Velké vytížení CPU, disku a paměti kvůli svchost.exe
Napsal: 21 srp 2016 15:36
Dobrý den,
před dvěma měsíci jsem tu řešil velké vytížení CPU procesem s názvem svchost.exe. (viz. vlákno zde Bohužel, kvůli větším zvratům v životě jsem nebyl schopen nadále odpovídat a postupovat podle pokynu moderátora Márty84, za což se mu omlouvám a chtěl bych poděkovat za jeho snahu pomoc.
Bohužel od té doby se nic nezměnilo a stále mám problém s velkým vytížením CPU, paměti, disku a stále nevím co to způsobuje. Prosím tedy o kontrolu aktuálního logu. (Pod odkazy jsou obrázky ze sledování prostředků)
Zkoušel jsem to vyřešit podle tohoto návodu až po krok 3
Kód:
FRST log:
před dvěma měsíci jsem tu řešil velké vytížení CPU procesem s názvem svchost.exe. (viz. vlákno zde Bohužel, kvůli větším zvratům v životě jsem nebyl schopen nadále odpovídat a postupovat podle pokynu moderátora Márty84, za což se mu omlouvám a chtěl bych poděkovat za jeho snahu pomoc.
Bohužel od té doby se nic nezměnilo a stále mám problém s velkým vytížením CPU, paměti, disku a stále nevím co to způsobuje. Prosím tedy o kontrolu aktuálního logu. (Pod odkazy jsou obrázky ze sledování prostředků)
Zkoušel jsem to vyřešit podle tohoto návodu až po krok 3
Kód:
Předem moc děkuji komukoliv za pomoc. A slibuji že tentokrát to dotáhnu až dokonce.
FRST log:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 21-08-2016
Ran by Michal Svoboda (administrator) on MICHAL-PC (21-08-2016 16:10:44)
Running from C:\Users\Michal Svoboda\Desktop
Loaded Profiles: Michal Svoboda (Available Profiles: Michal Svoboda)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Opera)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgrsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgcsrva.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvscpapisvr.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\WTabletServicePro.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
(Nero AG) E:\Programy\HTC\HSMServiceEntry.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Updater\UpdaterService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgnsa.exe
(Nero AG) C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgemca.exe
(NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
(NTI, Inc.) C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
() C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
(pdfforge GmbH) C:\Program Files (x86)\PDF Architect 2\creator-ws.exe
(Protexis Inc.) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(arvato digital services llc) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
() C:\Program Files (x86)\Acronis\DiskDirector\OSS\reinstall_svc.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(InterVideo) C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe
(Wacom Technology) C:\Program Files\Tablet\Wacom\WacomHost.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
() E:\Programy\HTC\HTC Sync\adb.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe
(Flux Software LLC) C:\Users\Michal Svoboda\AppData\Local\FluxSoftware\Flux\flux.exe
(BitTorrent Inc.) C:\Users\Michal Svoboda\AppData\Roaming\BitTorrent\BitTorrent.exe
(Dropbox, Inc.) C:\Users\Michal Svoboda\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Skillbrains) C:\Program Files (x86)\Skillbrains\lightshot\5.3.0.0\Lightshot.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ink\InputPersonalization.exe
(BitTorrent Inc.) C:\Users\Michal Svoboda\AppData\Roaming\BitTorrent\updates\7.9.8_42450\utorrentie.exe
(BitTorrent Inc.) C:\Users\Michal Svoboda\AppData\Roaming\BitTorrent\updates\7.9.8_42450\utorrentie.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(forum.viry.cz) C:\Users\Michal Svoboda\Desktop\FRSTLauncher.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [10920552 2010-06-22] (Realtek Semiconductor)
HKLM\...\Run: [ETDWare] => C:\Program Files\Elantech\ETDCtrl.exe [2873744 2012-10-05] (ELAN Microelectronics Corp.)
HKLM\...\Run: [AtherosBtStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [617120 2011-03-13] (Atheros Communications)
HKLM\...\Run: [AthBtTray] => C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [379552 2011-03-13] (Atheros Commnucations)
HKLM\...\Run: [Acer ePower Management] => C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe [860040 2011-01-05] (Acer Incorporated)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2397120 2016-06-14] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\nvspcap64.dll [1767944 2016-06-14] (NVIDIA Corporation)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2873744 2012-10-05] (ELAN Microelectronics Corp.)
HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\AVG2015\avgui.exe [3820440 2016-04-21] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [226560 2014-10-16] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
HKU\S-1-5-21-2975559012-1733139113-1428487623-1001\...\Run: [f.lux] => C:\Users\Michal Svoboda\AppData\Local\FluxSoftware\Flux\flux.exe [1017224 2013-10-24] (Flux Software LLC)
HKU\S-1-5-21-2975559012-1733139113-1428487623-1001\...\Run: [BitTorrent] => C:\Users\Michal Svoboda\AppData\Roaming\BitTorrent\BitTorrent.exe [2140680 2016-08-13] (BitTorrent Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Michal Svoboda\AppData\Roaming\Dropbox\bin\DropboxExt64.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Michal Svoboda\AppData\Roaming\Dropbox\bin\DropboxExt64.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Michal Svoboda\AppData\Roaming\Dropbox\bin\DropboxExt64.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Michal Svoboda\AppData\Roaming\Dropbox\bin\DropboxExt64.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Michal Svoboda\AppData\Roaming\Dropbox\bin\DropboxExt64.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Michal Svoboda\AppData\Roaming\Dropbox\bin\DropboxExt64.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Michal Svoboda\AppData\Roaming\Dropbox\bin\DropboxExt64.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Michal Svoboda\AppData\Roaming\Dropbox\bin\DropboxExt64.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Michal Svoboda\AppData\Roaming\Dropbox\bin\DropboxExt64.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt9] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Michal Svoboda\AppData\Roaming\Dropbox\bin\DropboxExt64.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [.QMDeskTopGCIcon] -> {B7667919-3765-4815-A66D-98A09BE662D6} => No File
ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Michal Svoboda\AppData\Roaming\Dropbox\bin\DropboxExt.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Michal Svoboda\AppData\Roaming\Dropbox\bin\DropboxExt.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Michal Svoboda\AppData\Roaming\Dropbox\bin\DropboxExt.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Michal Svoboda\AppData\Roaming\Dropbox\bin\DropboxExt.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Michal Svoboda\AppData\Roaming\Dropbox\bin\DropboxExt.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Michal Svoboda\AppData\Roaming\Dropbox\bin\DropboxExt.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Michal Svoboda\AppData\Roaming\Dropbox\bin\DropboxExt.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Michal Svoboda\AppData\Roaming\Dropbox\bin\DropboxExt.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Michal Svoboda\AppData\Roaming\Dropbox\bin\DropboxExt.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt9] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Michal Svoboda\AppData\Roaming\Dropbox\bin\DropboxExt.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Michal Svoboda\AppData\Roaming\Dropbox\bin\DropboxExt.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Michal Svoboda\AppData\Roaming\Dropbox\bin\DropboxExt.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Michal Svoboda\AppData\Roaming\Dropbox\bin\DropboxExt.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Michal Svoboda\AppData\Roaming\Dropbox\bin\DropboxExt.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Michal Svoboda\AppData\Roaming\Dropbox\bin\DropboxExt.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Michal Svoboda\AppData\Roaming\Dropbox\bin\DropboxExt.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Michal Svoboda\AppData\Roaming\Dropbox\bin\DropboxExt.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Michal Svoboda\AppData\Roaming\Dropbox\bin\DropboxExt.40.dll [2016-08-16] (Dropbox, Inc.)
Startup: C:\Users\Michal Svoboda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Curse.lnk [2016-06-17]
ShortcutTarget: Curse.lnk -> C:\Users\Michal Svoboda\AppData\Roaming\Curse Client\Bin\Curse.exe (Curse, Inc)
Startup: C:\Users\Michal Svoboda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2016-08-19]
ShortcutTarget: Dropbox.lnk -> C:\Users\Michal Svoboda\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{40F8FC58-9C5C-4E0A-B1A9-E5B58FE17AFA}: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{D9F52380-28A5-4A8F-A50A-1E88C0C5352E}: [DhcpNameServer] 10.0.0.138
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-2975559012-1733139113-1428487623-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-2975559012-1733139113-1428487623-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKU\S-1-5-21-2975559012-1733139113-1428487623-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2975559012-1733139113-1428487623-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corp.)
