServiceVnA64.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 00096568 _____ C:\Windows\system32\audioLibVc.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 00075024 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2015-09-24 07:54 - 2015-09-24 07:54 - 00000144 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2015-09-24 07:14 - 2015-09-24 07:14 - 00019486 _____ C:\Windows\system32\results.xml
2015-09-24 07:14 - 2015-09-24 07:14 - 00000451 _____ C:\Windows\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2015-09-23 18:58 - 2015-10-01 19:07 - 00000366 _____ C:\Windows\Tasks\SlimCleaner Plus (Scheduled Scan - jemin).job
2015-09-23 18:58 - 2015-09-23 18:58 - 00003024 _____ C:\Windows\System32\Tasks\SlimCleaner Plus (Scheduled Scan - jemin)
2015-09-23 18:12 - 2015-09-23 18:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2015-09-23 18:12 - 2015-09-23 18:12 - 00000000 ____D C:\Program Files\Logitech
2015-09-23 18:12 - 2015-09-23 18:12 - 00000000 ____D C:\Program Files\Common Files\Logitech
2015-09-23 18:10 - 2015-09-23 18:10 - 00000704 _____ C:\Users\Public\Desktop\Intel(R) HD Graphics Control Panel.lnk
2015-09-23 18:09 - 2000-01-01 02:00 - 22905344 _____ (Intel Corporation) C:\Windows\system32\igdfcl64.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 17837568 _____ (Intel Corporation) C:\Windows\SysWOW64\igdfcl32.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 12218376 _____ (Intel Corporation) C:\Windows\system32\igd10iumd64.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 11793480 _____ (Intel Corporation) C:\Windows\SysWOW64\igd10iumd32.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 10948400 _____ (Intel Corporation) C:\Windows\system32\igdumdim64.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 10474552 _____ (Intel Corporation) C:\Windows\SysWOW64\igdumdim32.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 08593920 _____ (Intel Corporation) C:\Windows\system32\ig75icd64.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 06587904 _____ (Intel Corporation) C:\Windows\SysWOW64\ig75icd32.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 04587608 _____ (Intel Corporation) C:\Windows\system32\igdusc64.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 04362344 _____ (Intel Corporation) C:\Windows\system32\Gfxv4_0.exe
2015-09-23 18:09 - 2000-01-01 02:00 - 04358760 _____ (Intel Corporation) C:\Windows\system32\Gfxv2_0.exe
2015-09-23 18:09 - 2000-01-01 02:00 - 03788728 _____ (Intel Corporation) C:\Windows\system32\Drivers\igdkmd64.sys
2015-09-23 18:09 - 2000-01-01 02:00 - 03628160 _____ (Intel Corporation) C:\Windows\SysWOW64\igdusc32.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 02027008 _____ (Intel Corporation) C:\Windows\system32\igfxcmjit64.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 01985536 _____ (Intel Corporation) C:\Windows\system32\igdrcl64.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 01784320 _____ (Intel Corporation) C:\Windows\SysWOW64\igdrcl32.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 01758208 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxcmjit32.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 01137120 _____ (Intel Corporation) C:\Windows\system32\iglhsip64.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 01133000 _____ (Intel Corporation) C:\Windows\SysWOW64\iglhsip32.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00959592 _____ (Intel Corporation) C:\Windows\system32\GfxUIEx.exe
2015-09-23 18:09 - 2000-01-01 02:00 - 00734720 _____ (Intel Corporation) C:\Windows\system32\MetroIntelGenericUIFramework.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00670208 _____ (Intel Corporation) C:\Windows\system32\igfxDH.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00545896 _____ (Intel Corporation) C:\Windows\system32\DPTopologyApp.exe
2015-09-23 18:09 - 2000-01-01 02:00 - 00545384 _____ (Intel Corporation) C:\Windows\system32\DPTopologyAppv2_0.exe
2015-09-23 18:09 - 2000-01-01 02:00 - 00530536 _____ (Intel Corporation) C:\Windows\system32\igfxEM.exe
2015-09-23 18:09 - 2000-01-01 02:00 - 00454760 _____ (Intel Corporation) C:\Windows\system32\igdmd64.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00454416 _____ (Intel(R) Corporation) C:\Windows\system32\Drivers\IntcDAud.sys
2015-09-23 18:09 - 2000-01-01 02:00 - 00399976 _____ (Intel Corporation) C:\Windows\system32\CustomModeApp.exe
2015-09-23 18:09 - 2000-01-01 02:00 - 00399464 _____ (Intel Corporation) C:\Windows\system32\CustomModeAppv2_0.exe
2015-09-23 18:09 - 2000-01-01 02:00 - 00384104 _____ (Intel Corporation) C:\Windows\system32\igfxTray.exe
2015-09-23 18:09 - 2000-01-01 02:00 - 00384000 _____ (Intel Corporation) C:\Windows\system32\igfxOSP.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00376832 _____ (Intel Corporation) C:\Windows\system32\IntelOpenCL64.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00366680 _____ (Intel Corporation) C:\Windows\SysWOW64\igdmd32.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00365568 _____ (Intel Corporation) C:\Windows\system32\igdbcl64.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00320512 _____ (Intel Corporation) C:\Windows\SysWOW64\igdbcl32.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00319080 _____ (Intel Corporation) C:\Windows\system32\igfxCUIService.exe
2015-09-23 18:09 - 2000-01-01 02:00 - 00286720 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelOpenCL32.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00280680 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe
2015-09-23 18:09 - 2000-01-01 02:00 - 00276480 _____ (Intel Corporation) C:\Windows\system32\igfxDI.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00255488 _____ C:\Windows\system32\igfxCPL.cpl
2015-09-23 18:09 - 2000-01-01 02:00 - 00252416 _____ (Intel Corporation) C:\Windows\system32\igfxLHM.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00247400 _____ (Intel Corporation) C:\Windows\system32\igfxHK.exe
2015-09-23 18:09 - 2000-01-01 02:00 - 00224256 _____ C:\Windows\system32\igdde64.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00220160 _____ (Intel Corporation) C:\Windows\system32\igfxDTCM.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00218848 _____ (Intel Corporation) C:\Windows\system32\iglhcp64.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00194664 _____ (Intel Corporation) C:\Windows\system32\igfxext.exe
2015-09-23 18:09 - 2000-01-01 02:00 - 00188496 _____ (Intel Corporation) C:\Windows\system32\igfxcmrt64.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00187844 _____ C:\Windows\system32\resTHA.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00185856 _____ C:\Windows\SysWOW64\igdde32.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00184832 _____ (Intel Corporation) C:\Windows\system32\igfx11cmrt64.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00183840 _____ (Intel Corporation) C:\Windows\SysWOW64\iglhcp32.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00183296 _____ (Intel Corporation) C:\Windows\system32\igfxCoIn_v4226.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00180644 _____ C:\Windows\system32\resELL.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00176500 _____ C:\Windows\system32\resRUS.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00162356 _____ C:\Windows\system32\resARA.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00162304 _____ C:\Windows\system32\igdail64.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00161812 _____ C:\Windows\system32\resHEB.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00161764 _____ C:\Windows\system32\resJPN.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00159096 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxcmrt32.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00157172 _____ C:\Windows\system32\resFRA.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00157156 _____ C:\Windows\system32\resHUN.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00155460 _____ C:\Windows\system32\resKOR.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00155364 _____ C:\Windows\system32\resITA.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00155364 _____ C:\Windows\system32\resDEU.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00155204 _____ C:\Windows\system32\resROM.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00155136 _____ (Intel Corporation) C:\Windows\SysWOW64\igfx11cmrt32.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00155092 _____ C:\Windows\system32\resESN.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00154728 _____ (Intel Corporation) C:\Windows\system32\difx64.exe
