VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Zpomalení PC po vytuhnutí

https://forum.viry.cz:443/viewtopic.php?t=149850

Stránka 1 z 1

Zpomalení PC po vytuhnutí

Napsal: 28 srp 2016 22:06
od kockopes
Ahoj,
po nuceném restartu se mi výrazně zpomalil PC. Navíc, přstala odpovídat DVD mechanika, která občas "probublá", jakoby chtěla zpracovat nějaké CD, které tam však vloženo není.
Zasílám logy z FRST a ADW - předpokládám, že bude také třeba:

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 27-08-2016
Ran by Honza (administrator) on HONZA-PC (28-08-2016 22:36:25)
Running from C:\Users\Honza\Desktop
Loaded Profiles: Honza (Available Profiles: Honza)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Opera)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler64.exe
() C:\ProgramData\HandSetService\HuaweiHiSuiteService64.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Space Sciences Laboratory) C:\Program Files\BOINC\boinctray.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(Space Sciences Laboratory) C:\Program Files\BOINC\boincmgr.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Space Sciences Laboratory) C:\Program Files\BOINC\boinc.exe
() C:\ProgramData\BOINC\projects\wuprop.boinc-af.org\data_collect_v4_4.20_windows_x86_64__nci.exe
(Raptr, Inc) C:\Program Files (x86)\Raptr Inc\Raptr\raptr.exe
() C:\ProgramData\BOINC\projects\www.rechenkraft.net_yoyo\ecmwrapper_0.05_windows_x86_64.exe
() C:\ProgramData\BOINC\slots\0\ecm.exe
(Raptr, Inc) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_im.exe
(Raptr Inc.) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_ep64.exe
(Opera Software) C:\Program Files (x86)\Opera\39.0.2256.48\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\39.0.2256.48\opera_crashreporter.exe
(Opera Software) C:\Program Files (x86)\Opera\39.0.2256.48\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\39.0.2256.48\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\39.0.2256.48\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\39.0.2256.48\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\39.0.2256.48\opera.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dxdiag.exe
(Opera Software) C:\Program Files (x86)\Opera\39.0.2256.48\opera.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
() C:\ProgramData\BOINC\projects\www.rechenkraft.net_yoyo\ecmwrapper_0.05_windows_x86_64.exe
() C:\ProgramData\BOINC\slots\1\ecm.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Opera Software) C:\Program Files (x86)\Opera\39.0.2256.48\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\39.0.2256.48\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\39.0.2256.48\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\39.0.2256.48\opera.exe
(forum.viry.cz) C:\Users\Honza\Desktop\FRSTLauncher.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12503184 2012-06-11] (Realtek Semiconductor)
HKLM\...\Run: [boinctray] => C:\Program Files\BOINC\boinctray.exe [69416 2015-12-17] (Space Sciences Laboratory)
HKLM\...\Run: [StartCN] => C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe [5009096 2016-04-15] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [133440 2012-07-19] (Intel Corporation)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284440 2012-02-01] (Intel Corporation)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291648 2012-05-20] (Intel Corporation)
HKLM-x32\...\Run: [Raptr] => C:\Program Files (x86)\Raptr Inc\Raptr\raptrstub.exe [58640 2016-08-05] (Raptr, Inc)
HKLM-x32\...\Run: [PlaysTV] => C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv_launcher.exe [71440 2016-05-09] (Plays.tv, LLC)
HKLM-x32\...\Run: [SunJavaUpdateSched] => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
HKU\S-1-5-21-987239476-2580196913-1685191379-1000\...\Run: [boincmgr] => C:\Program Files\BOINC\boincmgr.exe [8746792 2015-12-17] (Space Sciences Laboratory)
HKU\S-1-5-21-987239476-2580196913-1685191379-1000\...\MountPoints2: {20c3956c-133d-11e6-a990-94de800c8a37} - G:\autorun.exe
HKU\S-1-5-21-987239476-2580196913-1685191379-1000\...\MountPoints2: {36070081-c731-11e3-bbf8-94de800c8a37} - G:\LGAutoRun.exe
HKU\S-1-5-21-987239476-2580196913-1685191379-1000\...\MountPoints2: {4aa1f6ca-019d-11e6-a0e5-94de800c8a37} - G:\autorun.exe
HKU\S-1-5-21-987239476-2580196913-1685191379-1000\...\MountPoints2: {5e94478b-02c4-11e6-95c0-94de800c8a37} - G:\autorun.exe
HKU\S-1-5-21-987239476-2580196913-1685191379-1000\...\MountPoints2: {5e9447ac-02c4-11e6-95c0-94de800c8a37} - G:\autorun.exe
HKU\S-1-5-21-987239476-2580196913-1685191379-1000\...\MountPoints2: {5e9447fb-02c4-11e6-95c0-94de800c8a37} - G:\autorun.exe
HKU\S-1-5-21-987239476-2580196913-1685191379-1000\...\MountPoints2: {6ecd16c9-0306-11e6-b17f-94de800c8a37} - G:\autorun.exe
HKU\S-1-5-21-987239476-2580196913-1685191379-1000\...\MountPoints2: {fe077b0f-6552-11e6-b0e4-94de800c8a37} - G:\autorun.exe
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: 127.0.0.1 localhost
Tcpip\Parameters: [DhcpNameServer] 213.46.172.36 213.46.172.37
Tcpip\..\Interfaces\{D0BDC372-F691-42FE-9DD8-47C86B0D4D7E}: [DhcpNameServer] 213.46.172.36 213.46.172.37

Internet Explorer:
==================
HKU\S-1-5-21-987239476-2580196913-1685191379-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.tenisportal.cz/live/#inscore_ifheight_xdc_5776
SearchScopes: HKU\S-1-5-21-987239476-2580196913-1685191379-1000 -> DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-987239476-2580196913-1685191379-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_101\bin\ssv.dll [2016-07-21] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_101\bin\jp2ssv.dll [2016-07-21] (Oracle Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
DPF: HKLM-x32 {4B54A9DE-EF1C-4EBE-A328-7C28EA3B433A} hxxp://quickscan.bitdefender.com/qsax/qsax.cab

FireFox:
========
FF ProfilePath: C:\Users\Honza\AppData\Roaming\Mozilla\Firefox\Profiles\icl1q8g5.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_21_0_0_213.dll [2016-04-09] ()
FF Plugin: @java.com/DTPlugin,version=11.101.2 -> C:\Program Files\Java\jre1.8.0_101\bin\dtplugin\npDeployJava1.dll [2016-07-21] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.101.2 -> C:\Program Files\Java\jre1.8.0_101\bin\plugin2\npjp2.dll [2016-07-21] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [No File]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_213.dll [2016-04-09] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1224194.dll [2016-02-19] (Adobe Systems, Inc.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2014-01-06] (Google, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [No File]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-28] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-28] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-06-30] (Adobe Systems Inc.)
FF Plugin-x32: LSNPAPI -> C:\Program Files (x86)\nplightshot\3.4.0.55\npLightshot.dll [2012-11-15] (Skillbrains)
FF Plugin HKU\S-1-5-21-987239476-2580196913-1685191379-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Honza\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2016-03-11] (Unity Technologies ApS)
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt => not found

Opera:
=======
OPR Extension: (MakeLinks) - C:\Users\Honza\AppData\Roaming\Opera Software\Opera Stable\Extensions\bppfbofknimbdfflnbcoollcbbjkohpp [2016-04-19]
OPR Extension: (Gmail™ Notifier) - C:\Users\Honza\AppData\Roaming\Opera Software\Opera Stable\Extensions\flkijckbigolpahbkklilflpmkalfohc [2016-07-12]
OPR Extension: (ScreenShot Link) - C:\Users\Honza\AppData\Roaming\Opera Software\Opera Stable\Extensions\nlfoodiombjmbehjgncoiedcmiingicj [2016-04-15]
StartMenuInternet: (HKLM) Opera - C:\Program Files\Opera x64\Opera.exe