BHO-x32: PDF Architect Helper -> {691B33B0-B86E-47F3-81C7-56E4FE3B929C} -> C:\Program Files (x86)\PDF Architect 2\creator-ie-helper.dll [2014-10-10] (pdfforge GmbH)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll [2016-06-16] (Oracle Corporation)
BHO-x32: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2011-03-13] (Atheros Commnucations)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corp.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-06-16] (Oracle Corporation)
Toolbar: HKLM-x32 - PDF Architect Toolbar - {DEEB13D7-CEA9-45FB-B77C-E039BEC85221} - C:\Program Files (x86)\PDF Architect 2\creator-ie-plugin.dll [2014-10-10] (pdfforge GmbH)
FireFox:
========
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin-x32: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-06-16] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-06-16] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-08-11] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-08-11] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-28] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-28] (Google Inc.)
FF Plugin-x32: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2016-06-23] (Adobe Systems Inc.)
FF Plugin-x32: wacom.com/WacomTabletPlugin -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin HKU\S-1-5-21-2975559012-1733139113-1428487623-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Michal Svoboda\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2016-03-11] (Unity Technologies ApS)
FF HKLM-x32\...\Firefox\Extensions: [pdf_architect_2_conv@pdfarchitect.org] - C:\Program Files (x86)\PDF Architect 2\resources\pdfarchitect2firefoxextension
FF Extension: PDF Architect 2 Creator - C:\Program Files (x86)\PDF Architect 2\resources\pdfarchitect2firefoxextension [2015-02-23] [not signed]
Chrome:
=======
CHR StartupUrls: Default -> "hxxp://www.centrum.cz/"
CHR Profile: C:\Users\Michal Svoboda\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Users\Michal Svoboda\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-02-09]
CHR Extension: (Dokumenty Google) - C:\Users\Michal Svoboda\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-20]
CHR Extension: (Disk Google) - C:\Users\Michal Svoboda\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-24]
CHR Extension: (Seznam Lištička - Email) - C:\Users\Michal Svoboda\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2016-03-13]
CHR Extension: (Seznam Lištička - Slovník) - C:\Users\Michal Svoboda\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2016-03-13]
CHR Extension: (YouTube) - C:\Users\Michal Svoboda\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-29]
CHR Extension: (Vyhledávání Google) - C:\Users\Michal Svoboda\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-08]
CHR Extension: (Tabulky Google) - C:\Users\Michal Svoboda\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-02-09]
CHR Extension: (Dokumenty Google offline) - C:\Users\Michal Svoboda\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-30]
CHR Extension: (AdBlock) - C:\Users\Michal Svoboda\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-08-04]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Michal Svoboda\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-19]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\Michal Svoboda\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2016-08-19]
CHR Extension: (Gmail) - C:\Users\Michal Svoboda\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-19]
CHR Extension: (Chrome Media Router) - C:\Users\Michal Svoboda\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-08-19]
Opera:
=======
OPR Extension: (SimpleUndoClose) - C:\Users\Michal Svoboda\AppData\Roaming\Opera Software\Opera Stable\Extensions\aipamoaneebnhkfefefbfmhimclgafig [2016-03-10]
OPR Extension: (Youtube to mp3 converter) - C:\Users\Michal Svoboda\AppData\Roaming\Opera Software\Opera Stable\Extensions\geioidjhliialbjcekeejcodiahfplgb [2015-02-09]
OPR Extension: (Page Reloader) - C:\Users\Michal Svoboda\AppData\Roaming\Opera Software\Opera Stable\Extensions\ihgmkjndkcpofmdijpingloiacjlklco [2015-02-09]
OPR Extension: (Adblock Plus) - C:\Users\Michal Svoboda\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp [2016-06-29]
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2159832 2016-08-12] (Adobe Systems, Incorporated)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [74912 2011-03-13] (Atheros Commnucations) [File not signed]
R2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe [3647384 2016-04-21] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe [336152 2016-04-21] (AVG Technologies CZ, s.r.o.)