2015-09-23 18:09 - 2000-01-01 02:00 - 00154660 _____ C:\Windows\system32\resPLK.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00154516 _____ C:\Windows\system32\resSKY.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00154324 _____ C:\Windows\system32\resNLD.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00153764 _____ C:\Windows\system32\resPTB.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00153620 _____ C:\Windows\system32\resTRK.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00153604 _____ C:\Windows\system32\resCSY.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00153460 _____ C:\Windows\system32\resPTG.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00153060 _____ C:\Windows\system32\resFIN.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00152612 _____ C:\Windows\system32\resHRV.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00152164 _____ C:\Windows\system32\resSVE.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00152004 _____ C:\Windows\system32\resSLV.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00151060 _____ C:\Windows\system32\resNOR.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00150548 _____ C:\Windows\system32\resDAN.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00149236 _____ C:\Windows\system32\resENU.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00147460 _____ C:\Windows\system32\resCHT.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00146628 _____ C:\Windows\system32\resCHS.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00143872 _____ C:\Windows\SysWOW64\igdail32.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00086528 _____ C:\Windows\system32\igfxCUIServicePS.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00069632 _____ ( ) C:\Windows\system32\igfxDHLibv2_0.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00059392 _____ ( ) C:\Windows\system32\igfxDHLib.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00031448 _____ (Intel Corporation) C:\Windows\system32\igfxexps.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00030720 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxexps32.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00010752 _____ ( ) C:\Windows\system32\igfxDILib.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00010240 _____ ( ) C:\Windows\system32\igfxEMLibv2_0.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00010240 _____ ( ) C:\Windows\system32\igfxEMLib.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00010240 _____ ( ) C:\Windows\system32\igfxDILibv2_0.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00005120 _____ ( ) C:\Windows\system32\igfxLHMLibv2_0.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00005120 _____ ( ) C:\Windows\system32\igfxLHMLib.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00002564 _____ C:\Windows\system32\iglhxs64.vp
2015-09-23 18:08 - 2015-09-23 18:08 - 00000000 ____D C:\ProgramData\SlimWare Utilities, Inc
2015-09-23 18:07 - 2015-09-23 18:07 - 00000000 ____D C:\Users\Public\Documents\Downloaded Installers
2015-09-23 18:07 - 2015-09-23 18:07 - 00000000 ____D C:\Users\jemin\AppData\Local\Downloaded Installers
2015-09-23 18:06 - 2015-09-30 18:02 - 01023064 _____ C:\Users\jemin\Desktop\SlimDrivers-setup.exe
2015-09-23 18:05 - 2015-10-02 08:03 - 00002836 _____ C:\Windows\System32\Tasks\SlimDrivers Startup
2015-09-23 18:05 - 2015-10-02 08:03 - 00000410 _____ C:\Windows\Tasks\SlimDrivers Startup.job
2015-09-23 18:05 - 2015-09-23 18:07 - 00002483 _____ C:\Users\Public\Desktop\SlimDrivers.lnk
2015-09-23 17:37 - 2015-09-23 17:37 - 00002566 _____ C:\Windows\diagwrn.xml
2015-09-23 17:37 - 2015-09-23 17:37 - 00001908 _____ C:\Windows\diagerr.xml
2015-09-22 16:59 - 2015-09-22 16:59 - 00000147 _____ C:\Users\jemin\Desktop\Nový textový dokument.txt
2015-09-22 16:10 - 2015-09-22 16:10 - 00000000 ____D C:\Users\jemin\Desktop\kaja
2015-09-22 16:07 - 2015-09-22 16:07 - 00000000 ____D C:\Users\jemin\Documents\Electronic Arts
2015-09-22 15:47 - 2015-09-22 15:47 - 00001307 _____ C:\Users\jemin\Desktop\The Sims 4 Deluxe Edition.lnk
2015-09-22 15:47 - 2015-09-22 15:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GMT-MAX.ORG
2015-09-21 16:14 - 2015-07-15 01:35 - 00000000 ____D C:\Users\jemin\Desktop\3DMGAME-The.Sims.4.Crack.Only-3DM
2015-09-20 01:05 - 2015-09-30 18:02 - 06562656 _____ C:\Users\jemin\Downloads\FileZilla_3.14.0_win64-setup.exe
2015-09-15 13:46 - 2015-09-24 08:29 - 00000000 ____D C:\Users\jemin\Desktop\MalwareBytes.Anti-Malware.Premium.v2.1.6.1022.Incl.Keygen-AMPED
2015-09-14 12:26 - 2015-09-14 12:26 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-09-14 12:26 - 2015-09-14 12:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-10-02 08:03 - 2015-08-30 11:23 - 00005955 _____ C:\Windows\setupact.log
2015-10-02 08:03 - 2015-05-13 16:20 - 00000000 _____ C:\Windows\SysWOW64\sinstall.log
2015-10-02 08:03 - 2014-03-20 12:12 - 00000000 ____D C:\ProgramData\NVIDIA
2015-10-02 08:03 - 2014-03-18 17:15 - 00000948 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-10-02 08:03 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-10-02 01:55 - 2015-06-24 16:08 - 00000402 _____ C:\Windows\Tasks\HP Photo Creations Communicator.job
2015-10-02 01:55 - 2014-03-18 17:11 - 01380367 _____ C:\Windows\WindowsUpdate.log
2015-10-02 01:40 - 2014-03-18 17:15 - 00000952 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-10-02 01:30 - 2014-05-08 14:35 - 00008776 _____ C:\Windows\SysWOW64\Cuckoo Clock.log
2015-10-02 01:17 - 2009-07-26 20:41 - 00669904 _____ C:\Windows\system32\perfh005.dat
2015-10-02 01:17 - 2009-07-26 20:41 - 00142062 _____ C:\Windows\system32\perfc005.dat
2015-10-02 01:17 - 2009-07-14 07:13 - 01587976 _____ C:\Windows\system32\PerfStringBackup.INI
2015-10-02 01:17 - 2009-07-14 06:45 - 00020192 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-10-02 01:17 - 2009-07-14 06:45 - 00020192 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-10-02 01:09 - 2014-05-10 17:37 - 00000000 ____D C:\AdwCleaner
2015-10-02 01:08 - 2014-03-20 15:30 - 00000000 ____D C:\Users\jemin\AppData\Local\CrashDumps
2015-10-01 21:30 - 2014-03-20 16:53 - 00000000 ____D C:\Users\jemin\AppData\Roaming\Skype
2015-10-01 20:45 - 2014-03-23 16:59 - 00003970 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{6E8F5136-D671-44DD-8634-E280556768FA}
2015-10-01 19:30 - 2014-03-18 17:12 - 00000000 ____D C:\Users\jemin
2015-10-01 19:25 - 2014-05-11 07:47 - 00113880 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-10-01 19:10 - 2014-11-16 09:32 - 00000000 ____D C:\Program Files (x86)\CCleaner
2015-10-01 19:07 - 2015-08-09 06:36 - 00000000 ____D C:\Qoobox
2015-10-01 19:06 - 2009-07-14 04:34 - 00000215 _____ C:\Windows\system.ini
2015-10-01 19:00 - 2014-06-27 11:32 - 00000000 ____D C:\Users\jemin\Documents\antiviry
2015-10-01 18:51 - 2015-08-31 20:03 - 704750146 _____ C:\Windows\MEMORY.DMP
2015-10-01 18:51 - 2014-04-11 19:06 - 00000000 ____D C:\Windows\Minidump
2015-10-01 18:27 - 2014-03-20 15:14 - 00003138 _____ C:\Windows\System32\Tasks\FRAPS
2015-10-01 18:27 - 2014-03-20 15:14 - 00000000 ____D C:\Fraps
2015-10-01 18:25 - 2014-03-20 16:53 - 00000000 ____D C:\ProgramData\Skype
2015-10-01 18:25 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\Globalization
2015-09-30 18:02 - 2015-07-18 14:25 - 02614864 _____ C:\Users\jemin\Documents\TrueCrypt-7.2.exe
2015-09-30 18:02 - 2015-05-10 07:15 - 06560744 _____ C:\Users\jemin\Documents\Setup_FreeConverter.exe
2015-09-30 18:02 - 2015-03-30 17:01 - 01618984 _____ C:\Users\jemin\Documents\cpu-z_1.71-setup-en.exe
2015-09-30 17:17 - 2014-11-11 20:03 - 00000000 ____D C:\Users\jemin\AppData\Roaming\FileZilla
2015-09-24 18:11 - 2015-04-15 12:07 - 00129697 _____ C:\Windows\DirectX.log
2015-09-24 09:04 - 2014-05-30 10:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-09-24 09:04 - 2014-03-18 17:27 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-09-24 08:45 - 2014-03-18 17:15 - 00000000 ____D C:\Users\jemin\AppData\Local\Google
2015-09-24 08:01 - 2014-03-18 17:19 - 00000000 ___HD C:\Program Files (x86)\Temp
2015-09-24 08:00 - 2014-03-18 17:18 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2015-09-23 17:37 - 2015-08-30 11:23 - 00000000 _____ C:\Windows\setuperr.log
2015-09-23 15:12 - 2014-11-18 16:56 - 00000000 ____D C:\Users\jemin\Documents\Assassin's Creed Unity
2015-09-22 16:04 - 2015-08-31 20:03 - 00000000 ____D C:\temp
2015-09-22 16:04 - 2014-10-20 18:13 - 00000000 ____D C:\Windows\SysWOW64\directx
2015-09-22 16:03 - 2014-03-20 15:08 - 00000000 ____D C:\ProgramData\Package Cache
2015-09-22 15:11 - 2015-04-16 12:58 - 00780488 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-09-22 15:11 - 2015-04-16 12:58 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-09-21 16:27 - 2014-11-11 20:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
2015-09-21 16:27 - 2014-11-11 20:03 - 00000000 ____D C:\Program Files (x86)\FileZilla FTP Client
2015-09-19 20:54 - 2009-07-14 07:08 - 00032582 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2015-09-19 20:53 - 2014-03-18 17:15 - 00000000 ____D C:\ProgramData\Google
2015-09-19 20:53 - 2014-03-18 17:15 - 00000000 ____D C:\Program Files\Google
2015-09-19 20:53 - 2014-03-18 17:15 - 00000000 ____D C:\Program Files (x86)\Google
2015-09-19 20:51 - 2014-04-03 16:18 - 00000000 ____D C:\Users\jemin\AppData\Local\Adobe
2015-09-16 21:35 - 2014-03-18 17:15 - 00003948 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-09-16 21:35 - 2014-03-18 17:15 - 00003696 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-09-16 10:41 - 2015-04-27 17:46 - 00000000 ____D C:\Users\jemin\AppData\Roaming\Trine3
2015-09-16 10:32 - 2015-05-20 02:18 - 00000000 ____D C:\Users\jemin\Documents\The Witcher 3
2015-09-14 02:29 - 2015-08-13 18:27 - 15513208 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2015-09-14 02:29 - 2015-07-30 21:40 - 14635600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2015-09-14 02:29 - 2014-08-09 08:24 - 17082928 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2015-09-14 02:29 - 2014-08-09 08:24 - 12514824 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2015-09-14 02:29 - 2014-08-09 08:24 - 03530608 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2015-09-14 02:29 - 2014-03-20 12:12 - 00033079 _____ C:\Windows\system32\nvinfo.pb
2015-09-14 02:29 - 2014-03-20 12:11 - 03116160 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2015-09-14 00:09 - 2014-03-20 12:12 - 06884984 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2015-09-14 00:09 - 2014-03-20 12:12 - 03496056 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2015-09-14 00:09 - 2014-03-20 12:12 - 02558584 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2015-09-14 00:09 - 2014-03-20 12:12 - 00937776 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2015-09-14 00:09 - 2014-03-20 12:12 - 00385144 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2015-09-14 00:09 - 2014-03-20 12:12 - 00062584 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2015-09-11 14:17 - 2014-03-20 12:12 - 05231082 _____ C:\Windows\system32\nvcoproc.bin