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] ()
R2 HuaweiHiSuiteService64.exe; C:\ProgramData\HandSetService\HuaweiHiSuiteService64.exe [192712 2016-07-08] () [File not signed]
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation) [File not signed]
S2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [296432 2014-04-09] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-07-05] (Intel Corporation)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [7031056 2016-05-02] (TeamViewer GmbH)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AndNetDiag; C:\Windows\System32\DRIVERS\lgandnetdiag64.sys [29184 2012-07-03] (LG Electronics Inc.)
S3 ANDNetModem; C:\Windows\System32\DRIVERS\lgandnetmodem64.sys [36352 2012-07-03] (LG Electronics Inc.)
S3 andnetndis; C:\Windows\System32\DRIVERS\lgandnetndis64.sys [93184 2012-07-04] (LG Electronics Inc.)
R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [22680 2012-10-25] ()
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
S2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [303616 2014-12-19] () [File not signed]
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2013-12-16] (Disc Soft Ltd)
S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2016-07-08] (Huawei Technologies Co., Ltd.)
S2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [35328 2014-12-19] () [File not signed]
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [381440 2013-12-16] (Duplex Secure Ltd.)
S3 ssudobex; C:\Windows\System32\DRIVERS\ssudobex.sys [206080 2014-01-22] (DEVGURU Co., LTD.(http://www.devguru.co.kr))
S3 ssudserd; C:\Windows\System32\DRIVERS\ssudserd.sys [206080 2014-01-22] (DEVGURU Co., LTD.(http://www.devguru.co.kr))
U3 TrueSight; C:\Windows\System32\drivers\TrueSight.sys [35064 2015-09-24] ()
R3 whfltr2k; C:\Windows\System32\DRIVERS\whfltr2k.sys [10368 2009-09-16] ()
R3 whfltr2k; C:\Windows\SysWOW64\DRIVERS\whfltr2k.sys [10368 2009-09-16] ()
U3 a9h2u7d4; C:\Windows\System32\Drivers\a9h2u7d4.sys [0 ] (Microsoft Corporation) <==== ATTENTION (zero byte File/Folder)
S3 gdrv; \??\C:\Windows\gdrv.sys [X]
S3 VBoxNetFlt; system32\DRIVERS\VBoxNetFlt.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-08-28 22:36 - 2016-08-28 22:36 - 00014655 _____ C:\Users\Honza\Desktop\FRST.txt
2016-08-28 22:36 - 2016-08-28 22:36 - 00000000 ____D C:\FRST
2016-08-28 22:35 - 2016-08-28 22:35 - 02396672 _____ (Farbar) C:\Users\Honza\Desktop\FRST64.exe
2016-08-28 22:35 - 2016-08-28 22:35 - 00112640 _____ (forum.viry.cz) C:\Users\Honza\Desktop\FRSTLauncher.exe
2016-08-28 21:37 - 2016-08-28 22:22 - 00000000 ____D C:\AdwCleaner
2016-08-19 22:27 - 2016-08-19 22:27 - 00002156 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth.lnk
2016-08-16 23:58 - 2016-08-16 23:58 - 00000000 ____D C:\Windows\system32\dsc
2016-08-16 23:58 - 2016-08-16 23:58 - 00000000 ____D C:\Windows\system32\Configuration
2016-08-16 23:07 - 2016-08-16 23:07 - 00000000 ____D C:\Windows\system32\EventProviders
2016-08-16 23:03 - 2013-09-27 05:37 - 00001536 _____ (Microsoft Corporation) C:\Windows\system32\winrsmgr.dll
2016-08-16 23:03 - 2013-09-27 05:36 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\WsmRes.dll
2016-08-16 23:03 - 2013-09-27 05:20 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\mimofcodec.dll
2016-08-16 23:03 - 2013-09-27 05:19 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\ncobjapi.dll
2016-08-16 23:03 - 2013-09-27 05:18 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\mi.dll
2016-08-16 23:03 - 2013-09-27 05:18 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Management.Infrastructure.Native.Unmanaged.dll
2016-08-16 23:03 - 2013-09-27 05:17 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\mibincodec.dll
2016-08-16 23:03 - 2013-09-27 05:16 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\wecapi.dll
2016-08-16 23:03 - 2013-09-27 05:16 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\wsmplpxy.dll
2016-08-16 23:03 - 2013-09-27 05:16 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\winrssrv.dll
2016-08-16 23:03 - 2013-09-27 05:12 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\wevtfwd.dll
2016-08-16 23:03 - 2013-09-27 05:03 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\Register-CimProvider.exe
2016-08-16 23:03 - 2013-09-27 04:59 - 00104960 _____ (Microsoft Corporation) C:\Windows\system32\wecutil.exe
2016-08-16 23:03 - 2013-09-27 04:58 - 00213504 _____ (Microsoft Corporation) C:\Windows\system32\wecsvc.dll
2016-08-16 23:03 - 2013-09-27 04:53 - 00203776 _____ (Microsoft Corporation) C:\Windows\system32\wmitomi.dll
2016-08-16 23:03 - 2013-09-27 04:53 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\prvdmofcomp.dll
2016-08-16 23:03 - 2013-09-27 04:50 - 00158720 _____ (Microsoft Corporation) C:\Windows\system32\wmidcom.dll
2016-08-16 23:03 - 2013-09-27 04:49 - 00476672 _____ (Microsoft Corporation) C:\Windows\system32\wbemcomn2.dll
2016-08-16 23:03 - 2013-09-27 04:48 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\miutils.dll
2016-08-16 23:03 - 2013-09-27 04:46 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\framedynos.dll
2016-08-16 23:03 - 2013-09-27 04:45 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\framedyn.dll
2016-08-16 23:03 - 2013-09-27 04:40 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\WsmAgent.dll
2016-08-16 23:03 - 2013-09-27 04:34 - 00197632 _____ (Microsoft Corporation) C:\Windows\system32\DscCoreConfProv.dll
2016-08-16 23:03 - 2013-09-27 04:27 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\winrshost.exe
2016-08-16 23:03 - 2013-09-27 04:21 - 00600064 _____ (Microsoft Corporation) C:\Windows\system32\WsmGCDeps.dll
2016-08-16 23:03 - 2013-09-27 04:20 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\winrs.exe
2016-08-16 23:03 - 2013-09-27 04:19 - 00156672 _____ (Microsoft Corporation) C:\Windows\system32\WsmAuto.dll
2016-08-16 23:03 - 2013-09-27 04:19 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\wsmprovhost.exe
2016-08-16 23:03 - 2013-09-27 04:18 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\WSManHTTPConfig.exe
2016-08-16 23:03 - 2013-09-27 04:17 - 00274944 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2016-08-16 23:03 - 2013-09-27 04:17 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\winrscmd.dll
2016-08-16 23:03 - 2013-09-27 04:17 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\PSModuleDiscoveryProvider.dll
2016-08-16 23:03 - 2013-09-27 04:06 - 02475008 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2016-08-16 23:03 - 2013-09-27 04:05 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\pwrshplugin.dll
2016-08-16 23:03 - 2013-09-27 03:53 - 00001536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winrsmgr.dll
2016-08-16 23:03 - 2013-09-27 03:52 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmRes.dll
2016-08-16 23:03 - 2013-09-27 03:38 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mimofcodec.dll
2016-08-16 23:03 - 2013-09-27 03:36 - 00046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncobjapi.dll
2016-08-16 23:03 - 2013-09-27 03:36 - 00013824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Microsoft.Management.Infrastructure.Native.Unmanaged.dll
2016-08-16 23:03 - 2013-09-27 03:35 - 00091648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mi.dll
2016-08-16 23:03 - 2013-09-27 03:34 - 00082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mibincodec.dll
2016-08-16 23:03 - 2013-09-27 03:34 - 00062976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wecapi.dll
2016-08-16 23:03 - 2013-09-27 03:34 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsmplpxy.dll
2016-08-16 23:03 - 2013-09-27 03:34 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winrssrv.dll
2016-08-16 23:03 - 2013-09-27 03:31 - 00083968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wevtfwd.dll
2016-08-16 23:03 - 2013-09-27 03:25 - 00013824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Register-CimProvider.exe
2016-08-16 23:03 - 2013-09-27 03:21 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wecutil.exe
2016-08-16 23:03 - 2013-09-27 03:15 - 00057856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prvdmofcomp.dll
2016-08-16 23:03 - 2013-09-27 03:14 - 00150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmitomi.dll
2016-08-16 23:03 - 2013-09-27 03:12 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmidcom.dll
2016-08-16 23:03 - 2013-09-27 03:11 - 00371712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wbemcomn2.dll
2016-08-16 23:03 - 2013-09-27 03:11 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\miutils.dll
2016-08-16 23:03 - 2013-09-27 03:09 - 00192512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\framedynos.dll
2016-08-16 23:03 - 2013-09-27 03:08 - 00190464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\framedyn.dll
2016-08-16 23:03 - 2013-09-27 03:04 - 00022528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmAgent.dll
2016-08-16 23:03 - 2013-09-27 03:01 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\WSManMigrationPlugin.dll
2016-08-16 23:03 - 2013-09-27 02:54 - 00020480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winrshost.exe
2016-08-16 23:03 - 2013-09-27 02:50 - 00515584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmGCDeps.dll
2016-08-16 23:03 - 2013-09-27 02:49 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winrs.exe
2016-08-16 23:03 - 2013-09-27 02:49 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsmprovhost.exe
2016-08-16 23:03 - 2013-09-27 02:48 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmAuto.dll
2016-08-16 23:03 - 2013-09-27 02:48 - 00031744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManHTTPConfig.exe
2016-08-16 23:03 - 2013-09-27 02:47 - 00227840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmWmiPl.dll
2016-08-16 23:03 - 2013-09-27 02:47 - 00093184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winrscmd.dll
2016-08-16 23:03 - 2013-09-27 02:47 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PSModuleDiscoveryProvider.dll
2016-08-16 23:03 - 2013-09-27 02:38 - 02026496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2016-08-16 23:03 - 2013-09-27 02:37 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pwrshplugin.dll
2016-08-16 23:03 - 2013-09-27 01:52 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManMigrationPlugin.dll
2016-08-16 23:03 - 2013-09-27 00:48 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\DscCore.dll
2016-08-16 23:03 - 2013-09-16 09:34 - 00204105 _____ C:\Windows\SysWOW64\winrm.vbs
2016-08-16 23:03 - 2013-09-16 09:34 - 00204105 _____ C:\Windows\system32\winrm.vbs
2016-08-16 23:03 - 2013-09-16 09:34 - 00004675 _____ C:\Windows\SysWOW64\wsmanconfig_schema.xml
2016-08-16 23:03 - 2013-09-16 09:34 - 00004675 _____ C:\Windows\system32\wsmanconfig_schema.xml
2016-08-16 23:03 - 2013-09-16 09:33 - 00004148 _____ C:\Windows\system32\psmodulediscoveryprovider.mof
2016-08-16 22:53 - 2016-06-10 20:51 - 00154856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-08-16 22:53 - 2016-06-10 20:51 - 00095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2016-08-16 22:53 - 2016-06-10 20:46 - 00730624 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-08-16 22:53 - 2016-06-10 20:46 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2016-08-16 22:53 - 2016-06-10 20:46 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2016-08-16 22:53 - 2016-06-10 20:46 - 00343552 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-08-16 22:53 - 2016-06-10 20:46 - 00316416 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2016-08-16 22:53 - 2016-06-10 20:46 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2016-08-16 22:53 - 2016-06-10 20:46 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2016-08-16 22:53 - 2016-06-10 20:46 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2016-08-16 22:53 - 2016-06-10 20:46 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2016-08-16 22:53 - 2016-06-10 20:46 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2016-08-16 22:53 - 2016-06-10 20:46 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2016-08-16 22:53 - 2016-06-10 20:46 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2016-08-16 22:53 - 2016-06-10 20:46 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2016-08-16 22:53 - 2016-06-10 20:46 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2016-08-16 22:53 - 2016-06-10 20:46 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2016-08-16 22:53 - 2016-06-10 20:46 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2016-08-16 22:53 - 2016-06-10 17:20 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2016-08-16 22:53 - 2016-06-10 17:20 - 00666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2016-08-16 22:53 - 2016-06-10 17:20 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2016-08-16 22:53 - 2016-06-10 17:20 - 00342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2016-08-16 22:53 - 2016-06-10 17:20 - 00260608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2016-08-16 22:53 - 2016-06-10 17:20 - 00251392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2016-08-16 22:53 - 2016-06-10 17:20 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2016-08-16 22:53 - 2016-06-10 17:20 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2016-08-16 22:53 - 2016-06-10 17:20 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2016-08-16 22:53 - 2016-06-10 17:20 - 00141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2016-08-16 22:53 - 2016-06-10 17:20 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2016-08-16 22:53 - 2016-06-10 17:20 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2016-08-16 22:53 - 2016-06-10 17:20 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2016-08-16 22:53 - 2016-06-10 17:20 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2016-08-16 22:53 - 2016-06-10 17:20 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2016-08-16 22:53 - 2016-06-10 17:05 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2016-08-16 22:53 - 2016-06-10 16:58 - 00291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2016-08-16 22:53 - 2016-06-10 16:58 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2016-08-16 22:53 - 2016-06-10 16:58 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2016-08-16 22:53 - 2016-06-10 16:57 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2016-08-16 22:53 - 2016-06-10 16:57 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2016-08-16 22:53 - 2016-06-10 16:52 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2016-08-16 22:53 - 2016-06-06 18:50 - 01483264 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2016-08-16 22:53 - 2016-06-06 18:50 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2016-08-16 22:53 - 2016-06-06 18:50 - 00190976 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2016-08-16 22:53 - 2016-06-06 18:50 - 00141824 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2016-08-16 22:53 - 2016-06-06 17:23 - 01176064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2016-08-16 22:53 - 2016-06-06 17:23 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2016-08-16 22:53 - 2016-06-06 17:23 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2016-08-16 22:53 - 2016-06-06 17:23 - 00106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2016-08-16 22:53 - 2016-05-17 01:22 - 00631176 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2016-08-16 22:53 - 2016-05-17 01:19 - 00706280 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2016-08-16 22:53 - 2016-05-17 01:14 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2016-08-16 22:53 - 2016-05-17 01:14 - 00419840 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2016-08-16 22:53 - 2016-05-17 01:14 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2016-08-16 22:53 - 2016-05-17 01:14 - 00275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2016-08-16 22:53 - 2016-05-17 01:14 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2016-08-16 22:53 - 2016-05-17 01:14 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2016-08-16 22:53 - 2016-05-17 01:14 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2016-08-16 22:53 - 2016-05-17 01:14 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2016-08-16 22:53 - 2016-05-17 01:14 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2016-08-16 22:53 - 2016-05-17 01:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2016-08-16 22:53 - 2016-05-17 01:14 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2016-08-16 22:53 - 2016-05-17 01:14 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2016-08-16 22:53 - 2016-05-17 01:14 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2016-08-16 22:53 - 2016-05-17 01:14 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2016-08-16 22:53 - 2016-05-17 01:14 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2016-08-16 22:53 - 2016-05-17 01:14 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2016-08-16 22:53 - 2016-05-17 01:14 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2016-08-16 22:53 - 2016-05-17 01:14 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-08-16 22:53 - 2016-05-17 01:14 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2016-08-16 22:53 - 2016-05-17 01:14 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-08-16 22:53 - 2016-05-17 01:14 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2016-08-16 22:53 - 2016-05-17 01:14 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-08-16 22:53 - 2016-05-17 01:14 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-08-16 22:53 - 2016-05-17 01:14 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-08-16 22:53 - 2016-05-17 01:14 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-08-16 22:53 - 2016-05-17 01:14 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-08-16 22:53 - 2016-05-17 01:14 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-08-16 22:53 - 2016-05-17 01:14 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-08-16 22:53 - 2016-05-17 01:14 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-08-16 22:53 - 2016-05-17 01:14 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-08-16 22:53 - 2016-05-17 01:14 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-08-16 22:53 - 2016-05-17 01:14 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-08-16 22:53 - 2016-05-17 01:14 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-08-16 22:53 - 2016-05-17 01:14 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-08-16 22:53 - 2016-05-17 01:14 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-08-16 22:53 - 2016-05-17 01:14 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-08-16 22:53 - 2016-05-17 01:14 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-08-16 22:53 - 2016-05-17 01:14 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-08-16 22:53 - 2016-05-17 01:14 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-08-16 22:53 - 2016-05-17 01:14 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-08-16 22:53 - 2016-05-17 01:14 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-08-16 22:53 - 2016-05-17 01:14 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-08-16 22:53 - 2016-05-17 01:14 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-08-16 22:53 - 2016-05-17 01:14 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-08-16 22:53 - 2016-05-17 01:14 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-08-16 22:53 - 2016-05-17 01:14 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-08-16 22:53 - 2016-05-17 01:14 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2016-08-16 22:53 - 2016-05-17 01:14 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-08-16 22:53 - 2016-05-17 01:14 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-08-16 22:53 - 2016-05-17 01:14 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2016-08-16 22:53 - 2016-05-17 01:14 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-08-16 22:53 - 2016-05-17 01:14 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-08-16 22:53 - 2016-05-17 01:14 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-08-16 22:53 - 2016-05-17 01:14 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-08-16 22:53 - 2016-05-17 01:14 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-08-16 22:53 - 2016-05-17 01:14 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-08-16 22:53 - 2016-05-17 01:14 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2016-08-16 22:53 - 2016-05-17 01:14 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-08-16 22:53 - 2016-05-17 01:14 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-08-16 22:53 - 2016-05-17 01:14 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-08-16 22:53 - 2016-05-17 01:14 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-08-16 22:53 - 2016-05-17 01:14 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-08-16 22:53 - 2016-05-17 01:14 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-08-16 22:53 - 2016-05-17 01:14 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-08-16 22:53 - 2016-05-17 01:14 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-08-16 22:53 - 2016-05-17 01:14 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-08-16 22:53 - 2016-05-17 01:14 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-08-16 22:53 - 2016-05-17 01:14 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-08-16 22:53 - 2016-05-17 01:14 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-08-16 22:53 - 2016-05-17 01:14 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-08-16 22:53 - 2016-05-16 23:23 - 00148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2016-08-16 22:53 - 2016-05-16 23:23 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2016-08-16 22:53 - 2016-05-16 23:23 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2016-08-16 22:53 - 2016-05-16 23:19 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2016-08-16 22:53 - 2016-05-16 23:19 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2016-08-16 22:53 - 2016-05-16 23:14 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2016-08-16 22:53 - 2016-05-16 23:10 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2016-08-16 22:53 - 2016-05-16 23:10 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2016-08-16 22:53 - 2016-05-16 23:10 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2016-08-16 22:53 - 2016-05-16 23:10 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2016-08-16 22:53 - 2016-05-16 23:09 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2016-08-16 22:53 - 2016-05-16 23:09 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-08-16 22:53 - 2016-05-16 23:09 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-08-16 22:53 - 2016-05-16 23:09 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2016-08-16 22:53 - 2016-05-14 00:07 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2016-08-16 22:53 - 2016-05-13 23:53 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2016-08-16 22:53 - 2016-05-13 23:52 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2016-08-16 22:53 - 2016-05-13 23:52 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2016-08-16 22:53 - 2016-05-13 23:52 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2016-08-16 22:53 - 2016-05-13 23:52 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2016-08-16 22:53 - 2016-05-13 23:38 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2016-08-16 22:53 - 2016-05-12 19:14 - 00862208 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2016-08-16 22:53 - 2016-05-12 19:14 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll
2016-08-16 22:53 - 2016-05-12 17:18 - 00572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2016-08-16 22:53 - 2016-05-12 17:18 - 00090624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\olepro32.dll
2016-08-16 22:53 - 2016-05-12 17:18 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\asycfilt.dll
2016-08-16 22:53 - 2016-05-12 15:05 - 00459640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2016-08-16 22:53 - 2016-05-12 15:05 - 00297984 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll
2016-08-16 22:53 - 2016-05-12 15:04 - 00249352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll
2016-08-16 22:53 - 2016-05-04 19:21 - 00114408 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2016-08-16 22:53 - 2016-05-04 19:17 - 01806848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2016-08-16 22:53 - 2016-05-04 19:17 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2016-08-16 22:53 - 2016-05-04 19:17 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2016-08-16 22:53 - 2016-05-04 19:17 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimsg.dll
2016-08-16 22:53 - 2016-05-04 19:17 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll
2016-08-16 22:53 - 2016-05-04 19:16 - 01941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2016-08-16 22:53 - 2016-05-04 19:16 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2016-08-16 22:53 - 2016-05-04 17:04 - 00128512 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
2016-08-16 22:53 - 2016-05-04 16:55 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msiexec.exe
2016-08-16 22:52 - 2016-06-10 20:46 - 01464320 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-08-16 22:52 - 2016-06-10 20:46 - 01212928 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-08-16 22:52 - 2016-05-17 01:19 - 05546216 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-08-16 22:52 - 2016-05-17 01:18 - 03998952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2016-08-16 22:52 - 2016-05-17 01:18 - 03943144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2016-08-16 22:52 - 2016-05-17 01:17 - 01732888 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-08-16 22:52 - 2016-05-17 01:16 - 01314136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2016-08-16 22:52 - 2016-05-17 01:14 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2016-08-16 22:52 - 2016-05-17 01:14 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2016-08-16 22:52 - 2016-05-17 01:14 - 00880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2016-08-16 22:52 - 2016-05-17 01:14 - 00644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2016-08-16 22:52 - 2016-05-14 00:09 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2016-08-16 22:52 - 2016-05-14 00:09 - 00192512 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2016-08-16 22:52 - 2016-05-14 00:09 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2016-08-16 22:52 - 2016-05-13 23:55 - 02607104 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2016-08-16 22:52 - 2016-05-13 23:53 - 00709120 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2016-08-16 22:52 - 2016-05-13 23:50 - 00174080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2016-08-16 22:52 - 2016-05-13 23:38 - 00573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2016-08-16 22:52 - 2016-05-13 23:38 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2016-08-16 22:52 - 2016-05-13 23:38 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2016-08-16 22:52 - 2016-05-04 19:17 - 03244032 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2016-08-16 22:52 - 2016-05-04 19:17 - 02365440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2016-08-16 22:19 - 2016-08-28 22:22 - 00000000 ____D C:\Program Files\wsusoffline106
2016-08-16 22:18 - 2016-08-16 22:18 - 02049718 _____ C:\Program Files\wsusoffline106.zip
2016-08-01 06:09 - 2016-08-28 22:22 - 00000000 ____D C:\Program Files (x86)\HiSuite
2016-08-01 06:09 - 2016-08-01 06:09 - 00000991 _____ C:\Users\Public\Desktop\HiSuite.lnk
2016-08-01 06:09 - 2016-08-01 06:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HiSuite
2016-08-01 06:09 - 2016-08-01 06:09 - 00000000 ____D C:\ProgramData\HiSuiteOuc
2016-08-01 06:09 - 2016-08-01 06:09 - 00000000 ____D C:\ProgramData\HandSetService