S3 BRSptStub; C:\ProgramData\BitRaider\BRSptStub.exe [363208 2015-03-16] (BitRaider, LLC)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1163712 2016-06-14] (NVIDIA Corporation)
R2 HTCMonitorService; E:\Programy\HTC\HSMServiceEntry.exe [87368 2014-06-27] (Nero AG)
R2 NTISchedulerSvc; C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [144640 2010-04-17] (NTI, Inc.)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1879488 2016-06-14] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [3632576 2016-06-14] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2521024 2016-06-14] (NVIDIA Corporation)
S3 Origin Client Service; E:\Hry\Origin\OriginClientService.exe [2122248 2016-07-19] (Electronic Arts)
R2 OS Selector; C:\Program Files (x86)\Acronis\DiskDirector\OSS\reinstall_svc.exe [2139400 2010-05-25] ()
R2 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [166912 2013-10-17] () [File not signed]
S3 PDF Architect 2; C:\Program Files (x86)\PDF Architect 2\ws.exe [1771560 2014-10-10] (pdfforge GmbH)
R2 PDF Architect 2 Creator; C:\Program Files (x86)\PDF Architect 2\creator-ws.exe [738856 2014-10-10] (pdfforge GmbH)
S3 pdfforge CrashHandler; C:\Program Files (x86)\PDF Architect 2\crash-handler-ws.exe [861736 2014-10-10] (pdfforge GmbH)
R2 PSI_SVC_2_x64; C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [337776 2014-04-30] (arvato digital services llc)
R2 RS_Service; C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe [260640 2010-01-29] (Acer Incorporated)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [7248144 2016-08-08] (TeamViewer GmbH)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 WTabletServicePro; C:\Program Files\Tablet\Wacom\WTabletServicePro.exe [652240 2016-07-14] (Wacom Technology, Corp.)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [162784 2015-03-11] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [315312 2015-12-16] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [299440 2016-01-13] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [296368 2015-12-16] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [378336 2015-05-07] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [255920 2016-01-22] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [40928 2015-03-20] (AVG Technologies CZ, s.r.o.)
R1 Avgtdia; C:\Windows\System32\DRIVERS\avgtdia.sys [300464 2015-08-04] (AVG Technologies CZ, s.r.o.)
S3 BRDriver64_1_3_3_E02B25FC; C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver64.sys [78088 2015-03-17] (BitRaider)
S3 BtFilter; C:\Windows\System32\DRIVERS\btfilter.sys [280224 2011-03-13] (Atheros) [File not signed]
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2015-02-18] (Disc Soft Ltd)
S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
S0 fgvgkmx; C:\Windows\SysWOW64\drivers\dfsq.sys [61440 2016-03-18] () [File not signed]
S3 HtcVCom32; C:\Windows\System32\DRIVERS\HtcVComV64.sys [121800 2010-03-09] (QUALCOMM Incorporated)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [26560 2016-06-14] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [56384 2016-04-14] (NVIDIA Corporation)
S4 secdrv; C:\Windows\SysWow64\Drivers\secdrv.sys [11376 2016-01-25] () [File not signed]
S3 WacHidRouterPro; C:\Windows\System32\DRIVERS\wachidrouter.sys [102864 2016-03-03] (Wacom Technology)
S0 zhyq; C:\Windows\SysWOW64\drivers\ltpyb.sys [61440 2016-03-18] () [File not signed]
S3 ALSysIO; \??\C:\Users\MICHAL~1\AppData\Local\Temp\ALSysIO64.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-08-21 16:10 - 2016-08-21 16:11 - 00028689 _____ C:\Users\Michal Svoboda\Desktop\FRST.txt
2016-08-21 15:51 - 2016-08-21 15:51 - 00000000 ____D C:\Users\Michal Svoboda\AppData\LocalLow\BitTorrent
2016-08-21 15:09 - 2016-08-21 16:10 - 00000000 ____D C:\FRST