==================== Files in the root of some directories =======

2014-03-20 19:44 - 2014-03-20 19:45 - 0000156 _____ () C:\Users\jemin\AppData\Roaming\default.rss
2014-10-08 16:49 - 2014-05-24 21:09 - 0042496 ___SH (Open Source Software community project) C:\Users\jemin\AppData\Roaming\pthreadGC2-w64.dll
2014-03-29 09:04 - 2015-08-14 16:32 - 0017920 _____ () C:\Users\jemin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-05-30 07:41 - 2014-06-02 06:48 - 0007618 _____ () C:\Users\jemin\AppData\Local\Resmon.ResmonCfg
2014-03-31 15:50 - 2014-03-31 15:50 - 0000080 _____ () C:\Users\jemin\AppData\Local\X-Plane Installer.prf
2014-03-31 15:28 - 2014-03-31 15:28 - 0000020 _____ () C:\Users\jemin\AppData\Local\x-plane_install_10.txt
2014-05-21 14:50 - 2014-05-21 14:50 - 0000057 _____ () C:\ProgramData\Ament.ini
2015-09-24 08:01 - 2015-09-24 08:01 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Files to move or delete:
====================
C:\Program Files (x86)\OKsoftware\Svátky a výročí\Vyroci.exe

Some files in TEMP:
====================
C:\Users\jemin\AppData\Local\Temp\sqlite3.dll

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2015-10-01 23:15

==================== End of FRST.txt ============================

Otevřte poznámkový blok a zkopírujte do něj:

Start
HKLM\...\Run: [3bd13f8af846694af836aa5a2c763ceb] => "C:\ProgramData\system32.exe" ..
C:\ProgramData\system32.exe
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-3158200304-2993081581-1989350980-1000\...\Run: [tmpF6E6] => wscript.exe //B "C:\Users\jemin\AppData\Roaming\tmpF6E6.tmp.vbs"
HKU\S-1-5-21-3158200304-2993081581-1989350980-1000\...\Run: [tmp3C12] => wscript.exe //B "C:\Users\jemin\AppData\Roaming\tmp3C12.tmp.vbs"
HKU\S-1-5-21-3158200304-2993081581-1989350980-1000\...\Run: [tmp5666] => wscript.exe //B "C:\Users\jemin\AppData\Roaming\tmp5666.tmp.vbs"
C:\Users\jemin\AppData\Roaming\tmpF6E6.tmp.vbs
C:\Users\jemin\AppData\Roaming\tmp3C12.tmp.vbs
C:\Users\jemin\AppData\Roaming\tmp5666.tmp.vbs
ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43} => No File
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-3158200304-2993081581-1989350980-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3158200304-2993081581-1989350980-1000 -> {9BB47C17-9C68-4BB3-B188-DD9AF0FD2488} URL =
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-09-24] (Google Inc.)
:\Program Files (x86)\Google\Google Toolbar
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-09-24] (Google Inc.)
BHO-x32: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\BingExt.dll [2012-01-25] (Microsoft Corporation.)
C:\Program Files (x86)\Microsoft\BingBar
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-09-24] (Google Inc.)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\BingExt.dll [2012-01-25] (Microsoft Corporation.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-09-24] (Google Inc.)
Toolbar: HKU\S-1-5-21-3158200304-2993081581-1989350980-1000 -> No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
Toolbar: HKU\S-1-5-21-3158200304-2993081581-1989350980-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-09-24] (Google Inc.)
S2 BBSvc; C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\BBSvc.exe [234264 2015-09-30] () [File not signed]
S3 BBUpdate; C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\SeaPort.exe [281880 2015-10-01] () [File not signed]
C:\ProgramData\DP45977C.lfl
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
C:\Users\jemin\AppData\Local\Temp
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