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-08-28 22:37 - 2013-09-25 17:19 - 00000000 ____D C:\ProgramData\BOINC
2016-08-28 22:34 - 2009-07-14 06:45 - 00022064 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-08-28 22:34 - 2009-07-14 06:45 - 00022064 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-08-28 22:30 - 2016-04-14 08:16 - 00000000 ____D C:\Users\Honza\AppData\Roaming\Raptr
2016-08-28 22:29 - 2016-07-28 22:15 - 00000948 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d1e90cc0469d50.job
2016-08-28 22:29 - 2016-05-15 11:12 - 00000000 ____D C:\Bloodline
2016-08-28 22:29 - 2014-09-02 08:27 - 00000000 ____D C:\Nová složka
2016-08-28 22:29 - 2013-09-25 18:08 - 00000000 ____D C:\Filmy
2016-08-28 22:29 - 2013-09-22 12:44 - 00000000 ____D C:\Users\Honza
2016-08-28 22:29 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-08-28 22:22 - 2016-04-14 08:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Gaming Evolved
2016-08-28 22:22 - 2015-09-11 21:33 - 00000000 ___SD C:\Windows\system32\GWX
2016-08-28 22:22 - 2014-09-03 07:38 - 00000000 ____D C:\Users\Honza\AppData\Roaming\GeoGet
2016-08-28 22:22 - 2014-09-03 07:38 - 00000000 ____D C:\Users\Honza\AppData\Local\GeoGet
2016-08-28 22:22 - 2013-12-10 17:19 - 00000000 ____D C:\Users\Honza\AppData\Roaming\uTorrent
2016-08-28 22:22 - 2013-09-26 20:53 - 00000000 ____D C:\Program Files\Total_Commander_7.55a_PowerPack_2010.8_Portable
2016-08-28 22:22 - 2013-09-25 17:39 - 00000000 ____D C:\Program Files (x86)\1by1
2016-08-28 22:22 - 2013-09-25 17:37 - 00000000 ____D C:\Users\Honza\AppData\Roaming\vlc
2016-08-28 22:22 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\registration
2016-08-28 22:22 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf
2016-08-21 20:20 - 2016-07-28 22:15 - 00000952 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d1e90cc07fd696.job
2016-08-18 19:47 - 2011-04-12 10:34 - 00672158 _____ C:\Windows\system32\perfh005.dat
2016-08-18 19:47 - 2011-04-12 10:34 - 00142754 _____ C:\Windows\system32\perfc005.dat
2016-08-18 19:47 - 2009-07-14 07:13 - 01593302 _____ C:\Windows\system32\PerfStringBackup.INI
2016-08-18 19:45 - 2013-09-29 21:04 - 00000000 ____D C:\Users\Honza\AppData\Local\CrashDumps
2016-08-18 00:42 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2016-08-17 10:28 - 2015-11-23 09:16 - 00133717 _____ C:\Users\Honza\Desktop\BM-kalkulacka_schopnosti.xlsx
2016-08-16 23:58 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2016-08-05 21:25 - 2014-12-08 11:55 - 00003836 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1418032533
2016-08-05 21:25 - 2013-09-25 17:13 - 00000000 ____D C:\Program Files (x86)\Opera
2016-08-03 23:44 - 2013-10-03 05:49 - 00041375 _____ C:\Users\Honza\opera6.adr
2016-08-01 06:09 - 2016-04-11 22:29 - 00000000 ____D C:\Users\Honza\AppData\Local\Hisuite
2016-07-30 22:21 - 2016-04-15 11:09 - 00000000 ____D C:\Users\Honza\Documents\HiSuite
2016-07-30 17:42 - 2015-09-30 19:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GeoGet
2016-07-30 17:42 - 2015-09-30 19:42 - 00000000 ____D C:\Program Files (x86)\GeoGet
2016-07-30 17:33 - 2013-10-23 16:41 - 00013030 _____ C:\PDOXUSRS.NET
2016-07-30 17:33 - 2013-10-23 16:41 - 00000000 ____D C:\Program Files (x86)\Katalog filmů
2016-07-29 18:30 - 2015-12-04 19:11 - 00000952 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-07-29 18:30 - 2015-12-04 19:11 - 00000948 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job