2016-08-21 15:08 - 2016-08-21 15:05 - 02395648 _____ (Farbar) C:\Users\Michal Svoboda\Desktop\FRST64.exe
2016-08-21 15:08 - 2016-08-21 15:04 - 00112640 _____ (forum.viry.cz) C:\Users\Michal Svoboda\Desktop\FRSTLauncher.exe
2016-08-21 11:37 - 2016-08-21 15:38 - 00000000 ____D C:\ProgramData\NVIDIA
2016-08-21 11:37 - 2016-08-21 11:37 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2016-08-21 11:37 - 2016-08-11 13:49 - 06384576 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2016-08-21 11:37 - 2016-08-11 13:49 - 02469944 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2016-08-21 11:37 - 2016-08-11 13:49 - 01764408 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2016-08-21 11:37 - 2016-08-11 13:49 - 01363392 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2016-08-21 11:37 - 2016-08-11 13:49 - 00548920 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2016-08-21 11:37 - 2016-08-11 13:49 - 00392128 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2016-08-21 11:37 - 2016-08-11 13:49 - 00081856 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2016-08-21 11:37 - 2016-08-11 13:49 - 00069568 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2016-08-21 11:37 - 2016-08-11 13:22 - 00138808 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2016-08-21 11:37 - 2016-08-08 13:54 - 07255045 _____ C:\Windows\system32\nvcoproc.bin
2016-08-21 11:37 - 2016-05-04 04:23 - 00129824 _____ C:\Windows\SysWOW64\vulkan-1.dll
2016-08-21 11:37 - 2016-05-04 04:22 - 00130848 _____ C:\Windows\system32\vulkan-1.dll
2016-08-21 11:37 - 2016-05-04 04:22 - 00045344 _____ C:\Windows\system32\vulkaninfo.exe
2016-08-21 11:37 - 2016-05-04 04:22 - 00040224 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2016-08-21 11:29 - 2016-08-16 07:19 - 00223304 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2016-08-21 11:29 - 2016-08-16 07:19 - 00054728 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2016-08-21 11:29 - 2016-08-11 16:31 - 40068544 _____ C:\Windows\system32\nvcompiler.dll
2016-08-21 11:29 - 2016-08-11 16:31 - 35182648 _____ C:\Windows\SysWOW64\nvcompiler.dll
2016-08-21 11:29 - 2016-08-11 16:31 - 34798528 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2016-08-21 11:29 - 2016-08-11 16:31 - 28203968 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2016-08-21 11:29 - 2016-08-11 16:31 - 19832440 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2016-08-21 11:29 - 2016-08-11 16:31 - 17462904 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2016-08-21 11:29 - 2016-08-11 16:31 - 17249896 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2016-08-21 11:29 - 2016-08-11 16:31 - 14352304 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2016-08-21 11:29 - 2016-08-11 16:31 - 14075960 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2016-08-21 11:29 - 2016-08-11 16:31 - 10719920 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2016-08-21 11:29 - 2016-08-11 16:31 - 10530960 _____ C:\Windows\system32\nvptxJitCompiler.dll
2016-08-21 11:29 - 2016-08-11 16:31 - 10264136 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2016-08-21 11:29 - 2016-08-11 16:31 - 09078776 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2016-08-21 11:29 - 2016-08-11 16:31 - 08674320 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2016-08-21 11:29 - 2016-08-11 16:31 - 08644640 _____ C:\Windows\SysWOW64\nvptxJitCompiler.dll
2016-08-21 11:29 - 2016-08-11 16:31 - 03911624 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2016-08-21 11:29 - 2016-08-11 16:31 - 03597248 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2016-08-21 11:29 - 2016-08-11 16:31 - 03451904 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2016-08-21 11:29 - 2016-08-11 16:31 - 03166264 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2016-08-21 11:29 - 2016-08-11 16:31 - 01922616 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6437254.dll