PS: Proč spouštíte ComboFix, utilitu určenou pouze profesionálům? Hodláte si nabořit systém, nebo některou z aplikací? Jedno varování už jsem vám dával.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:30-09-2015
Ran by jemin (administrator) on JEMIN-PC (02-10-2015 11:06:15)
Running from C:\Users\jemin\Desktop
Loaded Profiles: jemin (Available Profiles: jemin)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ABBYY) C:\Program Files (x86)\Common Files\ABBYY\FineReader\10.00\Licensing\Home\NetworkLicenseServer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(PS Media s.r.o.) C:\Windows\SysWOW64\ssins.exe
(DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(SlimWare Utilities, Inc.) C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Disc Soft Ltd) C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe
(Microsoft Corporation) C:\Windows\SysWOW64\runonce.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
() C:\Users\jemin\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\OAWrapper.exe
(Microsoft Corporation) C:\Windows\System32\consent.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\consent.exe
(Microsoft Corporation) C:\Windows\System32\consent.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Microsoft Corporation) C:\Windows\System32\consent.exe
(Microsoft Corporation) C:\Windows\System32\consent.exe
(Microsoft Corporation) C:\Windows\System32\consent.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
() C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Microsoft Corporation) C:\Windows\System32\consent.exe
(Microsoft Corporation) C:\Windows\System32\consent.exe
() C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe
(Microsoft Corporation) C:\Windows\System32\pcaui.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-07] (Intel Corporation)
HKLM\...\Run: [MSC] => C:\Program Files\Microsoft Security Client\msseces.exe [1337000 2015-04-30] (Microsoft Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2634872 2015-08-27] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [Start WingMan Profiler] => C:\Program Files\Logitech\Gaming Software\LWEMon.exe [190536 2000-01-01] (Logitech Inc.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13876952 2000-01-01] (Realtek Semiconductor)
HKLM\...\Run: [3bd13f8af846694af836aa5a2c763ceb] => "C:\ProgramData\system32.exe" ..
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [417264 2015-10-02] ()
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [137528 2015-10-01] ()
HKLM-x32\...\Run: [] => [X]
Winlogon\Notify\igfxcui: igfxdev.dll [X]
HKU\S-1-5-21-3158200304-2993081581-1989350980-1000\...\Run: [Sv�tky a v�ro**�<*>] => C:\Program Files (x86)\OKsoftware\Svátky a výročí\Vyroci.exe [ ] () <===== ATTENTION (Value Name with invalid characters)
HKU\S-1-5-21-3158200304-2993081581-1989350980-1000\...\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] => C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe [194608 2015-10-01] ()
HKU\S-1-5-21-3158200304-2993081581-1989350980-1000\...\Run: [HP Deskjet 3520 series (NET)] => C:\Program Files\HP\HP Deskjet 3520 series\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett-Packard Co.)
HKU\S-1-5-21-3158200304-2993081581-1989350980-1000\...\Run: [DAEMON Tools Pro Agent] => C:\Program Files (x86)\DAEMON Tools Pro\DTAgent.exe [3169312 2015-10-01] ()
HKU\S-1-5-21-3158200304-2993081581-1989350980-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [53736048 2015-08-07] (Skype Technologies S.A.)
HKU\S-1-5-21-3158200304-2993081581-1989350980-1000\...\Run: [SlimCleaner Plus] => "C:\Program Files\SlimCleaner Plus\SlimCleanerPlus.exe" /minimize /boot
HKU\S-1-5-21-3158200304-2993081581-1989350980-1000\...\Run: [tmpF6E6] => wscript.exe //B "C:\Users\jemin\AppData\Roaming\tmpF6E6.tmp.vbs"
HKU\S-1-5-21-3158200304-2993081581-1989350980-1000\...\Run: [tmp3C12] => wscript.exe //B "C:\Users\jemin\AppData\Roaming\tmp3C12.tmp.vbs"
HKU\S-1-5-21-3158200304-2993081581-1989350980-1000\...\Run: [tmp5666] => wscript.exe //B "C:\Users\jemin\AppData\Roaming\tmp5666.tmp.vbs"
HKU\S-1-5-21-3158200304-2993081581-1989350980-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\SysWOW64\CUCKOO~1.SCR [842752 2008-03-28] (3Planesoft)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-07-29] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-07-29] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-07-29] (Google)
ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43} => No File
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\GamePark klient 2.lnk [2014-03-22]
ShortcutTarget: GamePark klient 2.lnk -> C:\Program Files\GamePark2\gpcl.exe (Allstar Group, s.r.o.)
Startup: C:\Users\jemin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\3107e2cc85325510acbf81112a41804e.exe [2015-10-01] ()
Startup: C:\Users\jemin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\3bd13f8af846694af836aa5a2c763ceb.exe [2015-09-28] ()
Startup: C:\Users\jemin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\78da0422172bb1c4bf8f5b473fa4639a.exe [2015-09-30] ()
Startup: C:\Users\jemin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\dorogomyi.exe [2015-09-30] ()
Startup: C:\Users\jemin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sledovat výstrahy inkoustu - HP Deskjet 3520 series (Síť).lnk [2014-05-21]
ShortcutTarget: Sledovat výstrahy inkoustu - HP Deskjet 3520 series (Síť).lnk -> C:\Program Files\HP\HP Deskjet 3520 series\Bin\HPStatusBL.dll (Hewlett-Packard Co.)
Startup: C:\Users\jemin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Vesmír na dlani.lnk [2014-03-28]
ShortcutTarget: Vesmír na dlani.lnk -> C:\Program Files (x86)\Noční obloha\vesmir.exe ()

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{D3772582-8A4C-49F2-A2DC-A95D5181C2B6}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-3158200304-2993081581-1989350980-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-3158200304-2993081581-1989350980-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-3158200304-2993081581-1989350980-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.seznam.cz/
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3158200304-2993081581-1989350980-1000 -> {1A366EDE-D70D-49EE-A453-A757CE160C68} URL = hxxps://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-3158200304-2993081581-1989350980-1000 -> {5630B555-ECD5-4CB2-89C5-14866469CFC3} URL = hxxp://search.centrum.cz/index.php?utm_source=ch-browser&utm_medium=IE-9&utm_content=searchbox&channel_id=custom-browser,IE-9&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3158200304-2993081581-1989350980-1000 -> {9BB47C17-9C68-4BB3-B188-DD9AF0FD2488} URL =
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2014-05-30] (Oracle Corporation)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-09-24] (Google Inc.)
BHO: Lišta Centrum.cz - pomocný objekt -> {C91BA35D-6516-489F-A203-2992ED9A4132} -> C:\Program Files (x86)\Centrum Holdings s.r.o\Lišta Centrum.cz\cenbho64.dll [2013-01-23] ()
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-05-30] (Oracle Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-09-24] (Google Inc.)
BHO-x32: Lišta Centrum.cz - pomocný objekt -> {C91BA35D-6516-489F-A203-2992ED9A4132} -> C:\Program Files (x86)\Centrum Holdings s.r.o\Lišta Centrum.cz\cenbho32.dll [2013-01-23] ()
BHO-x32: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\BingExt.dll [2012-01-25] (Microsoft Corporation.)
Toolbar: HKLM - Lišta Centrum.cz - {5D9C17C6-093D-43E5-BF3D-4A13D162AB74} - C:\Program Files (x86)\Centrum Holdings s.r.o\Lišta Centrum.cz\cenbho64.dll [2013-01-23] ()
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-09-24] (Google Inc.)
Toolbar: HKLM-x32 - Lišta Centrum.cz - {5D9C17C6-093D-43E5-BF3D-4A13D162AB74} - C:\Program Files (x86)\Centrum Holdings s.r.o\Lišta Centrum.cz\cenbho32.dll [2013-01-23] ()
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\BingExt.dll [2012-01-25] (Microsoft Corporation.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-09-24] (Google Inc.)
Toolbar: HKU\S-1-5-21-3158200304-2993081581-1989350980-1000 -> No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
Toolbar: HKU\S-1-5-21-3158200304-2993081581-1989350980-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-09-24] (Google Inc.)
DPF: HKLM-x32 {17492023-C23A-453E-A040-C7C580BBF700} hxxp://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=10.55.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll [2014-05-30] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.55.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2014-05-30] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-16] ( Microsoft Corporation)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-09-13] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-09-13] (NVIDIA Corporation)
FF Plugin-x32: @rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5 -> C:\Users\jemin\AppData\Roaming\Visan\plugins\npRLSecurePluginLayer.dll [2011-05-13] (RocketLife, LLP)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-02-05] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-06-29] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3158200304-2993081581-1989350980-1000: @rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5 -> C:\Users\jemin\AppData\Roaming\Visan\plugins\npRLSecurePluginLayer.dll [2011-05-13] (RocketLife, LLP)
FF Plugin HKU\S-1-5-21-3158200304-2993081581-1989350980-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\jemin\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-09-05] (Unity Technologies ApS)