==================== Files in the root of some directories =======

2016-03-03 21:38 - 2016-03-03 21:38 - 0434176 _____ (T. Wittrock) C:\Program Files\UpdateGenerator.exe
2016-08-16 22:18 - 2016-08-16 22:18 - 2049718 _____ () C:\Program Files\wsusoffline106.zip
2014-04-11 18:00 - 2014-04-11 18:00 - 0000136 _____ () C:\Users\Honza\AppData\Local\configurator.xml
2014-12-22 08:44 - 2014-08-12 17:02 - 0000844 _____ () C:\Users\Honza\AppData\Local\DLCList.txt
2014-08-12 17:02 - 2014-08-12 17:02 - 0000857 _____ () C:\Users\Honza\AppData\Local\PluginActivatorUOPSAdditionalChanges.cmd
2014-12-22 08:44 - 2014-08-12 17:02 - 0000516 _____ () C:\Users\Honza\AppData\Local\Plugins.txt
2013-09-22 14:18 - 2014-05-23 20:25 - 0007597 _____ () C:\Users\Honza\AppData\Local\resmon.resmoncfg
2013-10-08 09:08 - 2013-10-08 09:08 - 0000003 _____ () C:\Users\Honza\AppData\Local\updater.log

Files to move or delete:
====================
C:\Users\Honza\Mouse Tool.exe


Some files in TEMP:
====================
C:\Users\Honza\AppData\Local\Temp\jre-8u101-windows-au.exe
C:\Users\Honza\AppData\Local\Temp\jre-8u71-windows-au.exe
C:\Users\Honza\AppData\Local\Temp\jre-8u73-windows-au.exe
C:\Users\Honza\AppData\Local\Temp\jre-8u77-windows-au.exe
C:\Users\Honza\AppData\Local\Temp\jre-8u91-windows-au.exe
C:\Users\Honza\AppData\Local\Temp\playstv_patch.exe
C:\Users\Honza\AppData\Local\Temp\radeon-crimson-15.12-minimalsetup.exe
C:\Users\Honza\AppData\Local\Temp\raptrpatch.exe
C:\Users\Honza\AppData\Local\Temp\raptr_stub.exe
C:\Users\Honza\AppData\Local\Temp\sfamcc00001.dll
C:\Users\Honza\AppData\Local\Temp\sqlite-3.8.11.2-efb63048-6a73-4441-9019-0635dc220392-sqlitejdbc.dll
C:\Users\Honza\AppData\Local\Temp\vlc-2.2.4-win32.exe


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed



===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

Drive c: () (Fixed) (Total:930.97 GB) (Free:301.03 GB) NTFS

Available physical RAM: 5632.06 MB
Total physical RAM: 8132.18 MB
Percentage of memory in use: 30%

==================== MBR and Partition Table ==================


==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_22_0_0_192_pepper.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d1e90cc0469d50.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d1e90cc07fd696.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Alternate Data Streams (whitelisted) ==================


==================== Security Center ==================

AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Honza\Desktop" je 7 MB.


***** Startup Programs *****

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring
"C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GIGABYTEMOUSE
C:\Users\Honza\Documents\GIGABYTE\GIGABYTE Sim\Mouse.exe

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PlaysTV
"C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv_launcher.exe" --startup [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Raptr
C:\PROGRA~2\RAPTRI~1\Raptr\raptrstub.exe --startup [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StartCCC
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uni mouse driver
"C:\Program Files\mouse_driver.exe" /hide [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uni mouse driver tilt
"C:\Program Files\wh_exec.exe" [x]


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000


==================== End Of Log ==============================




ADW:

# AdwCleaner v6.010 - Log soubor vytvořen 28/08/2016 na 22:46:43
# Aktualizováno dne 12/08/2016 z ToolsLib
# Databáze : 2016-08-28.2 [Server]
# Operační systém : Windows 7 Home Premium Service Pack 1 (X64)
# Uživatelské jméno : Honza - HONZA-PC
# Beží od : C:\Users\Honza\AppData\Local\Temp\scoped_dir4424_30168\adwcleaner_6.010.exe
# Mod: Čištění
# Podpora : https://toolslib.net/forum



***** [ Služby ] *****



***** [ Adresáře ] *****



***** [ Soubory ] *****



***** [ DLL ] *****



***** [ WMI ] *****



***** [ Zástupce ] *****



***** [ Plánovač úloh ] *****



***** [ Registry ] *****

[-] Klíč smazán:HKU\S-1-5-21-987239476-2580196913-1685191379-1000\Software\AppDataLow\Software\adawarebp
[#] Klíč smazán po restartování:HKCU\Software\AppDataLow\Software\adawarebp


***** [ Prohlížeče ] *****



*************************

:: "Tracing" klíč smazán
:: Winsock nastavení vyčištěno

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [1252 Bajtů] - [28/08/2016 21:39:54]
C:\AdwCleaner\AdwCleaner[C2].txt - [1098 Bajtů] - [28/08/2016 22:46:43]
C:\AdwCleaner\AdwCleaner[S0].txt - [1540 Bajtů] - [28/08/2016 21:39:10]
C:\AdwCleaner\AdwCleaner[S1].txt - [1688 Bajtů] - [28/08/2016 22:42:58]

########## EOF - C:\AdwCleaner\AdwCleaner[C2].txt - [1320 Bajtů] ##########

Re: Zpomalení PC po vytuhnutí

Napsal: 28 srp 2016 22:07
od kockopes
ještě přidám Addition.txt

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 27-08-2016
Ran by Honza (28-08-2016 22:37:48)
Running from C:\Users\Honza\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2013-09-22 10:44:52)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-987239476-2580196913-1685191379-500 - Administrator - Disabled)
Guest (S-1-5-21-987239476-2580196913-1685191379-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-987239476-2580196913-1685191379-1002 - Limited - Enabled)
Honza (S-1-5-21-987239476-2580196913-1685191379-1000 - Administrator - Enabled) => C:\Users\Honza