2016-08-21 11:29 - 2016-08-11 16:31 - 01586744 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6437254.dll
2016-08-21 11:29 - 2016-08-11 16:31 - 01021888 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2016-08-21 11:29 - 2016-08-11 16:31 - 00958912 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2016-08-21 11:29 - 2016-08-11 16:31 - 00945088 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2016-08-21 11:29 - 2016-08-11 16:31 - 00897592 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2016-08-21 11:29 - 2016-08-11 16:31 - 00695136 _____ C:\Windows\system32\nvfatbinaryLoader.dll
2016-08-21 11:29 - 2016-08-11 16:31 - 00584896 _____ C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2016-08-21 11:29 - 2016-08-11 16:31 - 00039731 _____ C:\Windows\system32\nvinfo.pb
2016-08-21 11:29 - 2016-08-11 16:31 - 00000669 _____ C:\Windows\SysWOW64\nv-vk32.json
2016-08-21 11:29 - 2016-08-11 16:31 - 00000669 _____ C:\Windows\system32\nv-vk64.json
2016-08-21 10:48 - 2016-04-14 07:38 - 00113216 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2016-08-21 10:48 - 2016-04-14 07:38 - 00102976 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2016-08-21 10:48 - 2016-04-14 07:38 - 00056384 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2016-08-19 22:52 - 2016-08-19 22:52 - 00000000 ____D C:\Users\Michal Svoboda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2016-08-17 15:58 - 2016-08-17 15:58 - 00036342 _____ C:\Users\Michal Svoboda\Desktop\Vojta.cdr
2016-08-16 12:21 - 2016-08-16 15:40 - 00027289 _____ C:\Users\Michal Svoboda\Desktop\Sokec.xlsx
2016-08-05 11:22 - 2016-08-05 11:52 - 00011449 _____ C:\Users\Michal Svoboda\Desktop\Sokec - nábytek.xlsx
2016-08-05 11:21 - 2016-08-05 11:28 - 00012530 _____ C:\Users\Michal Svoboda\Desktop\Sokec - kuchyně.xlsx
2016-08-05 11:10 - 2016-08-05 11:21 - 00011871 _____ C:\Users\Michal Svoboda\Desktop\Sokec 1.xlsx
2016-07-28 22:59 - 2016-07-28 22:59 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wacom Tablet
2016-07-28 00:46 - 2016-07-28 00:46 - 00000715 _____ C:\Users\Public\Desktop\StarCraft II.lnk
2016-07-28 00:46 - 2016-07-28 00:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StarCraft II
2016-07-27 09:45 - 2016-07-27 09:45 - 00000000 ____D C:\Users\Michal Svoboda\AppData\LocalLow\Jazza Studios
2016-07-26 20:56 - 2016-07-26 20:56 - 00000210 _____ C:\Users\Michal Svoboda\Desktop\The Darkness II.url
2016-07-26 20:53 - 2016-07-26 20:53 - 00000210 _____ C:\Users\Michal Svoboda\Desktop\The Bureau XCOM Declassified.url
2016-07-24 23:14 - 2016-07-24 23:14 - 00000000 ___RH C:\Users\Public\Documents\NTILiveUpdate.dll
2016-07-23 23:12 - 2016-08-16 15:53 - 00000975 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 11.lnk
2016-07-23 23:12 - 2016-08-16 15:53 - 00000963 _____ C:\Users\Public\Desktop\TeamViewer 11.lnk
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-08-21 16:12 - 2015-02-09 18:26 - 00000000 ____D C:\Users\Michal Svoboda\AppData\Roaming\BitTorrent
2016-08-21 16:00 - 2015-02-18 22:43 - 00000000 ____D C:\Users\Michal Svoboda\AppData\Local\CrashDumps
2016-08-21 16:00 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf
2016-08-21 15:56 - 2015-05-12 23:01 - 00000000 ____D C:\Program Files\Adobe
2016-08-21 15:56 - 2015-05-12 22:58 - 00000000 ____D C:\Program Files\Common Files\Adobe
2016-08-21 15:56 - 2015-02-08 22:39 - 00000000 ____D C:\Users\Michal Svoboda\AppData\Roaming\Adobe
2016-08-21 15:56 - 2015-02-08 22:39 - 00000000 ____D C:\Users\Michal Svoboda\AppData\Local\Adobe
2016-08-21 15:54 - 2009-07-14 06:45 - 00016976 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-08-21 15:54 - 2009-07-14 06:45 - 00016976 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-08-21 15:51 - 2016-06-17 00:28 - 00000000 ____D C:\Users\Michal Svoboda\AppData\Roaming\Curse Client