Chrome:
=======
CHR Profile: C:\Users\jemin\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Users\jemin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-12-20]
CHR Extension: (Dokumenty Google) - C:\Users\jemin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-03-23]
CHR Extension: (Disk Google) - C:\Users\jemin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-03-23]
CHR Extension: (YouTube) - C:\Users\jemin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-03-23]
CHR Extension: (Vyhledávání Google) - C:\Users\jemin\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-03-23]
CHR Extension: (Tabulky Google) - C:\Users\jemin\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-12-20]
CHR Extension: (Dokumenty Google offline) - C:\Users\jemin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-09-04]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\jemin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-03-23]
CHR Extension: (Gmail) - C:\Users\jemin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-03-23]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ABBYY.Licensing.FineReader.Home.10.0; C:\Program Files (x86)\Common Files\ABBYY\FineReader\10.00\Licensing\Home\NetworkLicenseServer.exe [814344 2010-07-21] (ABBYY)
S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] ()
S2 BBSvc; C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\BBSvc.exe [234264 2015-09-30] () [File not signed]
S3 BBUpdate; C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\SeaPort.exe [281880 2015-10-01] () [File not signed]
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe [178960 2015-09-30] () [File not signed]
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1155192 2015-08-27] (NVIDIA Corporation)
S2 gupdate; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [185672 2015-09-30] () [File not signed]
S3 gupdatem; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [185672 2015-09-30] () [File not signed]
S3 gusvc; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [235504 2015-09-30] () [File not signed]
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-07] (Intel Corporation)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [319080 2000-01-01] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
S2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [252376 2015-10-01] () [File not signed]
S2 LMS; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [473560 2015-10-01] () [File not signed]
S3 Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [106328 2015-09-30] () [File not signed]
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [23816 2015-04-30] (Microsoft Corporation)
S3 NBService; C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe [815616 2015-09-30] () [File not signed]
R3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [366544 2015-04-30] (Microsoft Corporation)
S3 NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [313392 2015-10-01] () [File not signed]
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1872504 2015-08-27] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5544568 2015-08-27] (NVIDIA Corporation)
S3 odserv; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [482168 2015-09-30] () [File not signed]
S3 ose; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [186656 2015-09-30] () [File not signed]
S2 SkypeUpdate; C:\Program Files (x86)\Skype\Updater\Updater.exe [368768 2015-09-30] () [File not signed]
R2 ssinstall; C:\Windows\SysWOW64\ssins.exe [2324216 2015-05-13] (PS Media s.r.o.)
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-10-13] (DEVGURU Co., LTD.)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5426448 2014-12-15] (TeamViewer GmbH)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
S2 SlimService; "C:\Program Files\SlimService\SlimServiceFactory.exe" [X]