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-987239476-2580196913-1685191379-1000\...\uTorrent) (Version: 3.4.2.38913 - BitTorrent Inc.)
7-Zip 15.14 (x64 edition) (HKLM\...\{23170F69-40C1-2702-1514-000001000000}) (Version: 15.14.00.0 - Igor Pavlov)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 15.016.20045 - Adobe Systems Incorporated)
Adobe Flash Player 21 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 21.0.0.213 - Adobe Systems Incorporated)
Adobe Flash Player 22 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 22.0.0.210 - Adobe Systems Incorporated)
Adobe Flash Player 22 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 22.0.0.192 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.2 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.2.4.194 - Adobe Systems, Inc.)
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{0A1FAC46-B899-421D-B1A2-470896DC45DB}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{E68DD413-B834-4923-8181-0A03B7555187}) (Version: - Microsoft)
AMD Install Manager (HKLM\...\AMD Catalyst Install Manager) (Version: 9.0.000.4 - Advanced Micro Devices, Inc.)
Automatic Mouse and Keyboard 5.2.9.2 (HKLM-x32\...\{BFD646B6-E892-4B00-B6E2-71545D92BAEA}_is1) (Version: - Robot-Soft.com, Inc.)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
BOINC (HKLM\...\{B3B5C017-61CD-4587-9FA8-7E5E2D94810E}) (Version: 7.6.22 - Space Sciences Laboratory, U.C. Berkeley)
Bullzip PDF Printer 10.0.0.1840 (HKLM\...\Bullzip PDF Printer_is1) (Version: 10.0.0.1840 - Bullzip)
Catalyst Control Center Next Localization BR (Version: 2016.0415.1636.28043 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (Version: 2016.0415.1636.28043 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (Version: 2016.0415.1636.28043 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (Version: 2016.0415.1636.28043 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (Version: 2016.0415.1636.28043 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (Version: 2016.0415.1636.28043 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (Version: 2016.0415.1636.28043 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (Version: 2016.0415.1636.28043 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (Version: 2016.0415.1636.28043 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (Version: 2016.0415.1636.28043 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (Version: 2016.0415.1636.28043 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (Version: 2016.0415.1636.28043 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (Version: 2016.0415.1636.28043 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (Version: 2016.0415.1636.28043 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (Version: 2016.0415.1636.28043 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (Version: 2016.0415.1636.28043 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (Version: 2016.0415.1636.28043 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (Version: 2016.0415.1636.28043 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (Version: 2016.0415.1636.28043 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (Version: 2016.0415.1636.28043 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (Version: 2016.0415.1636.28043 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.16 - Piriform)
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.48.1.0347 - Disc Soft Ltd)
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
Easy CD-DA Extractor 16 (HKLM-x32\...\Easy CD-DA Extractor 16) (Version: 16.0.7 - Poikosoft)
eReg (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden
FUJIFILM MyFinePix Studio 4.2 (HKLM-x32\...\MyFinePix Studio_is1) (Version: - )
GeoGet verze 2.9.7.771 (HKLM-x32\...\GeoGet_is1) (Version: 2.9.7.771 - )
GIGABYTE Sim (HKLM-x32\...\{55BD137D-5AC1-4BC4-9C08-DDCDC88A1B47}) (Version: 1.16.0000 - GIGABYTE)
Google Earth (HKLM-x32\...\{817750FA-EC6A-485D-9901-0683AE6FFDF1}) (Version: 7.1.5.1557 - Google)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
HiSuite (HKLM-x32\...\Hi Suite) (Version: 1.0 - Huawei Technologies Co.,Ltd)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1008 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1281 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3540 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.1.0.1006 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.5.235 - Intel Corporation)
Java 8 Update 101 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180101F0}) (Version: 8.0.1010.13 - Oracle Corporation)
Katalog filmů 4.01f (HKLM-x32\...\Katalog filmů_is1) (Version: - CKSoftware - Tomáš Mikeš)
LG United Mobile Drivers (HKLM-x32\...\{5DB849D6-9392-4FB7-9ABB-87ED433152E5}) (Version: 3.8.1 - LG Electronics)
Microsoft .NET Framework 4.5.2 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
nplightshot-3.4.0.55 (HKLM-x32\...\{80B5B3C9-4084-2063-B32A-678A98DE512B}_is1) (Version: - Skillbrains)
NVIDIA PhysX (HKLM-x32\...\{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}) (Version: 9.10.0513 - NVIDIA Corporation)
ON_OFF Charge B12.1025.1 (HKLM-x32\...\{3DECD372-76A1-4483-BF10-B547790A3261}) (Version: 1.00.0001 - GIGABYTE)
Opera 12.16 (HKLM\...\Opera 12.16.1860) (Version: 12.16.1860 - Opera Software ASA)
Opera Stable 39.0.2256.48 (HKLM-x32\...\Opera 39.0.2256.48) (Version: 39.0.2256.48 - Opera Software)
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.)
Pillars of Eternity (HKLM-x32\...\1207666813_is1) (Version: 2.7.0.13 - GOG.com)
PlaysTV (HKLM-x32\...\PlaysTV) (Version: 1.10.1-r112682-release - Plays.tv, LLC)
Pomocník při upgradu na Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.17332 - Microsoft Corporation)
RAF (HKLM-x32\...\{E6B43401-E818-4961-AFED-118DD8E87642}) (Version: 1.00.0001 - FUJIFILM Corporation)
Raptr (HKLM-x32\...\Raptr) (Version: 5.2.5-r115042-release - Raptr, Inc)
RAW FILE CONVERTER EX powered by SILKYPIX (HKLM-x32\...\InstallShield_{30B1CCDB-209B-4E94-8311-379F2E6B6B59}) (Version: 3 - Ichikawa Soft Laboratory)
RAW FILE CONVERTER EX powered by SILKYPIX (x32 Version: 3 - Ichikawa Soft Laboratory) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.49.927.2011 - Realtek)
Realtek HDMI Audio Driver for ATI (HKLM-x32\...\{5449FB4F-1802-4D5B-A6D8-087DB1142147}) (Version: 6.0.1.6519 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6662 - Realtek Semiconductor Corp.)
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.33.0 - SAMSUNG Electronics Co., Ltd.)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - )
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.59131 - TeamViewer)
The Elder Scrolls IV: Oblivion - Ultimate Edition verze 3.5.0.0 / 1.5.4 (HKLM-x32\...\{7691AEF4-91C4-42EB-B603-84BF553486C0}_is1) (Version: 3.5.0.0 / 1.5.4 - )
The Witcher 3 - Wild Hunt (HKLM-x32\...\1207664643_is1) (Version: 1.0.0.0 - GOG.com)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN)
Vulkan Run Time Libraries 1.0.3.1 (HKLM\...\VulkanRT1.0.3.1) (Version: 1.0.3.1 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.8.0 (HKLM\...\VulkanRT1.0.8.0) (Version: 1.0.8.0 - LunarG, Inc.)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-987239476-2580196913-1685191379-1000_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0B1C829E-1EF4-40DA-B1D4-2B2E1CC7FC46} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-06-25] (Adobe Systems Incorporated)
Task: {0BF00F4B-792F-47D4-AD25-2168E37C9085} - System32\Tasks\GoogleUpdateTaskMachineUA1d1e90cc07fd696 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {2F57269B-1E09-4E2D-AB1E-B0FDAC7D279C} - \Microsoft\Windows\WindowsBackup\ConfigNotification -> No File <==== ATTENTION
Task: {33834BF7-093E-4C0E-8404-4C76025CA4F6} - \Microsoft\Windows\Windows Activation Technologies\ValidationTaskDeadline -> No File <==== ATTENTION
Task: {64E62501-AB20-49DB-90C6-09B32A7C286C} - System32\Tasks\{1193EC1A-76B3-456F-8C01-A29D6F2C0113} => pcalua.exe -a C:\Users\Honza\Downloads\Automat.exe -d C:\Users\Honza\Downloads
Task: {7DC0CB74-8692-4C64-BB08-3D815603F545} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_22_0_0_192_pepper.exe [2016-06-21] (Adobe Systems Incorporated)
Task: {955FB72B-08B5-48EA-8CE1-8D2B9D0FF410} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-07-17] (Adobe Systems Incorporated)
Task: {9E85A526-F6B5-45BA-815D-5D530833A6FE} - System32\Tasks\Opera scheduled Autoupdate 1418032533 => C:\Program Files (x86)\Opera\launcher.exe [2016-08-03] (Opera Software)
Task: {A4063F35-CF4A-4344-864C-147E2A9CD726} - System32\Tasks\AMD Updater => C:\Program Files\AMD\CIM\\Bin64\InstallManagerApp.exe [2016-04-15] (Advanced Micro Devices, Inc.)
Task: {AC4E5ACF-89F7-4220-BA21-81EE183975E2} - \Microsoft\Windows\Application Experience\AitAgent -> No File <==== ATTENTION
Task: {AC566704-C93F-4353-8DDD-B04ADD37A442} - System32\Tasks\{A6218F61-601A-46C5-8418-2AA349D5B2F4} => pcalua.exe -a D:\SILKYPIX\SILKYRFCInstaller.exe -d D:\SILKYPIX
Task: {C27E922E-E862-4446-93BE-E4DD32E492E8} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-03-11] (Piriform Ltd)
Task: {CBD41B6A-EC90-4517-A3A6-2D12F9A72346} - \Microsoft\Windows\Windows Activation Technologies\ValidationTask -> No File <==== ATTENTION
Task: {CEE64558-E1A7-4D9D-80A7-2001912BE5B5} - \Microsoft\Windows\MemoryDiagnostic\CorruptionDetector -> No File <==== ATTENTION
Task: {D8F6BD44-C7C0-47EF-B03F-045E7758DC29} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2016-06-02] (AVAST Software)
Task: {DDEFD5B8-ECF5-417E-A344-A6695F18BF63} - System32\Tasks\GoogleUpdateTaskMachineCore1d1e90cc0469d50 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {E44C0404-6E38-45E7-AD22-37653FA2D634} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {E765645F-6F92-44FE-B327-E8882488EC06} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {FA2BC0A6-8D4B-458A-85C8-2B8C72487513} - \Microsoft\Windows\MemoryDiagnostic\DecompressionFailureDetector -> No File <==== ATTENTION
Task: {FAE13439-1196-435D-8491-63B8E8898A89} - System32\Tasks\{B61E74E3-1584-4CDA-80C5-72F9719F3D71} => pcalua.exe -a "C:\Program Files (x86)\Katalog filmů\unins000.exe"

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_22_0_0_192_pepper.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d1e90cc0469d50.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d1e90cc07fd696.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

Shortcut: C:\Users\Honza\AppData\Local\Microsoft\Windows\GameExplorer\{33C6FD11-7E65-4B73-A247-4F7B0389A6A0}\SupportTasks\0\Podpora.lnk -> hxxp://support.aspyr.com/