2016-08-21 15:51 - 2015-12-17 21:29 - 00000516 _____ C:\Windows\Tasks\MATLAB R2013b Startup Accelerator.job
2016-08-21 15:49 - 2015-11-06 21:28 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-08-21 15:49 - 2015-06-28 12:38 - 00000000 ____D C:\Users\Michal Svoboda\AppData\Local\HTC MediaHub
2016-08-21 15:49 - 2015-02-09 18:16 - 00000948 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-08-21 15:38 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-08-21 15:28 - 2015-02-09 18:16 - 00000952 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-08-21 15:28 - 2011-04-07 10:32 - 00000000 ____D C:\Program Files (x86)\Adobe
2016-08-21 15:09 - 2015-04-10 09:14 - 00007615 _____ C:\Users\Michal Svoboda\AppData\Local\Resmon.ResmonCfg
2016-08-21 15:08 - 2015-03-15 21:53 - 183857152 _____ C:\Users\Michal Svoboda\AppData\Local\SageThumbs.db3
2016-08-21 15:00 - 2015-02-10 02:24 - 00000000 ____D C:\Users\Michal Svoboda\AppData\Local\Battle.net
2016-08-21 14:38 - 2015-06-21 11:30 - 00000954 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-2975559012-1733139113-1428487623-1001UA.job
2016-08-21 11:38 - 2015-12-07 00:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2016-08-21 11:38 - 2015-02-08 21:59 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-08-21 11:38 - 2015-02-08 21:59 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-08-21 11:36 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\Help
2016-08-21 10:50 - 2015-12-07 00:08 - 00000000 ____D C:\Users\Michal Svoboda\AppData\Local\NVIDIA
2016-08-21 10:50 - 2015-12-07 00:07 - 00000000 ____D C:\Users\Michal Svoboda\AppData\Local\NVIDIA Corporation
2016-08-21 10:10 - 2015-06-21 11:30 - 00000902 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-2975559012-1733139113-1428487623-1001Core.job
2016-08-21 10:04 - 2015-02-08 22:43 - 00000000 ____D C:\ProgramData\MFAData
2016-08-21 10:01 - 2015-02-09 01:01 - 00000892 _____ C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job
2016-08-20 22:45 - 2016-04-11 17:58 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2016-08-19 22:52 - 2015-02-09 19:54 - 00000000 ____D C:\Users\Michal Svoboda\AppData\Roaming\Dropbox
2016-08-16 07:19 - 2015-12-06 23:45 - 01588688 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2016-08-15 19:00 - 2015-10-19 16:51 - 00000000 ____D C:\Users\Michal Svoboda\AppData\Local\JDownloader 2.0
2016-08-04 23:47 - 2015-02-09 18:20 - 00002199 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-08-04 23:43 - 2015-02-09 00:22 - 00003848 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1423434164
2016-08-04 23:43 - 2015-02-09 00:22 - 00000000 ____D C:\Program Files (x86)\Opera
2016-07-31 18:57 - 2015-02-08 22:59 - 00000000 ____D C:\Users\Michal Svoboda\AppData\Roaming\Skype
2016-07-28 22:57 - 2016-03-02 21:12 - 00000000 ____D C:\Program Files\Tablet
2016-07-28 22:23 - 2015-02-09 18:16 - 00003948 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-07-28 22:23 - 2015-02-09 18:16 - 00003696 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2016-07-28 18:45 - 2015-11-28 16:04 - 00000000 ____D C:\Users\Michal Svoboda\Documents\StarCraft II
2016-07-28 18:38 - 2015-02-13 21:16 - 00000000 ____D C:\Users\Michal Svoboda\AppData\Roaming\vlc
2016-07-28 16:57 - 2015-02-10 02:24 - 00000000 ____D C:\Users\Michal Svoboda\AppData\Local\Blizzard Entertainment
2016-07-27 18:00 - 2016-03-05 00:42 - 00000034 _____ C:\Users\Michal Svoboda\AppData\Roaming\AdobeWLCMCache.dat
2016-07-26 22:28 - 2015-02-15 17:49 - 00000815 _____ C:\Users\Michal Svoboda\Desktop\Hesla.TXT
2016-07-24 21:42 - 2015-02-22 12:51 - 00000000 ____D C:\Users\Michal Svoboda\AppData\Local\ElevatedDiagnostics
2016-07-22 00:12 - 2015-02-19 15:40 - 00000000 ____D C:\ProgramData\Package Cache
==================== Files in the root of some directories =======
2016-03-18 11:25 - 2016-03-18 11:25 - 0000482 _____ () C:\Program Files (x86)\bfyijku.txt
2016-03-18 10:57 - 2016-03-18 10:57 - 0000482 _____ () C:\Program Files (x86)\jqfdqiu.txt
2016-03-18 12:08 - 2016-03-18 12:08 - 0000482 _____ () C:\Program Files (x86)\ndxcxibg.txt
2015-07-28 20:14 - 2016-01-11 11:19 - 0000132 _____ () C:\Users\Michal Svoboda\AppData\Roaming\Adobe Formát PNG CS5 – předvolby
2016-03-05 00:42 - 2016-07-27 18:00 - 0000034 _____ () C:\Users\Michal Svoboda\AppData\Roaming\AdobeWLCMCache.dat
2015-08-17 01:27 - 2015-08-16 15:49 - 0012005 _____ () C:\Users\Michal Svoboda\AppData\Roaming\alsoft.ini
2015-08-27 13:20 - 2015-08-27 13:30 - 0003578 _____ () C:\Users\Michal Svoboda\AppData\Roaming\droid4xinstaller.log
2016-03-17 17:33 - 2016-03-17 17:33 - 0005120 _____ () C:\Users\Michal Svoboda\AppData\Roaming\GiftBag.db
2015-04-10 09:14 - 2016-08-21 15:09 - 0007615 _____ () C:\Users\Michal Svoboda\AppData\Local\Resmon.ResmonCfg
2015-03-15 21:53 - 2016-08-21 15:08 - 183857152 _____ () C:\Users\Michal Svoboda\AppData\Local\SageThumbs.db3
2015-11-04 11:03 - 2015-11-04 11:03 - 0000003 _____ () C:\Users\Michal Svoboda\AppData\Local\updater.log
2015-11-04 11:04 - 2015-11-04 11:04 - 0000424 _____ () C:\Users\Michal Svoboda\AppData\Local\UserProducts.xml
Some files in TEMP:
====================
C:\Users\Michal Svoboda\AppData\Local\Temp\nvStInst.exe
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
==================== MBR and Partition Table ==================
==================== Scheduled Tasks (whitelisted) ==================
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_22_0_0_209_pepper.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-2975559012-1733139113-1428487623-1001Core.job => C:\Users\Michal Svoboda\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-2975559012-1733139113-1428487623-1001UA.job => C:\Users\Michal Svoboda\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\MATLAB R2013b Startup Accelerator.job => E:\Programy\Matlab\bin\win64\MATLABStartupAccelerator.exe
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: AVG AntiVirus Free Edition 2015 (Enabled - Up to date) {4D41356F-32AD-7C42-C820-63775EE4F413}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG AntiVirus Free Edition 2015 (Enabled - Up to date) {F620D48B-1497-73CC-F290-58052563BEAE}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\Michal Svoboda\Desktop" je 31 MB.
***** Startup Programs *****
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0
"C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS5ServiceManager
"C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BackupManagerTray
"C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe" -h -k [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BitTorrent
"C:\Users\Michal Svoboda\AppData\Roaming\BitTorrent\BitTorrent.exe" /MINIMIZED [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite
"C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Dropbox Update
"C:\Users\Michal Svoboda\AppData\Local\Dropbox\Update\DropboxUpdate.exe" /c [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IAStorIcon
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LManager
C:\Program Files (x86)\Launch Manager\LManager.exe
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MFNetworkScanUtility
C:\Program Files\Canon\Canon MF Network Scan Utility\CNMFSUT6.EXE
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam
"E:\Programy\Steam\steam.exe" -silent [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard
C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Acer VCM.lnk
C:\PROGRA~2\Acer\ACERVC~1\AcerVCM.exe
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000
==================== End Of Log ==============================