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 androidusb; C:\Windows\System32\Drivers\androidusb.sys [32768 2010-04-29] (Google Inc)
R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [21584 2013-02-19] ()
R1 avgtp; C:\Windows\system32\drivers\avgtpx64.sys [50464 2014-05-30] (AVG Technologies)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2014-06-28] (Disc Soft Ltd)
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28008 2013-08-07] (Intel Corporation)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [99288 2013-09-16] (Intel Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [280376 2015-03-04] (Microsoft Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [124568 2015-03-04] (Microsoft Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19576 2015-08-27] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [50472 2015-08-11] (NVIDIA Corporation)
S3 SWDUMon; C:\Windows\System32\DRIVERS\SWDUMon.sys [16056 2015-10-02] (SlimWare Utilities, Inc.)
S1 UsbCharger; C:\Windows\System32\DRIVERS\UsbCharger.sys [21584 2013-05-06] ()
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 cpuz136; \??\C:\Windows\TEMP\cpuz136\cpuz136_x64.sys [X]
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 gdrv; \??\C:\Windows\gdrv.sys [X]
S1 MpKsl561a97af; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{29CE705E-E86C-4B09-9E9E-6B47C8595B0B}\MpKsl561a97af.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-10-02 11:04 - 2015-10-02 11:05 - 00003276 _____ C:\Users\jemin\Desktop\fixlist.txt..txt
2015-10-02 08:04 - 2015-10-02 11:06 - 00024238 _____ C:\Users\jemin\Desktop\FRST.txt
2015-10-02 01:10 - 2015-10-02 08:03 - 00016056 _____ (SlimWare Utilities, Inc.) C:\Windows\system32\Drivers\SWDUMon.sys
2015-10-02 01:10 - 2015-10-02 01:10 - 00000000 ____D C:\Users\jemin\AppData\Local\SlimWare Utilities Inc
2015-10-02 01:08 - 2015-10-02 01:10 - 01753600 _____ C:\Users\jemin\Desktop\adwcleaner_5.009.exe
2015-10-01 19:30 - 2015-10-01 19:30 - 00041472 _____ C:\Windows\svchost.com
2015-10-01 19:15 - 2015-10-02 11:06 - 00000000 ____D C:\FRST
2015-10-01 19:15 - 2015-10-02 08:04 - 02192384 _____ (Farbar) C:\Users\jemin\Desktop\FRST64.exe
2015-10-01 19:10 - 2015-10-01 19:10 - 00001011 _____ C:\Users\jemin\Desktop\CCleaner.lnk
2015-10-01 19:10 - 2015-10-01 19:10 - 00000000 ____D C:\Users\jemin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-10-01 19:08 - 2015-10-02 01:10 - 00003782 _____ C:\Windows\PFRO.log
2015-10-01 19:07 - 2015-10-01 19:07 - 00037031 _____ C:\ComboFix.txt
2015-10-01 19:06 - 2015-10-02 11:06 - 00000035 _____ C:\Windows\directx.sys
2015-10-01 18:51 - 2015-10-01 18:51 - 00350800 _____ C:\Windows\Minidump\100115-6474-01.dmp
2015-10-01 17:50 - 2015-10-01 17:50 - 00003216 _____ C:\Windows\System32\Tasks\{FB6429D6-6C14-4633-A83B-164E822229EA}
2015-09-30 17:40 - 2015-09-30 17:40 - 00003480 _____ C:\Windows\System32\Tasks\savhost
2015-09-28 16:30 - 2015-09-28 16:30 - 00000000 ____D C:\Users\jemin\Documents\KONAMI
2015-09-28 16:30 - 2015-09-28 16:30 - 00000000 ____D C:\ProgramData\KONAMI
2015-09-27 21:01 - 2015-10-01 18:26 - 00000000 ____D C:\Users\jemin\Documents\MSDCSC
2015-09-27 19:56 - 2015-09-29 20:25 - 00000000 ____D C:\ProgramData\Isolated Storage
2015-09-24 18:04 - 2015-09-24 18:04 - 00000615 _____ C:\Users\Public\Desktop\Pro Evolution Soccer 2016.lnk
2015-09-24 18:04 - 2015-09-24 18:04 - 00000615 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pro Evolution Soccer 2016.lnk
2015-09-24 09:04 - 2015-09-13 23:50 - 00574072 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2015-09-24 09:03 - 2015-09-14 02:29 - 42840368 _____ C:\Windows\system32\nvcompiler.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 37819000 _____ C:\Windows\SysWOW64\nvcompiler.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 22525560 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 18543736 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 16637528 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 14936264 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 13660648 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 12185344 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 11096696 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2015-09-24 09:03 - 2015-09-14 02:29 - 02940024 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 02627192 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 01898288 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6435598.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 01558832 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6435598.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 01105976 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 01074808 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 01064056 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 00986232 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 00944760 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 00943712 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 00512904 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 00421544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 00408184 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 00364152 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 00176904 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 00155792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 00150832 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2015-09-24 09:03 - 2015-09-14 02:29 - 00128512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2015-09-24 08:01 - 2015-09-24 08:01 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2015-09-24 08:00 - 2015-09-24 08:00 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2015-09-24 08:00 - 2015-09-24 08:00 - 00000000 ____D C:\Program Files\Realtek
2015-09-24 08:00 - 2000-01-01 02:00 - 72113152 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat
2015-09-24 08:00 - 2000-01-01 02:00 - 07164176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 07087448 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64A.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 04467928 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2015-09-24 08:00 - 2000-01-01 02:00 - 03218800 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 02907864 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 02846424 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 02702040 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2015-09-24 08:00 - 2000-01-01 02:00 - 02014958 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2015-09-24 08:00 - 2000-01-01 02:00 - 01939800 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64A.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 01756264 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 01739992 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 01568360 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 01486952 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 01316056 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 00728680 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 00712296 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 00693352 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 00631000 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 00491112 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 00434960 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 00432744 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 00428648 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 00315736 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64A.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 00261464 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 00242792 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 00242792 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 00241768 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 00168816 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 00141584 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 00124176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 00109848 _____ C:\Windows\system32\AcpiServiceVnA64.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 00096568 _____ C:\Windows\system32\audioLibVc.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 00075024 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll
2015-09-24 08:00 - 2000-01-01 02:00 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2015-09-24 07:54 - 2015-09-24 07:54 - 00000144 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2015-09-24 07:14 - 2015-09-24 07:14 - 00019486 _____ C:\Windows\system32\results.xml
2015-09-24 07:14 - 2015-09-24 07:14 - 00000451 _____ C:\Windows\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2015-09-23 18:58 - 2015-10-01 19:07 - 00000366 _____ C:\Windows\Tasks\SlimCleaner Plus (Scheduled Scan - jemin).job
2015-09-23 18:58 - 2015-09-23 18:58 - 00003024 _____ C:\Windows\System32\Tasks\SlimCleaner Plus (Scheduled Scan - jemin)
2015-09-23 18:12 - 2015-09-23 18:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2015-09-23 18:12 - 2015-09-23 18:12 - 00000000 ____D C:\Program Files\Logitech
2015-09-23 18:12 - 2015-09-23 18:12 - 00000000 ____D C:\Program Files\Common Files\Logitech
2015-09-23 18:10 - 2015-09-23 18:10 - 00000704 _____ C:\Users\Public\Desktop\Intel(R) HD Graphics Control Panel.lnk
2015-09-23 18:09 - 2000-01-01 02:00 - 22905344 _____ (Intel Corporation) C:\Windows\system32\igdfcl64.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 17837568 _____ (Intel Corporation) C:\Windows\SysWOW64\igdfcl32.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 12218376 _____ (Intel Corporation) C:\Windows\system32\igd10iumd64.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 11793480 _____ (Intel Corporation) C:\Windows\SysWOW64\igd10iumd32.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 10948400 _____ (Intel Corporation) C:\Windows\system32\igdumdim64.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 10474552 _____ (Intel Corporation) C:\Windows\SysWOW64\igdumdim32.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 08593920 _____ (Intel Corporation) C:\Windows\system32\ig75icd64.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 06587904 _____ (Intel Corporation) C:\Windows\SysWOW64\ig75icd32.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 04587608 _____ (Intel Corporation) C:\Windows\system32\igdusc64.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 04362344 _____ (Intel Corporation) C:\Windows\system32\Gfxv4_0.exe
2015-09-23 18:09 - 2000-01-01 02:00 - 04358760 _____ (Intel Corporation) C:\Windows\system32\Gfxv2_0.exe
2015-09-23 18:09 - 2000-01-01 02:00 - 03788728 _____ (Intel Corporation) C:\Windows\system32\Drivers\igdkmd64.sys
2015-09-23 18:09 - 2000-01-01 02:00 - 03628160 _____ (Intel Corporation) C:\Windows\SysWOW64\igdusc32.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 02027008 _____ (Intel Corporation) C:\Windows\system32\igfxcmjit64.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 01985536 _____ (Intel Corporation) C:\Windows\system32\igdrcl64.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 01784320 _____ (Intel Corporation) C:\Windows\SysWOW64\igdrcl32.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 01758208 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxcmjit32.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 01137120 _____ (Intel Corporation) C:\Windows\system32\iglhsip64.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 01133000 _____ (Intel Corporation) C:\Windows\SysWOW64\iglhsip32.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00959592 _____ (Intel Corporation) C:\Windows\system32\GfxUIEx.exe
2015-09-23 18:09 - 2000-01-01 02:00 - 00734720 _____ (Intel Corporation) C:\Windows\system32\MetroIntelGenericUIFramework.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00670208 _____ (Intel Corporation) C:\Windows\system32\igfxDH.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00545896 _____ (Intel Corporation) C:\Windows\system32\DPTopologyApp.exe
2015-09-23 18:09 - 2000-01-01 02:00 - 00545384 _____ (Intel Corporation) C:\Windows\system32\DPTopologyAppv2_0.exe
2015-09-23 18:09 - 2000-01-01 02:00 - 00530536 _____ (Intel Corporation) C:\Windows\system32\igfxEM.exe
2015-09-23 18:09 - 2000-01-01 02:00 - 00454760 _____ (Intel Corporation) C:\Windows\system32\igdmd64.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00454416 _____ (Intel(R) Corporation) C:\Windows\system32\Drivers\IntcDAud.sys
2015-09-23 18:09 - 2000-01-01 02:00 - 00399976 _____ (Intel Corporation) C:\Windows\system32\CustomModeApp.exe
2015-09-23 18:09 - 2000-01-01 02:00 - 00399464 _____ (Intel Corporation) C:\Windows\system32\CustomModeAppv2_0.exe
2015-09-23 18:09 - 2000-01-01 02:00 - 00384104 _____ (Intel Corporation) C:\Windows\system32\igfxTray.exe
2015-09-23 18:09 - 2000-01-01 02:00 - 00384000 _____ (Intel Corporation) C:\Windows\system32\igfxOSP.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00376832 _____ (Intel Corporation) C:\Windows\system32\IntelOpenCL64.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00366680 _____ (Intel Corporation) C:\Windows\SysWOW64\igdmd32.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00365568 _____ (Intel Corporation) C:\Windows\system32\igdbcl64.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00320512 _____ (Intel Corporation) C:\Windows\SysWOW64\igdbcl32.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00319080 _____ (Intel Corporation) C:\Windows\system32\igfxCUIService.exe
2015-09-23 18:09 - 2000-01-01 02:00 - 00286720 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelOpenCL32.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00280680 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe
2015-09-23 18:09 - 2000-01-01 02:00 - 00276480 _____ (Intel Corporation) C:\Windows\system32\igfxDI.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00255488 _____ C:\Windows\system32\igfxCPL.cpl
2015-09-23 18:09 - 2000-01-01 02:00 - 00252416 _____ (Intel Corporation) C:\Windows\system32\igfxLHM.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00247400 _____ (Intel Corporation) C:\Windows\system32\igfxHK.exe
2015-09-23 18:09 - 2000-01-01 02:00 - 00224256 _____ C:\Windows\system32\igdde64.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00220160 _____ (Intel Corporation) C:\Windows\system32\igfxDTCM.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00218848 _____ (Intel Corporation) C:\Windows\system32\iglhcp64.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00194664 _____ (Intel Corporation) C:\Windows\system32\igfxext.exe
2015-09-23 18:09 - 2000-01-01 02:00 - 00188496 _____ (Intel Corporation) C:\Windows\system32\igfxcmrt64.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00187844 _____ C:\Windows\system32\resTHA.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00185856 _____ C:\Windows\SysWOW64\igdde32.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00184832 _____ (Intel Corporation) C:\Windows\system32\igfx11cmrt64.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00183840 _____ (Intel Corporation) C:\Windows\SysWOW64\iglhcp32.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00183296 _____ (Intel Corporation) C:\Windows\system32\igfxCoIn_v4226.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00180644 _____ C:\Windows\system32\resELL.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00176500 _____ C:\Windows\system32\resRUS.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00162356 _____ C:\Windows\system32\resARA.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00162304 _____ C:\Windows\system32\igdail64.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00161812 _____ C:\Windows\system32\resHEB.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00161764 _____ C:\Windows\system32\resJPN.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00159096 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxcmrt32.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00157172 _____ C:\Windows\system32\resFRA.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00157156 _____ C:\Windows\system32\resHUN.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00155460 _____ C:\Windows\system32\resKOR.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00155364 _____ C:\Windows\system32\resITA.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00155364 _____ C:\Windows\system32\resDEU.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00155204 _____ C:\Windows\system32\resROM.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00155136 _____ (Intel Corporation) C:\Windows\SysWOW64\igfx11cmrt32.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00155092 _____ C:\Windows\system32\resESN.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00154728 _____ (Intel Corporation) C:\Windows\system32\difx64.exe
2015-09-23 18:09 - 2000-01-01 02:00 - 00154660 _____ C:\Windows\system32\resPLK.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00154516 _____ C:\Windows\system32\resSKY.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00154324 _____ C:\Windows\system32\resNLD.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00153764 _____ C:\Windows\system32\resPTB.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00153620 _____ C:\Windows\system32\resTRK.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00153604 _____ C:\Windows\system32\resCSY.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00153460 _____ C:\Windows\system32\resPTG.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00153060 _____ C:\Windows\system32\resFIN.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00152612 _____ C:\Windows\system32\resHRV.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00152164 _____ C:\Windows\system32\resSVE.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00152004 _____ C:\Windows\system32\resSLV.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00151060 _____ C:\Windows\system32\resNOR.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00150548 _____ C:\Windows\system32\resDAN.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00149236 _____ C:\Windows\system32\resENU.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00147460 _____ C:\Windows\system32\resCHT.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00146628 _____ C:\Windows\system32\resCHS.cui
2015-09-23 18:09 - 2000-01-01 02:00 - 00143872 _____ C:\Windows\SysWOW64\igdail32.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00086528 _____ C:\Windows\system32\igfxCUIServicePS.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00069632 _____ ( ) C:\Windows\system32\igfxDHLibv2_0.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00059392 _____ ( ) C:\Windows\system32\igfxDHLib.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00031448 _____ (Intel Corporation) C:\Windows\system32\igfxexps.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00030720 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxexps32.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00010752 _____ ( ) C:\Windows\system32\igfxDILib.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00010240 _____ ( ) C:\Windows\system32\igfxEMLibv2_0.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00010240 _____ ( ) C:\Windows\system32\igfxEMLib.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00010240 _____ ( ) C:\Windows\system32\igfxDILibv2_0.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00005120 _____ ( ) C:\Windows\system32\igfxLHMLibv2_0.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00005120 _____ ( ) C:\Windows\system32\igfxLHMLib.dll
2015-09-23 18:09 - 2000-01-01 02:00 - 00002564 _____ C:\Windows\system32\iglhxs64.vp
2015-09-23 18:08 - 2015-09-23 18:08 - 00000000 ____D C:\ProgramData\SlimWare Utilities, Inc
2015-09-23 18:07 - 2015-09-23 18:07 - 00000000 ____D C:\Users\Public\Documents\Downloaded Installers
2015-09-23 18:07 - 2015-09-23 18:07 - 00000000 ____D C:\Users\jemin\AppData\Local\Downloaded Installers
2015-09-23 18:06 - 2015-09-30 18:02 - 01023064 _____ C:\Users\jemin\Desktop\SlimDrivers-setup.exe
2015-09-23 18:05 - 2015-10-02 08:03 - 00002836 _____ C:\Windows\System32\Tasks\SlimDrivers Startup
2015-09-23 18:05 - 2015-10-02 08:03 - 00000410 _____ C:\Windows\Tasks\SlimDrivers Startup.job
2015-09-23 18:05 - 2015-09-23 18:07 - 00002483 _____ C:\Users\Public\Desktop\SlimDrivers.lnk
2015-09-23 17:37 - 2015-09-23 17:37 - 00002566 _____ C:\Windows\diagwrn.xml
2015-09-23 17:37 - 2015-09-23 17:37 - 00001908 _____ C:\Windows\diagerr.xml
2015-09-22 16:59 - 2015-09-22 16:59 - 00000147 _____ C:\Users\jemin\Desktop\Nový textový dokument.txt
2015-09-22 16:10 - 2015-09-22 16:10 - 00000000 ____D C:\Users\jemin\Desktop\kaja
2015-09-22 16:07 - 2015-09-22 16:07 - 00000000 ____D C:\Users\jemin\Documents\Electronic Arts
2015-09-22 15:47 - 2015-09-22 15:47 - 00001307 _____ C:\Users\jemin\Desktop\The Sims 4 Deluxe Edition.lnk
2015-09-22 15:47 - 2015-09-22 15:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GMT-MAX.ORG
2015-09-21 16:14 - 2015-07-15 01:35 - 00000000 ____D C:\Users\jemin\Desktop\3DMGAME-The.Sims.4.Crack.Only-3DM
2015-09-20 01:05 - 2015-09-30 18:02 - 06562656 _____ C:\Users\jemin\Downloads\FileZilla_3.14.0_win64-setup.exe
2015-09-15 13:46 - 2015-09-24 08:29 - 00000000 ____D C:\Users\jemin\Desktop\MalwareBytes.Anti-Malware.Premium.v2.1.6.1022.Incl.Keygen-AMPED
2015-09-14 12:26 - 2015-09-14 12:26 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-09-14 12:26 - 2015-09-14 12:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-10-02 11:04 - 2015-06-24 16:08 - 00000402 _____ C:\Windows\Tasks\HP Photo Creations Communicator.job
2015-10-02 11:04 - 2014-03-20 15:30 - 00000000 ____D C:\Users\jemin\AppData\Local\CrashDumps
2015-10-02 11:03 - 2014-05-08 14:35 - 00008776 _____ C:\Windows\SysWOW64\Cuckoo Clock.log
2015-10-02 10:40 - 2014-03-18 17:15 - 00000952 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-10-02 10:12 - 2014-05-11 07:47 - 00113880 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-10-02 10:11 - 2014-03-18 17:11 - 01415459 _____ C:\Windows\WindowsUpdate.log
2015-10-02 08:32 - 2014-11-11 20:03 - 00000000 ____D C:\Users\jemin\AppData\Roaming\FileZilla
2015-10-02 08:32 - 2009-07-14 06:45 - 00020192 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-10-02 08:32 - 2009-07-14 06:45 - 00020192 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-10-02 08:09 - 2009-07-26 20:41 - 00669904 _____ C:\Windows\system32\perfh005.dat
2015-10-02 08:09 - 2009-07-26 20:41 - 00142062 _____ C:\Windows\system32\perfc005.dat
2015-10-02 08:09 - 2009-07-14 07:13 - 01587976 _____ C:\Windows\system32\PerfStringBackup.INI
2015-10-02 08:06 - 2014-03-23 16:59 - 00003970 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{6E8F5136-D671-44DD-8634-E280556768FA}
2015-10-02 08:03 - 2015-08-30 11:23 - 00005955 _____ C:\Windows\setupact.log
2015-10-02 08:03 - 2015-05-13 16:20 - 00000000 _____ C:\Windows\SysWOW64\sinstall.log
2015-10-02 08:03 - 2014-03-20 12:12 - 00000000 ____D C:\ProgramData\NVIDIA
2015-10-02 08:03 - 2014-03-18 17:15 - 00000948 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-10-02 08:03 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-10-02 01:09 - 2014-05-10 17:37 - 00000000 ____D C:\AdwCleaner
2015-10-01 21:30 - 2014-03-20 16:53 - 00000000 ____D C:\Users\jemin\AppData\Roaming\Skype
2015-10-01 19:30 - 2014-03-18 17:12 - 00000000 ____D C:\Users\jemin
2015-10-01 19:10 - 2014-11-16 09:32 - 00000000 ____D C:\Program Files (x86)\CCleaner
2015-10-01 19:07 - 2015-08-09 06:36 - 00000000 ____D C:\Qoobox
2015-10-01 19:06 - 2009-07-14 04:34 - 00000215 _____ C:\Windows\system.ini
2015-10-01 19:00 - 2014-06-27 11:32 - 00000000 ____D C:\Users\jemin\Documents\antiviry
2015-10-01 18:51 - 2015-08-31 20:03 - 704750146 _____ C:\Windows\MEMORY.DMP
2015-10-01 18:51 - 2014-04-11 19:06 - 00000000 ____D C:\Windows\Minidump
2015-10-01 18:27 - 2014-03-20 15:14 - 00003138 _____ C:\Windows\System32\Tasks\FRAPS
2015-10-01 18:27 - 2014-03-20 15:14 - 00000000 ____D C:\Fraps
2015-10-01 18:25 - 2014-03-20 16:53 - 00000000 ____D C:\ProgramData\Skype
2015-10-01 18:25 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\Globalization
2015-09-30 18:02 - 2015-07-18 14:25 - 02614864 _____ C:\Users\jemin\Documents\TrueCrypt-7.2.exe
2015-09-30 18:02 - 2015-05-10 07:15 - 06560744 _____ C:\Users\jemin\Documents\Setup_FreeConverter.exe
2015-09-30 18:02 - 2015-03-30 17:01 - 01618984 _____ C:\Users\jemin\Documents\cpu-z_1.71-setup-en.exe
2015-09-24 18:11 - 2015-04-15 12:07 - 00129697 _____ C:\Windows\DirectX.log
2015-09-24 09:04 - 2014-05-30 10:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-09-24 09:04 - 2014-03-18 17:27 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-09-24 08:45 - 2014-03-18 17:15 - 00000000 ____D C:\Users\jemin\AppData\Local\Google
2015-09-24 08:01 - 2014-03-18 17:19 - 00000000 ___HD C:\Program Files (x86)\Temp
2015-09-24 08:00 - 2014-03-18 17:18 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2015-09-23 17:37 - 2015-08-30 11:23 - 00000000 _____ C:\Windows\setuperr.log
2015-09-23 15:12 - 2014-11-18 16:56 - 00000000 ____D C:\Users\jemin\Documents\Assassin's Creed Unity
2015-09-22 16:04 - 2015-08-31 20:03 - 00000000 ____D C:\temp
2015-09-22 16:04 - 2014-10-20 18:13 - 00000000 ____D C:\Windows\SysWOW64\directx
2015-09-22 16:03 - 2014-03-20 15:08 - 00000000 ____D C:\ProgramData\Package Cache
2015-09-22 15:11 - 2015-04-16 12:58 - 00780488 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-09-22 15:11 - 2015-04-16 12:58 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-09-21 16:27 - 2014-11-11 20:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
2015-09-21 16:27 - 2014-11-11 20:03 - 00000000 ____D C:\Program Files (x86)\FileZilla FTP Client
2015-09-19 20:54 - 2009-07-14 07:08 - 00032582 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2015-09-19 20:53 - 2014-03-18 17:15 - 00000000 ____D C:\ProgramData\Google
2015-09-19 20:53 - 2014-03-18 17:15 - 00000000 ____D C:\Program Files\Google
2015-09-19 20:53 - 2014-03-18 17:15 - 00000000 ____D C:\Program Files (x86)\Google
2015-09-19 20:51 - 2014-04-03 16:18 - 00000000 ____D C:\Users\jemin\AppData\Local\Adobe
2015-09-16 21:35 - 2014-03-18 17:15 - 00003948 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-09-16 21:35 - 2014-03-18 17:15 - 00003696 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-09-16 10:41 - 2015-04-27 17:46 - 00000000 ____D C:\Users\jemin\AppData\Roaming\Trine3
2015-09-16 10:32 - 2015-05-20 02:18 - 00000000 ____D C:\Users\jemin\Documents\The Witcher 3
2015-09-14 02:29 - 2015-08-13 18:27 - 15513208 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2015-09-14 02:29 - 2015-07-30 21:40 - 14635600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2015-09-14 02:29 - 2014-08-09 08:24 - 17082928 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2015-09-14 02:29 - 2014-08-09 08:24 - 12514824 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2015-09-14 02:29 - 2014-08-09 08:24 - 03530608 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2015-09-14 02:29 - 2014-03-20 12:12 - 00033079 _____ C:\Windows\system32\nvinfo.pb
2015-09-14 02:29 - 2014-03-20 12:11 - 03116160 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2015-09-14 00:09 - 2014-03-20 12:12 - 06884984 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2015-09-14 00:09 - 2014-03-20 12:12 - 03496056 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2015-09-14 00:09 - 2014-03-20 12:12 - 02558584 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2015-09-14 00:09 - 2014-03-20 12:12 - 00937776 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2015-09-14 00:09 - 2014-03-20 12:12 - 00385144 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2015-09-14 00:09 - 2014-03-20 12:12 - 00062584 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2015-09-11 14:17 - 2014-03-20 12:12 - 05231082 _____ C:\Windows\system32\nvcoproc.bin

==================== Files in the root of some directories =======

2014-03-20 19:44 - 2014-03-20 19:45 - 0000156 _____ () C:\Users\jemin\AppData\Roaming\default.rss
2014-10-08 16:49 - 2014-05-24 21:09 - 0042496 ___SH (Open Source Software community project) C:\Users\jemin\AppData\Roaming\pthreadGC2-w64.dll
2014-03-29 09:04 - 2015-08-14 16:32 - 0017920 _____ () C:\Users\jemin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-05-30 07:41 - 2014-06-02 06:48 - 0007618 _____ () C:\Users\jemin\AppData\Local\Resmon.ResmonCfg
2014-03-31 15:50 - 2014-03-31 15:50 - 0000080 _____ () C:\Users\jemin\AppData\Local\X-Plane Installer.prf
2014-03-31 15:28 - 2014-03-31 15:28 - 0000020 _____ () C:\Users\jemin\AppData\Local\x-plane_install_10.txt
2014-05-21 14:50 - 2014-05-21 14:50 - 0000057 _____ () C:\ProgramData\Ament.ini
2015-09-24 08:01 - 2015-09-24 08:01 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Files to move or delete:
====================
C:\Program Files (x86)\OKsoftware\Svátky a výročí\Vyroci.exe

Some files in TEMP:
====================
C:\Users\jemin\AppData\Local\Temp\sqlite3.dll

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2015-10-01 23:15

==================== End of FRST.txt ============================

Nevím, co jste dělal, ale podle logu FRST vůbec nemazal. Zkuste to znovu.

nejde ani psát,po každém kliknutí musim odkliknout -ve skriptu na vaší stránce došlo k chybě.pak jedno písmeno a znovu.

fixlist.txt. jsem vytvořil na ploše,vložil co jste napsal,pak pustim FRST64,scan,pak fix-no fixlist.txt found,the fixlist.txt should be in the same folder/direktory the tool is located

Zkuste to v nouz. režimu.

VIRY.CZ

svchost.com ,se ukazuje a blokuje vše

svchost.com ,se ukazuje a blokuje vše

Re: svchost.com ,se ukazuje a blokuje vše

Re: svchost.com ,se ukazuje a blokuje vše

Re: svchost.com ,se ukazuje a blokuje vše

Re: svchost.com ,se ukazuje a blokuje vše

Re: svchost.com ,se ukazuje a blokuje vše

Re: svchost.com ,se ukazuje a blokuje vše

Re: svchost.com ,se ukazuje a blokuje vše

Re: svchost.com ,se ukazuje a blokuje vše

Re: svchost.com ,se ukazuje a blokuje vše

Re: svchost.com ,se ukazuje a blokuje vše

Re: svchost.com ,se ukazuje a blokuje vše

Re: svchost.com ,se ukazuje a blokuje vše

Re: svchost.com ,se ukazuje a blokuje vše

Re: svchost.com ,se ukazuje a blokuje vše