==================== Loaded Modules (Whitelisted) ==============

2016-08-01 06:09 - 2016-07-08 10:02 - 00192712 _____ () C:\ProgramData\HandSetService\HuaweiHiSuiteService64.exe
2015-06-25 17:34 - 2015-06-25 17:34 - 00014336 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2015-06-25 17:37 - 2015-06-25 17:37 - 00739840 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2015-06-25 17:35 - 2015-06-25 17:35 - 00014336 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2015-06-25 17:38 - 2015-06-25 17:38 - 00071168 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2015-06-25 16:53 - 2015-06-25 16:53 - 00011776 _____ () C:\Program Files\AMD\CNext\CNext\libEGL.dll
2015-06-25 16:51 - 2015-06-25 16:51 - 02013696 _____ () C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2013-10-15 12:31 - 2013-10-15 12:31 - 00106496 _____ () C:\Program Files\BOINC\zlib1.dll
2016-02-16 23:32 - 2016-02-16 23:32 - 00682496 _____ () C:\ProgramData\BOINC\projects\wuprop.boinc-af.org\data_collect_v4_4.20_windows_x86_64__nci.exe
2016-08-14 10:09 - 2016-08-14 10:09 - 00458752 _____ () C:\ProgramData\BOINC\projects\www.rechenkraft.net_yoyo\ecmwrapper_0.05_windows_x86_64.exe
2016-08-28 22:29 - 2016-08-14 10:09 - 00849034 _____ () C:\ProgramData\BOINC\slots\0\ecm.exe
2016-08-28 22:30 - 2016-08-14 10:09 - 00849034 _____ () C:\ProgramData\BOINC\slots\1\ecm.exe
2010-11-23 00:56 - 2010-11-23 00:56 - 00087040 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\_ctypes.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00043008 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\_socket.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00805376 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\_ssl.pyd
2014-05-14 01:26 - 2014-05-14 01:26 - 05812736 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\PyQt4.QtGui.pyd
2014-05-14 01:26 - 2014-05-14 01:26 - 00067584 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\sip.pyd
2014-05-14 01:26 - 2014-05-14 01:26 - 01662464 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\PyQt4.QtCore.pyd
2014-05-14 01:26 - 2014-05-14 01:26 - 00494592 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\PyQt4.QtNetwork.pyd
2010-11-23 00:57 - 2010-11-23 00:57 - 00096256 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\win32api.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00110592 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\pywintypes26.dll
2010-11-23 00:56 - 2010-11-23 00:56 - 00010240 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\select.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00356864 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\_hashlib.pyd
2010-11-23 00:57 - 2010-11-23 00:57 - 00036352 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\win32process.pyd
2010-11-23 00:57 - 2010-11-23 00:57 - 00111104 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\win32file.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00044544 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\_sqlite3.pyd
2011-02-15 20:17 - 2011-02-15 20:17 - 00417501 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\sqlite3.dll
2010-11-23 00:57 - 2010-11-23 00:57 - 00167936 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\win32gui.pyd
2014-05-14 01:26 - 2014-05-14 01:26 - 00313856 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\PyQt4.QtWebKit.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00127488 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\pyexpat.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00009216 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\winsound.pyd
2015-10-21 22:29 - 2015-10-21 22:29 - 00113171 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\libvlc.dll
2015-10-21 22:29 - 2015-10-21 22:29 - 02396691 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\libvlccore.dll
2010-11-23 00:56 - 2010-11-23 00:56 - 00583680 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\unicodedata.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00324608 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\PIL._imaging.pyd
2015-06-27 01:09 - 2015-06-27 01:09 - 00271872 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\amd_ags.dll
2010-11-23 00:57 - 2010-11-23 00:57 - 00141312 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\gobject._gobject.pyd
2016-04-19 19:08 - 2016-04-19 19:08 - 02717595 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\heliotrope._purple.pyd
2011-02-15 20:17 - 2011-02-15 20:17 - 01213633 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\libxml2-2.dll
2010-11-23 01:06 - 2010-11-23 01:06 - 00055808 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\zlib1.dll
2013-05-10 01:52 - 2013-05-10 01:52 - 00495680 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\plugins\libaim.dll
2013-05-10 01:52 - 2013-05-10 01:52 - 01183699 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\liboscar.dll
2013-05-10 01:52 - 2013-05-10 01:52 - 00483306 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\plugins\libicq.dll
2013-05-03 20:57 - 2013-05-03 20:57 - 00655356 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\plugins\libirc.dll
2013-05-03 20:56 - 2013-05-03 20:56 - 01306387 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\plugins\libmsn.dll
2013-05-03 20:56 - 2013-05-03 20:56 - 00565461 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\plugins\libxmpp.dll
2013-05-03 20:57 - 2013-05-03 20:57 - 01640221 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\libjabber.dll
2013-05-03 20:56 - 2013-05-03 20:56 - 00506276 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\plugins\libyahoo.dll
2013-05-03 20:57 - 2013-05-03 20:57 - 01053730 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\libymsg.dll
2013-05-03 20:57 - 2013-05-03 20:57 - 00497782 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\plugins\libyahoojp.dll
2013-05-03 20:57 - 2013-05-03 20:57 - 00603326 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\plugins\ssl-nss.dll
2013-05-03 20:57 - 2013-05-03 20:57 - 00474199 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\plugins\ssl.dll
2016-08-05 21:25 - 2016-08-05 21:25 - 69095432 _____ () C:\Program Files (x86)\Opera\39.0.2256.48\opera.dll
2016-08-05 21:25 - 2016-08-05 21:25 - 02209800 _____ () C:\Program Files (x86)\Opera\39.0.2256.48\libglesv2.dll
2016-08-05 21:25 - 2016-08-05 21:25 - 00086024 _____ () C:\Program Files (x86)\Opera\39.0.2256.48\libegl.dll
2016-04-26 23:58 - 2016-04-26 23:58 - 00172544 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\b4aed9b5bac22d4e9008e99e935fe2de\IsdiInterop.ni.dll
2013-09-19 06:50 - 2012-02-01 16:25 - 00059904 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll
2013-09-19 06:47 - 2012-07-18 11:55 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PEVSystemStart => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\procexp90.Sys => ""="Driver"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-987239476-2580196913-1685191379-1000\...\cpzp.cz -> hxxps://portal.cpzp.cz
IE trusted site: HKU\S-1-5-21-987239476-2580196913-1685191379-1000\...\ozp.cz -> hxxps://portal.ozp.cz
IE trusted site: HKU\S-1-5-21-987239476-2580196913-1685191379-1000\...\portalzp.cz -> hxxps://www.portalzp.cz
IE trusted site: HKU\S-1-5-21-987239476-2580196913-1685191379-1000\...\rbp-zp.cz -> hxxps://portal.rbp-zp.cz
IE trusted site: HKU\S-1-5-21-987239476-2580196913-1685191379-1000\...\vozp.cz -> hxxps://portal.vozp.cz
IE trusted site: HKU\S-1-5-21-987239476-2580196913-1685191379-1000\...\zpskoda.cz -> hxxps://portal.zpskoda.cz

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2015-09-24 21:07 - 00000768 ____A C:\Windows\system32\Drivers\etc\hosts

127.0.0.1 localhost

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-987239476-2580196913-1685191379-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Honza\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 213.46.172.36 - 213.46.172.37
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: GIGABYTEMOUSE => C:\Users\Honza\Documents\GIGABYTE\GIGABYTE Sim\Mouse.exe
MSCONFIG\startupreg: PlaysTV => "C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv_launcher.exe" --startup
MSCONFIG\startupreg: Raptr => C:\PROGRA~2\RAPTRI~1\Raptr\raptrstub.exe --startup
MSCONFIG\startupreg: StartCCC => "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
MSCONFIG\startupreg: uni mouse driver => "C:\Program Files\mouse_driver.exe" /hide
MSCONFIG\startupreg: uni mouse driver tilt => "C:\Program Files\wh_exec.exe"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{EF8A54BB-2E29-400A-8EA1-5AD7E9C562CB}] => (Allow) C:\Program Files\Opera x64\pluginwrapper\opera_plugin_wrapper.exe
FirewallRules: [{9D1D57F7-088D-404E-A17D-17EED727D93D}] => (Allow) C:\Program Files\Opera x64\pluginwrapper\opera_plugin_wrapper.exe
FirewallRules: [{10DA2BB8-64B0-4FD9-977D-F889B1661380}] => (Allow) C:\Program Files\Opera x64\pluginwrapper\opera_plugin_wrapper_32.exe
FirewallRules: [{B364C430-299D-4C6E-8BBD-48BF211A3D96}] => (Allow) C:\Program Files\Opera x64\pluginwrapper\opera_plugin_wrapper_32.exe
FirewallRules: [{8F64F70D-F2EF-48AC-819E-2D8141E48EBB}] => (Allow) C:\Program Files\Opera x64\opera.exe
FirewallRules: [{A6405123-1E78-4481-A40E-EF0CF1D6DB40}] => (Allow) C:\Program Files\Opera x64\opera.exe
FirewallRules: [{6308A80B-D996-4382-83A7-6D15AB0877B1}] => (Allow) C:\Users\Honza\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{F0DEAE99-285D-44EF-9673-16CC557D6FEE}] => (Allow) C:\Users\Honza\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{51ECFCAB-A559-4CE4-B6A2-2834125B059F}] => (Allow) C:\Users\Honza\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{483ABBB2-D7E7-40A5-A501-D96EBFA334D2}] => (Allow) C:\Users\Honza\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [TCP Query User{99A1B3C3-72F9-4341-B351-A68243323C9D}C:\program files\java\jre7\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre7\launch4j-tmp\frd.exe
FirewallRules: [UDP Query User{87BAD25C-629A-41CB-AC20-2813931E33D2}C:\program files\java\jre7\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre7\launch4j-tmp\frd.exe
FirewallRules: [TCP Query User{4E307479-C18A-421E-80EE-036D2F4AD2BC}C:\program files\java\jre1.8.0_25\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_25\launch4j-tmp\frd.exe
FirewallRules: [UDP Query User{F7F3C2CE-84D9-4DC1-A86C-53222E5ED2DC}C:\program files\java\jre1.8.0_25\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_25\launch4j-tmp\frd.exe
FirewallRules: [TCP Query User{882063E3-30B1-42F3-B81D-E83F113F5D19}C:\program files (x86)\java\jre1.8.0_40\launch4j-tmp\frd.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_40\launch4j-tmp\frd.exe
FirewallRules: [UDP Query User{536E94A2-E7DF-4D25-90F4-2FA37D51EE0B}C:\program files (x86)\java\jre1.8.0_40\launch4j-tmp\frd.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_40\launch4j-tmp\frd.exe
FirewallRules: [TCP Query User{AE0B8227-7658-48B8-B1BE-70987574D11E}C:\program files\java\jre1.8.0_45\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_45\launch4j-tmp\frd.exe
FirewallRules: [UDP Query User{76D6207A-5DE1-47CA-AFB7-ACF8AE35A3CA}C:\program files\java\jre1.8.0_45\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_45\launch4j-tmp\frd.exe
FirewallRules: [TCP Query User{E886B94E-E1F8-428C-8862-A9950156C013}C:\program files\java\jre1.8.0_60\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_60\launch4j-tmp\frd.exe
FirewallRules: [UDP Query User{98CD2653-AD70-45CB-A1A1-C471D6117377}C:\program files\java\jre1.8.0_60\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_60\launch4j-tmp\frd.exe
FirewallRules: [TCP Query User{81F4A732-59A0-472D-8B86-97C826D0B1A3}C:\program files\java\jre1.8.0_73\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_73\launch4j-tmp\frd.exe
FirewallRules: [UDP Query User{E7161B59-84CB-4E4F-992E-FD0D794DCB48}C:\program files\java\jre1.8.0_73\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_73\launch4j-tmp\frd.exe
FirewallRules: [TCP Query User{FCC7446E-0ACE-4E2C-A0EB-555AE56CDCA5}C:\program files\java\jre1.8.0_77\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_77\launch4j-tmp\frd.exe
FirewallRules: [UDP Query User{155EE55B-D88B-4C46-B909-8B3C41998FE9}C:\program files\java\jre1.8.0_77\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_77\launch4j-tmp\frd.exe
FirewallRules: [TCP Query User{93AB59DB-7C5A-420B-9E6C-71CC59187573}C:\program files\java\jre1.8.0_91\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_91\launch4j-tmp\frd.exe
FirewallRules: [UDP Query User{72908BC3-46D0-4B4D-95E0-2E3A3099A523}C:\program files\java\jre1.8.0_91\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_91\launch4j-tmp\frd.exe
FirewallRules: [{87153BFF-E83A-4431-B013-B7EF66F44C25}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{BA4A9F4C-CFBA-4824-B349-4C57D9082D9F}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{080EBBB4-59F4-4C6A-877E-10ECD679788F}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{77592308-E90E-4295-8518-5AC9DC8537BC}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{48A19646-BF11-4A54-8BA5-7C9FF5420405}] => (Allow) C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv.exe
FirewallRules: [{8FA3B3ED-1C16-4FC7-84BB-3B1786D9E7C2}] => (Allow) C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv.exe
FirewallRules: [TCP Query User{1D6BCCBB-05D6-4104-AE5C-BA7185482574}C:\program files\java\jre1.8.0_101\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_101\launch4j-tmp\frd.exe
FirewallRules: [UDP Query User{C75F1CEE-CA06-467F-8AEE-3ACE6A73BF4B}C:\program files\java\jre1.8.0_101\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_101\launch4j-tmp\frd.exe
FirewallRules: [{63087749-8B87-43F4-A8BC-8D3D8855A258}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr.exe
FirewallRules: [{792D0619-2F23-4D25-B97C-752D5816F0EE}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr.exe
FirewallRules: [{68E54169-2B6D-487B-8DA3-52BF406516A6}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_im.exe
FirewallRules: [{3FE2F94C-2D35-46A8-9285-B235ED2E27E7}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_im.exe
FirewallRules: [{32EA4231-A67A-4F11-880D-B5E2E966A8D6}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr.exe
FirewallRules: [{41583BA8-079D-4675-A93C-2F7B1852A09B}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr.exe
FirewallRules: [{9FB4124F-8071-4E40-B957-5BB5A5F72E76}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_im.exe
FirewallRules: [{E08A52FE-BB4E-496B-BDC3-D20D40C012B1}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_im.exe
FirewallRules: [TCP Query User{61E23016-5387-4842-9BB0-6A65D071E45A}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe
FirewallRules: [UDP Query User{57E10734-67EC-4F7E-BC76-6B2BCADEA92D}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe

==================== Restore Points =========================

21-08-2016 21:02:23 Naplánovaný kontrolní bod
28-08-2016 22:13:43 Operace obnovení

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (08/28/2016 10:30:20 PM) (Source: Microsoft-Windows-WMI) (EventID: 10) (User: NT AUTHORITY)
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (08/28/2016 10:29:34 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: igfxCUIService.exe, verze: 6.15.10.3540, časové razítko: 0x5338f9c7
Název chybujícího modulu: igfxCUIService.exe, verze: 6.15.10.3540, časové razítko: 0x5338f9c7
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000000e6e8
ID chybujícího procesu: 0x4ac
Čas spuštění chybující aplikace: 0x01d2016ad8e35916
Cesta k chybující aplikaci: C:\Windows\system32\igfxCUIService.exe
Cesta k chybujícímu modulu: C:\Windows\system32\igfxCUIService.exe
ID zprávy: 21415272-6d5e-11e6-8661-94de800c8a37

Error: (08/28/2016 10:13:17 PM) (Source: Microsoft-Windows-WMI) (EventID: 10) (User: NT AUTHORITY)
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (08/28/2016 10:12:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: igfxCUIService.exe, verze: 6.15.10.3540, časové razítko: 0x5338f9c7
Název chybujícího modulu: igfxCUIService.exe, verze: 6.15.10.3540, časové razítko: 0x5338f9c7
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000000e6e8
ID chybujícího procesu: 0x4d4
Čas spuštění chybující aplikace: 0x01d2016875f3a0d3
Cesta k chybující aplikaci: C:\Windows\system32\igfxCUIService.exe
Cesta k chybujícímu modulu: C:\Windows\system32\igfxCUIService.exe
ID zprávy: c387e69e-6d5b-11e6-b0be-94de800c8a37

Error: (08/28/2016 09:44:56 PM) (Source: Microsoft-Windows-WMI) (EventID: 10) (User: NT AUTHORITY)
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (08/28/2016 09:44:02 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: igfxCUIService.exe, verze: 6.15.10.3540, časové razítko: 0x5338f9c7
Název chybujícího modulu: igfxCUIService.exe, verze: 6.15.10.3540, časové razítko: 0x5338f9c7
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000000e6e8
ID chybujícího procesu: 0x4d4
Čas spuštění chybující aplikace: 0x01d201647eba78cc
Cesta k chybující aplikaci: C:\Windows\system32\igfxCUIService.exe
Cesta k chybujícímu modulu: C:\Windows\system32\igfxCUIService.exe
ID zprávy: c4b7f285-6d57-11e6-8067-94de800c8a37

Error: (08/28/2016 09:08:55 PM) (Source: Microsoft-Windows-WMI) (EventID: 10) (User: NT AUTHORITY)
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (08/28/2016 09:08:04 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: igfxCUIService.exe, verze: 6.15.10.3540, časové razítko: 0x5338f9c7
Název chybujícího modulu: igfxCUIService.exe, verze: 6.15.10.3540, časové razítko: 0x5338f9c7
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000000e6e8
ID chybujícího procesu: 0x4b4
Čas spuštění chybující aplikace: 0x01d2015f77824624
Cesta k chybující aplikaci: C:\Windows\system32\igfxCUIService.exe
Cesta k chybujícímu modulu: C:\Windows\system32\igfxCUIService.exe
ID zprávy: be99a80f-6d52-11e6-a1cb-94de800c8a37

Error: (08/28/2016 08:48:06 AM) (Source: Microsoft-Windows-WMI) (EventID: 10) (User: NT AUTHORITY)
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (08/28/2016 08:47:16 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: igfxCUIService.exe, verze: 6.15.10.3540, časové razítko: 0x5338f9c7
Název chybujícího modulu: igfxCUIService.exe, verze: 6.15.10.3540, časové razítko: 0x5338f9c7
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000000e6e8
ID chybujícího procesu: 0x4c4
Čas spuštění chybující aplikace: 0x01d200f7e1fb14a5
Cesta k chybující aplikaci: C:\Windows\system32\igfxCUIService.exe
Cesta k chybujícímu modulu: C:\Windows\system32\igfxCUIService.exe
ID zprávy: 415a58d9-6ceb-11e6-89ec-94de800c8a37


System errors:
=============
Error: (08/28/2016 10:35:38 PM) (Source: iaStor) (EventID: 9) (User: )
Description: Zařízení \Device\Ide\iaStor0 neodpovídá v periodě časového limitu.

Error: (08/28/2016 10:29:32 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Intel(R) HD Graphics Control Panel Service byla ukončena s následující chybou:
%%-2147467259 = Nespecifikovaná chyba

Error: (08/28/2016 10:29:29 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba lirsgt neuspěla při spuštění v důsledku následující chyby:
%%577 = V systému Windows nelze ověřit digitální podpis tohoto souboru. Při nedávné změně hardwaru nebo softwaru mohl být nainstalován nesprávně podepsaný nebo poškozený soubor nebo soubor škodlivého softwaru z neznámého zdroje.

Error: (08/28/2016 10:29:28 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba atksgt neuspěla při spuštění v důsledku následující chyby:
%%577 = V systému Windows nelze ověřit digitální podpis tohoto souboru. Při nedávné změně hardwaru nebo softwaru mohl být nainstalován nesprávně podepsaný nebo poškozený soubor nebo soubor škodlivého softwaru z neznámého zdroje.

Error: (08/28/2016 10:29:09 PM) (Source: iaStor) (EventID: 9) (User: )
Description: Zařízení \Device\Ide\iaStor0 neodpovídá v periodě časového limitu.

Error: (08/28/2016 10:28:48 PM) (Source: iaStor) (EventID: 9) (User: )
Description: Zařízení \Device\Ide\iaStor0 neodpovídá v periodě časového limitu.

Error: (08/28/2016 10:28:33 PM) (Source: volmgr) (EventID: 46) (User: )
Description: Inicializace výpisu stavu systému se nezdařila.

Error: (08/28/2016 10:28:33 PM) (Source: volmgr) (EventID: 46) (User: )
Description: Inicializace výpisu stavu systému se nezdařila.

Error: (08/28/2016 10:21:41 PM) (Source: iaStor) (EventID: 9) (User: )
Description: Zařízení \Device\Ide\iaStor0 neodpovídá v periodě časového limitu.

Error: (08/28/2016 10:18:30 PM) (Source: iaStor) (EventID: 9) (User: )
Description: Zařízení \Device\Ide\iaStor0 neodpovídá v periodě časového limitu.


CodeIntegrity:
===================================
Date: 2016-08-28 22:29:29.296
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\lirsgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-08-28 22:29:29.249
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\lirsgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-08-28 22:29:28.921
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\atksgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-08-28 22:29:28.874
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\atksgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-08-28 22:12:14.470
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\lirsgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-08-28 22:12:14.420
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\lirsgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-08-28 22:12:13.660
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\atksgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-08-28 22:12:13.597
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\atksgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-08-28 21:43:50.444
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\lirsgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-08-28 21:43:50.398
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\lirsgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info ===========================

Processor: Intel(R) Pentium(R) CPU G2120 @ 3.10GHz
Percentage of memory in use: 30%
Total physical RAM: 8132.18 MB
Available physical RAM: 5632.06 MB
Total Virtual: 8130.37 MB
Available Virtual: 5001.79 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:930.97 GB) (Free:301.03 GB) NTFS

Re: Zpomalení PC po vytuhnutí

Napsal: 29 srp 2016 17:05
od Rudy
Zdravím!
Spusťte tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

Re: Zpomalení PC po vytuhnutí

Napsal: 29 srp 2016 22:08
od kockopes
Dobrý den,
dnes po návratu ze zaměstnání se PC tváří normálně. Zasílám og:

# AdwCleaner v6.010 - Log soubor vytvořen 29/08/2016 na 23:00:08
# Aktualizováno dne 12/08/2016 z ToolsLib
# Databáze : 2016-08-28.2 [Server]
# Operační systém : Windows 7 Home Premium Service Pack 1 (X64)
# Uživatelské jméno : Honza - HONZA-PC
# Beží od : C:\Users\Honza\Desktop\adwcleaner_6.010.exe
# Mod: Čištění
# Podpora : https://toolslib.net/forum



***** [ Služby ] *****



***** [ Adresáře ] *****



***** [ Soubory ] *****



***** [ DLL ] *****



***** [ WMI ] *****



***** [ Zástupce ] *****



***** [ Plánovač úloh ] *****



***** [ Registry ] *****



***** [ Prohlížeče ] *****



*************************

:: "Tracing" klíč smazán
:: Winsock nastavení vyčištěno

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [1252 Bajtů] - [28/08/2016 21:39:54]
C:\AdwCleaner\AdwCleaner[C2].txt - [1400 Bajtů] - [28/08/2016 22:46:43]
C:\AdwCleaner\AdwCleaner[C3].txt - [949 Bajtů] - [29/08/2016 23:00:08]
C:\AdwCleaner\AdwCleaner[S0].txt - [1540 Bajtů] - [28/08/2016 21:39:10]
C:\AdwCleaner\AdwCleaner[S1].txt - [1688 Bajtů] - [28/08/2016 22:42:58]
C:\AdwCleaner\AdwCleaner[S2].txt - [1693 Bajtů] - [29/08/2016 23:00:02]

########## EOF - C:\AdwCleaner\AdwCleaner[C3].txt - [1244 Bajtů] ##########

Re: Zpomalení PC po vytuhnutí

Napsal: 30 srp 2016 16:38
od Rudy
Toto je OK. Otevřte poznámkový blok a zkopírujte do něj:
Start
HKLM-x32\...\Run: [SunJavaUpdateSched] => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
HKU\S-1-5-21-987239476-2580196913-1685191379-1000\...\MountPoints2: {20c3956c-133d-11e6-a990-94de800c8a37} - G:\autorun.exe
HKU\S-1-5-21-987239476-2580196913-1685191379-1000\...\MountPoints2: {36070081-c731-11e3-bbf8-94de800c8a37} - G:\LGAutoRun.exe
HKU\S-1-5-21-987239476-2580196913-1685191379-1000\...\MountPoints2: {4aa1f6ca-019d-11e6-a0e5-94de800c8a37} - G:\autorun.exe
HKU\S-1-5-21-987239476-2580196913-1685191379-1000\...\MountPoints2: {5e94478b-02c4-11e6-95c0-94de800c8a37} - G:\autorun.exe
HKU\S-1-5-21-987239476-2580196913-1685191379-1000\...\MountPoints2: {5e9447ac-02c4-11e6-95c0-94de800c8a37} - G:\autorun.exe
HKU\S-1-5-21-987239476-2580196913-1685191379-1000\...\MountPoints2: {5e9447fb-02c4-11e6-95c0-94de800c8a37} - G:\autorun.exe
HKU\S-1-5-21-987239476-2580196913-1685191379-1000\...\MountPoints2: {6ecd16c9-0306-11e6-b17f-94de800c8a37} - G:\autorun.exe
HKU\S-1-5-21-987239476-2580196913-1685191379-1000\...\MountPoints2: {fe077b0f-6552-11e6-b0e4-94de800c8a37} - G:\autorun.exe
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [No File]
U3 a9h2u7d4; C:\Windows\System32\Drivers\a9h2u7d4.sys [0 ] (Microsoft Corporation) <==== ATTENTION (zero byte File/Folder)
C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d1e90cc0469d50.job
C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d1e90cc07fd696.job
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
C:\Users\Honza\Mouse Tool.exe
C:\Users\Honza\AppData\Local\Temp
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Re: Zpomalení PC po vytuhnutí

Napsal: 30 srp 2016 21:03
od kockopes
Dobrý den,
zasílám log:

Fix result of Farbar Recovery Scan Tool (x64) Version: 29-08-2016
Ran by Honza (30-08-2016 21:49:42) Run:1
Running from C:\Users\Honza\Desktop
Loaded Profiles: Honza (Available Profiles: Honza)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
HKLM-x32\...\Run: [SunJavaUpdateSched] => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
HKU\S-1-5-21-987239476-2580196913-1685191379-1000\...\MountPoints2: {20c3956c-133d-11e6-a990-94de800c8a37} - G:\autorun.exe
HKU\S-1-5-21-987239476-2580196913-1685191379-1000\...\MountPoints2: {36070081-c731-11e3-bbf8-94de800c8a37} - G:\LGAutoRun.exe
HKU\S-1-5-21-987239476-2580196913-1685191379-1000\...\MountPoints2: {4aa1f6ca-019d-11e6-a0e5-94de800c8a37} - G:\autorun.exe
HKU\S-1-5-21-987239476-2580196913-1685191379-1000\...\MountPoints2: {5e94478b-02c4-11e6-95c0-94de800c8a37} - G:\autorun.exe
HKU\S-1-5-21-987239476-2580196913-1685191379-1000\...\MountPoints2: {5e9447ac-02c4-11e6-95c0-94de800c8a37} - G:\autorun.exe
HKU\S-1-5-21-987239476-2580196913-1685191379-1000\...\MountPoints2: {5e9447fb-02c4-11e6-95c0-94de800c8a37} - G:\autorun.exe
HKU\S-1-5-21-987239476-2580196913-1685191379-1000\...\MountPoints2: {6ecd16c9-0306-11e6-b17f-94de800c8a37} - G:\autorun.exe
HKU\S-1-5-21-987239476-2580196913-1685191379-1000\...\MountPoints2: {fe077b0f-6552-11e6-b0e4-94de800c8a37} - G:\autorun.exe
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [No File]
U3 a9h2u7d4; C:\Windows\System32\Drivers\a9h2u7d4.sys [0 ] (Microsoft Corporation) <==== ATTENTION (zero byte File/Folder)
C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d1e90cc0469d50.job
C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d1e90cc07fd696.job
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
C:\Users\Honza\Mouse Tool.exe
C:\Users\Honza\AppData\Local\Temp
End
*****************

HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => value removed successfully
"HKU\S-1-5-21-987239476-2580196913-1685191379-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{20c3956c-133d-11e6-a990-94de800c8a37}" => key removed successfully
HKCR\CLSID\{20c3956c-133d-11e6-a990-94de800c8a37} => key not found.
"HKU\S-1-5-21-987239476-2580196913-1685191379-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{36070081-c731-11e3-bbf8-94de800c8a37}" => key removed successfully
HKCR\CLSID\{36070081-c731-11e3-bbf8-94de800c8a37} => key not found.
"HKU\S-1-5-21-987239476-2580196913-1685191379-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{4aa1f6ca-019d-11e6-a0e5-94de800c8a37}" => key removed successfully
HKCR\CLSID\{4aa1f6ca-019d-11e6-a0e5-94de800c8a37} => key not found.
"HKU\S-1-5-21-987239476-2580196913-1685191379-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{5e94478b-02c4-11e6-95c0-94de800c8a37}" => key removed successfully
HKCR\CLSID\{5e94478b-02c4-11e6-95c0-94de800c8a37} => key not found.
"HKU\S-1-5-21-987239476-2580196913-1685191379-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{5e9447ac-02c4-11e6-95c0-94de800c8a37}" => key removed successfully
HKCR\CLSID\{5e9447ac-02c4-11e6-95c0-94de800c8a37} => key not found.
"HKU\S-1-5-21-987239476-2580196913-1685191379-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{5e9447fb-02c4-11e6-95c0-94de800c8a37}" => key removed successfully
HKCR\CLSID\{5e9447fb-02c4-11e6-95c0-94de800c8a37} => key not found.
"HKU\S-1-5-21-987239476-2580196913-1685191379-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{6ecd16c9-0306-11e6-b17f-94de800c8a37}" => key removed successfully
HKCR\CLSID\{6ecd16c9-0306-11e6-b17f-94de800c8a37} => key not found.
"HKU\S-1-5-21-987239476-2580196913-1685191379-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{fe077b0f-6552-11e6-b0e4-94de800c8a37}" => key removed successfully
HKCR\CLSID\{fe077b0f-6552-11e6-b0e4-94de800c8a37} => key not found.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avast" => key removed successfully
HKCR\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => key not found.
"HKLM\Software\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0" => key removed successfully
a9h2u7d4 => service not found.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d1e90cc0469d50.job => moved successfully
C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d1e90cc07fd696.job => moved successfully
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully
C:\Users\Honza\Mouse Tool.exe => moved successfully

"C:\Users\Honza\AppData\Local\Temp" folder move:

Could not move "C:\Users\Honza\AppData\Local\Temp" => Scheduled to move on reboot.


Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 30-08-2016 21:50:40)

C:\Users\Honza\AppData\Local\Temp => moved successfully

==== End of Fixlog 21:50:40 ====


Zároveň se chci zeptat. Jako výchozí program pro čtení txt souborů mám jakýsi ruský program AlkePad. Po nastavení na Poznámkový blok a uložení se opět po restartu PC se opěr změní na AlkePAd. Vůbec nevím, kde jsem k němu přišel (předpokládám, že se nainstaloval jako nějaký balast s nějakým programe a to jsem přehlédl). Program nelze v PC nikde najít, natož odinstalovat. Je nějaká jiná cesta např. přes registry?

Děkuji :)

Re: Zpomalení PC po vytuhnutí

Napsal: 30 srp 2016 21:25
od Rudy
Zkuste buď použít hledání (do přík. řádku zadejte AlkePAd a odentrujte). Co se objeví, smažte. Případně přes registry ruční editací podle návodu: http://forum.viry.cz/viewtopic.php?f=46&t=2791 .

Re: Zpomalení PC po vytuhnutí

Napsal: 30 srp 2016 21:37
od kockopes
Dobrý den,
příkazový řádek nic nenašel: "Akelpad není názvem vnitřního ani vnějšího příkazu..."
S registry si asi neporadím. Pokud je tento postup složitější, nebo není žádný jiný, nebudu Vás tímto zatěžovat. Tak úplně sem to nepatří... :)

Re: Zpomalení PC po vytuhnutí

Napsal: 31 srp 2016 17:05
od Rudy
Jde jen o smazání klíčů, či hodnot, které mají něco společného s Akelpad. Tento řetězec zadáte do vyhledávání a každý nalezený smažete. Nic jiného, mohl byste si poškodit systém!

Re: Zpomalení PC po vytuhnutí

Napsal: 31 srp 2016 17:35
od kockopes
Tudíž rozumím tomu tak, že tam, kde je uvedeno slovo "akelpad" můžu smazat? Kyž dám tedy regedit a CTRL+F s tímto klíčovým slovem, vyjedou např. tři věci, které smažu, stačí to?

Omlouvám se, za hloupou formulaci...

Re: Zpomalení PC po vytuhnutí

Napsal: 31 srp 2016 18:16
od Rudy
Ano, přesně tak. Nemažte ale nic, kde není tento řetězec!!!

Re: Zpomalení PC po vytuhnutí

Napsal: 31 srp 2016 23:01
od kockopes
tak jsem to nakonec pochopil správně. Věřím, že to i správně uchopím :)
V každém případě, PC již nezlobí a i mechanika se chová korektně :thumbsup:

Re: Zpomalení PC po vytuhnutí

Napsal: 01 zář 2016 16:53
od Rudy
Tak to jsem rád! :)
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz