Brutalne zpomaleny PC - log

Místo pro vaše HiJackThis logy a logy z dalších programů…

Moderátoři: memphisto, Mods_senior, Security team

ondrej.nov
nováček
Příspěvky: 28
Registrován: květen 17
Pohlaví: Nespecifikováno

Re: Brutalne zpomaleny PC - log

Příspěvekod ondrej.nov » 20 kvě 2017 11:32

roguekiller - tusim, ze jsem mazal vse

ComboFix 17-05-16.01 - Toshiba 20.05.2017 10:57:48.2.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.3955.1356 [GMT 2:00]
Spuštěný z: c:\users\Toshiba\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\Toshiba\Desktop\CFScript.txt
AV: Malwarebytes *Disabled/Updated* {23007AD3-69FE-687C-2629-D584AFFAF72B}
SP: Malwarebytes *Disabled/Updated* {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
FILE ::
"c:\windows\SysWOW64\Drivers\X6va014"
"c:\windows\SysWOW64\Drivers\X6va015"
"c:\windows\SysWOW64\Drivers\X6va029"
"c:\windows\Tasks\Adobe Flash Player Updater.job"
"c:\windows\Tasks\GoogleUpdateTaskMachineCore.job"
"c:\windows\Tasks\GoogleUpdateTaskMachineUA.job"
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\AVG
c:\program files (x86)\AVG\Av\avguirux.exe
c:\program files (x86)\AVG\AVG10\idpfixx.exe
c:\program files (x86)\Google\Update
c:\program files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.exe
c:\program files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64.exe
c:\program files (x86)\Google\Update\1.3.33.5\GoogleUpdate.exe
c:\program files (x86)\Google\Update\1.3.33.5\GoogleUpdateBroker.exe
c:\program files (x86)\Google\Update\1.3.33.5\GoogleUpdateComRegisterShell64.exe
c:\program files (x86)\Google\Update\1.3.33.5\GoogleUpdateCore.exe
c:\program files (x86)\Google\Update\1.3.33.5\GoogleUpdateHelper.msi
c:\program files (x86)\Google\Update\1.3.33.5\GoogleUpdateOnDemand.exe
c:\program files (x86)\Google\Update\1.3.33.5\GoogleUpdateSetup.exe
c:\program files (x86)\Google\Update\1.3.33.5\GoogleUpdateWebPlugin.exe
c:\program files (x86)\Google\Update\1.3.33.5\goopdate.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_am.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_ar.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_bg.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_bn.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_ca.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_cs.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_da.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_de.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_el.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_en-GB.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_en.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_es-419.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_es.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_et.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_fa.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_fi.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_fil.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_fr.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_gu.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_hi.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_hr.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_hu.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_id.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_is.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_it.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_iw.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_ja.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_kn.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_ko.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_lt.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_lv.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_ml.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_mr.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_ms.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_nl.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_no.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_pl.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_pt-BR.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_pt-PT.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_ro.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_ru.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_sk.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_sl.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_sr.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_sv.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_sw.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_ta.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_te.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_th.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_tr.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_uk.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_ur.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_vi.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_zh-CN.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_zh-TW.dll
c:\program files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll
c:\program files (x86)\Google\Update\1.3.33.5\psmachine.dll
c:\program files (x86)\Google\Update\1.3.33.5\psmachine_64.dll
c:\program files (x86)\Google\Update\1.3.33.5\psuser.dll
c:\program files (x86)\Google\Update\1.3.33.5\psuser_64.dll
c:\program files (x86)\Google\Update\Download\{3C122445-AECE-4309-90B7-85A6AEF42AC0}\2.34.5075.1619\gsync.msi
c:\program files (x86)\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D}\1.3.33.5\GoogleUpdateSetup.exe
c:\program files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\55.0.2883.87\55.0.2883.87_54.0.2840.99_chrome_updater.exe
c:\program files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\55.0.2883.87\55.0.2883.87_chrome_installer.exe
c:\program files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\56.0.2924.87\56.0.2924.87_55.0.2883.87_chrome_updater.exe
c:\program files (x86)\Google\Update\Download\{8A69D345-D564-463C-AFF1-A69D9E530F96}\58.0.3029.110\58.0.3029.110_chrome_installer.exe
c:\program files (x86)\Google\Update\GoogleUpdate.exe
c:\program files (x86)\Skype\Updater
c:\program files (x86)\Skype\Updater\Updater.dll
c:\program files (x86)\Skype\Updater\Updater.exe
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_X6VA014
-------\Legacy_X6VA015
-------\Legacy_X6VA029
-------\Service_SkypeUpdate
-------\Service_X6va014
-------\Service_X6va015
-------\Service_X6va029
-------\Service_gupdate
-------\Service_gupdatem
-------\Service_gupdate
-------\Service_gupdatem
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2017-04-20 do 2017-05-20 )))))))))))))))))))))))))))))))
.
.
2017-05-20 09:15 . 2017-05-20 09:15 -------- d-----w- c:\windows\system32\config\systemprofile\AppData\Local\temp
2017-05-20 09:15 . 2017-05-20 09:15 -------- d-----w- c:\users\Default\AppData\Local\temp
2017-05-20 08:36 . 2017-05-20 08:36 -------- d-----w- c:\programdata\NVIDIA
2017-05-20 00:24 . 2017-05-20 00:24 203680 ----a-w- c:\windows\system32\drivers\zam64.sys
2017-05-20 00:24 . 2017-05-20 00:24 203680 ----a-w- c:\windows\system32\drivers\zamguard64.sys
2017-05-20 00:24 . 2017-05-20 01:24 -------- d-----w- c:\program files (x86)\Zemana AntiMalware
2017-05-20 00:23 . 2017-05-20 00:23 -------- d-----w- c:\users\Toshiba\AppData\Local\Zemana
2017-05-19 23:14 . 2017-05-19 23:14 -------- d-----w- C:\zoek
2017-05-19 21:36 . 2017-05-19 21:36 -------- d-----w- c:\programdata\PicPick
2017-05-19 08:15 . 2017-05-19 08:15 -------- d-----w- c:\data aplikací\ProductData
2017-05-18 19:57 . 2017-05-19 17:53 28272 ----a-w- c:\windows\system32\drivers\TrueSight.sys
2017-05-18 19:22 . 2017-05-19 00:20 -------- d-----w- c:\programdata\RogueKiller
2017-05-18 18:52 . 2017-05-18 18:52 -------- d-----w- c:\programdata\Sophos
2017-05-18 14:15 . 2017-05-19 21:40 187320 ----a-w- c:\windows\system32\drivers\MBAMChameleon.sys
2017-05-18 14:15 . 2017-05-20 01:27 113592 ----a-w- c:\windows\system32\drivers\farflt.sys
2017-05-18 14:15 . 2017-05-20 01:27 84256 ----a-w- c:\windows\system32\drivers\mwac.sys
2017-05-18 14:15 . 2017-05-20 09:18 43968 ----a-w- c:\windows\system32\drivers\mbam.sys
2017-05-18 14:15 . 2017-05-20 09:18 251832 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2017-05-18 14:15 . 2017-05-09 14:37 77440 ----a-w- c:\windows\system32\drivers\mbae64.sys
2017-05-18 14:15 . 2017-05-18 14:15 -------- d-----w- c:\programdata\Malwarebytes
2017-05-18 14:15 . 2017-05-18 14:15 -------- d-----w- c:\program files\Malwarebytes
2017-05-18 13:54 . 2017-05-18 17:35 -------- d-----w- C:\AdwCleaner
2017-05-14 06:48 . 2017-05-14 06:48 -------- d-----w- c:\data aplikací\RealVNC
2017-05-08 17:48 . 2014-01-31 07:58 1002728 ----a-w- c:\windows\system32\WinUSBCoInstaller2.dll
2017-05-08 17:48 . 2012-10-26 14:32 369792 ----a-w- c:\windows\system32\drivers\innosusbser.sys
2017-05-08 17:48 . 2012-10-26 14:32 510976 ----a-w- c:\windows\system32\drivers\innosusbnet.sys
2017-05-08 17:48 . 2017-05-08 17:48 -------- d-----w- c:\program files (x86)\android_driver_install
2017-04-30 13:11 . 2017-04-30 13:11 -------- d-----w- c:\data aplikací\Google
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2017-05-10 23:02 . 2010-12-18 17:06 156335152 -c--a-w- c:\windows\system32\MRT.exe
2017-04-28 01:10 . 2017-05-10 17:23 345600 ----a-w- c:\windows\system32\schannel.dll
2017-04-28 01:10 . 2017-05-10 17:23 190464 ----a-w- c:\windows\system32\rpchttp.dll
2017-04-28 00:36 . 2017-05-10 17:23 4000488 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2017-04-28 00:36 . 2017-05-10 17:23 3945192 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2017-04-28 00:34 . 2017-05-10 17:23 1314112 ----a-w- c:\windows\SysWow64\ntdll.dll
2017-04-28 00:32 . 2017-05-10 17:23 666112 ----a-w- c:\windows\SysWow64\rpcrt4.dll
2017-04-28 00:32 . 2017-05-10 17:23 96768 ----a-w- c:\windows\SysWow64\sspicli.dll
2017-04-28 00:32 . 2017-05-10 17:23 275456 ----a-w- c:\windows\SysWow64\KernelBase.dll
2017-04-28 00:32 . 2017-05-10 17:23 5120 ----a-w- c:\windows\SysWow64\wow32.dll
2017-04-28 00:32 . 2017-05-10 17:23 172032 ----a-w- c:\windows\SysWow64\wdigest.dll
2017-04-28 00:32 . 2017-05-10 17:23 65536 ----a-w- c:\windows\SysWow64\TSpkg.dll
2017-04-28 00:32 . 2017-05-10 17:23 43008 ----a-w- c:\windows\SysWow64\srclient.dll
2017-04-28 00:32 . 2017-05-10 17:23 254464 ----a-w- c:\windows\SysWow64\schannel.dll
2017-04-28 00:32 . 2017-05-10 17:23 141312 ----a-w- c:\windows\SysWow64\rpchttp.dll
2017-04-28 00:32 . 2017-05-10 17:23 22016 ----a-w- c:\windows\SysWow64\secur32.dll
2017-04-28 00:32 . 2017-05-10 17:23 261120 ----a-w- c:\windows\SysWow64\msv1_0.dll
2017-04-28 00:32 . 2017-05-10 17:23 223232 ----a-w- c:\windows\SysWow64\ncrypt.dll
2017-04-28 00:32 . 2017-05-10 17:23 60416 ----a-w- c:\windows\SysWow64\msobjs.dll
2017-04-28 00:32 . 2017-05-10 17:23 146432 ----a-w- c:\windows\SysWow64\msaudite.dll
2017-04-28 00:32 . 2017-05-10 17:23 553472 ----a-w- c:\windows\SysWow64\kerberos.dll
2017-04-28 00:32 . 2017-05-10 17:23 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2017-04-28 00:08 . 2017-05-10 17:23 25600 ----a-w- c:\windows\SysWow64\setup16.exe
2017-04-28 00:08 . 2017-05-10 17:23 14336 ----a-w- c:\windows\SysWow64\ntvdm64.dll
2017-04-28 00:08 . 2017-05-10 17:23 2048 ----a-w- c:\windows\SysWow64\user.exe
2017-04-17 15:12 . 2017-05-10 17:23 581632 ----a-w- c:\windows\SysWow64\oleaut32.dll
2017-04-17 15:12 . 2017-05-10 17:23 1417728 ----a-w- c:\windows\SysWow64\ole32.dll
2017-04-17 15:12 . 2017-05-10 17:23 26112 ----a-w- c:\windows\SysWow64\oleres.dll
2017-04-16 08:19 . 2017-05-10 17:23 2724864 ----a-w- c:\windows\SysWow64\mshtml.tlb
2017-04-16 08:01 . 2017-05-10 17:23 499200 ----a-w- c:\windows\SysWow64\vbscript.dll
2017-04-16 08:00 . 2017-05-10 17:23 64000 ----a-w- c:\windows\SysWow64\MshtmlDac.dll
2017-04-16 07:29 . 2017-05-10 17:23 73216 ----a-w- c:\windows\SysWow64\tdc.ocx
2017-04-16 07:08 . 2017-05-10 17:23 1155072 ----a-w- c:\windows\SysWow64\mshtmlmedia.dll
2017-04-16 06:37 . 2017-05-10 17:23 2767872 ----a-w- c:\windows\SysWow64\wininet.dll
2017-04-12 15:26 . 2017-05-10 17:23 179200 ----a-w- c:\windows\SysWow64\wintrust.dll
2017-03-26 18:33 . 2017-03-26 18:33 28344 ----a-w- c:\windows\SysWow64\aspnet_counters.dll
2017-03-26 18:33 . 2017-03-26 18:33 19104 ----a-w- c:\windows\SysWow64\msvcr110_clr0400.dll
2017-03-26 18:33 . 2017-03-26 18:33 19104 ----a-w- c:\windows\SysWow64\msvcr100_clr0400.dll
2017-03-26 18:33 . 2017-03-26 18:33 19104 ----a-w- c:\windows\SysWow64\msvcp110_clr0400.dll
2017-03-26 18:29 . 2017-03-26 18:29 30400 ----a-w- c:\windows\system32\aspnet_counters.dll
2017-03-26 18:29 . 2017-03-26 18:29 19112 ----a-w- c:\windows\system32\msvcr110_clr0400.dll
2017-03-26 18:29 . 2017-03-26 18:29 19112 ----a-w- c:\windows\system32\msvcr100_clr0400.dll
2017-03-26 18:29 . 2017-03-26 18:29 19112 ----a-w- c:\windows\system32\msvcp110_clr0400.dll
2017-03-22 15:32 . 2017-04-12 17:15 3165184 ----a-w- c:\windows\system32\wucltux.dll
2017-03-22 15:32 . 2017-04-12 17:15 192512 ----a-w- c:\windows\system32\wuwebv.dll
2017-03-22 15:32 . 2017-04-12 17:15 98816 ----a-w- c:\windows\system32\wudriver.dll
2017-03-22 15:30 . 2017-04-12 17:15 91136 ----a-w- c:\windows\system32\WinSetupUI.dll
2017-03-22 15:24 . 2017-04-12 17:15 174080 ----a-w- c:\windows\SysWow64\wuwebv.dll
2017-03-22 15:17 . 2017-04-12 17:15 2651136 ----a-w- c:\windows\system32\wuaueng.dll
2017-03-22 15:15 . 2017-04-12 17:15 709120 ----a-w- c:\windows\system32\wuapi.dll
2017-03-22 15:15 . 2017-04-12 17:15 37888 ----a-w- c:\windows\system32\wuapp.exe
2017-03-22 15:15 . 2017-04-12 17:15 140288 ----a-w- c:\windows\system32\wuauclt.exe
2017-03-22 15:15 . 2017-04-12 17:15 36864 ----a-w- c:\windows\system32\wups.dll
2017-03-22 15:15 . 2017-04-12 17:15 37888 ----a-w- c:\windows\system32\wups2.dll
2017-03-22 15:15 . 2017-04-12 17:15 12288 ----a-w- c:\windows\system32\wu.upgrade.ps.dll
2017-03-22 15:05 . 2017-04-12 17:15 573440 ----a-w- c:\windows\SysWow64\wuapi.dll
2017-03-22 15:05 . 2017-04-12 17:15 35328 ----a-w- c:\windows\SysWow64\wuapp.exe
2017-03-22 15:05 . 2017-04-12 17:15 30208 ----a-w- c:\windows\SysWow64\wups.dll
2017-03-22 15:05 . 2017-04-12 17:15 93696 ----a-w- c:\windows\SysWow64\wudriver.dll
2017-03-19 13:31 . 2013-07-03 08:22 802904 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2017-03-19 13:31 . 2013-05-23 13:03 144472 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2017-03-16 08:00 . 2016-01-03 18:29 27552 ----a-w- c:\windows\SysWow64\drivers\HWiNFO64A.SYS
2017-03-15 22:53 . 2012-01-18 12:56 280904 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr
2017-03-15 22:53 . 2012-01-17 15:47 280904 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
2017-03-15 03:12 . 2017-03-15 03:12 254520 ----a-w- c:\windows\system32\drivers\qcusbser.sys
2017-03-14 12:28 . 2012-01-17 15:47 280904 ----a-w- c:\windows\SysWow64\PnkBstrB.ex0
2017-03-10 16:35 . 2017-04-12 17:15 382696 ----a-w- c:\windows\system32\atmfd.dll
2017-03-10 16:31 . 2017-04-12 17:15 41472 ----a-w- c:\windows\system32\lpk.dll
2017-03-10 16:31 . 2017-04-12 17:15 100864 ----a-w- c:\windows\system32\fontsub.dll
2017-03-10 16:31 . 2017-04-12 17:15 14336 ----a-w- c:\windows\system32\dciman32.dll
2017-03-10 16:31 . 2017-04-12 17:15 46080 ----a-w- c:\windows\system32\atmlib.dll
2017-03-10 16:27 . 2017-04-12 17:15 308456 ----a-w- c:\windows\SysWow64\atmfd.dll
2017-03-10 16:20 . 2017-04-12 17:15 25600 ----a-w- c:\windows\SysWow64\lpk.dll
2017-03-10 16:20 . 2017-05-10 17:23 1508352 ----a-w- c:\windows\SysWow64\pla.dll
2017-03-10 16:20 . 2017-05-10 17:23 237056 ----a-w- c:\windows\SysWow64\pdh.dll
2017-03-10 16:19 . 2017-04-12 17:15 70656 ----a-w- c:\windows\SysWow64\fontsub.dll
2017-03-10 16:19 . 2017-04-12 17:15 10240 ----a-w- c:\windows\SysWow64\dciman32.dll
2017-03-10 15:53 . 2017-04-12 17:15 34304 ----a-w- c:\windows\SysWow64\atmlib.dll
2017-03-09 16:19 . 2017-05-10 17:23 2048 ----a-w- c:\windows\SysWow64\tzres.dll
2017-03-07 16:30 . 2017-04-12 17:15 85504 ----a-w- c:\windows\system32\asycfilt.dll
2017-03-07 16:17 . 2017-04-12 17:15 67584 ----a-w- c:\windows\SysWow64\asycfilt.dll
2017-03-04 01:27 . 2017-04-12 17:15 1574912 ----a-w- c:\windows\system32\quartz.dll
2017-03-04 01:27 . 2017-04-12 17:15 93696 ----a-w- c:\windows\system32\mfmjpegdec.dll
2017-03-04 01:14 . 2017-04-12 17:15 1329664 ----a-w- c:\windows\SysWow64\quartz.dll
2017-03-04 01:14 . 2017-04-12 17:15 77312 ----a-w- c:\windows\SysWow64\mfmjpegdec.dll
2017-02-22 23:42 . 2017-03-15 21:07 84712 ----a-w- c:\windows\system32\CompatTelRunner.exe
2017-02-22 23:37 . 2017-03-15 21:07 1285632 ----a-w- c:\windows\system32\aeinv.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"TiVme Agent"="c:\program files (x86)\GIGABYTE\vivoTV\ScheduleAgent.exe" [2010-01-25 114688]
"ISUSPM Startup"="c:\progra~2\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe" [2004-08-09 221184]
"DAEMON Tools Lite Automount"="c:\program files\DAEMON Tools Lite\DTAgent.exe" [2016-01-15 4177784]
"PicPick Start"="c:\program files (x86)\PicPick\picpick.exe" [2016-05-19 19928008]
"Steam"="c:\program files (x86)\Steam\steam.exe" [2017-04-25 3019552]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"NBAgent"="c:\program files (x86)\Nero\Nero BackItUp & Burn\Nero BackItUp\NBAgent.exe" [2010-03-08 1086760]
"SVPWUTIL"="c:\program files (x86)\TOSHIBA\Utilities\SVPWUTIL.exe" [2010-02-22 352256]
"HWSetup"="c:\program files\TOSHIBA\Utilities\HWSetup.exe" [2010-03-04 423936]
"KeNotify"="c:\program files (x86)\TOSHIBA\Utilities\KeNotify.exe" [2009-12-25 34160]
"TRCMan"="c:\program files (x86)\TOSHIBA\TRCMan\TRCMan.exe" [2009-07-21 701752]
"TWebCamera"="c:\program files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe" [2010-02-23 2454840]
"UpdatePPShortCut"="c:\program files (x86)\CyberLink\PowerProducer\MUITransfer\MUIStartMenu.exe" [2009-05-19 222504]
"RemoteControl"="c:\program files (x86)\CyberLink\PowerDVD\PDVDServ.exe" [2005-12-07 30208]
"LanguageShortcut"="c:\program files (x86)\CyberLink\PowerDVD\Language\Language.exe" [2006-04-13 49152]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2013-04-21 59720]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2013-07-02 254336]
"openvpn-gui"="c:\program files (x86)\Sophos\Sophos SSL VPN Client\bin\openvpn-gui.exe" [2015-03-23 480992]
"PWRISOVM.EXE"="c:\program files\PowerISO\PWRISOVM.EXE" [2017-02-02 455816]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"TOSHIBA Online Product Information"="c:\program files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe" [2010-03-03 4581280]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth Manager.lnk - c:\program files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe [2010-2-24 2721120]
Remote Control.lnk - c:\program files (x86)\GIGABYTE\U8300 Utilities\CONRCtl.exe [2010-12-29 94208]
VideoCam Suite.lnk - c:\program files (x86)\Common Files\Panasonic\VideoCam Suite AutoStart\VideoCamSuiteAutoStart.exe [2011-1-10 349600]
.
c:\users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
TRDCReminder.lnk - c:\program files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe [2009-9-1 481184]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
"EnableLinkedConnections"= 1 (0x1)
"HideFastUserSwitching"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe"
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" -atboottime
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 CXIR;Conexant Polaris IR Transceiver;c:\windows\system32\drivers\cxcir64.sys;c:\windows\SYSNATIVE\drivers\cxcir64.sys [x]
R2 LiveUpdateSvc;LiveUpdate;c:\program files (x86)\IObit\LiveUpdate\LiveUpdate.exe;c:\program files (x86)\IObit\LiveUpdate\LiveUpdate.exe [x]
R3 acpials;Filtr zařízení ALS Sensor;c:\windows\system32\DRIVERS\acpials.sys;c:\windows\SYSNATIVE\DRIVERS\acpials.sys [x]
R3 BBSvc;Bing Bar Update Service;c:\program files (x86)\Microsoft\BingBar\BBSvc.EXE;c:\program files (x86)\Microsoft\BingBar\BBSvc.EXE [x]
R3 CXPOLARIS;Conexant Polaris Video Capture;c:\windows\system32\drivers\cxpolar64.sys;c:\windows\SYSNATIVE\drivers\cxpolar64.sys [x]
R3 EagleX64;EagleX64;c:\windows\system32\drivers\EagleX64.sys;c:\windows\SYSNATIVE\drivers\EagleX64.sys [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 MBAMProtection;MBAMProtection;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
R3 ncplelhp;ASTARO Secure Client NDIS6 Driver;c:\windows\system32\DRIVERS\ncplelhp.sys;c:\windows\SYSNATIVE\DRIVERS\ncplelhp.sys [x]
R3 Origin Client Service;Origin Client Service;c:\program files (x86)\Origin\OriginClientService.exe;c:\program files (x86)\Origin\OriginClientService.exe [x]
R3 qcusbnet;Qualcomm USB-NDIS miniport;c:\windows\system32\DRIVERS\innosusbnet.sys;c:\windows\SYSNATIVE\DRIVERS\innosusbnet.sys [x]
R3 qcusbser;Qualcomm USB Device for Legacy Serial Communication;c:\windows\system32\DRIVERS\innosusbser.sys;c:\windows\SYSNATIVE\DRIVERS\innosusbser.sys [x]
R3 TemproMonitoringService;Notebook Performance Tuning Service (TEMPRO);c:\program files (x86)\Toshiba TEMPRO\TemproSvc.exe;c:\program files (x86)\Toshiba TEMPRO\TemproSvc.exe [x]
R3 TMachInfo;TMachInfo;c:\program files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe;c:\program files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 vna_ap;Check Point Virtual Network Adapter - Apollo;c:\windows\system32\DRIVERS\vnaap.sys;c:\windows\SYSNATIVE\DRIVERS\vnaap.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\DRIVERS\wdcsam64.sys;c:\windows\SYSNATIVE\DRIVERS\wdcsam64.sys [x]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe;c:\program files\Windows Live\Mesh\wlcrasvc.exe [x]
S0 Thpdrv;TOSHIBA HDD Protection Driver;c:\windows\system32\DRIVERS\thpdrv.sys;c:\windows\SYSNATIVE\DRIVERS\thpdrv.sys [x]
S0 Thpevm;TOSHIBA HDD Protection - Shock Sensor Driver;c:\windows\system32\DRIVERS\Thpevm.SYS;c:\windows\SYSNATIVE\DRIVERS\Thpevm.SYS [x]
S1 HWiNFO32;HWiNFO32/64 Kernel Driver;c:\windows\SysWOW64\drivers\HWiNFO64A.SYS;c:\windows\SysWOW64\drivers\HWiNFO64A.SYS [x]
S1 ZAM;ZAM Helper Driver;c:\windows\System32\drivers\zam64.sys;c:\windows\SYSNATIVE\drivers\zam64.sys [x]
S1 ZAM_Guard;ZAM Guard Driver;c:\windows\System32\drivers\zamguard64.sys;c:\windows\SYSNATIVE\drivers\zamguard64.sys [x]
S2 ABBYY.Licensing.PDFTransformer.Classic.3.0;ABBYY PDF Transformer 3.0 Licensing Service;c:\program files (x86)\ABBYY PDF Transformer 3.0\NetworkLicenseServer.exe;c:\program files (x86)\ABBYY PDF Transformer 3.0\NetworkLicenseServer.exe [x]
S2 BBUpdate;BBUpdate;c:\program files (x86)\Microsoft\BingBar\SeaPort.EXE;c:\program files (x86)\Microsoft\BingBar\SeaPort.EXE [x]
S2 cfWiMAXService;ConfigFree WiMAX Service;c:\program files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe;c:\program files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe [x]
S2 ConfigFree Service;ConfigFree Service;c:\program files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe;c:\program files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe [x]
S2 DiagTrack;Diagnostics Tracking Service;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S2 MBAMChameleon;MBAMChameleon;c:\windows\system32\drivers\MBAMChameleon.sys;c:\windows\SYSNATIVE\drivers\MBAMChameleon.sys [x]
S2 MBAMService;Malwarebytes Service;c:\program files\Malwarebytes\Anti-Malware\mbamservice.exe;c:\program files\Malwarebytes\Anti-Malware\mbamservice.exe [x]
S2 NvStreamSvc;NVIDIA Streamer Service;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [x]
S2 OpenVPNServiceInteractive;OpenVPN Interactive Service;c:\program files (x86)\Sophos\Sophos SSL VPN Client\bin\openvpnserv.exe;c:\program files (x86)\Sophos\Sophos SSL VPN Client\bin\openvpnserv.exe [x]
S2 regi;regi;c:\windows\system32\drivers\regi.sys;c:\windows\SYSNATIVE\drivers\regi.sys [x]
S2 TOSHIBA eco Utility Service;TOSHIBA eco Utility Service;c:\program files\TOSHIBA\TECO\TecoService.exe;c:\program files\TOSHIBA\TECO\TecoService.exe [x]
S2 TVALZFL;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Filter Driver;c:\windows\system32\DRIVERS\TVALZFL.sys;c:\windows\SYSNATIVE\DRIVERS\TVALZFL.sys [x]
S2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]
S2 vncserver;VNC Server;c:\program files\RealVNC\VNC Server\vncserver.exe;c:\program files\RealVNC\VNC Server\vncserver.exe [x]
S2 ZAMSvc;ZAM Controller Service;c:\program files (x86)\Zemana AntiMalware\ZAM.exe;c:\program files (x86)\Zemana AntiMalware\ZAM.exe [x]
S3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service;c:\program files\DAEMON Tools Lite\DiscSoftBusService.exe;c:\program files\DAEMON Tools Lite\DiscSoftBusService.exe [x]
S3 dtlitescsibus;DAEMON Tools Lite Virtual SCSI Bus;c:\windows\system32\DRIVERS\dtlitescsibus.sys;c:\windows\SYSNATIVE\DRIVERS\dtlitescsibus.sys [x]
S3 dtliteusbbus;DAEMON Tools Lite Virtual USB Bus;c:\windows\system32\DRIVERS\dtliteusbbus.sys;c:\windows\SYSNATIVE\DRIVERS\dtliteusbbus.sys [x]
S3 enecir;ENE CIR Receiver;c:\windows\system32\DRIVERS\enecir.sys;c:\windows\SYSNATIVE\DRIVERS\enecir.sys [x]
S3 enecirhid;ENE CIR HID Receiver;c:\windows\system32\DRIVERS\enecirhid.sys;c:\windows\SYSNATIVE\DRIVERS\enecirhid.sys [x]
S3 enecirhidma;ENE CIR HIDmini Filter;c:\windows\system32\DRIVERS\enecirhidma.sys;c:\windows\SYSNATIVE\DRIVERS\enecirhidma.sys [x]
S3 HECIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys;c:\windows\SYSNATIVE\DRIVERS\HECIx64.sys [x]
S3 Impcd;Impcd;c:\windows\system32\DRIVERS\Impcd.sys;c:\windows\SYSNATIVE\DRIVERS\Impcd.sys [x]
S3 JMCR;JMCR;c:\windows\system32\DRIVERS\jmcr.sys;c:\windows\SYSNATIVE\DRIVERS\jmcr.sys [x]
S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\MBAMSwissArmy.sys;c:\windows\SYSNATIVE\drivers\MBAMSwissArmy.sys [x]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad64v.sys;c:\windows\SYSNATIVE\drivers\nvvad64v.sys [x]
S3 PGEffect;Pangu effect driver;c:\windows\system32\DRIVERS\pgeffect.sys;c:\windows\SYSNATIVE\DRIVERS\pgeffect.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 TOSHIBA HDD SSD Alert Service;TOSHIBA HDD SSD Alert Service;c:\program files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe;c:\program files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe [x]
S3 TPCHSrv;TPCH Service;c:\program files\TOSHIBA\TPHM\TPCHSrv.exe;c:\program files\TOSHIBA\TPHM\TPCHSrv.exe [x]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - MBAMSWISSARMY
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ SSDPSRV upnphost SCardSvr QWAVE wcncsvc
.
Obsah adresáře 'Naplánované úlohy'
.
2017-05-20 c:\windows\Tasks\Adobe Flash Player PPAPI Notifier.job
- c:\windows\SysWOW64\Macromed\Flash\FlashUtil32_24_0_0_221_pepper.exe [2017-02-14 15:04]
.
2017-03-19 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-07-03 13:31]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ GoogleDriveBlacklisted]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}]
2017-03-21 06:15 775064 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ GoogleDriveSynced]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}]
2017-03-21 06:15 775064 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ GoogleDriveSyncing]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}]
2017-03-21 06:15 775064 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ThpSrv"="c:\windows\system32\thpsrv" [X]
"TPwrMain"="c:\program files (x86)\TOSHIBA\Power Saver\TPwrMain.EXE" [BU]
"HSON"="c:\program files (x86)\TOSHIBA\TBS\HSON.exe" [BU]
"SmoothView"="c:\program files (x86)\Toshiba\SmoothView\SmoothView.exe" [BU]
"00TCrdMain"="c:\program files (x86)\TOSHIBA\FlashCards\TCrdMain.exe" [BU]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2010-03-22 10134560]
"RtHDVBg"="c:\program files\Realtek\Audio\HDA\RAVBg64.exe" [2010-03-22 896032]
"SynTPEnh"="c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe" [BU]
"Teco"="c:\program files (x86)\TOSHIBA\TECO\Teco.exe" [BU]
"TosSENotify"="c:\program files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe" [2010-02-05 709976]
"TosWaitSrv"="c:\program files (x86)\TOSHIBA\TPHM\TosWaitSrv.exe" [BU]
"SmartFaceVWatcher"="c:\program files (x86)\Toshiba\SmartFaceV\SmartFaceVWatcher.exe" [BU]
"TosReelTimeMonitor"="c:\program files (x86)\TOSHIBA\ReelTime\TosReelTimeMonitor.exe" [BU]
"TosNC"="c:\program files (x86)\Toshiba\BulletinBoard\TosNcCore.exe" [BU]
"TosVolRegulator"="c:\program files\TOSHIBA\TosVolRegulator\TosVolRegulator.exe" [2009-11-11 24376]
"Toshiba TEMPRO"="c:\program files (x86)\Toshiba TEMPRO\TemproTray.exe" [2011-02-10 1546720]
"Toshiba Registration"="c:\program files\Toshiba\Registration\ToshibaReminder.exe" [2010-04-19 136136]
"Nvtmru"="c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe" [2013-07-27 1028896]
"Malwarebytes TrayApp"="c:\program files\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe" [2017-05-09 3146704]
"ZAM"="c:\program files (x86)\Zemana AntiMalware\ZAM.exe" [2017-04-03 14522512]
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/?clid=12454
IE: Add to AMV/AVI Video Converter... - c:\program files (x86)\Media Player Utilities 4.41\AMVConverter\grab.html
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~2\MIF5BA~1\OFFICE11\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.0.1
FF - ProfilePath - c:\data aplikací\Mozilla\Firefox\Profiles\766qrnwf.default\
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Toolbar-Locked - (no file)
Toolbar-10 - (no file)
Wow6432Node-HKLM-Run-AvgUi - c:\program files (x86)\AVG\Framework\Common\avguirna.exe
ShellIconOverlayIdentifiers-{472083B0-C522-11CF-8763-00608CC02F24} - (no file)
ShellIconOverlayIdentifiers-{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} - (no file)
AddRemove-AVG Web TuneUp - c:\program files (x86)\AVG Web TuneUp\UNINSTALL.exe
AddRemove-Jak věci pracují 2.0 - c:\windows\IsUn0405.exe
AddRemove-PunkBusterSvc - c:\windows\system32\pbsvc.exe
AddRemove-{60C7709B-2EC1-4E45-A53C-B51034847B06}_is1 - c:\program files\ABC\Alpine Skiing & Ski Jumping\unins000.exe
AddRemove-{EFDD7063-89FC-42E5-8C2E-817DDB04DCB0}}_is1 - c:\program files (x86)\Download Beast\unins000.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\windows\\system32\\Macromed\\Flash\\FlashUtil64_25_0_0_127_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\windows\\system32\\Macromed\\Flash\\FlashUtil64_25_0_0_127_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\McAfee]
"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\windows\SysWOW64\bgsvcgen.exe
c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
c:\program files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
c:\windows\SysWOW64\PnkBstrA.exe
c:\program files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
c:\program files (x86)\CyberLink\Shared files\RichVideo.exe
c:\program files (x86)\Canon\CAL\CALMAIN.exe
c:\program files (x86)\TOSHIBA\ConfigFree\NDSTray.exe
c:\program files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
c:\program files (x86)\TOSHIBA\ConfigFree\CFSwMgr.exe
c:\program files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe
c:\program files (x86)\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
c:\program files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe
c:\program files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe
.
**************************************************************************
.
Celkový čas: 2017-05-20 11:30:48 - počítač byl restartován
ComboFix-quarantined-files.txt 2017-05-20 09:30
ComboFix2.txt 2017-05-20 02:32
.
Před spuštěním: Volných bajtů: 51 666 198 528
Po spuštění: Volných bajtů: 51 486 494 720
.
- - End Of File - - C305C2F8527770AD80C21A73F79F8DCA



Reklama
ondrej.nov
nováček
Příspěvky: 28
Registrován: květen 17
Pohlaví: Nespecifikováno

Re: Brutalne zpomaleny PC - log

Příspěvekod ondrej.nov » 20 kvě 2017 11:32

roguekiller - tusim, ze jsem mazal vse

ComboFix 17-05-16.01 - Toshiba 20.05.2017 10:57:48.2.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.3955.1356 [GMT 2:00]
Spuštěný z: c:\users\Toshiba\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\Toshiba\Desktop\CFScript.txt
AV: Malwarebytes *Disabled/Updated* {23007AD3-69FE-687C-2629-D584AFFAF72B}
SP: Malwarebytes *Disabled/Updated* {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
FILE ::
"c:\windows\SysWOW64\Drivers\X6va014"
"c:\windows\SysWOW64\Drivers\X6va015"
"c:\windows\SysWOW64\Drivers\X6va029"
"c:\windows\Tasks\Adobe Flash Player Updater.job"
"c:\windows\Tasks\GoogleUpdateTaskMachineCore.job"
"c:\windows\Tasks\GoogleUpdateTaskMachineUA.job"
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\AVG
c:\program files (x86)\AVG\Av\avguirux.exe
c:\program files (x86)\AVG\AVG10\idpfixx.exe
c:\program files (x86)\Google\Update
c:\program files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.exe
c:\program files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64.exe
c:\program files (x86)\Google\Update\1.3.33.5\GoogleUpdate.exe
c:\program files (x86)\Google\Update\1.3.33.5\GoogleUpdateBroker.exe
c:\program files (x86)\Google\Update\1.3.33.5\GoogleUpdateComRegisterShell64.exe
c:\program files (x86)\Google\Update\1.3.33.5\GoogleUpdateCore.exe
c:\program files (x86)\Google\Update\1.3.33.5\GoogleUpdateHelper.msi
c:\program files (x86)\Google\Update\1.3.33.5\GoogleUpdateOnDemand.exe
c:\program files (x86)\Google\Update\1.3.33.5\GoogleUpdateSetup.exe
c:\program files (x86)\Google\Update\1.3.33.5\GoogleUpdateWebPlugin.exe
c:\program files (x86)\Google\Update\1.3.33.5\goopdate.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_am.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_ar.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_bg.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_bn.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_ca.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_cs.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_da.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_de.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_el.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_en-GB.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_en.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_es-419.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_es.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_et.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_fa.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_fi.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_fil.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_fr.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_gu.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_hi.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_hr.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_hu.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_id.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_is.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_it.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_iw.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_ja.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_kn.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_ko.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_lt.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_lv.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_ml.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_mr.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_ms.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_nl.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_no.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_pl.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_pt-BR.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_pt-PT.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_ro.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_ru.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_sk.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_sl.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_sr.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_sv.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_sw.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_ta.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_te.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_th.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_tr.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_uk.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_ur.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_vi.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_zh-CN.dll
c:\program files (x86)\Google\Update\1.3.33.5\goopdateres_zh-TW.dll
c:\program files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll
c:\program files (x86)\Google\Update\1.3.33.5\psmachine.dll
c:\program files (x86)\Google\Update\1.3.33.5\psmachine_64.dll
c:\program files (x86)\Google\Update\1.3.33.5\psuser.dll
c:\program files (x86)\Google\Update\1.3.33.5\psuser_64.dll
c:\program files (x86)\Google\Update\Download\{3C122445-AECE-4309-90B7-85A6AEF42AC0}\2.34.5075.1619\gsync.msi
c:\program files (x86)\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D}\1.3.33.5\GoogleUpdateSetup.exe
c:\program files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\55.0.2883.87\55.0.2883.87_54.0.2840.99_chrome_updater.exe
c:\program files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\55.0.2883.87\55.0.2883.87_chrome_installer.exe
c:\program files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\56.0.2924.87\56.0.2924.87_55.0.2883.87_chrome_updater.exe
c:\program files (x86)\Google\Update\Download\{8A69D345-D564-463C-AFF1-A69D9E530F96}\58.0.3029.110\58.0.3029.110_chrome_installer.exe
c:\program files (x86)\Google\Update\GoogleUpdate.exe
c:\program files (x86)\Skype\Updater
c:\program files (x86)\Skype\Updater\Updater.dll
c:\program files (x86)\Skype\Updater\Updater.exe
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_X6VA014
-------\Legacy_X6VA015
-------\Legacy_X6VA029
-------\Service_SkypeUpdate
-------\Service_X6va014
-------\Service_X6va015
-------\Service_X6va029
-------\Service_gupdate
-------\Service_gupdatem
-------\Service_gupdate
-------\Service_gupdatem
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2017-04-20 do 2017-05-20 )))))))))))))))))))))))))))))))
.
.
2017-05-20 09:15 . 2017-05-20 09:15 -------- d-----w- c:\windows\system32\config\systemprofile\AppData\Local\temp
2017-05-20 09:15 . 2017-05-20 09:15 -------- d-----w- c:\users\Default\AppData\Local\temp
2017-05-20 08:36 . 2017-05-20 08:36 -------- d-----w- c:\programdata\NVIDIA
2017-05-20 00:24 . 2017-05-20 00:24 203680 ----a-w- c:\windows\system32\drivers\zam64.sys
2017-05-20 00:24 . 2017-05-20 00:24 203680 ----a-w- c:\windows\system32\drivers\zamguard64.sys
2017-05-20 00:24 . 2017-05-20 01:24 -------- d-----w- c:\program files (x86)\Zemana AntiMalware
2017-05-20 00:23 . 2017-05-20 00:23 -------- d-----w- c:\users\Toshiba\AppData\Local\Zemana
2017-05-19 23:14 . 2017-05-19 23:14 -------- d-----w- C:\zoek
2017-05-19 21:36 . 2017-05-19 21:36 -------- d-----w- c:\programdata\PicPick
2017-05-19 08:15 . 2017-05-19 08:15 -------- d-----w- c:\data aplikací\ProductData
2017-05-18 19:57 . 2017-05-19 17:53 28272 ----a-w- c:\windows\system32\drivers\TrueSight.sys
2017-05-18 19:22 . 2017-05-19 00:20 -------- d-----w- c:\programdata\RogueKiller
2017-05-18 18:52 . 2017-05-18 18:52 -------- d-----w- c:\programdata\Sophos
2017-05-18 14:15 . 2017-05-19 21:40 187320 ----a-w- c:\windows\system32\drivers\MBAMChameleon.sys
2017-05-18 14:15 . 2017-05-20 01:27 113592 ----a-w- c:\windows\system32\drivers\farflt.sys
2017-05-18 14:15 . 2017-05-20 01:27 84256 ----a-w- c:\windows\system32\drivers\mwac.sys
2017-05-18 14:15 . 2017-05-20 09:18 43968 ----a-w- c:\windows\system32\drivers\mbam.sys
2017-05-18 14:15 . 2017-05-20 09:18 251832 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2017-05-18 14:15 . 2017-05-09 14:37 77440 ----a-w- c:\windows\system32\drivers\mbae64.sys
2017-05-18 14:15 . 2017-05-18 14:15 -------- d-----w- c:\programdata\Malwarebytes
2017-05-18 14:15 . 2017-05-18 14:15 -------- d-----w- c:\program files\Malwarebytes
2017-05-18 13:54 . 2017-05-18 17:35 -------- d-----w- C:\AdwCleaner
2017-05-14 06:48 . 2017-05-14 06:48 -------- d-----w- c:\data aplikací\RealVNC
2017-05-08 17:48 . 2014-01-31 07:58 1002728 ----a-w- c:\windows\system32\WinUSBCoInstaller2.dll
2017-05-08 17:48 . 2012-10-26 14:32 369792 ----a-w- c:\windows\system32\drivers\innosusbser.sys
2017-05-08 17:48 . 2012-10-26 14:32 510976 ----a-w- c:\windows\system32\drivers\innosusbnet.sys
2017-05-08 17:48 . 2017-05-08 17:48 -------- d-----w- c:\program files (x86)\android_driver_install
2017-04-30 13:11 . 2017-04-30 13:11 -------- d-----w- c:\data aplikací\Google
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2017-05-10 23:02 . 2010-12-18 17:06 156335152 -c--a-w- c:\windows\system32\MRT.exe
2017-04-28 01:10 . 2017-05-10 17:23 345600 ----a-w- c:\windows\system32\schannel.dll
2017-04-28 01:10 . 2017-05-10 17:23 190464 ----a-w- c:\windows\system32\rpchttp.dll
2017-04-28 00:36 . 2017-05-10 17:23 4000488 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2017-04-28 00:36 . 2017-05-10 17:23 3945192 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2017-04-28 00:34 . 2017-05-10 17:23 1314112 ----a-w- c:\windows\SysWow64\ntdll.dll
2017-04-28 00:32 . 2017-05-10 17:23 666112 ----a-w- c:\windows\SysWow64\rpcrt4.dll
2017-04-28 00:32 . 2017-05-10 17:23 96768 ----a-w- c:\windows\SysWow64\sspicli.dll
2017-04-28 00:32 . 2017-05-10 17:23 275456 ----a-w- c:\windows\SysWow64\KernelBase.dll
2017-04-28 00:32 . 2017-05-10 17:23 5120 ----a-w- c:\windows\SysWow64\wow32.dll
2017-04-28 00:32 . 2017-05-10 17:23 172032 ----a-w- c:\windows\SysWow64\wdigest.dll
2017-04-28 00:32 . 2017-05-10 17:23 65536 ----a-w- c:\windows\SysWow64\TSpkg.dll
2017-04-28 00:32 . 2017-05-10 17:23 43008 ----a-w- c:\windows\SysWow64\srclient.dll
2017-04-28 00:32 . 2017-05-10 17:23 254464 ----a-w- c:\windows\SysWow64\schannel.dll
2017-04-28 00:32 . 2017-05-10 17:23 141312 ----a-w- c:\windows\SysWow64\rpchttp.dll
2017-04-28 00:32 . 2017-05-10 17:23 22016 ----a-w- c:\windows\SysWow64\secur32.dll
2017-04-28 00:32 . 2017-05-10 17:23 261120 ----a-w- c:\windows\SysWow64\msv1_0.dll
2017-04-28 00:32 . 2017-05-10 17:23 223232 ----a-w- c:\windows\SysWow64\ncrypt.dll
2017-04-28 00:32 . 2017-05-10 17:23 60416 ----a-w- c:\windows\SysWow64\msobjs.dll
2017-04-28 00:32 . 2017-05-10 17:23 146432 ----a-w- c:\windows\SysWow64\msaudite.dll
2017-04-28 00:32 . 2017-05-10 17:23 553472 ----a-w- c:\windows\SysWow64\kerberos.dll
2017-04-28 00:32 . 2017-05-10 17:23 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2017-04-28 00:08 . 2017-05-10 17:23 25600 ----a-w- c:\windows\SysWow64\setup16.exe
2017-04-28 00:08 . 2017-05-10 17:23 14336 ----a-w- c:\windows\SysWow64\ntvdm64.dll
2017-04-28 00:08 . 2017-05-10 17:23 2048 ----a-w- c:\windows\SysWow64\user.exe
2017-04-17 15:12 . 2017-05-10 17:23 581632 ----a-w- c:\windows\SysWow64\oleaut32.dll
2017-04-17 15:12 . 2017-05-10 17:23 1417728 ----a-w- c:\windows\SysWow64\ole32.dll
2017-04-17 15:12 . 2017-05-10 17:23 26112 ----a-w- c:\windows\SysWow64\oleres.dll
2017-04-16 08:19 . 2017-05-10 17:23 2724864 ----a-w- c:\windows\SysWow64\mshtml.tlb
2017-04-16 08:01 . 2017-05-10 17:23 499200 ----a-w- c:\windows\SysWow64\vbscript.dll
2017-04-16 08:00 . 2017-05-10 17:23 64000 ----a-w- c:\windows\SysWow64\MshtmlDac.dll
2017-04-16 07:29 . 2017-05-10 17:23 73216 ----a-w- c:\windows\SysWow64\tdc.ocx
2017-04-16 07:08 . 2017-05-10 17:23 1155072 ----a-w- c:\windows\SysWow64\mshtmlmedia.dll
2017-04-16 06:37 . 2017-05-10 17:23 2767872 ----a-w- c:\windows\SysWow64\wininet.dll
2017-04-12 15:26 . 2017-05-10 17:23 179200 ----a-w- c:\windows\SysWow64\wintrust.dll
2017-03-26 18:33 . 2017-03-26 18:33 28344 ----a-w- c:\windows\SysWow64\aspnet_counters.dll
2017-03-26 18:33 . 2017-03-26 18:33 19104 ----a-w- c:\windows\SysWow64\msvcr110_clr0400.dll
2017-03-26 18:33 . 2017-03-26 18:33 19104 ----a-w- c:\windows\SysWow64\msvcr100_clr0400.dll
2017-03-26 18:33 . 2017-03-26 18:33 19104 ----a-w- c:\windows\SysWow64\msvcp110_clr0400.dll
2017-03-26 18:29 . 2017-03-26 18:29 30400 ----a-w- c:\windows\system32\aspnet_counters.dll
2017-03-26 18:29 . 2017-03-26 18:29 19112 ----a-w- c:\windows\system32\msvcr110_clr0400.dll
2017-03-26 18:29 . 2017-03-26 18:29 19112 ----a-w- c:\windows\system32\msvcr100_clr0400.dll
2017-03-26 18:29 . 2017-03-26 18:29 19112 ----a-w- c:\windows\system32\msvcp110_clr0400.dll
2017-03-22 15:32 . 2017-04-12 17:15 3165184 ----a-w- c:\windows\system32\wucltux.dll
2017-03-22 15:32 . 2017-04-12 17:15 192512 ----a-w- c:\windows\system32\wuwebv.dll
2017-03-22 15:32 . 2017-04-12 17:15 98816 ----a-w- c:\windows\system32\wudriver.dll
2017-03-22 15:30 . 2017-04-12 17:15 91136 ----a-w- c:\windows\system32\WinSetupUI.dll
2017-03-22 15:24 . 2017-04-12 17:15 174080 ----a-w- c:\windows\SysWow64\wuwebv.dll
2017-03-22 15:17 . 2017-04-12 17:15 2651136 ----a-w- c:\windows\system32\wuaueng.dll
2017-03-22 15:15 . 2017-04-12 17:15 709120 ----a-w- c:\windows\system32\wuapi.dll
2017-03-22 15:15 . 2017-04-12 17:15 37888 ----a-w- c:\windows\system32\wuapp.exe
2017-03-22 15:15 . 2017-04-12 17:15 140288 ----a-w- c:\windows\system32\wuauclt.exe
2017-03-22 15:15 . 2017-04-12 17:15 36864 ----a-w- c:\windows\system32\wups.dll
2017-03-22 15:15 . 2017-04-12 17:15 37888 ----a-w- c:\windows\system32\wups2.dll
2017-03-22 15:15 . 2017-04-12 17:15 12288 ----a-w- c:\windows\system32\wu.upgrade.ps.dll
2017-03-22 15:05 . 2017-04-12 17:15 573440 ----a-w- c:\windows\SysWow64\wuapi.dll
2017-03-22 15:05 . 2017-04-12 17:15 35328 ----a-w- c:\windows\SysWow64\wuapp.exe
2017-03-22 15:05 . 2017-04-12 17:15 30208 ----a-w- c:\windows\SysWow64\wups.dll
2017-03-22 15:05 . 2017-04-12 17:15 93696 ----a-w- c:\windows\SysWow64\wudriver.dll
2017-03-19 13:31 . 2013-07-03 08:22 802904 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2017-03-19 13:31 . 2013-05-23 13:03 144472 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2017-03-16 08:00 . 2016-01-03 18:29 27552 ----a-w- c:\windows\SysWow64\drivers\HWiNFO64A.SYS
2017-03-15 22:53 . 2012-01-18 12:56 280904 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr
2017-03-15 22:53 . 2012-01-17 15:47 280904 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
2017-03-15 03:12 . 2017-03-15 03:12 254520 ----a-w- c:\windows\system32\drivers\qcusbser.sys
2017-03-14 12:28 . 2012-01-17 15:47 280904 ----a-w- c:\windows\SysWow64\PnkBstrB.ex0
2017-03-10 16:35 . 2017-04-12 17:15 382696 ----a-w- c:\windows\system32\atmfd.dll
2017-03-10 16:31 . 2017-04-12 17:15 41472 ----a-w- c:\windows\system32\lpk.dll
2017-03-10 16:31 . 2017-04-12 17:15 100864 ----a-w- c:\windows\system32\fontsub.dll
2017-03-10 16:31 . 2017-04-12 17:15 14336 ----a-w- c:\windows\system32\dciman32.dll
2017-03-10 16:31 . 2017-04-12 17:15 46080 ----a-w- c:\windows\system32\atmlib.dll
2017-03-10 16:27 . 2017-04-12 17:15 308456 ----a-w- c:\windows\SysWow64\atmfd.dll
2017-03-10 16:20 . 2017-04-12 17:15 25600 ----a-w- c:\windows\SysWow64\lpk.dll
2017-03-10 16:20 . 2017-05-10 17:23 1508352 ----a-w- c:\windows\SysWow64\pla.dll
2017-03-10 16:20 . 2017-05-10 17:23 237056 ----a-w- c:\windows\SysWow64\pdh.dll
2017-03-10 16:19 . 2017-04-12 17:15 70656 ----a-w- c:\windows\SysWow64\fontsub.dll
2017-03-10 16:19 . 2017-04-12 17:15 10240 ----a-w- c:\windows\SysWow64\dciman32.dll
2017-03-10 15:53 . 2017-04-12 17:15 34304 ----a-w- c:\windows\SysWow64\atmlib.dll
2017-03-09 16:19 . 2017-05-10 17:23 2048 ----a-w- c:\windows\SysWow64\tzres.dll
2017-03-07 16:30 . 2017-04-12 17:15 85504 ----a-w- c:\windows\system32\asycfilt.dll
2017-03-07 16:17 . 2017-04-12 17:15 67584 ----a-w- c:\windows\SysWow64\asycfilt.dll
2017-03-04 01:27 . 2017-04-12 17:15 1574912 ----a-w- c:\windows\system32\quartz.dll
2017-03-04 01:27 . 2017-04-12 17:15 93696 ----a-w- c:\windows\system32\mfmjpegdec.dll
2017-03-04 01:14 . 2017-04-12 17:15 1329664 ----a-w- c:\windows\SysWow64\quartz.dll
2017-03-04 01:14 . 2017-04-12 17:15 77312 ----a-w- c:\windows\SysWow64\mfmjpegdec.dll
2017-02-22 23:42 . 2017-03-15 21:07 84712 ----a-w- c:\windows\system32\CompatTelRunner.exe
2017-02-22 23:37 . 2017-03-15 21:07 1285632 ----a-w- c:\windows\system32\aeinv.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"TiVme Agent"="c:\program files (x86)\GIGABYTE\vivoTV\ScheduleAgent.exe" [2010-01-25 114688]
"ISUSPM Startup"="c:\progra~2\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe" [2004-08-09 221184]
"DAEMON Tools Lite Automount"="c:\program files\DAEMON Tools Lite\DTAgent.exe" [2016-01-15 4177784]
"PicPick Start"="c:\program files (x86)\PicPick\picpick.exe" [2016-05-19 19928008]
"Steam"="c:\program files (x86)\Steam\steam.exe" [2017-04-25 3019552]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"NBAgent"="c:\program files (x86)\Nero\Nero BackItUp & Burn\Nero BackItUp\NBAgent.exe" [2010-03-08 1086760]
"SVPWUTIL"="c:\program files (x86)\TOSHIBA\Utilities\SVPWUTIL.exe" [2010-02-22 352256]
"HWSetup"="c:\program files\TOSHIBA\Utilities\HWSetup.exe" [2010-03-04 423936]
"KeNotify"="c:\program files (x86)\TOSHIBA\Utilities\KeNotify.exe" [2009-12-25 34160]
"TRCMan"="c:\program files (x86)\TOSHIBA\TRCMan\TRCMan.exe" [2009-07-21 701752]
"TWebCamera"="c:\program files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe" [2010-02-23 2454840]
"UpdatePPShortCut"="c:\program files (x86)\CyberLink\PowerProducer\MUITransfer\MUIStartMenu.exe" [2009-05-19 222504]
"RemoteControl"="c:\program files (x86)\CyberLink\PowerDVD\PDVDServ.exe" [2005-12-07 30208]
"LanguageShortcut"="c:\program files (x86)\CyberLink\PowerDVD\Language\Language.exe" [2006-04-13 49152]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2013-04-21 59720]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2013-07-02 254336]
"openvpn-gui"="c:\program files (x86)\Sophos\Sophos SSL VPN Client\bin\openvpn-gui.exe" [2015-03-23 480992]
"PWRISOVM.EXE"="c:\program files\PowerISO\PWRISOVM.EXE" [2017-02-02 455816]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"TOSHIBA Online Product Information"="c:\program files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe" [2010-03-03 4581280]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth Manager.lnk - c:\program files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe [2010-2-24 2721120]
Remote Control.lnk - c:\program files (x86)\GIGABYTE\U8300 Utilities\CONRCtl.exe [2010-12-29 94208]
VideoCam Suite.lnk - c:\program files (x86)\Common Files\Panasonic\VideoCam Suite AutoStart\VideoCamSuiteAutoStart.exe [2011-1-10 349600]
.
c:\users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
TRDCReminder.lnk - c:\program files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe [2009-9-1 481184]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
"EnableLinkedConnections"= 1 (0x1)
"HideFastUserSwitching"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe"
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" -atboottime
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 CXIR;Conexant Polaris IR Transceiver;c:\windows\system32\drivers\cxcir64.sys;c:\windows\SYSNATIVE\drivers\cxcir64.sys [x]
R2 LiveUpdateSvc;LiveUpdate;c:\program files (x86)\IObit\LiveUpdate\LiveUpdate.exe;c:\program files (x86)\IObit\LiveUpdate\LiveUpdate.exe [x]
R3 acpials;Filtr zařízení ALS Sensor;c:\windows\system32\DRIVERS\acpials.sys;c:\windows\SYSNATIVE\DRIVERS\acpials.sys [x]
R3 BBSvc;Bing Bar Update Service;c:\program files (x86)\Microsoft\BingBar\BBSvc.EXE;c:\program files (x86)\Microsoft\BingBar\BBSvc.EXE [x]
R3 CXPOLARIS;Conexant Polaris Video Capture;c:\windows\system32\drivers\cxpolar64.sys;c:\windows\SYSNATIVE\drivers\cxpolar64.sys [x]
R3 EagleX64;EagleX64;c:\windows\system32\drivers\EagleX64.sys;c:\windows\SYSNATIVE\drivers\EagleX64.sys [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 MBAMProtection;MBAMProtection;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
R3 ncplelhp;ASTARO Secure Client NDIS6 Driver;c:\windows\system32\DRIVERS\ncplelhp.sys;c:\windows\SYSNATIVE\DRIVERS\ncplelhp.sys [x]
R3 Origin Client Service;Origin Client Service;c:\program files (x86)\Origin\OriginClientService.exe;c:\program files (x86)\Origin\OriginClientService.exe [x]
R3 qcusbnet;Qualcomm USB-NDIS miniport;c:\windows\system32\DRIVERS\innosusbnet.sys;c:\windows\SYSNATIVE\DRIVERS\innosusbnet.sys [x]
R3 qcusbser;Qualcomm USB Device for Legacy Serial Communication;c:\windows\system32\DRIVERS\innosusbser.sys;c:\windows\SYSNATIVE\DRIVERS\innosusbser.sys [x]
R3 TemproMonitoringService;Notebook Performance Tuning Service (TEMPRO);c:\program files (x86)\Toshiba TEMPRO\TemproSvc.exe;c:\program files (x86)\Toshiba TEMPRO\TemproSvc.exe [x]
R3 TMachInfo;TMachInfo;c:\program files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe;c:\program files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 vna_ap;Check Point Virtual Network Adapter - Apollo;c:\windows\system32\DRIVERS\vnaap.sys;c:\windows\SYSNATIVE\DRIVERS\vnaap.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\DRIVERS\wdcsam64.sys;c:\windows\SYSNATIVE\DRIVERS\wdcsam64.sys [x]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe;c:\program files\Windows Live\Mesh\wlcrasvc.exe [x]
S0 Thpdrv;TOSHIBA HDD Protection Driver;c:\windows\system32\DRIVERS\thpdrv.sys;c:\windows\SYSNATIVE\DRIVERS\thpdrv.sys [x]
S0 Thpevm;TOSHIBA HDD Protection - Shock Sensor Driver;c:\windows\system32\DRIVERS\Thpevm.SYS;c:\windows\SYSNATIVE\DRIVERS\Thpevm.SYS [x]
S1 HWiNFO32;HWiNFO32/64 Kernel Driver;c:\windows\SysWOW64\drivers\HWiNFO64A.SYS;c:\windows\SysWOW64\drivers\HWiNFO64A.SYS [x]
S1 ZAM;ZAM Helper Driver;c:\windows\System32\drivers\zam64.sys;c:\windows\SYSNATIVE\drivers\zam64.sys [x]
S1 ZAM_Guard;ZAM Guard Driver;c:\windows\System32\drivers\zamguard64.sys;c:\windows\SYSNATIVE\drivers\zamguard64.sys [x]
S2 ABBYY.Licensing.PDFTransformer.Classic.3.0;ABBYY PDF Transformer 3.0 Licensing Service;c:\program files (x86)\ABBYY PDF Transformer 3.0\NetworkLicenseServer.exe;c:\program files (x86)\ABBYY PDF Transformer 3.0\NetworkLicenseServer.exe [x]
S2 BBUpdate;BBUpdate;c:\program files (x86)\Microsoft\BingBar\SeaPort.EXE;c:\program files (x86)\Microsoft\BingBar\SeaPort.EXE [x]
S2 cfWiMAXService;ConfigFree WiMAX Service;c:\program files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe;c:\program files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe [x]
S2 ConfigFree Service;ConfigFree Service;c:\program files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe;c:\program files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe [x]
S2 DiagTrack;Diagnostics Tracking Service;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S2 MBAMChameleon;MBAMChameleon;c:\windows\system32\drivers\MBAMChameleon.sys;c:\windows\SYSNATIVE\drivers\MBAMChameleon.sys [x]
S2 MBAMService;Malwarebytes Service;c:\program files\Malwarebytes\Anti-Malware\mbamservice.exe;c:\program files\Malwarebytes\Anti-Malware\mbamservice.exe [x]
S2 NvStreamSvc;NVIDIA Streamer Service;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [x]
S2 OpenVPNServiceInteractive;OpenVPN Interactive Service;c:\program files (x86)\Sophos\Sophos SSL VPN Client\bin\openvpnserv.exe;c:\program files (x86)\Sophos\Sophos SSL VPN Client\bin\openvpnserv.exe [x]
S2 regi;regi;c:\windows\system32\drivers\regi.sys;c:\windows\SYSNATIVE\drivers\regi.sys [x]
S2 TOSHIBA eco Utility Service;TOSHIBA eco Utility Service;c:\program files\TOSHIBA\TECO\TecoService.exe;c:\program files\TOSHIBA\TECO\TecoService.exe [x]
S2 TVALZFL;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Filter Driver;c:\windows\system32\DRIVERS\TVALZFL.sys;c:\windows\SYSNATIVE\DRIVERS\TVALZFL.sys [x]
S2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]
S2 vncserver;VNC Server;c:\program files\RealVNC\VNC Server\vncserver.exe;c:\program files\RealVNC\VNC Server\vncserver.exe [x]
S2 ZAMSvc;ZAM Controller Service;c:\program files (x86)\Zemana AntiMalware\ZAM.exe;c:\program files (x86)\Zemana AntiMalware\ZAM.exe [x]
S3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service;c:\program files\DAEMON Tools Lite\DiscSoftBusService.exe;c:\program files\DAEMON Tools Lite\DiscSoftBusService.exe [x]
S3 dtlitescsibus;DAEMON Tools Lite Virtual SCSI Bus;c:\windows\system32\DRIVERS\dtlitescsibus.sys;c:\windows\SYSNATIVE\DRIVERS\dtlitescsibus.sys [x]
S3 dtliteusbbus;DAEMON Tools Lite Virtual USB Bus;c:\windows\system32\DRIVERS\dtliteusbbus.sys;c:\windows\SYSNATIVE\DRIVERS\dtliteusbbus.sys [x]
S3 enecir;ENE CIR Receiver;c:\windows\system32\DRIVERS\enecir.sys;c:\windows\SYSNATIVE\DRIVERS\enecir.sys [x]
S3 enecirhid;ENE CIR HID Receiver;c:\windows\system32\DRIVERS\enecirhid.sys;c:\windows\SYSNATIVE\DRIVERS\enecirhid.sys [x]
S3 enecirhidma;ENE CIR HIDmini Filter;c:\windows\system32\DRIVERS\enecirhidma.sys;c:\windows\SYSNATIVE\DRIVERS\enecirhidma.sys [x]
S3 HECIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys;c:\windows\SYSNATIVE\DRIVERS\HECIx64.sys [x]
S3 Impcd;Impcd;c:\windows\system32\DRIVERS\Impcd.sys;c:\windows\SYSNATIVE\DRIVERS\Impcd.sys [x]
S3 JMCR;JMCR;c:\windows\system32\DRIVERS\jmcr.sys;c:\windows\SYSNATIVE\DRIVERS\jmcr.sys [x]
S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\MBAMSwissArmy.sys;c:\windows\SYSNATIVE\drivers\MBAMSwissArmy.sys [x]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad64v.sys;c:\windows\SYSNATIVE\drivers\nvvad64v.sys [x]
S3 PGEffect;Pangu effect driver;c:\windows\system32\DRIVERS\pgeffect.sys;c:\windows\SYSNATIVE\DRIVERS\pgeffect.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 TOSHIBA HDD SSD Alert Service;TOSHIBA HDD SSD Alert Service;c:\program files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe;c:\program files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe [x]
S3 TPCHSrv;TPCH Service;c:\program files\TOSHIBA\TPHM\TPCHSrv.exe;c:\program files\TOSHIBA\TPHM\TPCHSrv.exe [x]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - MBAMSWISSARMY
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ SSDPSRV upnphost SCardSvr QWAVE wcncsvc
.
Obsah adresáře 'Naplánované úlohy'
.
2017-05-20 c:\windows\Tasks\Adobe Flash Player PPAPI Notifier.job
- c:\windows\SysWOW64\Macromed\Flash\FlashUtil32_24_0_0_221_pepper.exe [2017-02-14 15:04]
.
2017-03-19 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-07-03 13:31]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ GoogleDriveBlacklisted]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}]
2017-03-21 06:15 775064 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ GoogleDriveSynced]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}]
2017-03-21 06:15 775064 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ GoogleDriveSyncing]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}]
2017-03-21 06:15 775064 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ThpSrv"="c:\windows\system32\thpsrv" [X]
"TPwrMain"="c:\program files (x86)\TOSHIBA\Power Saver\TPwrMain.EXE" [BU]
"HSON"="c:\program files (x86)\TOSHIBA\TBS\HSON.exe" [BU]
"SmoothView"="c:\program files (x86)\Toshiba\SmoothView\SmoothView.exe" [BU]
"00TCrdMain"="c:\program files (x86)\TOSHIBA\FlashCards\TCrdMain.exe" [BU]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2010-03-22 10134560]
"RtHDVBg"="c:\program files\Realtek\Audio\HDA\RAVBg64.exe" [2010-03-22 896032]
"SynTPEnh"="c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe" [BU]
"Teco"="c:\program files (x86)\TOSHIBA\TECO\Teco.exe" [BU]
"TosSENotify"="c:\program files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe" [2010-02-05 709976]
"TosWaitSrv"="c:\program files (x86)\TOSHIBA\TPHM\TosWaitSrv.exe" [BU]
"SmartFaceVWatcher"="c:\program files (x86)\Toshiba\SmartFaceV\SmartFaceVWatcher.exe" [BU]
"TosReelTimeMonitor"="c:\program files (x86)\TOSHIBA\ReelTime\TosReelTimeMonitor.exe" [BU]
"TosNC"="c:\program files (x86)\Toshiba\BulletinBoard\TosNcCore.exe" [BU]
"TosVolRegulator"="c:\program files\TOSHIBA\TosVolRegulator\TosVolRegulator.exe" [2009-11-11 24376]
"Toshiba TEMPRO"="c:\program files (x86)\Toshiba TEMPRO\TemproTray.exe" [2011-02-10 1546720]
"Toshiba Registration"="c:\program files\Toshiba\Registration\ToshibaReminder.exe" [2010-04-19 136136]
"Nvtmru"="c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe" [2013-07-27 1028896]
"Malwarebytes TrayApp"="c:\program files\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe" [2017-05-09 3146704]
"ZAM"="c:\program files (x86)\Zemana AntiMalware\ZAM.exe" [2017-04-03 14522512]
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/?clid=12454
IE: Add to AMV/AVI Video Converter... - c:\program files (x86)\Media Player Utilities 4.41\AMVConverter\grab.html
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~2\MIF5BA~1\OFFICE11\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.0.1
FF - ProfilePath - c:\data aplikací\Mozilla\Firefox\Profiles\766qrnwf.default\
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Toolbar-Locked - (no file)
Toolbar-10 - (no file)
Wow6432Node-HKLM-Run-AvgUi - c:\program files (x86)\AVG\Framework\Common\avguirna.exe
ShellIconOverlayIdentifiers-{472083B0-C522-11CF-8763-00608CC02F24} - (no file)
ShellIconOverlayIdentifiers-{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} - (no file)
AddRemove-AVG Web TuneUp - c:\program files (x86)\AVG Web TuneUp\UNINSTALL.exe
AddRemove-Jak věci pracují 2.0 - c:\windows\IsUn0405.exe
AddRemove-PunkBusterSvc - c:\windows\system32\pbsvc.exe
AddRemove-{60C7709B-2EC1-4E45-A53C-B51034847B06}_is1 - c:\program files\ABC\Alpine Skiing & Ski Jumping\unins000.exe
AddRemove-{EFDD7063-89FC-42E5-8C2E-817DDB04DCB0}}_is1 - c:\program files (x86)\Download Beast\unins000.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\windows\\system32\\Macromed\\Flash\\FlashUtil64_25_0_0_127_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\windows\\system32\\Macromed\\Flash\\FlashUtil64_25_0_0_127_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\McAfee]
"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\windows\SysWOW64\bgsvcgen.exe
c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
c:\program files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
c:\windows\SysWOW64\PnkBstrA.exe
c:\program files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
c:\program files (x86)\CyberLink\Shared files\RichVideo.exe
c:\program files (x86)\Canon\CAL\CALMAIN.exe
c:\program files (x86)\TOSHIBA\ConfigFree\NDSTray.exe
c:\program files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
c:\program files (x86)\TOSHIBA\ConfigFree\CFSwMgr.exe
c:\program files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe
c:\program files (x86)\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
c:\program files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe
c:\program files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe
.
**************************************************************************
.
Celkový čas: 2017-05-20 11:30:48 - počítač byl restartován
ComboFix-quarantined-files.txt 2017-05-20 09:30
ComboFix2.txt 2017-05-20 02:32
.
Před spuštěním: Volných bajtů: 51 666 198 528
Po spuštění: Volných bajtů: 51 486 494 720
.
- - End Of File - - C305C2F8527770AD80C21A73F79F8DCA

ondrej.nov
nováček
Příspěvky: 28
Registrován: květen 17
Pohlaví: Nespecifikováno

Re: Brutalne zpomaleny PC - log

Příspěvekod ondrej.nov » 20 kvě 2017 11:59

aswMBR version 1.0.1.2290 Copyright(c) 2014 AVAST Software
Run date: 2017-05-20 11:33:05
-----------------------------
11:33:05.930 OS Version: Windows x64 6.1.7601 Service Pack 1
11:33:05.930 Number of processors: 4 586 0x2502
11:33:05.931 ComputerName: TOSHIBA-TOSH UserName: Toshiba
11:33:09.104 Initialize success
11:33:09.166 VM: initialized successfully
11:33:09.182 VM: Intel CPU supported
11:33:24.806 VM: not used
11:33:31.595 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
11:33:31.595 Disk 0 Vendor: TOSHIBA_ GJ00 Size: 610480MB BusType: 3
11:33:31.833 Disk 0 MBR read successfully
11:33:31.833 Disk 0 MBR scan
11:33:31.833 Disk 0 Windows VISTA default MBR code
11:33:32.504 Disk 0 Partition 1 80 (A) 27 Hidden NTFS WinRE NTFS 1500 MB offset 2048
11:33:32.519 Disk 0 Boot: NTFS code=1
11:33:32.537 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 600315 MB offset 3074048
11:33:32.584 Disk 0 Partition 3 00 17 Hidd HPFS/NTFS NTFS 8664 MB offset 1232519168
11:33:32.788 Disk 0 scanning C:\windows\system32\drivers
11:34:01.228 Service scanning
11:34:38.997 Modules scanning
11:34:39.013 Disk 0 trace - called modules:
11:34:39.044 ntoskrnl.exe CLASSPNP.SYS disk.sys thpdrv.sys iaStor.sys hal.dll
11:34:39.044 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8005341060]
11:34:39.059 3 CLASSPNP.SYS[fffff88001b1c43f] -> nt!IofCallDriver -> \Device\THPDRV1[0xfffffa8005340060]
11:34:39.075 5 thpdrv.sys[fffff88001650cc0] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8005076050]
11:34:39.075 Disk 0 statistics 232301/0/0 @ 5,10 MB/s
11:34:39.091 Scan finished successfully
11:59:03.520 Disk 0 MBR has been saved successfully to "C:\Users\Toshiba\Downloads\MBR.dat"
11:59:03.536 The log file has been saved successfully to "C:\Users\Toshiba\Downloads\aswMBR.txt"

ondrej.nov
nováček
Příspěvky: 28
Registrován: květen 17
Pohlaví: Nespecifikováno

Re: Brutalne zpomaleny PC - log

Příspěvekod ondrej.nov » 20 kvě 2017 13:03

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:03:26, on 20.5.2017
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18666)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe
C:\Program Files (x86)\GIGABYTE\vivoTV\ScheduleAgent.exe
C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\PicPick\picpick.exe
C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
C:\Program Files (x86)\Nero\Nero BackItUp & Burn\Nero BackItUp\NBAgent.exe
C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSwMgr.exe
C:\Program Files (x86)\TOSHIBA\Utilities\KeNotify.exe
C:\Program Files (x86)\TOSHIBA\TRCMan\TRCMan.exe
C:\Program Files (x86)\CyberLink\PowerDVD\PDVDServ.exe
C:\Program Files (x86)\GIGABYTE\U8300 Utilities\CONRCtl.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Common Files\Panasonic\VideoCam Suite AutoStart\VideoCamSuiteAutoStart.exe
C:\Program Files (x86)\Sophos\Sophos SSL VPN Client\bin\openvpn-gui.exe
C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe
C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe
C:\Users\Toshiba\Downloads\hijackthis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/?clid=12454
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: TOSHIBA Media Controller Plug-in - {F3C88694-EFFA-4d78-B409-54B7B2535B14} - C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\TOSHIBAMediaControllerIE.dll
O3 - Toolbar: (no name) - {8dcb7100-df86-4384-8842-8fa844297b3f} - (no file)
O4 - HKLM\..\Run: [NBAgent] "C:\Program Files (x86)\Nero\Nero BackItUp & Burn\Nero BackItUp\NBAgent.exe" /WinStart
O4 - HKLM\..\Run: [SVPWUTIL] C:\Program Files (x86)\TOSHIBA\Utilities\SVPWUTIL.exe SVPwUTIL
O4 - HKLM\..\Run: [HWSetup] C:\Program Files\TOSHIBA\Utilities\HWSetup.exe hwSetUP
O4 - HKLM\..\Run: [KeNotify] C:\Program Files (x86)\TOSHIBA\Utilities\KeNotify.exe
O4 - HKLM\..\Run: [TRCMan] C:\Program Files (x86)\TOSHIBA\TRCMan\TRCMan.exe
O4 - HKLM\..\Run: [TWebCamera] "C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe" autorun
O4 - HKLM\..\Run: [UpdatePPShortCut] "C:\Program Files (x86)\CyberLink\PowerProducer\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\PowerProducer" UpdateWithCreateOnce "Software\CyberLink\PowerProducer\5.0"
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files (x86)\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [LanguageShortcut] "C:\Program Files (x86)\CyberLink\PowerDVD\Language\Language.exe"
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [openvpn-gui] C:\Program Files (x86)\Sophos\Sophos SSL VPN Client\bin\openvpn-gui.exe
O4 - HKLM\..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE -startup
O4 - HKCU\..\Run: [TiVme Agent] C:\Program Files (x86)\GIGABYTE\vivoTV\ScheduleAgent.exe srec
O4 - HKCU\..\Run: [ISUSPM Startup] C:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe -startup
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [PicPick Start] "C:\Program Files (x86)\PicPick\picpick.exe" /startup
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\RunOnce: [FlashPlayerUpdate] C:\windows\SysWOW64\Macromed\Flash\FlashUtil32_24_0_0_221_pepper.exe -update pepperplugin
O4 - HKUS\S-1-5-18\..\Run: [TOSHIBA Online Product Information] C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [TOSHIBA Online Product Information] C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe (User 'Default user')
O4 - .DEFAULT User Startup: TRDCReminder.lnk = C:\Program Files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe (User 'Default user')
O4 - Global Startup: Bluetooth Manager.lnk = ?
O4 - Global Startup: Remote Control.lnk = C:\Program Files (x86)\GIGABYTE\U8300 Utilities\CONRCtl.exe
O4 - Global Startup: VideoCam Suite.lnk = ?
O8 - Extra context menu item: Add to AMV/AVI Video Converter... - C:\Program Files (x86)\Media Player Utilities 4.41\AMVConverter\grab.html
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~2\MIF5BA~1\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MIF5BA~1\OFFICE11\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: SearchList = zdb.cz ms-us.local viadus.local,zdb.cz
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: SearchList = zdb.cz ms-us.local viadus.local,zdb.cz
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: SearchList = zdb.cz ms-us.local viadus.local,zdb.cz
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - (no file)
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: ABBYY PDF Transformer 3.0 Licensing Service (ABBYY.Licensing.PDFTransformer.Classic.3.0) - ABBYY - C:\Program Files (x86)\ABBYY PDF Transformer 3.0\NetworkLicenseServer.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: B's Recorder GOLD Library General Service (bgsvcgen) - B.H.A Corporation - C:\Windows\SysWOW64\bgsvcgen.exe
O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files (x86)\Canon\CAL\CALMAIN.exe
O23 - Service: ConfigFree WiMAX Service (cfWiMAXService) - TOSHIBA CORPORATION - C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe
O23 - Service: ConfigFree Service - TOSHIBA CORPORATION - C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: IviRegMgr - InterVideo - C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Performance Service (nTuneService) - NVIDIA - C:\Program Files (x86)\NVIDIA Corporation\nTune\nTuneService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\windows\system32\nvvsvc.exe (file missing)
O23 - Service: OpenVPN Service (OpenVPNService) - The OpenVPN Project - C:\Program Files (x86)\Sophos\Sophos SSL VPN Client\bin\openvpnserv.exe
O23 - Service: OpenVPN Interactive Service (OpenVPNServiceInteractive) - The OpenVPN Project - C:\Program Files (x86)\Sophos\Sophos SSL VPN Client\bin\openvpnserv.exe
O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: Notebook Performance Tuning Service (TEMPRO) (TemproMonitoringService) - Toshiba Europe GmbH - C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe
O23 - Service: Ochrana HDD TOSHIBA (Thpsrv) - Unknown owner - C:\windows\system32\ThpSrv.exe (file missing)
O23 - Service: TMachInfo - TOSHIBA Corporation - C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - Unknown owner - C:\windows\system32\TODDSrv.exe (file missing)
O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe
O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
O23 - Service: TOSHIBA eco Utility Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TECO\TecoService.exe
O23 - Service: TOSHIBA HDD SSD Alert Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
O23 - Service: TPCH Service (TPCHSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: Update Center Service (UpdateCenterService) - NVIDIA - C:\Program Files (x86)\NVIDIA Corporation\System Update\UpdateCenterService.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: VNC Server (vncserver) - RealVNC Ltd - C:\Program Files\RealVNC\VNC Server\vncserver.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: ZAM Controller Service (ZAMSvc) - Copyright 2017. - C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe

--
End of file - 15671 bytes

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 36911
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž

Re: Brutalne zpomaleny PC - log

Příspěvekod jaro3 » 21 kvě 2017 09:13

Odinstaluj:
Sophos
Zemana Antimalware


Zavři ostatní aplikace a prohlížeče, odpoj se od netu a fixni v HJT:
Návod

Kód: Vybrat vše

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O3 - Toolbar: (no name) - {8dcb7100-df86-4384-8842-8fa844297b3f} - (no file)
O4 - HKCU\..\RunOnce: [FlashPlayerUpdate] C:\windows\SysWOW64\Macromed\Flash\FlashUtil32_24_0_0_221_pepper.exe -update pepperplugin
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - (no file)


ComboFix se odinstaluje takto:
Start-Spustit a zadej ComboFix /Uninstall

Vyčisti systém CCleanerem

Stáhni si OTC

na plochu. Poklepej na něj. Potom klikni na Clean up!.
Restartuj PC , pokud Ti bude doporučeno.

Stáhni si zde DelFix
https://toolslib.net/downloads/viewdownload/2-delfix/

ulož si soubor na plochu.
Poklepáním na ikonu spusť nástroj Delfix.exe
( Ve Windows Vista, Windows 7 a 8, musíš spustit soubor pravým tlačítkem myši -> Spustit jako správce .
V hlavním menu, zkontroluj tyto možnosti - Odstranění dezinfekce nástrojů (Remove desinfection tools) – Vyčistit body obnovy (Purge System Restore)
Poté klikněte na tlačítko Spustit (Run) a nech nástroj dělat svoji práci

Poté se zpráva se otevře (DelFix.txt). Vlož celý obsah zprávy sem.Jinak je zpráva zde:
v C: \ DelFix.txt

Co problémy?
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

ondrej.nov
nováček
Příspěvky: 28
Registrován: květen 17
Pohlaví: Nespecifikováno

Re: Brutalne zpomaleny PC - log

Příspěvekod ondrej.nov » 21 kvě 2017 13:21

je to o dost rychlejsi, ale porad najizdi prohlizec asi 2 minuty, potom uz to jede ok, ale to prvotni najizdeni je porad : /

# DelFix v1.013 - Logfile created 21/05/2017 at 11:35:53
# Updated 17/04/2016 by Xplode
# Username : Toshiba - TOSHIBA-TOSH
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
~ Removing disinfection tools ...
Deleted : C:\Qoobox
Deleted : C:\zoek_backup
Deleted : C:\AdwCleaner
Deleted : C:\zoek-results.log
Deleted : C:\zoek-results2017-05-19-201414.log
Deleted : C:\Users\Toshiba\Desktop\JRT.txt
Deleted : C:\Users\Toshiba\Downloads\AdwCleaner.exe
Deleted : C:\Users\Toshiba\Downloads\JRT (1).exe
Deleted : C:\Users\Toshiba\Downloads\JRT.exe
Deleted : C:\Users\Toshiba\Downloads\hijackthis.exe
Deleted : C:\Users\Toshiba\Downloads\hijackthis.log
Deleted : C:\Users\Toshiba\Downloads\MBR.dat
Deleted : C:\Users\Toshiba\Downloads\TFC.exe
Deleted : C:\Users\Toshiba\Downloads\zoek.exe
Deleted : HKLM\SOFTWARE\Swearware
Deleted : HKLM\SOFTWARE\TrendMicro\Hijackthis
Deleted : HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWMBR
~ Cleaning system restore ..
Deleted : RP #556 [JRT Pre-Junkware Removal | 05/18/2017 17:56:37]
Deleted : RP #557 [zoek.exe restore point | 05/19/2017 20:08:35]
New restore point created !
########## - EOF - ##########

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 36911
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž

Re: Brutalne zpomaleny PC - log

Příspěvekod jaro3 » 22 kvě 2017 15:12

Prosím stáhni příslušnou verzi programu pro Tvůj systém 32-bit/64-bit FarbarRecovery Scan Tool (FrSt)
32bit.:
http://www.bleepingcomputer.com/downloa ... ool/dl/81/
64bit.:
http://www.bleepingcomputer.com/downloa ... ool/dl/82/
a ulož jej na plochu. ,pak spusť FrSt.
Potvrď způsob užití.
Neměň žádné z výchozích nastavení a klikni na položku „Scan“ („Skenovat“) .Když je skenování dokončeno, ukážou se dva logy = FRST.txt a Addition.txt a uloží se na ploše.Prosím zkopíruj sem celý jejich obsah.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

ondrej.nov
nováček
Příspěvky: 28
Registrován: květen 17
Pohlaví: Nespecifikováno

Re: Brutalne zpomaleny PC - log

Příspěvekod ondrej.nov » 24 kvě 2017 16:17

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 24-05-2017
Ran by Toshiba (administrator) on TOSHIBA-TOSH (24-05-2017 15:55:34)
Running from C:\Users\Toshiba\Desktop
Loaded Profiles: Toshiba (Available Profiles: Toshiba)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ABBYY) C:\Program Files (x86)\ABBYY PDF Transformer 3.0\NetworkLicenseServer.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
(B.H.A Corporation) C:\Windows\SysWOW64\bgsvcgen.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Nero AG) C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
(NVIDIA) C:\Program Files (x86)\NVIDIA Corporation\nTune\nTuneService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvcexe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Protexis Inc.) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
() C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(TOSHIBA Corporation) C:\Windows\System32\ThpSrv.exe
(TOSHIBA Corporation) C:\Windows\System32\TODDSrv.exe
(TOSHIBA Corporation) C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe
(TOSHIBA Corporation) C:\Program Files\Toshiba\TECO\TecoService.exe
(NVIDIA) C:\Program Files (x86)\NVIDIA Corporation\System Update\UpdateCenterService.exe
(RealVNC Ltd) C:\Program Files\RealVNC\VNC Server\vncserver.exe
(RealVNC Ltd) C:\Program Files\RealVNC\VNC Server\vncserver.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(TOSHIBA Corporation) C:\Program Files\Toshiba\Power Saver\TPwrMain.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(TOSHIBA Corporation) C:\Program Files\Toshiba\SmoothView\SmoothView.exe
(TOSHIBA Corporation) C:\Program Files\Toshiba\FlashCards\TCrdMain.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(TOSHIBA Corporation) C:\Windows\System32\ThpSrv.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Canon Inc.) C:\Program Files (x86)\Canon\CAL\CALMAIN.exe
(TOSHIBA Corporation) C:\Program Files\Toshiba\TECO\Teco.exe
(TOSHIBA Corporation) C:\Program Files\Toshiba\ReelTime\TosReelTimeMonitor.exe
(TOSHIBA Corporation) C:\Program Files\Toshiba\BulletinBoard\TosNcCore.exe
(Toshiba Europe GmbH) C:\Program Files (x86)\Toshiba TEMPRO\TemproTray.exe
(Toshiba Europe GmbH) C:\Program Files\Toshiba\Registration\ToshibaReminder.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
() C:\Program Files\Toshiba\FlashCards\Hotkey\TCrdKBB.exe
() C:\Program Files (x86)\GIGABYTE\vivoTV\ScheduleAgent.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(RealVNC Ltd) C:\Program Files\RealVNC\VNC Server\vncserver.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(TOSHIBA CORPORATION.) C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\TosBtMng.exe
(TOSHIBA CORPORATION) C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe
(TOSHIBA CORPORATION) C:\Program Files (x86)\TOSHIBA\Utilities\KeNotify.exe
() C:\Program Files (x86)\GIGABYTE\U8300 Utilities\CONRCtl.exe
(TOSHIBA Corporation) C:\Program Files (x86)\TOSHIBA\TRCMan\TRCMan.exe
(Panasonic Corporation) C:\Program Files (x86)\Common Files\Panasonic\VideoCam Suite AutoStart\VideoCamSuiteAutoStart.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Power Software Ltd) C:\Program Files\PowerISO\PWRISOVM.EXE
(TOSHIBA CORPORATION) C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\TosBtSrv.exe
(TOSHIBA CORPORATION) C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSwMgr.exe
(TOSHIBA Corporation) C:\Program Files\Toshiba\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
(TOSHIBA Corporation) C:\Program Files\Toshiba\TOSHIBA HDD SSD Alert\TosSENotify.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(TOSHIBA Corporation) C:\Program Files\Toshiba\TPHM\TPCHSrv.exe
(TOSHIBA CORPORATION.) C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\TosA2dp.exe
(TOSHIBA CORPORATION.) C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\TosBtHid.exe
(Společnost TOSHIBA Corporation) C:\Program Files\Toshiba\TPHM\TPCHWMsg.exe
(TOSHIBA CORPORATION.) C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\TosBtHSP.exe
(TOSHIBA CORPORATION) C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe
(TOSHIBA CORPORATION) C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe
(InterVideo) C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Opera Software) C:\Program Files (x86)\Opera\45.0.2552.812\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\45.0.2552.812\opera_crashreporter.exe
(Opera Software) C:\Program Files (x86)\Opera\45.0.2552.812\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\45.0.2552.812\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\45.0.2552.812\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\45.0.2552.812\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\45.0.2552.812\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\45.0.2552.812\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\45.0.2552.812\opera.exe
==================== Registry (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [TPwrMain] => C:\Program Files\TOSHIBA\Power Saver\TPwrMain.EXE [505696 2009-11-05] (TOSHIBA Corporation)
HKLM\...\Run: [HSON] => C:\Program Files\TOSHIBA\TBS\HSON.exe [52600 2009-03-09] (TOSHIBA Corporation)
HKLM\...\Run: [SmoothView] => C:\Program Files\Toshiba\SmoothView\SmoothView.exe [570680 2009-08-13] (TOSHIBA Corporation)
HKLM\...\Run: [00TCrdMain] => C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe [913720 2010-03-25] (TOSHIBA Corporation)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [10134560 2010-03-22] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [896032 2010-03-22] (Realtek Semiconductor)
HKLM\..\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2052392 2010-03-10] (Synaptics Incorporated)
HKLM\...\Run: [ThpSrv] => C:\windows\system32\thpsrv /logon
HKLM\...\Run: [Teco] => C:\Program Files\TOSHIBA\TECO\Teco.exe [1489760 2010-04-06] (TOSHIBA Corporation)
HKLM\...\Run: [TosSENotify] => C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe [709976 2010-02-05] (TOSHIBA Corporation)
HKLM\...\Run: [TosWaitSrv] => C:\Program Files\TOSHIBA\TPHM\TosWaitSrv.exe [705368 2010-02-23] (TOSHIBA Corporation)
HKLM\..\Run: [SmartFaceVWatcher] => C:\Program Files\Toshiba\SmartFaceV\SmartFaceVWatcher.exe [238080 2009-10-19] (TOSHIBA Corporation)
HKLM\...\Run: [TosReelTimeMonitor] => C:\Program Files\TOSHIBA\ReelTime\TosReelTimeMonitor.exe [35672 2010-03-03] (TOSHIBA Corporation)
HKLM\...\Run: [TosNC] => C:\Program Files\Toshiba\BulletinBoard\TosNcCore.exe [595816 2010-03-19] (TOSHIBA Corporation)
HKLM\...\Run: [TosVolRegulator] => C:\Program Files\TOSHIBA\TosVolRegulator\TosVolRegulator.exe [24376 2009-11-11] (TOSHIBA Corporation)
HKLM\...\Run: [Toshiba TEMPRO] => C:\Program Files (x86)\Toshiba TEMPRO\TemproTray.exe [1546720 2011-02-10] (Toshiba Europe GmbH)
HKLM\...\Run: [Toshiba Registration] => C:\Program Files\Toshiba\Registration\ToshibaReminder.exe [136136 2010-04-19] (Toshiba Europe GmbH)
HKLM\...\Run: [Nvtmru] => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [1028896 2013-07-27] (NVIDIA Corporation)
HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [3146704 2017-05-09] (Malwarebytes)
HKLM-x32\...\Run: [SVPWUTIL] => C:\Program Files (x86)\TOSHIBA\Utilities\SVPWUTIL.exe [352256 2010-02-22] (TOSHIBA)
HKLM-x32\...\Run: [HWSetup] => C:\Program Files\TOSHIBA\Utilities\HWSetup.exe [423936 2010-03-04] (TOSHIBA Electronics, Inc.)
HKLM-x32\...\Run: [KeNotify] => C:\Program Files (x86)\TOSHIBA\Utilities\KeNotify.exe [34160 2009-12-25] (TOSHIBA CORPORATION)
HKLM-x32\..\Run: [TRCMan] => C:\Program Files (x86)\TOSHIBA\TRCMan\TRCMan.exe [701752 2009-07-21] (TOSHIBA Corporation)
HKLM-x32\...\Run: [TWebCamera] => C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe [2454840 2010-02-24] (TOSHIBA CORPORATION.)
HKLM-x32\..\Run: [UpdatePPShortCut] => C:\Program Files (x86)\CyberLink\PowerProducer\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM-x32\...\Run: [LanguageShortcut] => C:\Program Files (x86)\CyberLink\PowerDVD\Language\Language.exe [49152 2006-04-13] ()
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [PWRISOVM.EXE] => C:\Program Files\PowerISO\PWRISOVM.EXE [455816 2017-02-02] (Power Software Ltd)
HKU\S-1-5-21-2006602166-2821085519-2699951813-1001\...\Run: [TiVme Agent] => C:\Program Files (x86)\GIGABYTE\vivoTV\ScheduleAgent.exe [114688 2010-01-25] ()
HKU\S-1-5-21-2006602166-2821085519-2699951813-1001\...\Run: [ISUSPM Startup] => C:\Program Files (x86)\Common Files\InstallShield\UpdateService\ISUSPM.exe [221184 2004-08-09] (InstallShield Software Corporation)
HKU\S-1-5-21-2006602166-2821085519-2699951813-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9772248 2017-05-05] (Piriform Ltd)
HKU\S-1-5-21-2006602166-2821085519-2699951813-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\windows\system32\Bubbles.scr [899584 2010-11-20] (Microsoft Corporation)
HKU\S-1-5-18\...\Run: [TOSHIBA Online Product Information] => C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe [4581280 2010-03-03] (TOSHIBA)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-03-21] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-03-21] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-03-21] (Google)
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => -> No File
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth Manager.lnk [2012-11-27]
ShortcutTarget: Bluetooth Manager.lnk -> C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\TosBtMng.exe (TOSHIBA CORPORATION.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Remote Control.lnk [2013-10-27]
ShortcutTarget: Remote Control.lnk -> C:\Program Files (x86)\GIGABYTE\U8300 Utilities\CONRCtl.exe ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\VideoCam Suite.lnk [2011-01-10]
ShortcutTarget: VideoCam Suite.lnk -> C:\Program Files (x86)\Common Files\Panasonic\VideoCam Suite AutoStart\VideoCamSuiteAutoStart.exe (Panasonic Corporation)
Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TRDCReminder.lnk [2010-05-27]
ShortcutTarget: TRDCReminder.lnk -> C:\Program Files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe (TOSHIBA Europe)
Startup: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TRDCReminder.lnk [2010-05-27]
ShortcutTarget: TRDCReminder.lnk -> C:\Program Files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe (TOSHIBA Europe)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{6DD7C15F-55D2-4E20-A2E0-8D3EE61FB14B}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{D3629971-1D34-400B-9016-601F50C849C0}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-2006602166-2821085519-2699951813-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\S-1-5-21-2006602166-2821085519-2699951813-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\S-1-5-21-2006602166-2821085519-2699951813-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.seznam.cz/?clid=12454
SearchScopes: HKLM -> DefaultScope {E75392A3-3B2F-4E0B-B55A-820374FBABFE} URL = hxxp://www.bing.com/search?q={searchTerms}&form=TSHMDF&pc=MATM&src=IE-SearchBox
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {E75392A3-3B2F-4E0B-B55A-820374FBABFE} URL = hxxp://www.bing.com/search?q={searchTerms}&form=TSHMDF&pc=MATM&src=IE-SearchBox
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> Backup.Old.DefaultScope {5ABE60D2-1424-4179-BFEC-C803448C2DEB}
SearchScopes: HKLM-x32 -> {59EFC183-1B2D-D77C-E209-0304DF913DDF} URL = hxxp://www.bing.com/search?q={searchTerms}&form=TSHMDF&pc=MATM&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-2006602166-2821085519-2699951813-1001 -> Backup.Old.DefaultScope {95B7759C-8C7F-4BF1-B163-73684A933233}
SearchScopes: HKU\S-1-5-21-2006602166-2821085519-2699951813-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-2006602166-2821085519-2699951813-1001 -> {0616E362-A0BF-406D-9F8C-E2336F34B210} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-2006602166-2821085519-2699951813-1001 -> {0C95C021-4F2F-4DAF-9685-2B809FC4584E} URL = hxxp://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-2006602166-2821085519-2699951813-1001 -> {0EB828CD-7793-4880-9870-74A34AC5ECAD} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-2006602166-2821085519-2699951813-1001 -> {10B0930D-7460-4A61-B293-71D7E73C6251} URL = hxxp://rover.ebay.com/rover/1/710-71511 ... 4?satitle={searchTerms}
SearchScopes: HKU\S-1-5-21-2006602166-2821085519-2699951813-1001 -> {257484FB-36CE-4F98-A1D2-557A65F26676} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-2006602166-2821085519-2699951813-1001 -> {6BDE3B32-C997-477A-8E59-0DCD106A2AA4} URL = hxxp://www.firmy.cz/?q={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-2006602166-2821085519-2699951813-1001 -> {75953385-6471-4ACE-B005-732A11299C9A} URL = hxxp://www.bing.com/search?FORM=UP97DF& ... =072213&q={searchTerms}&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-2006602166-2821085519-2699951813-1001 -> {7F3C978E-BCE1-46E5-A32A-B0B09077B9C1} URL = hxxp://www.amazon.co.uk/gp/search?ie=UTF8&keywords={searchTerms}&tag=tochibauk-win7-ie-search-21&index=blended&linkCode=ur2
SearchScopes: HKU\S-1-5-21-2006602166-2821085519-2699951813-1001 -> {BB6FE0DC-73A4-4267-A7E9-74A34528EB35} URL = hxxp://www.novinky.cz/hledej?w={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-2006602166-2821085519-2699951813-1001 -> {C6913264-5BAA-4787-B45F-3A6F1123BB9F} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-2006602166-2821085519-2699951813-1001 -> {FD49F983-1E12-4A4A-8876-3CA127086F61} URL = hxxp://www.mapy.cz/?query={searchTerms}&sourceid=QuickSearch_12454
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corp.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-05-12] (Oracle Corporation)
BHO-x32: Pomocná služba pro přihlášení ke službě Windows Live ID -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corp.)
BHO-x32: Windows Live Messenger Companion Helper -> {9FDDE16B-836F-4806-AB1F-1455CBEFF289} -> C:\Program Files (x86)\Windows Live\Companion\companioncore.dll [2010-11-10] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-05-12] (Oracle Corporation)
BHO-x32: TOSHIBA Media Controller Plug-in -> {F3C88694-EFFA-4d78-B409-54B7B2535B14} -> C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\TOSHIBAMediaControllerIE.dll [2010-03-19] (<TOSHIBA>)
Toolbar: HKU\S-1-5-21-2006602166-2821085519-2699951813-1001 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2017-01-01] (Skype Technologies)
FireFox:
========
FF DefaultProfile: 766qrnwf.default
FF ProfilePath: C:\Data aplikací\Mozilla\Firefox\Profiles\766qrnwf.default [2017-05-24]
FF Extension: (Site Deployment Checker) - C:\Program Files (x86)\Mozilla Firefox\browser\features\deployment-checker@mozilla.org.xpi [2017-05-18] [not signed]
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF64_24_0_0_221.dll [2017-02-14] ()
FF Plugin: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelogx64.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50906.0\npctrl.dll [2017-03-09] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\windows\SysWOW64\Macromed\Flash\NPSWF32_24_0_0_221.dll [2017-02-14] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\windows\SysWOW64\Adobe\Director\np32dsw_1218158.dll [2015-05-07] (Adobe Systems, Inc.)
FF Plugin-x32: @esn/npbattlelog,version=2.3.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.1\npbattlelog.dll [No File]
FF Plugin-x32: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelog.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin-x32: @java.com/DTPlugin,version=10.55.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll [2014-05-12] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.552 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll [2014-05-12] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50906.0\npctrl.dll [2017-03-09] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [2013-09-03] (Pando Networks)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [No File]
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [No File]
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2006602166-2821085519-2699951813-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Toshiba\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-08-18] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-2006602166-2821085519-2699951813-1001: pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [2013-09-03] (Pando Networks)
Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxps://www.google.cz/
CHR StartupUrls: Default -> "hxxp://google.cz/"
CHR DefaultSearchURL: Default -> hxxp://zooms.searchalgo.com/search/?cat ... b&s=zds&q={searchTerms}
CHR DefaultSearchKeyword: Default -> t
CHR DefaultSuggestURL: Default -> hxxp://sug.searchalgo.com/search/index_sg.php?q={searchTerms}
CHR Session Restore: Default -> is enabled.
CHR Profile: C:\Users\Toshiba\AppData\Local\Google\Chrome\User Data\Default [2017-05-24]
CHR Extension: (Prezentace Google) - C:\Users\Toshiba\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-07-13]
CHR Extension: (Dokumenty Google) - C:\Users\Toshiba\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-07-13]
CHR Extension: (Disk Google) - C:\Users\Toshiba\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-12-25]
CHR Extension: (Seznam Lištička - Email) - C:\Users\Toshiba\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2017-05-18]
CHR Extension: (YouTube) - C:\Users\Toshiba\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-12-25]
CHR Extension: (Vyhledávání Google) - C:\Users\Toshiba\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-12-25]
CHR Extension: (Tabulky Google) - C:\Users\Toshiba\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-07-13]
CHR Extension: (Bookmarks Button) - C:\Users\Toshiba\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffieaadkkhencgelmgbbmkkipeocbcbg [2014-06-05]
CHR Extension: (Dokumenty Google offline) - C:\Users\Toshiba\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-15]
CHR Extension: (Lorem Ipsum Generator (Default Text)) - C:\Users\Toshiba\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcdcbjjoakogbcopinefncmkcamnfkdb [2014-06-11]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Toshiba\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-11]
CHR Extension: (Gmail) - C:\Users\Toshiba\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-07-13]
CHR Extension: (Chrome Media Router) - C:\Users\Toshiba\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-05-14]
CHR Profile: C:\Users\Toshiba\AppData\Local\Google\Chrome\User Data\Guest Profile [2017-05-21]
CHR Profile: C:\Users\Toshiba\AppData\Local\Google\Chrome\User Data\System Profile [2017-05-21]
CHR HKU\S-1-5-21-2006602166-2821085519-2699951813-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\Toshiba\AppData\Local\Google\Drive\apdfllckaahabafndbhieahigkjlhalf_live.crx [2013-05-01]
Opera:
=======
OPR Extension: (Adblock Plus) - C:\Data aplikací\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp [2017-03-22]
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 ABBYY.Licensing.PDFTransformer.Classic.3.0; C:\Program Files (x86)\ABBYY PDF Transformer 3.0\NetworkLicenseServer.exe [759048 2009-05-14] (ABBYY)
R2 CCALib8; C:\Program Files (x86)\Canon\CAL\CALMAIN.exe [86606 2005-06-02] (Canon Inc.) [File not signed]
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1369464 2016-01-15] (Disc Soft Ltd)
S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2934048 2015-11-10] (IObit)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4470736 2017-05-09] (Malwarebytes)
R2 nTuneService; C:\Program Files (x86)\NVIDIA Corporation\nTune\nTuneService.exe [255008 2009-01-06] (NVIDIA)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15128352 2013-11-29] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2104840 2015-12-25] (Electronic Arts)
R2 PnkBstrA; C:\windows\SysWOW64\PnkBstrA.exe [76152 2015-12-21] ()
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [247152 2009-04-17] ()
S3 TemproMonitoringService; C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe [112080 2011-02-10] (Toshiba Europe GmbH)
R2 UpdateCenterService; C:\Program Files (x86)\NVIDIA Corporation\System Update\UpdateCenterService.exe [169504 2009-01-07] (NVIDIA)
R2 vncserver; C:\Program Files\RealVNC\VNC Server\vncserver.exe [4773768 2012-10-02] (RealVNC Ltd)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
U5 AppMgmt; C:\windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R1 cdrbsdrv; C:\Windows\System32\Drivers\cdrbsdrv.sys [39208 2006-08-25] (B.H.A Corporation)
S2 CXIR; C:\windows\System32\drivers\cxcir64.sys [44544 2009-04-23] (Conexant Systems, Inc.)
S3 CXPOLARIS; C:\windows\System32\drivers\cxpolar64.sys [416000 2009-11-24] (Conexant Systems, Inc.)
R3 dtlitescsibus; C:\windows\System32\DRIVERS\dtlitescsibus.sys [30264 2016-02-18] (Disc Soft Ltd)
R3 dtliteusbbus; C:\windows\System32\DRIVERS\dtliteusbbus.sys [47672 2016-02-18] (Disc Soft Ltd)
R1 ESProtectionDriver; C:\windows\system32\drivers\mbae64.sys [77440 2017-05-09] ()
R1 HWiNFO32; C:\windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2017-03-16] (REALiX(tm))
R2 MBAMChameleon; C:\windows\system32\drivers\MBAMChameleon.sys [187320 2017-05-19] (Malwarebytes)
R3 MBAMFarflt; C:\windows\system32\drivers\farflt.sys [113592 2017-05-24] (Malwarebytes)
R3 MBAMProtection; C:\windows\system32\drivers\mbam.sys [43968 2017-05-24] (Malwarebytes)
R3 MBAMSwissArmy; C:\windows\system32\drivers\MBAMSwissArmy.sys [251832 2017-05-24] (Malwarebytes)
R3 MBAMWebProtection; C:\windows\system32\drivers\mwac.sys [84256 2017-05-24] (Malwarebytes)
S3 ncplelhp; C:\windows\System32\DRIVERS\ncplelhp.sys [151016 2009-10-08] (NCP Engineering GmbH)
R3 NVR0Dev; C:\windows\nvoclk64.sys [40480 2009-01-06] (NVIDIA Corp.)
R2 NVR0FLASHDev; C:\windows\nvflsh64.sys [40992 2009-01-07] (NVIDIA Corp.)
R3 nvvad_WaveExtensible; C:\windows\System32\drivers\nvvad64v.sys [39200 2013-10-30] (NVIDIA Corporation)
S3 qcusbnet; C:\windows\System32\DRIVERS\innosusbnet.sys [510976 2012-10-26] (QUALCOMM Incorporated)
S3 qcusbser; C:\windows\System32\DRIVERS\innosusbser.sys [369792 2012-10-26] (QUALCOMM Incorporated)
R2 regi; C:\windows\SysWOW64\drivers\regi.sys [11032 2007-04-17] (InterVideo)
S4 secdrv; C:\Windows\SysWow64\Drivers\secdrv.sys [12464 2016-11-27] (Macrovision Europe Ltd) [File not signed]
S3 vna_ap; C:\windows\System32\DRIVERS\vnaap.sys [161256 2010-06-06] (Check Point Software Technologies)
U2 CP_OMDRV; no ImagePath
S3 EagleX64; \??\C:\windows\system32\drivers\EagleX64.sys [X]
U2 VNASC; no ImagePath
S1 ZAM; \??\C:\windows\System32\drivers\zam64.sys [X]
S1 ZAM_Guard; \??\C:\windows\System32\drivers\zamguard64.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-05-24 15:55 - 2017-05-24 15:58 - 00030132 _____ C:\Users\Toshiba\Desktop\FRSTtxt
2017-05-24 15:55 - 2017-05-24 15:55 - 00000000 ____D C:\FRST
2017-05-24 15:53 - 2017-05-24 15:53 - 02429952 _____ (Farbar) C:\Users\Toshiba\Desktop\FRST64.exe
2017-05-23 15:35 - 2017-05-23 21:58 - 00000449 _____ C:\Users\Toshiba\Downloads\JanSebesta.ini
2017-05-23 15:20 - 2017-05-23 15:35 - 00000264 _____ C:\Users\Toshiba\Downloads\JanSebesta.pgi
2017-05-23 15:19 - 2017-05-23 15:19 - 00036408 _____ C:\Users\Toshiba\Downloads\JanSebesta.pgn
2017-05-22 21:11 - 2017-05-22 21:11 - 00000447 _____ C:\Users\Toshiba\Downloads\PiotrAdamczyk.ini
2017-05-22 21:10 - 2017-05-22 21:10 - 00011780 _____ C:\Users\Toshiba\Downloads\PiotrAdamczykpgn
2017-05-21 21:47 - 2017-05-21 21:47 - 00000447 _____ C:\Users\Toshiba\Downloads\LukaMolnar.ini
2017-05-21 21:37 - 2017-05-21 21:37 - 00006438 _____ C:\Users\Toshiba\Downloads\LukaMolnar.pgn
2017-05-21 17:34 - 2017-05-21 17:34 - 00454064 _____ C:\windows\system32\FNTCACHE.DAT
2017-05-21 15:16 - 2017-05-21 15:16 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-05-21 15:16 - 2017-05-21 15:16 - 00002058 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk
2017-05-21 15:16 - 2017-05-21 15:16 - 00000000 ____D C:\Program Files (x86)\Adobe
2017-05-21 11:35 - 2017-05-21 11:38 - 00001205 _____ C:\DelFix.txt
2017-05-21 09:51 - 2017-05-21 09:51 - 00058982 _____ C:\Users\Toshiba\Documents\zaloha_registru.reg
2017-05-21 09:50 - 2017-05-21 11:46 - 00001718 _____ C:\Users\Toshiba\Desktop\precist.txt
2017-05-21 09:30 - 2017-05-21 09:30 - 00000833 _____ C:\Users\Public\Desktop\CCleaner.lnk
2017-05-21 09:27 - 2017-05-21 09:28 - 09548112 _____ (Piriform Ltd) C:\Users\Toshiba\Downloads\ccsetup530.exe
2017-05-21 09:23 - 2017-05-21 09:23 - 00000000 ____D C:\Users\Toshiba\Downloads\backups
2017-05-20 13:42 - 2017-05-20 20:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Defraggler
2017-05-20 13:42 - 2017-05-20 20:32 - 00000000 ____D C:\Program Files\Defraggler
2017-05-20 13:42 - 2017-05-20 13:42 - 00001735 _____ C:\Users\Public\Desktop\Defraggler.lnk
2017-05-20 13:41 - 2017-05-20 13:41 - 11967992 _____ C:\Users\Toshiba\Downloads\dfsetup221.exe
2017-05-20 10:36 - 2017-05-20 10:36 - 00000000 ____D C:\ProgramData\NVIDIA
2017-05-20 03:48 - 2017-05-21 09:54 - 00039549 _____ C:\windows\ZAM_Guard.krnl.trace
2017-05-20 03:48 - 2017-05-21 09:26 - 00059634 _____ C:\windows\ZAM.krnl.trace
2017-05-20 03:34 - 2017-05-20 20:32 - 00000000 ____D C:\windows\erdnt
2017-05-20 03:32 - 2017-05-20 03:32 - 00030843 _____ C:\Users\Toshiba\Downloads\ucp (1).htm
2017-05-20 03:30 - 2017-05-20 03:30 - 00030948 _____ C:\Users\Toshiba\Downloads\ucp.htm
2017-05-20 02:24 - 2017-05-21 09:55 - 00000000 ____D C:\Program Files (x86)\Zemana AntiMalware
2017-05-20 02:23 - 2017-05-20 02:23 - 05774688 _____ (Zemana Ltd. ) C:\Users\Toshiba\Downloads\ZemanaAntiMalware.Setup (1).exe
2017-05-20 02:23 - 2017-05-20 02:23 - 00000000 ____D C:\Users\Toshiba\AppData\Local\Zemana
2017-05-20 01:14 - 2017-05-20 20:07 - 00000000 ____D C:\zoek
2017-05-19 23:36 - 2017-05-19 23:36 - 00000000 ____D C:\ProgramData\PicPick
2017-05-19 22:04 - 2017-05-20 01:14 - 00001964 _____ C:\runcheck.txt
2017-05-19 22:04 - 2017-05-19 22:04 - 05774688 _____ (Zemana Ltd. ) C:\Users\Toshiba\Downloads\ZemanaAntiMalware.Setup.exe
2017-05-18 21:57 - 2017-05-19 19:53 - 00028272 _____ C:\windows\system32\Drivers\TrueSight.sys
2017-05-18 21:24 - 2017-05-20 20:33 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-05-18 21:22 - 2017-05-20 20:32 - 00000000 ____D C:\ProgramData\RogueKiller
2017-05-18 20:52 - 2017-05-18 20:52 - 00000000 ____D C:\ProgramData\Sophos
2017-05-18 20:51 - 2017-05-18 20:51 - 00002759 _____ C:\Users\Public\Desktop\Sophos Virus Removal Tool.lnk
2017-05-18 20:19 - 2017-05-18 20:31 - 167683672 _____ (Sophos Limited) C:\Users\Toshiba\Downloads\Sophos Virus Removal Tool.exe
2017-05-18 16:45 - 2017-05-18 16:45 - 00288948 _____ C:\Users\Toshiba\Desktop\malware.txt
2017-05-18 16:42 - 2017-05-18 16:42 - 00288944 _____ C:\Users\Toshiba\Desktop\sdf.txt
2017-05-18 16:15 - 2017-05-24 13:42 - 00084256 _____ (Malwarebytes) C:\windows\system32\Drivers\mwac.sys
2017-05-18 16:15 - 2017-05-24 13:38 - 00113592 _____ (Malwarebytes) C:\windows\system32\Drivers\farflt.sys
2017-05-18 16:15 - 2017-05-24 13:38 - 00043968 _____ (Malwarebytes) C:\windows\system32\Drivers\mbam.sys
2017-05-18 16:15 - 2017-05-24 13:37 - 00251832 _____ (Malwarebytes) C:\windows\system32\Drivers\MBAMSwissArmy.sys
2017-05-18 16:15 - 2017-05-20 20:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-05-18 16:15 - 2017-05-19 23:40 - 00187320 _____ (Malwarebytes) C:\windows\system32\Drivers\MBAMChameleon.sys
2017-05-18 16:15 - 2017-05-18 16:15 - 00001878 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-05-18 16:15 - 2017-05-18 16:15 - 00000000 ____D C:\ProgramData\Malwarebytes
2017-05-18 16:15 - 2017-05-18 16:15 - 00000000 ____D C:\Program Files\Malwarebytes
2017-05-18 16:15 - 2017-05-09 16:37 - 00077440 _____ C:\windows\system32\Drivers\mbae64sys
2017-05-18 16:12 - 2017-05-18 16:14 - 63035592 _____ (Malwarebytes ) C:\Users\Toshiba\Downloads\mb3-setup-consumer-3.1.2.1733.exe
2017-05-18 14:25 - 2017-05-18 14:25 - 00050688 _____ (Atribune.org) C:\Users\Toshiba\Downloads\ATF-Cleaner.exe
2017-05-14 20:19 - 2017-05-14 20:19 - 00000447 _____ C:\Users\Toshiba\Downloads\1_komplet (4).ini
2017-05-14 20:18 - 2017-05-14 20:19 - 00001124 _____ C:\Users\Toshiba\Downloads\1_komplet (4).pgi
2017-05-14 20:18 - 2017-05-14 20:18 - 00188339 _____ C:\Users\Toshiba\Downloads\1_komplet (4).PGN
2017-05-14 20:17 - 2017-05-14 20:17 - 00188339 _____ C:\Users\Toshiba\Downloads\1_komplet (3).PGN
2017-05-10 19:23 - 2017-04-28 03:14 - 05547240 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2017-05-10 19:23 - 2017-04-28 03:14 - 00706792 _____ (Microsoft Corporation) C:\windows\system32\winload.efi
2017-05-10 19:23 - 2017-04-28 03:14 - 00631176 _____ (Microsoft Corporation) C:\windows\system32\winresume.efi
2017-05-10 19:23 - 2017-04-28 03:14 - 00154856 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys
2017-05-10 19:23 - 2017-04-28 03:14 - 00095464 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecdd.sys
2017-05-10 19:23 - 2017-04-28 03:11 - 01732864 _____ (Microsoft Corporation) C:\windows\system32\ntdll.dll
2017-05-10 19:23 - 2017-04-28 03:10 - 01460736 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2017-05-10 19:23 - 2017-04-28 03:10 - 01212928 _____ (Microsoft Corporation) C:\windows\system32\rpcrt4.dll
2017-05-10 19:23 - 2017-04-28 03:10 - 01163264 _____ (Microsoft Corporation) C:\windows\system32\kernel32.dll
2017-05-10 19:23 - 2017-04-28 03:10 - 00730624 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll
2017-05-10 19:23 - 2017-04-28 03:10 - 00503808 _____ (Microsoft Corporation) C:\windows\system32\srcore.dll
2017-05-10 19:23 - 2017-04-28 03:10 - 00419840 _____ (Microsoft Corporation) C:\windows\system32\KernelBase.dll
2017-05-10 19:23 - 2017-04-28 03:10 - 00362496 _____ (Microsoft Corporation) C:\windows\system32\wow64win.dll
2017-05-10 19:23 - 2017-04-28 03:10 - 00345600 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2017-05-10 19:23 - 2017-04-28 03:10 - 00316928 _____ (Microsoft Corporation) C:\windows\system32\msv1_0.dll
2017-05-10 19:23 - 2017-04-28 03:10 - 00312320 _____ (Microsoft Corporation) C:\windows\system32\ncrypt.dll
2017-05-10 19:23 - 2017-04-28 03:10 - 00243712 _____ (Microsoft Corporation) C:\windows\system32\wow64.dll
2017-05-10 19:23 - 2017-04-28 03:10 - 00215552 _____ (Microsoft Corporation) C:\windows\system32\winsrv.dll
2017-05-10 19:23 - 2017-04-28 03:10 - 00210432 _____ (Microsoft Corporation) C:\windows\system32\wdigest.dll
2017-05-10 19:23 - 2017-04-28 03:10 - 00190464 _____ (Microsoft Corporation) C:\windows\system32\rpchttp.dll
2017-05-10 19:23 - 2017-04-28 03:10 - 00146432 _____ (Microsoft Corporation) C:\windows\system32\msaudite.dll
2017-05-10 19:23 - 2017-04-28 03:10 - 00135680 _____ (Microsoft Corporation) C:\windows\system32\sspicli.dll
2017-05-10 19:23 - 2017-04-28 03:10 - 00086528 _____ (Microsoft Corporation) C:\windows\system32\TSpkg.dll
2017-05-10 19:23 - 2017-04-28 03:10 - 00063488 _____ (Microsoft Corporation) C:\windows\system32\setbcdlocale.dll
2017-05-10 19:23 - 2017-04-28 03:10 - 00060416 _____ (Microsoft Corporation) C:\windows\system32\msobjs.dll
2017-05-10 19:23 - 2017-04-28 03:10 - 00050176 _____ (Microsoft Corporation) C:\windows\system32\srclient.dll
2017-05-10 19:23 - 2017-04-28 03:10 - 00028672 _____ (Microsoft Corporation) C:\windows\system32\sspisrv.dll
2017-05-10 19:23 - 2017-04-28 03:10 - 00028160 _____ (Microsoft Corporation) C:\windows\system32\secur32.dll
2017-05-10 19:23 - 2017-04-28 03:10 - 00016384 _____ (Microsoft Corporation) C:\windows\system32\ntvdm64.dll
2017-05-10 19:23 - 2017-04-28 03:10 - 00013312 _____ (Microsoft Corporation) C:\windows\system32\wow64cpu.dll
2017-05-10 19:23 - 2017-04-28 03:09 - 00880640 _____ (Microsoft Corporation) C:\windows\system32\advapi32.dll
2017-05-10 19:23 - 2017-04-28 03:09 - 00690688 _____ (Microsoft Corporation) C:\windows\system32\adtschema.dll
2017-05-10 19:23 - 2017-04-28 03:09 - 00463872 _____ (Microsoft Corporation) C:\windows\system32\certcli.dll
2017-05-10 19:23 - 2017-04-28 03:09 - 00123904 _____ (Microsoft Corporation) C:\windows\system32\bcrypt.dll
2017-05-10 19:23 - 2017-04-28 03:09 - 00059904 _____ (Microsoft Corporation) C:\windows\system32\appidapi.dll
2017-05-10 19:23 - 2017-04-28 03:09 - 00044032 _____ (Microsoft Corporation) C:\windows\system32\csrsrv.dll
2017-05-10 19:23 - 2017-04-28 03:09 - 00043520 _____ (Microsoft Corporation) C:\windows\system32\cryptbase.dll
2017-05-10 19:23 - 2017-04-28 03:09 - 00034816 _____ (Microsoft Corporation) C:\windows\system32\appidsvc.dll
2017-05-10 19:23 - 2017-04-28 03:09 - 00022016 _____ (Microsoft Corporation) C:\windows\system32\credssp.dll
2017-05-10 19:23 - 2017-04-28 03:09 - 00006656 _____ (Microsoft Corporation) C:\windows\system32\apisetschema.dll
2017-05-10 19:23 - 2017-04-28 03:09 - 00006144 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2017-05-10 19:23 - 2017-04-28 03:09 - 00005120 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2017-05-10 19:23 - 2017-04-28 03:09 - 00004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2017-05-10 19:23 - 2017-04-28 03:09 - 00004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2017-05-10 19:23 - 2017-04-28 03:09 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2017-05-10 19:23 - 2017-04-28 03:09 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2017-05-10 19:23 - 2017-04-28 03:09 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2017-05-10 19:23 - 2017-04-28 03:09 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2017-05-10 19:23 - 2017-04-28 03:09 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-05-10 19:23 - 2017-04-28 03:09 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2017-05-10 19:23 - 2017-04-28 03:09 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2017-05-10 19:23 - 2017-04-28 03:09 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2017-05-10 19:23 - 2017-04-28 03:09 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2017-05-10 19:23 - 2017-04-28 03:09 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2017-05-10 19:23 - 2017-04-28 03:09 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2017-05-10 19:23 - 2017-04-28 03:09 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2017-05-10 19:23 - 2017-04-28 03:09 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2017-05-10 19:23 - 2017-04-28 03:09 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2017-05-10 19:23 - 2017-04-28 03:09 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2017-05-10 19:23 - 2017-04-28 03:09 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2017-05-10 19:23 - 2017-04-28 03:09 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2017-05-10 19:23 - 2017-04-28 03:09 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2017-05-10 19:23 - 2017-04-28 03:09 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2017-05-10 19:23 - 2017-04-28 03:09 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2017-05-10 19:23 - 2017-04-28 03:09 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2017-05-10 19:23 - 2017-04-28 03:09 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2017-05-10 19:23 - 2017-04-28 03:09 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2017-05-10 19:23 - 2017-04-28 03:09 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2017-05-10 19:23 - 2017-04-28 02:36 - 04000488 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntkrnlpa.exe
2017-05-10 19:23 - 2017-04-28 02:36 - 03945192 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntoskrnl.exe
2017-05-10 19:23 - 2017-04-28 02:34 - 01314112 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntdll.dll
2017-05-10 19:23 - 2017-04-28 02:32 - 01114112 _____ (Microsoft Corporation) C:\windows\SysWOW64\kernel32.dll
2017-05-10 19:23 - 2017-04-28 02:32 - 00690688 _____ (Microsoft Corporation) C:\windows\SysWOW64\adtschema.dll
2017-05-10 19:23 - 2017-04-28 02:32 - 00666112 _____ (Microsoft Corporation) C:\windows\SysWOW64\rpcrt4.dll
2017-05-10 19:23 - 2017-04-28 02:32 - 00644096 _____ (Microsoft Corporation) C:\windows\SysWOW64\advapi32.dll
2017-05-10 19:23 - 2017-04-28 02:32 - 00553472 _____ (Microsoft Corporation) C:\windows\SysWOW64\kerberos.dll
2017-05-10 19:23 - 2017-04-28 02:32 - 00342528 _____ (Microsoft Corporation) C:\windows\SysWOW64\certcli.dll
2017-05-10 19:23 - 2017-04-28 02:32 - 00275456 _____ (Microsoft Corporation) C:\windows\SysWOW64\KernelBase.dll
2017-05-10 19:23 - 2017-04-28 02:32 - 00261120 _____ (Microsoft Corporation) C:\windows\SysWOW64\msv1_0.dll
2017-05-10 19:23 - 2017-04-28 02:32 - 00254464 _____ (Microsoft Corporation) C:\windows\SysWOW64\schannel.dll
2017-05-10 19:23 - 2017-04-28 02:32 - 00223232 _____ (Microsoft Corporation) C:\windows\SysWOW64\ncrypt.dll
2017-05-10 19:23 - 2017-04-28 02:32 - 00172032 _____ (Microsoft Corporation) C:\windows\SysWOW64\wdigest.dll
2017-05-10 19:23 - 2017-04-28 02:32 - 00146432 _____ (Microsoft Corporation) C:\windows\SysWOW64\msaudite.dll
2017-05-10 19:23 - 2017-04-28 02:32 - 00141312 _____ (Microsoft Corporation) C:\windows\SysWOW64\rpchttp.dll
2017-05-10 19:23 - 2017-04-28 02:32 - 00096768 _____ (Microsoft Corporation) C:\windows\SysWOW64\sspicli.dll
2017-05-10 19:23 - 2017-04-28 02:32 - 00082944 _____ (Microsoft Corporation) C:\windows\SysWOW64\bcrypt.dll
2017-05-10 19:23 - 2017-04-28 02:32 - 00065536 _____ (Microsoft Corporation) C:\windows\SysWOW64\TSpkg.dll
2017-05-10 19:23 - 2017-04-28 02:32 - 00060416 _____ (Microsoft Corporation) C:\windows\SysWOW64\msobjs.dll
2017-05-10 19:23 - 2017-04-28 02:32 - 00050688 _____ (Microsoft Corporation) C:\windows\SysWOW64\appidapi.dll
2017-05-10 19:23 - 2017-04-28 02:32 - 00043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\srclient.dll
2017-05-10 19:23 - 2017-04-28 02:32 - 00022016 _____ (Microsoft Corporation) C:\windows\SysWOW64\secur32.dll
2017-05-10 19:23 - 2017-04-28 02:32 - 00017408 _____ (Microsoft Corporation) C:\windows\SysWOW64\credssp.dll
2017-05-10 19:23 - 2017-04-28 02:32 - 00006656 _____ (Microsoft Corporation) C:\windows\SysWOW64\apisetschema.dll
2017-05-10 19:23 - 2017-04-28 02:32 - 00005120 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2017-05-10 19:23 - 2017-04-28 02:32 - 00005120 _____ (Microsoft Corporation) C:\windows\SysWOW64\wow32.dll
2017-05-10 19:23 - 2017-04-28 02:32 - 00004608 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2017-05-10 19:23 - 2017-04-28 02:32 - 00004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll

ondrej.nov
nováček
Příspěvky: 28
Registrován: květen 17
Pohlaví: Nespecifikováno

Re: Brutalne zpomaleny PC - log

Příspěvekod ondrej.nov » 24 kvě 2017 16:18

2017-05-10 19:23 - 2017-04-28 02:32 - 00004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2017-05-10 19:23 - 2017-04-28 02:32 - 00004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2017-05-10 19:23 - 2017-04-28 02:32 - 00004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2017-05-10 19:23 - 2017-04-28 02:32 - 00004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2017-05-10 19:23 - 2017-04-28 02:32 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2017-05-10 19:23 - 2017-04-28 02:32 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2017-05-10 19:23 - 2017-04-28 02:32 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2017-05-10 19:23 - 2017-04-28 02:32 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2017-05-10 19:23 - 2017-04-28 02:32 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2017-05-10 19:23 - 2017-04-28 02:32 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2017-05-10 19:23 - 2017-04-28 02:32 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2017-05-10 19:23 - 2017-04-28 02:32 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-05-10 19:23 - 2017-04-28 02:32 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2017-05-10 19:23 - 2017-04-28 02:32 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2017-05-10 19:23 - 2017-04-28 02:32 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2017-05-10 19:23 - 2017-04-28 02:32 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2017-05-10 19:23 - 2017-04-28 02:32 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2017-05-10 19:23 - 2017-04-28 02:32 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2017-05-10 19:23 - 2017-04-28 02:32 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2017-05-10 19:23 - 2017-04-28 02:32 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2017-05-10 19:23 - 2017-04-28 02:32 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2017-05-10 19:23 - 2017-04-28 02:19 - 00148480 _____ (Microsoft Corporation) C:\windows\system32\appidpolicyconverter.exe
2017-05-10 19:23 - 2017-04-28 02:19 - 00062464 _____ (Microsoft Corporation) C:\windows\system32\Drivers\appid.sys
2017-05-10 19:23 - 2017-04-28 02:19 - 00017920 _____ (Microsoft Corporation) C:\windows\system32\appidcertstorecheck.exe
2017-05-10 19:23 - 2017-04-28 02:18 - 00064000 _____ (Microsoft Corporation) C:\windows\system32\auditpol.exe
2017-05-10 19:23 - 2017-04-28 02:15 - 00338432 _____ (Microsoft Corporation) C:\windows\system32\conhost.exe
2017-05-10 19:23 - 2017-04-28 02:14 - 00296960 _____ (Microsoft Corporation) C:\windows\system32\rstrui.exe
2017-05-10 19:23 - 2017-04-28 02:12 - 00159744 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb.sys
2017-05-10 19:23 - 2017-04-28 02:11 - 00291328 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb10.sys
2017-05-10 19:23 - 2017-04-28 02:11 - 00129536 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb20.sys
2017-05-10 19:23 - 2017-04-28 02:11 - 00050176 _____ (Microsoft Corporation) C:\windows\SysWOW64\auditpol.exe
2017-05-10 19:23 - 2017-04-28 02:10 - 00112640 _____ (Microsoft Corporation) C:\windows\system32\smss.exe
2017-05-10 19:23 - 2017-04-28 02:10 - 00030720 _____ (Microsoft Corporation) C:\windows\system32\lsass.exe
2017-05-10 19:23 - 2017-04-28 02:08 - 00025600 _____ (Microsoft Corporation) C:\windows\SysWOW64\setup16.exe
2017-05-10 19:23 - 2017-04-28 02:08 - 00014336 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntvdm64.dll
2017-05-10 19:23 - 2017-04-28 02:08 - 00007680 _____ (Microsoft Corporation) C:\windows\SysWOW64\instnm.exe
2017-05-10 19:23 - 2017-04-28 02:08 - 00002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\user.exe
2017-05-10 19:23 - 2017-04-28 02:07 - 00036352 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptbase.dll
2017-05-10 19:23 - 2017-04-28 02:07 - 00006144 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2017-05-10 19:23 - 2017-04-28 02:07 - 00004608 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2017-05-10 19:23 - 2017-04-28 02:07 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2017-05-10 19:23 - 2017-04-28 02:07 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2017-05-10 19:23 - 2017-04-26 16:59 - 03220992 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2017-05-10 19:23 - 2017-04-21 17:34 - 01133568 _____ (Microsoft Corporation) C:\windows\system32\cdosys.dll
2017-05-10 19:23 - 2017-04-21 17:15 - 00805376 _____ (Microsoft Corporation) C:\windows\SysWOW64\cdosys.dll
2017-05-10 19:23 - 2017-04-20 02:00 - 00394448 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2017-05-10 19:23 - 2017-04-20 01:16 - 00346320 _____ (Microsoft Corporation) C:\windows\SysWOW64\iedkcs32.dll
2017-05-10 19:23 - 2017-04-17 17:37 - 02065408 _____ (Microsoft Corporation) C:\windows\system32\ole32.dll
2017-05-10 19:23 - 2017-04-17 17:37 - 00876544 _____ (Microsoft Corporation) C:\windows\system32\oleaut32.dll
2017-05-10 19:23 - 2017-04-17 17:37 - 00512000 _____ (Microsoft Corporation) C:\windows\system32\rpcss.dll
2017-05-10 19:23 - 2017-04-17 17:37 - 00026112 _____ (Microsoft Corporation) C:\windows\system32\oleres.dll
2017-05-10 19:23 - 2017-04-17 17:37 - 00008704 _____ (Microsoft Corporation) C:\windows\system32\comcat.dll
2017-05-10 19:23 - 2017-04-17 17:12 - 01417728 _____ (Microsoft Corporation) C:\windows\SysWOW64\ole32.dll
2017-05-10 19:23 - 2017-04-17 17:12 - 00581632 _____ (Microsoft Corporation) C:\windows\SysWOW64\oleaut32.dll
2017-05-10 19:23 - 2017-04-17 17:12 - 00026112 _____ (Microsoft Corporation) C:\windows\SysWOW64\oleres.dll
2017-05-10 19:23 - 2017-04-17 16:54 - 00007168 _____ (Microsoft Corporation) C:\windows\SysWOW64\comcat.dll
2017-05-10 19:23 - 2017-04-16 11:17 - 02724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2017-05-10 19:23 - 2017-04-16 11:16 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2017-05-10 19:23 - 2017-04-16 10:57 - 00066560 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2017-05-10 19:23 - 2017-04-16 10:55 - 00417792 _____ (Microsoft Corporation) C:\windows\system32\html.iec
2017-05-10 19:23 - 2017-04-16 10:55 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2017-05-10 19:23 - 2017-04-16 10:54 - 00576512 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2017-05-10 19:23 - 2017-04-16 10:54 - 00088064 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2017-05-10 19:23 - 2017-04-16 10:51 - 02899456 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2017-05-10 19:23 - 2017-04-16 10:44 - 00054784 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2017-05-10 19:23 - 2017-04-16 10:43 - 00034304 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2017-05-10 19:23 - 2017-04-16 10:38 - 00615936 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2017-05-10 19:23 - 2017-04-16 10:37 - 00144384 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2017-05-10 19:23 - 2017-04-16 10:37 - 00116224 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2017-05-10 19:23 - 2017-04-16 10:36 - 00817664 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2017-05-10 19:23 - 2017-04-16 10:36 - 00814080 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2017-05-10 19:23 - 2017-04-16 10:35 - 25741312 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2017-05-10 19:23 - 2017-04-16 10:25 - 00968704 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2017-05-10 19:23 - 2017-04-16 10:21 - 00489984 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2017-05-10 19:23 - 2017-04-16 10:19 - 02724864 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb
2017-05-10 19:23 - 2017-04-16 10:18 - 05977600 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2017-05-10 19:23 - 2017-04-16 10:11 - 00077824 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2017-05-10 19:23 - 2017-04-16 10:10 - 00087552 _____ (Microsoft Corporation) C:\windows\system32\tdc.ocx
2017-05-10 19:23 - 2017-04-16 10:09 - 00107520 _____ (Microsoft Corporation) C:\windows\system32\inseng.dll
2017-05-10 19:23 - 2017-04-16 10:04 - 00199680 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2017-05-10 19:23 - 2017-04-16 10:03 - 00092160 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2017-05-10 19:23 - 2017-04-16 10:02 - 00062464 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesetup.dll
2017-05-10 19:23 - 2017-04-16 10:01 - 00499200 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2017-05-10 19:23 - 2017-04-16 10:01 - 00341504 _____ (Microsoft Corporation) C:\windows\SysWOW64\html.iec
2017-05-10 19:23 - 2017-04-16 10:01 - 00047616 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieetwproxystub.dll
2017-05-10 19:23 - 2017-04-16 10:00 - 00315392 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2017-05-10 19:23 - 2017-04-16 10:00 - 00064000 _____ (Microsoft Corporation) C:\windows\SysWOW64\MshtmlDac.dll
2017-05-10 19:23 - 2017-04-16 09:57 - 00152064 _____ (Microsoft Corporation) C:\windows\system32\occache.dll
2017-05-10 19:23 - 2017-04-16 09:53 - 02290176 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2017-05-10 19:23 - 2017-04-16 09:52 - 00047104 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsproxydll
2017-05-10 19:23 - 2017-04-16 09:52 - 00030720 _____ (Microsoft Corporation) C:\windows\SysWOW64\iernonce.dll
2017-05-10 19:23 - 2017-04-16 09:49 - 20278272 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2017-05-10 19:23 - 2017-04-16 09:48 - 00476160 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieui.dll
2017-05-10 19:23 - 2017-04-16 09:47 - 00663552 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2017-05-10 19:23 - 2017-04-16 09:47 - 00115712 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieUnatt.exe
2017-05-10 19:23 - 2017-04-16 09:46 - 00620032 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9diag.dll
2017-05-10 19:23 - 2017-04-16 09:43 - 00262144 _____ (Microsoft Corporation) C:\windows\system32\webcheck.dll
2017-05-10 19:23 - 2017-04-16 09:40 - 00806912 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2017-05-10 19:23 - 2017-04-16 09:40 - 00725504 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2017-05-10 19:23 - 2017-04-16 09:37 - 02132992 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2017-05-10 19:23 - 2017-04-16 09:37 - 01359360 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2017-05-10 19:23 - 2017-04-16 09:35 - 00416256 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtmsft.dll
2017-05-10 19:23 - 2017-04-16 09:30 - 00060416 _____ (Microsoft Corporation) C:\windows\SysWOW64\JavaScriptCollectionAgent.dll
2017-05-10 19:23 - 2017-04-16 09:29 - 00073216 _____ (Microsoft Corporation) C:\windows\SysWOW64\tdc.ocx
2017-05-10 19:23 - 2017-04-16 09:28 - 00091136 _____ (Microsoft Corporation) C:\windows\SysWOW64\inseng.dll
2017-05-10 19:23 - 2017-04-16 09:25 - 00168960 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrating.dll
2017-05-10 19:23 - 2017-04-16 09:24 - 00076288 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmled.dll
2017-05-10 19:23 - 2017-04-16 09:22 - 00279040 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtrans.dll
2017-05-10 19:23 - 2017-04-16 09:20 - 00130048 _____ (Microsoft Corporation) C:\windows\SysWOW64\occache.dll
2017-05-10 19:23 - 2017-04-16 09:12 - 00230400 _____ (Microsoft Corporation) C:\windows\SysWOW64\webcheck.dll
2017-05-10 19:23 - 2017-04-16 09:10 - 15250944 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2017-05-10 19:23 - 2017-04-16 09:10 - 00693248 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2017-05-10 19:23 - 2017-04-16 09:08 - 04548608 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2017-05-10 19:23 - 2017-04-16 09:08 - 02057216 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl
2017-05-10 19:23 - 2017-04-16 09:08 - 01155072 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmlmedia.dll
2017-05-10 19:23 - 2017-04-16 09:04 - 03241472 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2017-05-10 19:23 - 2017-04-16 08:53 - 13661184 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2017-05-10 19:23 - 2017-04-16 08:50 - 01544704 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2017-05-10 19:23 - 2017-04-16 08:40 - 00800768 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2017-05-10 19:23 - 2017-04-16 08:37 - 02767872 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2017-05-10 19:23 - 2017-04-16 08:34 - 01314816 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2017-05-10 19:23 - 2017-04-16 08:34 - 00710144 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dll
2017-05-10 19:23 - 2017-04-12 17:32 - 01483776 _____ (Microsoft Corporation) C:\windows\system32\crypt32.dll
2017-05-10 19:23 - 2017-04-12 17:32 - 00229376 _____ (Microsoft Corporation) C:\windows\system32\wintrust.dll
2017-05-10 19:23 - 2017-04-12 17:32 - 00190976 _____ (Microsoft Corporation) C:\windows\system32\cryptsvc.dll
2017-05-10 19:23 - 2017-04-12 17:32 - 00141824 _____ (Microsoft Corporation) C:\windows\system32\cryptnet.dll
2017-05-10 19:23 - 2017-04-12 17:26 - 00179200 _____ (Microsoft Corporation) C:\windows\SysWOW64\wintrust.dll
2017-05-10 19:23 - 2017-04-12 17:25 - 01176064 _____ (Microsoft Corporation) C:\windows\SysWOW64\crypt32.dll
2017-05-10 19:23 - 2017-04-12 17:25 - 00145920 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptsvc.dll
2017-05-10 19:23 - 2017-04-12 17:25 - 00106496 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptnet.dll
2017-05-10 19:23 - 2017-04-07 17:34 - 00986856 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgkrnl.sys
2017-05-10 19:23 - 2017-04-07 17:34 - 00265448 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgmms1.sys
2017-05-10 19:23 - 2017-04-07 17:30 - 00405504 _____ (Microsoft Corporation) C:\windows\system32\gdi32.dll
2017-05-10 19:23 - 2017-04-07 17:30 - 00144384 _____ (Microsoft Corporation) C:\windows\system32\cdd.dll
2017-05-10 19:23 - 2017-04-07 17:22 - 00312832 _____ (Microsoft Corporation) C:\windows\SysWOW64\gdi32.dll
2017-05-10 19:23 - 2017-04-05 16:55 - 00460800 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srv.sys
2017-05-10 19:23 - 2017-04-05 16:55 - 00405504 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srv2.sys
2017-05-10 19:23 - 2017-04-05 16:55 - 00168960 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srvnet.sys
2017-05-10 19:23 - 2017-04-04 17:34 - 01895656 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tcpip.sys
2017-05-10 19:23 - 2017-04-04 17:34 - 00377576 _____ (Microsoft Corporation) C:\windows\system32\Drivers\netio.sys
2017-05-10 19:23 - 2017-04-04 17:34 - 00287976 _____ (Microsoft Corporation) C:\windows\system32\Drivers\FWPKCLNT.SYS
2017-05-10 19:23 - 2017-04-04 16:53 - 00496128 _____ (Microsoft Corporation) C:\windows\system32\Drivers\afd.sys
2017-05-10 19:23 - 2017-04-04 16:53 - 00117760 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tdx.sys
2017-05-10 19:23 - 2017-03-10 18:32 - 01389056 _____ (Microsoft Corporation) C:\windows\system32\pla.dll
2017-05-10 19:23 - 2017-03-10 18:32 - 00300544 _____ (Microsoft Corporation) C:\windows\system32\pdh.dll
2017-05-10 19:23 - 2017-03-10 18:20 - 01508352 _____ (Microsoft Corporation) C:\windows\SysWOW64\pla.dll
2017-05-10 19:23 - 2017-03-10 18:20 - 00237056 _____ (Microsoft Corporation) C:\windows\SysWOW64\pdh.dll
2017-05-10 19:23 - 2017-03-10 17:57 - 00009216 _____ (Microsoft Corporation) C:\windows\system32\plasrv.exe
2017-05-10 19:23 - 2017-03-10 17:55 - 00205312 _____ (Microsoft Corporation) C:\windows\system32\Drivers\fastfat.sys
2017-05-10 19:23 - 2017-03-10 17:55 - 00195584 _____ (Microsoft Corporation) C:\windows\system32\Drivers\exfat.sys
2017-05-10 19:23 - 2017-03-09 18:34 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\tzres.dll
2017-05-10 19:23 - 2017-03-09 18:19 - 00002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\tzres.dll
2017-05-08 19:48 - 2017-05-08 19:48 - 00000000 ____H C:\windows\system32\Drivers\Msft_Kernel_WinUsb_01009.Wdf
2017-05-08 19:48 - 2017-05-08 19:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\android_driver_install
2017-05-08 19:48 - 2017-05-08 19:48 - 00000000 ____D C:\Program Files (x86)\android_driver_install
2017-05-08 19:48 - 2014-01-31 09:58 - 01002728 _____ (Microsoft Corporation) C:\windows\system32\WinUSBCoInstaller2.dll
2017-05-08 19:48 - 2012-10-26 16:32 - 00510976 _____ (QUALCOMM Incorporated) C:\windows\system32\Drivers\innosusbnet.sys
2017-05-08 19:48 - 2012-10-26 16:32 - 00369792 _____ (QUALCOMM Incorporated) C:\windows\system32\Drivers\innosusbser.sys
2017-05-08 18:56 - 2017-05-08 18:56 - 00000447 _____ C:\Users\Toshiba\Downloads\games.ini
2017-05-08 18:55 - 2017-05-08 18:56 - 00040448 _____ C:\Users\Toshiba\Downloads\games.pgn
2017-05-08 17:38 - 2017-05-08 17:38 - 00000447 _____ C:\Users\Toshiba\Downloads\1_komplet (2).ini
2017-05-08 16:35 - 2017-05-08 17:38 - 00001124 _____ C:\Users\Toshiba\Downloads\1_komplet (2).pgi
2017-05-08 16:34 - 2017-05-08 16:34 - 00188339 _____ C:\Users\Toshiba\Downloads\1_komplet (2).PGN
2017-05-08 16:33 - 2017-05-08 16:33 - 00188339 _____ C:\Users\Toshiba\Downloads\1_komplet (1).PGN
2017-05-08 09:52 - 2017-05-08 10:00 - 07429632 _____ C:\Users\Toshiba\Downloads\Kdo_po_Mnichovu_porcoval_CSR11 (2).pps
2017-05-08 09:52 - 2017-05-08 09:52 - 07432704 _____ C:\Users\Toshiba\Downloads\Kdo_po_Mnichovu_porcoval_CSR11.pps
2017-05-08 00:20 - 2017-05-08 00:20 - 02239345 _____ C:\Users\Toshiba\Downloads\BPTX_2012_2_11230_0_356895_0_136662pdf
2017-05-08 00:17 - 2017-05-08 00:17 - 00163481 _____ C:\Users\Toshiba\Downloads\BPBC_2012_2_11230_0_356895_0_136662.pdf
2017-05-08 00:17 - 2017-05-08 00:17 - 00097755 _____ C:\Users\Toshiba\Downloads\BPPV_2012_2_11230_0_356895_0_136662.pdf
2017-05-08 00:03 - 2017-05-08 00:03 - 00014848 _____ C:\Users\Toshiba\Downloads\chessResultsList.xls
2017-05-07 23:26 - 2017-05-07 23:26 - 09699840 _____ C:\Users\Toshiba\Downloads\Samova_rise_a_Velka_Morava (2).pps
2017-05-07 23:22 - 2017-05-07 23:22 - 09703424 _____ C:\Users\Toshiba\Downloads\Samova_rise_a_Velka_Morava.pps
2017-05-06 22:19 - 2017-05-06 22:19 - 00000447 _____ C:\Users\Toshiba\Downloads\62373.ini
2017-05-06 22:19 - 2017-05-06 22:19 - 00000284 _____ C:\Users\Toshiba\Downloads\62373.pgi
2017-05-06 22:18 - 2017-05-06 22:18 - 00002180 _____ C:\Users\Toshiba\Downloads\69239.pgi
2017-05-06 22:18 - 2017-05-06 22:18 - 00000447 _____ C:\Users\Toshiba\Downloads\69239.ini
2017-05-06 22:17 - 2017-05-06 22:17 - 00000447 _____ C:\Users\Toshiba\Downloads\72742.ini
2017-05-06 22:17 - 2017-05-06 22:17 - 00000447 _____ C:\Users\Toshiba\Downloads\72535.ini
2017-05-06 22:17 - 2017-05-06 22:17 - 00000332 _____ C:\Users\Toshiba\Downloads\72535.pgi
2017-05-06 22:16 - 2017-05-06 22:17 - 00000700 _____ C:\Users\Toshiba\Downloads\72742.pgi
2017-05-06 22:16 - 2017-05-06 22:16 - 00000836 _____ C:\Users\Toshiba\Downloads\79166.pgi
2017-05-06 22:16 - 2017-05-06 22:16 - 00000447 _____ C:\Users\Toshiba\Downloads\79166.ini
2017-05-06 22:05 - 2017-05-06 22:05 - 00000447 _____ C:\Users\Toshiba\Downloads\83559.ini
2017-05-06 22:04 - 2017-05-06 22:05 - 00000980 _____ C:\Users\Toshiba\Downloads\83559.pgi
2017-05-06 22:04 - 2017-05-06 22:04 - 00000447 _____ C:\Users\Toshiba\Downloads\86745.ini
2017-05-06 22:03 - 2017-05-06 22:04 - 00000400 _____ C:\Users\Toshiba\Downloads\86745.pgi
2017-05-06 22:03 - 2017-05-06 22:03 - 00000728 _____ C:\Users\Toshiba\Downloads\110819.pgi
2017-05-06 22:03 - 2017-05-06 22:03 - 00000447 _____ C:\Users\Toshiba\Downloads\129103.ini
2017-05-06 22:03 - 2017-05-06 22:03 - 00000447 _____ C:\Users\Toshiba\Downloads\110819.ini
2017-05-06 22:02 - 2017-05-06 22:03 - 00000584 _____ C:\Users\Toshiba\Downloads\129103.pgi
2017-05-06 22:02 - 2017-05-06 22:02 - 00000680 _____ C:\Users\Toshiba\Downloads\131412.pgi
2017-05-06 22:02 - 2017-05-06 22:02 - 00000447 _____ C:\Users\Toshiba\Downloads\131412.ini
2017-05-06 22:01 - 2017-05-06 22:01 - 00003968 _____ C:\Users\Toshiba\Downloads\138132.pgi
2017-05-06 22:01 - 2017-05-06 22:01 - 00000447 _____ C:\Users\Toshiba\Downloads\138132.ini
2017-05-06 22:01 - 2017-05-06 22:01 - 00000447 _____ C:\Users\Toshiba\Downloads\138127.ini
2017-05-06 22:00 - 2017-05-06 22:01 - 00001256 _____ C:\Users\Toshiba\Downloads\138127.pgi
2017-05-06 21:57 - 2017-05-06 21:57 - 00000447 _____ C:\Users\Toshiba\Downloads\LukaszDomanski.ini
2017-05-06 21:56 - 2017-05-06 21:57 - 00000656 _____ C:\Users\Toshiba\Downloads\LukaszDomanski.pgi
2017-05-06 21:22 - 2017-05-06 21:22 - 00000447 _____ C:\Users\Toshiba\Downloads\2LF_1516_9K.ini
2017-05-06 21:21 - 2017-05-06 21:21 - 00000447 _____ C:\Users\Toshiba\Downloads\2LF_1516_8K (1).ini
2017-05-06 21:21 - 2017-05-06 21:21 - 00000447 _____ C:\Users\Toshiba\Downloads\2LF_1516_7K.ini
2017-05-06 21:21 - 2017-05-06 21:21 - 00000447 _____ C:\Users\Toshiba\Downloads\2LF_1516_6K.ini
2017-05-06 21:21 - 2017-05-06 21:21 - 00000447 _____ C:\Users\Toshiba\Downloads\2LF_1516_5K (1).ini
2017-05-06 21:20 - 2017-05-06 21:20 - 00000447 _____ C:\Users\Toshiba\Downloads\2LF_1516_4K.ini
2017-05-06 21:20 - 2017-05-06 21:20 - 00000447 _____ C:\Users\Toshiba\Downloads\2LF_1516_3K.ini
2017-05-06 21:20 - 2017-05-06 21:20 - 00000447 _____ C:\Users\Toshiba\Downloads\2LF_1516_1K.ini
2017-05-06 21:19 - 2017-05-06 21:19 - 00038413 _____ C:\Users\Toshiba\Downloads\2LF_1516_5K (1).pgn
2017-05-06 21:19 - 2017-05-06 21:19 - 00037026 _____ C:\Users\Toshiba\Downloads\2LF_1516_7K.pgn
2017-05-06 21:19 - 2017-05-06 21:19 - 00036660 _____ C:\Users\Toshiba\Downloads\2LF_1516_2K.pgn
2017-05-06 21:19 - 2017-05-06 21:19 - 00036482 _____ C:\Users\Toshiba\Downloads\2LF_1516_4K.pgn
2017-05-06 21:19 - 2017-05-06 21:19 - 00036107 _____ C:\Users\Toshiba\Downloads\2LF_1516_6K.pgn
2017-05-06 21:19 - 2017-05-06 21:19 - 00036007 _____ C:\Users\Toshiba\Downloads\2LF_1516_1K.pgn
2017-05-06 21:19 - 2017-05-06 21:19 - 00035648 _____ C:\Users\Toshiba\Downloads\2LF_1516_3K.pgn
2017-05-06 21:19 - 2017-05-06 21:19 - 00035208 _____ C:\Users\Toshiba\Downloads\2LF_1516_9K.pgn
2017-05-06 21:19 - 2017-05-06 21:19 - 00034847 _____ C:\Users\Toshiba\Downloads\2LF_1516_8K (1).pgn
2017-05-06 21:19 - 2017-05-06 21:19 - 00000447 _____ C:\Users\Toshiba\Downloads\2LF_1516_2K.ini
2017-05-06 21:18 - 2017-05-06 21:18 - 00089672 _____ C:\Users\Toshiba\Downloads\2LF_ZP11.pdf
2017-05-06 21:18 - 2017-05-06 21:18 - 00074819 _____ C:\Users\Toshiba\Downloads\2LF_ZP01.pdf
2017-05-06 21:18 - 2017-05-06 21:18 - 00074468 _____ C:\Users\Toshiba\Downloads\2LF_ZP07.pdf
2017-05-06 21:18 - 2017-05-06 21:18 - 00073811 _____ C:\Users\Toshiba\Downloads\2LF_ZP09K.pdf
2017-05-06 21:18 - 2017-05-06 21:18 - 00073521 _____ C:\Users\Toshiba\Downloads\2LF_ZP04.pdf
2017-05-06 21:18 - 2017-05-06 21:18 - 00068902 _____ C:\Users\Toshiba\Downloads\2LF_ZP10.pdf
2017-05-06 21:18 - 2017-05-06 21:18 - 00068298 _____ C:\Users\Toshiba\Downloads\2LF_ZP08K.pdf
2017-05-06 21:18 - 2017-05-06 21:18 - 00034726 _____ C:\Users\Toshiba\Downloads\2LF_1516_11K (1).pgn
2017-05-06 21:18 - 2017-05-06 21:18 - 00030585 _____ C:\Users\Toshiba\Downloads\2LF_1516_10K (1).pgn
2017-05-06 21:15 - 2017-05-06 21:15 - 00000447 _____ C:\Users\Toshiba\Downloads\2LF_1617_All (6).ini
2017-05-06 21:14 - 2017-05-06 21:15 - 00002120 _____ C:\Users\Toshiba\Downloads\2LF_1617_All (6).pgi
2017-05-06 21:12 - 2017-05-06 21:12 - 00375479 _____ C:\Users\Toshiba\Downloads\2LF_1617_All (6).pgn
2017-05-05 01:01 - 2017-05-05 01:01 - 00000032 _____ C:\Users\Toshiba\Downloads\2LF_ALL.cbm
2017-05-04 22:38 - 2017-05-04 22:39 - 00000447 _____ C:\Users\Toshiba\Downloads\StanislavFirt.ini
2017-05-04 22:38 - 2017-05-04 22:38 - 00262707 _____ C:\Users\Toshiba\Downloads\StanislavFirt.pgn
2017-05-04 22:38 - 2017-05-04 22:38 - 00001520 _____ C:\Users\Toshiba\Downloads\StanislavFirt.pgi
2017-05-04 12:58 - 2017-05-06 20:02 - 00003536 _____ C:\windows\System32\Tasks\Toshiba NBAgent
2017-05-04 00:10 - 2017-05-04 00:10 - 00000447 _____ C:\Users\Toshiba\Downloads\Ostrava_2016ini
2017-05-04 00:09 - 2017-05-04 00:10 - 00003152 _____ C:\Users\Toshiba\Downloads\Ostrava_2016.pgi
2017-05-04 00:09 - 2016-05-11 23:02 - 00565691 _____ C:\Users\Toshiba\Downloads\Ostrava_2016.pgn
2017-05-03 23:36 - 2017-05-03 23:36 - 00214284 _____ C:\Users\Toshiba\Downloads\Ostrava_2016.zip
2017-05-03 23:35 - 2017-05-03 23:35 - 00364691 _____ C:\Users\Toshiba\Downloads\2ligaE_2016_17 (2).pgn
2017-05-03 23:35 - 2017-05-03 23:35 - 00002104 _____ C:\Users\Toshiba\Downloads\2ligaE_2016_17 (2).pgi
2017-05-03 23:35 - 2017-05-03 23:35 - 00000447 _____ C:\Users\Toshiba\Downloads\2ligaE_2016_17 (2).ini
2017-05-03 23:33 - 2017-05-03 23:33 - 00002116 _____ C:\Users\Toshiba\Downloads\1-11_kolo (10).pgi
2017-05-03 23:33 - 2017-05-03 23:33 - 00000447 _____ C:\Users\Toshiba\Downloads\1-11_kolo (10).ini
2017-05-03 23:32 - 2017-05-03 23:32 - 00407564 _____ C:\Users\Toshiba\Downloads\1-11_kolo (9).pgn
2017-05-03 23:32 - 2017-05-03 23:32 - 00402588 _____ C:\Users\Toshiba\Downloads\1-11_kolo (10).pgn
2017-05-03 23:32 - 2017-05-03 23:32 - 00002104 _____ C:\Users\Toshiba\Downloads\1-11_kolo (9).pgi
2017-05-03 23:32 - 2017-05-03 23:32 - 00000447 _____ C:\Users\Toshiba\Downloads\1-11_kolo (9).ini
2017-05-03 23:32 - 2017-05-03 23:32 - 00000447 _____ C:\Users\Toshiba\Downloads\1-11_kolo (8).ini
2017-05-03 23:31 - 2017-05-03 23:32 - 00002052 _____ C:\Users\Toshiba\Downloads\1-11_kolo (8).pgi
2017-05-03 23:30 - 2017-05-03 23:31 - 00000447 _____ C:\Users\Toshiba\Downloads\1-11_kolo (7).ini
2017-05-03 23:30 - 2017-05-03 23:30 - 00002112 _____ C:\Users\Toshiba\Downloads\1-11 kolo (1).pgi
2017-05-03 23:30 - 2017-05-03 23:30 - 00002104 _____ C:\Users\Toshiba\Downloads\1-11_kolo (7).pgi
2017-05-03 23:30 - 2017-05-03 23:30 - 00002100 _____ C:\Users\Toshiba\Downloads\1-11_kolo (5).pgi
2017-05-03 23:30 - 2017-05-03 23:30 - 00000447 _____ C:\Users\Toshiba\Downloads\1-11_kolo (5).ini
2017-05-03 23:30 - 2017-05-03 23:30 - 00000447 _____ C:\Users\Toshiba\Downloads\1-11 kolo (1).ini
2017-05-03 23:29 - 2017-05-03 23:29 - 00384496 _____ C:\Users\Toshiba\Downloads\1-11_kolo (8).pgn
2017-05-03 23:28 - 2017-05-03 23:28 - 00407564 _____ C:\Users\Toshiba\Downloads\1-11_kolo (7).pgn
2017-05-03 23:28 - 2017-05-03 23:28 - 00402588 _____ C:\Users\Toshiba\Downloads\1-11_kolo (6).pgn
2017-05-03 23:27 - 2017-05-03 23:27 - 00394095 _____ C:\Users\Toshiba\Downloads\1-11 kolo (1).pgn
2017-05-03 23:26 - 2017-05-03 23:26 - 00370951 _____ C:\Users\Toshiba\Downloads\1-11_kolo (5).pgn
2017-05-03 22:36 - 2017-05-03 22:36 - 00394095 _____ C:\Users\Toshiba\Downloads\1-11 kolo.pgn
2017-05-03 22:36 - 2017-05-03 22:36 - 00002112 _____ C:\Users\Toshiba\Downloads\1-11 kolo.pgi
2017-05-03 22:36 - 2017-05-03 22:36 - 00000447 _____ C:\Users\Toshiba\Downloads\1-11 kolo.ini
2017-05-03 22:35 - 2017-05-03 22:35 - 00000447 _____ C:\Users\Toshiba\Downloads\1-11_kolo (4).ini
2017-05-03 22:34 - 2017-05-03 22:35 - 00002100 _____ C:\Users\Toshiba\Downloads\1-11_kolo (4).pgi
2017-05-03 22:34 - 2017-05-03 22:34 - 00370951 _____ C:\Users\Toshiba\Downloads\1-11_kolo (4).pgn
2017-05-03 22:32 - 2017-05-03 22:32 - 00000447 _____ C:\Users\Toshiba\Downloads\1-11_kolo (3).ini
2017-05-03 22:31 - 2017-05-03 22:32 - 00002104 _____ C:\Users\Toshiba\Downloads\1-11_kolo (3).pgi
2017-05-03 22:29 - 2017-05-03 22:29 - 00407564 _____ C:\Users\Toshiba\Downloads\1-11_kolo (3).pgn
2017-05-03 22:27 - 2017-05-03 22:27 - 00000447 _____ C:\Users\Toshiba\Downloads\2ligaE_2016_17 (1).ini
2017-05-03 22:25 - 2017-05-03 22:27 - 00002104 _____ C:\Users\Toshiba\Downloads\2ligaE_2016_17 (1).pgi
2017-05-03 22:25 - 2017-05-03 22:25 - 00364691 _____ C:\Users\Toshiba\Downloads\2ligaE_2016_17 (1).pgn
2017-05-03 22:24 - 2017-05-03 22:24 - 00000447 _____ C:\Users\Toshiba\Downloads\VaclavPech.ini
2017-05-03 22:23 - 2017-05-03 22:23 - 00017645 _____ C:\Users\Toshiba\Downloads\VaclavPech.pgn
2017-05-03 22:10 - 2017-05-03 22:10 - 00402588 _____ C:\Users\Toshiba\Downloads\1-11_kolo (2).pgn
2017-05-03 22:10 - 2017-05-03 22:10 - 00002116 _____ C:\Users\Toshiba\Downloads\1-11_kolo (2).pgi
2017-05-03 22:10 - 2017-05-03 22:10 - 00000447 _____ C:\Users\Toshiba\Downloads\1-11_kolo (2).ini
2017-05-03 22:07 - 2017-05-03 22:07 - 00407564 _____ C:\Users\Toshiba\Downloads\1-11_kolo (1).pgn
2017-05-03 22:07 - 2017-05-03 22:07 - 00384496 _____ C:\Users\Toshiba\Downloads\1-11_kolo.pgn
2017-05-03 22:07 - 2017-05-03 22:07 - 00002104 _____ C:\Users\Toshiba\Downloads\1-11_kolo (1).pgi
2017-05-03 22:07 - 2017-05-03 22:07 - 00000447 _____ C:\Users\Toshiba\Downloads\1-11_kolo (1).ini
2017-05-03 22:05 - 2017-05-03 22:05 - 00364691 _____ C:\Users\Toshiba\Downloads\2ligaE_2016_17.pgn
2017-05-03 22:05 - 2017-05-03 22:05 - 00002104 _____ C:\Users\Toshiba\Downloads\2ligaE_2016_17.pgi
2017-05-03 22:05 - 2017-05-03 22:05 - 00000447 _____ C:\Users\Toshiba\Downloads\2ligaE_2016_17.ini
2017-05-03 14:14 - 2017-05-21 09:34 - 00000000 ____D C:\Users\Toshiba\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pluto TV
2017-05-02 23:01 - 2017-05-02 23:01 - 00000447 _____ C:\Users\Toshiba\Downloads\2LF_1617_All (5).ini
2017-05-02 23:00 - 2017-05-02 23:01 - 00002120 _____ C:\Users\Toshiba\Downloads\2LF_1617_All (5).pgi
2017-05-02 22:59 - 2017-05-02 22:59 - 00375479 _____ C:\Users\Toshiba\Downloads\2LF_1617_All (5).pgn
2017-05-02 22:58 - 2017-05-02 22:58 - 00000447 _____ C:\Users\Toshiba\Downloads\ValterKocur.ini
2017-05-02 22:56 - 2017-05-02 22:57 - 00014334 _____ C:\Users\Toshiba\Downloads\ValterKocur.pgn
2017-05-02 00:38 - 2017-05-02 00:40 - 00000447 _____ C:\Users\Toshiba\Downloads\ZdenekOlsar.ini
2017-05-02 00:37 - 2017-05-02 00:38 - 00000616 _____ C:\Users\Toshiba\Downloads\ZdenekOlsar.pgi
2017-05-02 00:37 - 2017-05-02 00:37 - 00096357 _____ C:\Users\Toshiba\Downloads\ZdenekOlsar.pgn
2017-05-02 00:10 - 2017-05-02 00:10 - 00000447 _____ C:\Users\Toshiba\Downloads\1_komplet (1).ini
2017-05-02 00:08 - 2017-05-02 00:10 - 00001124 _____ C:\Users\Toshiba\Downloads\1_komplet (1)pgi
2017-05-02 00:08 - 2017-05-02 00:08 - 00188339 _____ C:\Users\Toshiba\Downloads\1_komplet.PGN
2017-05-01 23:05 - 2017-05-01 23:06 - 00000447 _____ C:\Users\Toshiba\Downloads\118045.ini
2017-05-01 23:05 - 2017-05-01 23:05 - 00001092 _____ C:\Users\Toshiba\Downloads\118045.pgi
2017-05-01 23:04 - 2017-05-01 23:04 - 00229757 _____ C:\Users\Toshiba\Downloads\118045.pgn
2017-05-01 21:29 - 2017-05-01 21:30 - 00000447 _____ C:\Users\Toshiba\Downloads\KacperBilczewski.ini
2017-05-01 21:26 - 2017-05-01 21:28 - 00000392 _____ C:\Users\Toshiba\Downloads\KacperBilczewski.pgi
2017-05-01 21:25 - 2017-05-01 21:25 - 00068072 _____ C:\Users\Toshiba\Downloads\KacperBilczewski.pgn
2017-04-30 22:57 - 2017-04-30 22:57 - 00286737 _____ C:\Users\Toshiba\Downloads\All (1).zip
2017-04-30 22:53 - 2017-04-30 22:53 - 00000447 _____ C:\Users\Toshiba\Downloads\1ligamladezeD16-17.ini
2017-04-30 22:52 - 2017-04-30 22:53 - 00001016 _____ C:\Users\Toshiba\Downloads\1ligamladezeD16-17.pgi
2017-04-30 22:49 - 2017-04-30 22:52 - 00194270 _____ C:\Users\Toshiba\Downloads\1ligamladezeD16-17.pgn
2017-04-28 19:17 - 2017-05-09 17:57 - 00000747 _____ C:\Users\Toshiba\Downloads\ELM1617.ini
2017-04-28 19:15 - 2017-05-09 17:57 - 00008939 _____ C:\Users\Toshiba\Downloads\ELM1617.cbp
2017-04-28 19:15 - 2017-05-09 17:57 - 00008740 _____ C:\Users\Toshiba\Downloads\ELM1617.cbt
2017-04-28 19:15 - 2017-05-09 17:57 - 00000462 _____ C:\Users\Toshiba\Downloads\ELM1617.cbc
2017-04-28 19:15 - 2017-05-09 17:57 - 00000096 _____ C:\Users\Toshiba\Downloads\ELM1617.cbs
2017-04-28 19:15 - 2017-05-09 17:52 - 00045421 _____ C:\Users\Toshiba\Downloads\ELM1617.cbg
2017-04-28 19:15 - 2017-05-09 17:52 - 00038660 _____ C:\Users\Toshiba\Downloads\ELM1617.cbj
2017-04-28 19:15 - 2017-05-09 17:52 - 00024058 _____ C:\Users\Toshiba\Downloads\ELM1617.cbh
2017-04-28 19:15 - 2017-05-09 17:52 - 00022476 _____ C:\Users\Toshiba\Downloads\ELM1617.cib
2017-04-28 19:15 - 2017-05-09 17:52 - 00005332 _____ C:\Users\Toshiba\Downloads\ELM1617.cit
2017-04-28 19:15 - 2017-05-09 17:52 - 00004977 _____ C:\Users\Toshiba\Downloads\ELM1617.cba
2017-04-28 19:15 - 2017-04-28 19:15 - 00001540 _____ C:\Users\Toshiba\Downloads\ELM1617.cbe
2017-04-27 20:03 - 2017-04-27 20:03 - 00059255 _____ C:\Users\Toshiba\Downloads\13.Reasons.Why.S01E03.WEB.X264-DEFLATE.srt
2017-04-27 17:45 - 2017-04-27 17:45 - 00416768 _____ C:\Users\Toshiba\Downloads\korpiklaanisadjlfofjksdhfisdkfbnjkdfbnrk.ppt
2017-04-27 17:41 - 2017-04-27 17:41 - 00416768 _____ C:\Users\Toshiba\Desktop\korpiklaanisadjlfofjksdhfisdkfbnjkdfbnrk.ppt
2017-04-26 18:45 - 2017-04-26 18:46 - 00000044 _____ C:\Users\Toshiba\Desktop\ccccc.pgi
2017-04-26 18:45 - 2017-04-26 18:45 - 00000476 _____ C:\Users\Toshiba\Desktop\ccccc.ini
2017-04-26 00:49 - 2017-04-28 15:17 - 00000449 _____ C:\Users\Toshiba\Downloads\VojtechSramek.ini
2017-04-26 00:40 - 2017-04-26 00:49 - 00000376 _____ C:\Users\Toshiba\Downloads\VojtechSramek.pgi
2017-04-26 00:39 - 2017-04-26 00:39 - 00059033 _____ C:\Users\Toshiba\Downloads\VojtechSramek.pgn
2017-04-24 19:49 - 2017-04-24 20:05 - 293032893 _____ C:\Users\Toshiba\Downloads\Dějepis-4---Nejnovější-dějiny.pdf
2017-04-24 19:38 - 2017-04-24 19:42 - 80941326 _____ C:\Users\Toshiba\Downloads\dějepis-4-část.pdf
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-05-24 13:50 - 2009-07-14 06:45 - 00019248 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-05-24 13:50 - 2009-07-14 06:45 - 00019248 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-05-24 13:37 - 2012-02-02 00:08 - 00000000 ____D C:\temp
2017-05-24 13:37 - 2009-07-14 07:08 - 00000006 ____H C:\windows\Tasks\SA.DAT
2017-05-23 15:46 - 2013-07-15 00:20 - 00000000 ____D C:\windows\system32\MRT
2017-05-23 15:41 - 2010-12-18 19:06 - 132223576 ____C (Microsoft Corporation) C:\windows\system32\MRT.exe
2017-05-21 17:39 - 2009-07-14 05:20 - 00000000 ____D C:\windows\inf
2017-05-21 15:17 - 2016-05-12 14:10 - 00004476 _____ C:\windows\System32\Tasks\Adobe Acrobat Update Task
2017-05-21 15:15 - 2010-05-07 20:28 - 00000000 ____D C:\ProgramData\Adobe
2017-05-21 13:22 - 2009-07-14 17:18 - 00685596 _____ C:\windows\system32\perfh005.dat
2017-05-21 13:22 - 2009-07-14 17:18 - 00150518 _____ C:\windows\system32\perfc005.dat
2017-05-21 13:22 - 2009-07-14 07:13 - 01635154 _____ C:\windows\system32\PerfStringBackup.INI
2017-05-21 09:59 - 2017-03-16 09:58 - 00119144 _____ C:\windows\SysWOW64\GDIPFONTCACHEV1.DAT
2017-05-21 09:58 - 2017-03-16 13:34 - 00119144 _____ C:\windows\system32\GDIPFONTCACHEV1.DAT
2017-05-21 09:34 - 2016-09-23 17:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fritz a Šachlík
2017-05-21 09:34 - 2015-12-30 12:29 - 00000000 ____D C:\Users\Toshiba\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\World of Tanks
2017-05-21 09:34 - 2015-12-08 15:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Zen
2017-05-21 09:34 - 2015-10-13 15:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DOSBox-0.74
2017-05-21 09:34 - 2014-02-20 11:54 - 00000000 ____D C:\Users\Toshiba\AppData\Local\CrashDumps
2017-05-21 09:34 - 2014-02-20 11:47 - 00000000 ____D C:\Users\Toshiba\Desktop\Přehrávače
2017-05-21 09:34 - 2012-11-14 18:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Download Beast
2017-05-21 09:34 - 2011-06-26 20:14 - 00000000 ____D C:\windows\Minidump
2017-05-21 09:34 - 2011-02-22 18:35 - 00000000 ___DC C:\Users\Toshiba\AppData\Local\MigWiz
2017-05-21 09:34 - 2010-05-08 05:49 - 00000000 ____D C:\windows\Panther
2017-05-21 09:31 - 2017-01-29 17:49 - 00000000 ____D C:\Users\Toshiba\AppData\LocalLow\Mozilla
2017-05-21 09:30 - 2013-12-26 13:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2017-05-21 09:25 - 2015-10-23 13:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sophos
2017-05-21 07:54 - 2016-11-05 17:03 - 00000000 ____D C:\Program Files (x86)\Steam
2017-05-20 20:33 - 2017-01-29 17:48 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-05-20 20:33 - 2015-05-30 21:02 - 00000000 ____D C:\Program Files (x86)\Opera
2017-05-20 20:33 - 2013-03-25 18:30 - 00000000 ____D C:\Data aplikací
2017-05-20 20:33 - 2011-02-18 17:48 - 00000000 ____D C:\ProgramData\ChessBase
2017-05-20 20:33 - 2010-12-30 01:25 - 00000000 ____D C:\Users\Toshiba\AppData\Local\ChessBase
2017-05-20 20:32 - 2010-11-22 13:53 - 00000000 ____D C:\Users\Toshiba
2017-05-20 20:11 - 2010-05-07 20:44 - 00000000 ____D C:\windows\SysWOW64\Macromed
2017-05-20 20:08 - 2012-01-02 21:51 - 00000000 ____D C:\Program Files (x86)\Google
2017-05-20 19:45 - 2015-07-15 15:10 - 00000958 _____ C:\windows\Tasks\Adobe Flash Player PPAPI Notifier.job
2017-05-20 11:17 - 2009-07-14 04:34 - 00000215 _____ C:\windows\system.ini
2017-05-20 11:16 - 2009-07-14 04:34 - 34340864 _____ C:\windows\system32\config\system.bak
2017-05-20 11:16 - 2009-07-14 04:34 - 120586240 _____ C:\windows\system32\config\software.bak
2017-05-20 11:16 - 2009-07-14 04:34 - 01310720 _____ C:\windows\system32\config\default.bak
2017-05-20 11:16 - 2009-07-14 04:34 - 00061440 _____ C:\windows\system32\config\sam.bak
2017-05-20 11:16 - 2009-07-14 04:34 - 00028672 _____ C:\windows\system32\config\security.bak
2017-05-20 11:14 - 2015-12-14 19:10 - 00000000 ___RD C:\Program Files (x86)\Skype
2017-05-20 10:49 - 2013-12-26 21:57 - 00000000 ____D C:\ProgramData\AVG
2017-05-20 10:47 - 2015-12-17 18:06 - 00000000 ____D C:\Users\Toshiba\AppData\Local\AvgSetupLog
2017-05-20 04:32 - 2017-03-16 09:52 - 00000000 ____D C:\Users\TEMP
2017-05-20 04:27 - 2014-05-14 20:50 - 00000000 ____D C:\Program Files (x86)\QuickTime
2017-05-19 20:17 - 2015-06-11 06:30 - 00003854 _____ C:\windows\System32\Tasks\Opera scheduled Autoupdate 1433012676
2017-05-18 20:50 - 2015-10-23 13:12 - 00000000 ____D C:\Program Files (x86)\Sophos
2017-05-18 19:33 - 2015-12-25 18:26 - 00001313 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-05-18 19:33 - 2015-12-25 18:26 - 00001301 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-05-18 19:33 - 2015-05-30 21:04 - 00001009 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2017-05-18 19:33 - 2015-05-30 21:04 - 00000997 _____ C:\Users\Public\Desktop\Opera.lnk
2017-05-18 19:33 - 2010-12-19 13:02 - 00001331 _____ C:\Users\Toshiba\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-05-18 19:31 - 2016-01-03 17:27 - 00000000 ____D C:\ProgramData\IObit
2017-05-18 14:46 - 2014-11-29 12:02 - 00000000 ____D C:\Users\Toshiba\AppData\Local\Avg
2017-05-18 13:38 - 2017-02-07 20:46 - 00000000 ____D C:\Users\Toshiba\Desktop\resident evil
2017-05-18 13:38 - 2016-03-14 17:42 - 00000000 ____D C:\Users\Toshiba\Desktop\GomPlayer
2017-05-18 13:38 - 2014-02-20 12:08 - 00000000 ____D C:\Users\Toshiba\Desktop\Manipulace s DVD
2017-05-18 13:38 - 2014-02-20 11:52 - 00000000 ___RD C:\Users\Toshiba\Desktop\Upravování videí a fotografií
2017-05-18 13:38 - 2013-12-26 16:03 - 00000000 ____D C:\Users\Toshiba\Desktop\zajímavé
2017-05-18 13:38 - 2012-02-02 22:19 - 00000000 ____D C:\Users\Toshiba\Desktop\ABBYY PDF Transformer 3.0
2017-05-18 13:38 - 2012-01-13 01:01 - 00000000 ____D C:\Users\Toshiba\Documents\ChessBase
2017-05-18 13:38 - 2009-07-14 05:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2017-05-18 13:36 - 2009-07-14 05:20 - 00000000 ____D C:\windows\servicing
2017-05-18 13:36 - 2009-07-14 05:20 - 00000000 ____D C:\windows\rescache
2017-05-18 13:36 - 2009-07-14 05:20 - 00000000 ____D C:\windows\PolicyDefinitions
2017-05-15 23:41 - 2013-09-03 12:53 - 00000000 ____D C:\Download
2017-05-15 23:29 - 2015-07-09 20:12 - 00000000 ____D C:\Users\Toshiba\Documents\aDoma k 2015-07-08
2017-05-15 23:01 - 2016-03-14 17:51 - 00008558 _____ C:\Users\Toshiba\Documents\Gymnázium Franiška Živného, Ondřej Šrámek – zástupce.lnk
2017-05-15 23:01 - 2016-03-14 17:51 - 00008558 _____ C:\Users\Toshiba\Documents\Gymnázium Franiška Živného, Ondřej Šrámek – zástupce (3).lnk
2017-05-15 23:01 - 2016-03-14 17:51 - 00008558 _____ C:\Users\Toshiba\Documents\Gymnázium Franiška Živného, Ondřej Šrámek – zástupce (2).lnk
2017-05-14 09:12 - 2016-03-09 10:27 - 00001622 _____ C:\Users\Toshiba\Desktop\1ligy mládeže – zástupce.lnk
2017-05-14 08:56 - 2016-09-23 17:00 - 00000000 ____D C:\Program Files (x86)\Fritz a Šachlík
2017-05-11 01:12 - 2013-07-24 12:24 - 01610804 _____ C:\windows\SysWOW64\PerfStringBackup.INI
2017-05-09 17:10 - 2009-07-14 05:20 - 00000000 ____D C:\windows\system32\NDF
2017-05-08 19:51 - 2010-05-27 02:22 - 00000000 ____D C:\Program Files\DIFX
2017-05-06 21:14 - 2015-04-23 08:31 - 00000648 _____ C:\Users\Toshiba\Downloads\2LF_ALL.ini
2017-05-05 01:01 - 2015-04-23 08:30 - 00000096 _____ C:\Users\Toshiba\Downloads\2LF_ALL.cbs
2017-05-05 01:01 - 2015-04-23 08:30 - 00000090 _____ C:\Users\Toshiba\Downloads\2LF_ALL.cbc
2017-05-04 23:39 - 2011-12-19 23:54 - 00019456 _____ C:\Users\Toshiba\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2017-05-03 22:05 - 2017-04-01 02:01 - 00000528 _____ C:\Users\Toshiba\Downloads\12-13.ini
2017-04-28 14:14 - 2015-12-25 18:05 - 00003384 _____ C:\windows\System32\Tasks\GoogleUpdateTaskMachineUA1d13f2efcf4e26
2017-04-28 14:14 - 2015-12-25 18:05 - 00003256 _____ C:\windows\System32\Tasks\GoogleUpdateTaskMachineCore1d13f2eeddbead
2017-04-27 15:48 - 2014-01-31 11:47 - 00000000 ____D C:\Program Files (x86)\Hearthstone
2017-04-27 15:48 - 2014-01-28 17:21 - 00000000 ____D C:\Program Files (x86)\Battle.net
2017-04-27 15:47 - 2014-01-28 17:21 - 00000000 ____D C:\Users\Toshiba\AppData\Local\Battle.net
2017-04-26 18:45 - 2017-04-21 14:29 - 00000036 _____ C:\Users\Toshiba\Desktop\partie O aV 2016-17.pgi
2017-04-26 18:45 - 2016-10-19 17:13 - 00000515 _____ C:\Users\Toshiba\Desktop\partie O aV 2016-17.ini
==================== Files in the root of some directories =======
2016-03-03 11:01 - 2016-03-03 11:01 - 0000000 _____ () C:\Data aplikací\mediaload.io.url.lock
2011-12-19 23:54 - 2017-05-04 23:39 - 0019456 _____ () C:\Users\Toshiba\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-03-19 23:01 - 2016-10-13 18:30 - 0000058 _____ () C:\Users\Toshiba\AppData\Local\DonationCoder_ScreenshotCaptor_InstallInfo.dat
2013-12-14 20:17 - 2013-12-14 20:17 - 0000095 _____ () C:\Users\Toshiba\AppData\Local\fusioncache.dat
2015-05-20 20:37 - 2015-05-20 20:37 - 0001506 _____ () C:\Users\Toshiba\AppData\Local\recently-used.xbel
2011-12-09 23:11 - 2013-12-26 20:23 - 0007626 _____ () C:\Users\Toshiba\AppData\Local\Resmon.ResmonCfg
2012-11-14 18:29 - 2012-11-14 18:29 - 0001048 _____ () C:\Users\Toshiba\AppData\Local\SRDownloader.nast
2011-04-07 16:09 - 2011-04-07 16:09 - 0000056 ____H () C:\ProgramData\ezsidmv.dat
2011-02-23 00:59 - 2013-06-10 22:42 - 0000952 ___SH () C:\ProgramData\KGyGaAvL.sys
2011-08-02 20:19 - 2012-12-05 18:13 - 0000144 _____ () C:\ProgramData\MagicPlayDVD.ini
2013-01-06 20:54 - 2013-01-06 20:54 - 0000095 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.400.32.bc
2013-01-06 20:53 - 2013-01-06 20:53 - 0000089 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.400.64.bc

ondrej.nov
nováček
Příspěvky: 28
Registrován: květen 17
Pohlaví: Nespecifikováno

Re: Brutalne zpomaleny PC - log

Příspěvekod ondrej.nov » 24 kvě 2017 16:19

Files to move or delete:
====================
C:\ProgramData\C__Program Files (x86)_WebcamMax_wcmmon.exe

==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\wininit.exe => File is digitally signed
C:\windows\SysWOW64\wininit.exe => File is digitally signed
C:\windows\explorer.exe => File is digitally signed
C:\windows\SysWOW64\explorer.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\SysWOW64\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\SysWOW64\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\SysWOW64\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\dnsapi.dll => File is digitally signed
C:\windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2017-05-14 10:41
==================== End of FRST.txt ============================


Additional scan result of Farbar Recovery Scan Tool (x64) Version: 24-05-2017
Ran by Toshiba (24-05-2017 15:59:18)
Running from C:\Users\Toshiba\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2010-11-22 11:52:50)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================
Administrator (S-1-5-21-2006602166-2821085519-2699951813-500 - Administrator - Disabled)
ASPNET (S-1-5-21-2006602166-2821085519-2699951813-1005 - Limited - Enabled)
Guest (S-1-5-21-2006602166-2821085519-2699951813-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2006602166-2821085519-2699951813-1003 - Limited - Enabled)
Toshiba (S-1-5-21-2006602166-2821085519-2699951813-1001 - Administrator - Enabled) => C:\Users\Toshiba
UpdatusUser (S-1-5-21-2006602166-2821085519-2699951813-1000 - Limited - Enabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
ABBYY PDF Transformer 3.0 (HKLM-x32\...\ABBYY PDF Transformer 3.0) (Version: 3.00.162.6808 - ABBYY)
ABBYY PDF Transformer 3.0 (Version: 3.00.162.6808 - ABBYY) Hidden
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 15.020.20039 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 1.5.3.9130 - Adobe Systems Inc.)
Adobe Flash Player 24 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 24.0.0.221 - Adobe Systems Incorporated)
Adobe Flash Player 24 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 24.0.0.221 - Adobe Systems Incorporated)
Adobe Flash Player 25 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 25.0.0.127 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.8.158 - Adobe Systems, Inc.)
Advertising Center (x32 Version: 0.0.0.2 - Nero AG) Hidden
Aktualizace NVIDIA 7.2.17 (Version: 7.2.17 - NVIDIA Corporation) Hidden
android_driver_install.exe (HKLM-x32\...\android_driver_install_is1) (Version: - android)
Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Assassin's Creed IV Black Flag (HKLM-x32\...\Uplay Install 443) (Version: - Ubisoft)
AVG 2012 (Version: 12.0.3629 - AVG Technologies CZ, s.r.o.) Hidden
Balíček ovladače systému Windows - Google, Inc. (WinUSB) AndroidUsbDeviceClass (01/27/2014 90.0000.00000) (HKLM\...\4D67C1984266FCB0F08AA13AFAD4F98C91EB52D0) (Version: 01/27/2014 9.0.0000.00000 - Google, Inc.)
Balíček ovladače systému Windows - Qualcomm (qcusbnet) Net (10/16/2012 1.0.7.9) (HKLM\...\C03E573DE1B7F7DE10352D707DF6C7E88C0FAA03) (Version: 10/16/2012 1.0.7.9 - Qualcomm)
Balíček ovladače systému Windows - Qualcomm Incorporated (qcusbser) Modem (10/26/2012 2.1.0.3) (HKLM\...\19E621CD1BB015A1069EB53B72E2877DC34F038C) (Version: 10/26/2012 2.1.0.3 - Qualcomm Incorporated)
Balíček ovladače systému Windows - Qualcomm Incorporated (qcusbser) Ports (10/26/2012 2.1.0.3) (HKLM\...\52D9B5E0B1B45DD17B0C3972C332873F1BC298B3) (Version: 10/26/2012 2.1.0.3 - Qualcomm Incorporated)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.0.0.0 - Electronic Arts)
Bing Bar (HKLM-x32\...\{16D0F2D2-242C-4885-BEF1-4B1655C141AE}) (Version: 7.0.822.0 - Microsoft Corporation)
Bluetooth Stack for Windows by Toshiba (HKLM\...\{CEBB6BFB-D708-4F99-A633-BC2600E01EF6}) (Version: v7.10.10(T) - TOSHIBA CORPORATION)
Broadcom 802.11 Network Adapter (HKLM\...\Broadcom 802.11 Network Adapter) (Version: 5.60.48.42 - Broadcom Corporation)
Bukkazoom (HKLM-x32\..\ITE_Autorun_2001PCG) (Version: - )
Camera Access Library (x32 Version: 8.0.0.21 - Canon) Hidden
Camera Window DS (x32 Version: 5.3.1 - Canon) Hidden
Camera Window DVC (x32 Version: 6.0 - Canon) Hidden
Camera Window MC (x32 Version: 6.0 - Canon) Hidden
Canon Camera Access Library (HKLM-x32\...\InstallShield_{901F8ED7-13E8-43EF-B738-2FE89B0588EB}) (Version: 8.0.0.21 - Canon)
Canon Camera Window DC_DV 6 for ZoomBrowser EX (HKLM-x32\...\InstallShield_{50E25180-3BDC-4B6D-80A2-3F1F0C9CF39D}) (Version: 6.0 - Canon)
Canon Camera Window DSLR 5 for ZoomBrowser EX (HKLM-x32\...\InstallShield_{0A146245-DB79-4197-BF5D-FE1A699A2CC7}) (Version: 5.3.1 - Canon)
Canon Camera Window MC 6 for ZoomBrowser EX (HKLM-x32\..\InstallShield_{6C3A75A6-9A90-44A3-A703-82AC1EA6A85D}) (Version: 6.0 - Canon)
Canon MovieEdit Task for ZoomBrowser EX (HKLM-x32\...\InstallShield_{4DBBF091-FACD-422C-B43C-786335BD5398}) (Version: 2.1.0.20 - Canon)
Canon PhotoRecord (HKLM-x32\...\{BBBC2B89-E193-4348-A83C-C8DD8210A4AC}) (Version: 02.02.03002 - Cisra)
Canon RAW Image Task for ZoomBrowser EX (HKLM-x32\...\InstallShield_{BAA43DA2-B6C5-46EC-B163-0E8EEAF975A4}) (Version: 2.2 - Canon)
Canon Utilities PhotoStitch 3.1 (HKLM-x32\...\InstallShield_{874E44F3-B9A7-4AA1-B4BA-83E5684ED9C6}) (Version: 3.1.16 - Canon)
Canon ZoomBrowser EX (E) (HKLM-x32\...\{C1D76D7A-F3BB-47EA-A746-5B1E2FFC1DF2}) (Version: 5.05.0000 - Canon)
CCleaner (HKLM\...\CCleaner) (Version: 5.30 - Piriform)
CDex - Open Source Digital Audio CD Extractor (HKLM-x32\...\CDex) (Version: 1.79.0.2015 - Georgy Berdyshev)
Cok Free Auto Clicker 2.0 (HKLM-x32\...\Cok Free Auto Clicker_is1) (Version: 2.0 - Cok Software)
Corel WinDVD (HKLM-x32\...\{5C1F18D2-F6B7-4242-B803-B5A78648185D}) (Version: 10.0.5.363 - Corel Inc.)
CrystalDiskInfo 4.1.3 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 4.1.3 - Crystal Dew World)
CyberLink PhotoNow (HKLM-x32\...\InstallShield_{D36DD326-7280-11D8-97C8-000129760CBE}) (Version: 1.1.6904 - CyberLink Corp.)
CyberLink PowerDirector (HKLM-x32\...\InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}) (Version: 8.0.2703 - CyberLink Corp.)
CyberLink PowerProducer (HKLM-x32\...\InstallShield_{B7A0CE06-068E-11D6-97FD-0050BACBF861}) (Version: 5.0.2.2415 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.2.0.0115 - Disc Soft Ltd)
Defraggler (HKLM\...\Defraggler) (Version: 2.21 - Piriform)
Direct DiscRecorder (x32 Version: 1.00.0000 - Corel Corporation) Hidden
Driver Booster 3.4 (HKLM-x32\...\Driver Booster_is1) (Version: 3.4 - IObit)
DVD MovieFactory for TOSHIBA (HKLM-x32\...\InstallShield_{50F68032-B5B7-4513-9116-C978DBD8F27A}) (Version: 7.0.0 - Corel Corporation)
DVD MovieFactory for TOSHIBA (x32 Version: 7.0.0 - Corel Corporation) Hidden
EasyCleaner (HKLM-x32\...\{F5346614-B7C4-4E94-826A-E2363155233D}) (Version: 2.0.6.380 - ToniArts)
ENE CIR Receiver Driver (HKLM\...\2C293EC1A06665BB961CBA4EC7AFF4BF2BEAD042) (Version: 2.7.4.1 - ENE)
Ferda - CDROMEK číslo 35 (HKLM-x32\...\CDROMEK35) (Version: - )
ffdshow v1.1.3562 [2010-09-07] (HKLM-x32\...\ffdshow_is1) (Version: 1.1.3562.0 - )
FOTOSVET Schlecker 3 (HKLM-x32\...\FOTOSVET Schlecker 3) (Version: - )
Foxit PDF Editor (HKLM-x32\...\Foxit PDF Editor) (Version: 2.2.0.0205 - Foxit Software)
Foxit Reader (HKLM-x32\...\Foxit Reader) (Version: - )
Fritz 12 (HKLM-x32\...\{4F4182DA-3D58-41E3-913D-480F8DA5C863}) (Version: 12.0.0 - ChessBase)
Fritz 12 (x32 Version: 12.0.0 - ChessBase) Hidden
Fritz11 (HKLM-x32\...\{1A637513-CC46-4C3B-8114-1E4F1D71CF42}) (Version: 11 - ChessBase)
Fritz11 (x32 Version: 11 - ChessBase) Hidden
GIGABYTE Remote Utilities (HKLM-x32\...\{DA60AB6B-6C9C-4B5F-BC61-3B0D9BCBD50B}) (Version: 3.0.0.0 - GIGABYTE)
GIGABYTE U8300 BDA Device (HKLM-x32\...\TVCONDrv) (Version: - )
GOM Player (HKLM-x32\...\GOM Player) (Version: 2.2.81.5243 - Gretech Corporation)
Google Drive (HKLM-x32\...\{A1238426-ECDF-4639-BE2F-8D12A97AE23C}) (Version: 2.34.5075.1619 - Google, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 58.0.3029.110 - Google Inc.)
Google Update Helper (x32 Version: 1.3.21.165 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.33.5 - Google Inc.) Hidden
Harry Potter (HKLM-x32\...\{3F50AF3B-8997-4916-0095-99D63DDB785A}) (Version: - )
Harry Potter a ohnivý pohár™ (HKLM-x32\...\{9799BD05-5F89-484C-008E-F50592F53440}) (Version: - )
Harry Potter II (HKLM-x32\...\{7BF68B83-5057-4D4B-0093-28285EEB9EE3}) (Version: - )
Hearthstone (HKLM-x32\..\Hearthstone) (Version: - Blizzard Entertainment)
Chess Informant Reader 2 (HKLM-x32\...\{F13DD86D-BC85-46F7-AB0E-FEC44F33950F}) (Version: 2.16.9 - Chess Informant)
Chess Tutor Step 3 Demo (HKLM-x32\...\{507549F8-076B-40D3-9493-79E6527BB26E}_is1) (Version: - Cor van Wijgerden)
ChessBase 11 (HKLM-x32\...\{5C784162-B9B2-4A32-AF18-3517D602AF33}) (Version: 11.0.0.0 - ChessBase GmbH)
ChessBase 7.0 (HKLM-x32\...\ChessBase 7.0) (Version: - )
ChessBase Reader (HKLM-x32\...\{D6330700-4083-48DD-A03C-E209674E7836}) (Version: 2 - ChessBase)
ChessBase Reader (HKLM-x32\...\ChessBase Reader) (Version: - )
ChessBase Reader (x32 Version: 2 - ChessBase) Hidden
ImagXpress (x32 Version: 7.0.74.0 - Nero AG) Hidden
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 6.0.0.1179 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 9.5.7.1002 - Intel Corporation)
Intel(R) Turbo Boost Technology Driver (HKLM-x32\...\{D6C630BF-8DBB-4042-8562-DC9A52CB6E7E}) (Version: 01.01.01.1007 - Intel Corporation)
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.30 - Irfan Skiljan)
Java 7 Update 55 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217055FF}) (Version: 7.0.550 - Oracle)
Java(TM) 6 Update 31 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216031FF}) (Version: 6.0.310 - Oracle)
JMicron Flash Media Controller Driver (HKLM-x32\...\{26604C7E-A313-4D12-867F-7C6E7820BE4C}) (Version: 1.0.342 - JMicron Technology Corp.)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
LANGMaster Škola DNES (HKLM-x32\...\LANGMaster Škola DNES_is1) (Version: - )
Laroxion_MT2 (HKLM-x32\...\{04C5FE2F-828B-4D7B-8D62-20FC73FAD96A}) (Version: 1.0.0 - Laroxion)
Left 4 Dead 2 (HKLM\...\Steam App 550) (Version: - Valve)
Malwarebytes verze 3.1.2.1733 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.1.2.1733 - Malwarebytes)
MCE Software Encoder 1.1 (HKLM-x32\...\{7655E113-C306-11D9-A373-0050BAE317E1}) (Version: 1.1.0.2323 - CyberLink Corporation)
Media Player Classic - Home Cinema v1.4.2499.0 x64 (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.4.2499.0 - MPC-HC Team)
Media Player Utilities 4.41 (HKLM-x32\...\{8B9852AF-B0B0-47B7-9BC5-89A95D77B6C9}) (Version: 4.41 - )
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Messenger Companion (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Microsoft .NET Framework 1.1 (HKLM-x32\...\Microsoft .NET Framework 1.1 (1033)) (Version: - )
Microsoft .NET Framework 4.6.1 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 46.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.601055 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.51305003 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0405-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Professional Edition 2003 (HKLM-x32\...\{90110405-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50906.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP1 English (HKLM-x32\...\{E59113EB-0285-4BFD-A37A-B79EAC6B8F4B}) (Version: 3.5.5692.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 90.30729.4148 (HKLM\...\{EE936C7A-EA40-31D5-9B65-8E3E089C3828}) (Version: 90.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (HKLM\...\{8338783A-0968-3B85-AFC7-BAAE0A63DC50}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM-x32\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.307294148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{34D9106C-A947-47ED-B4AB-764736350769}) (Version: 1.6.1 - MINECRAFTinstall.net)
Minecraft1.7.10 (HKLM-x32\...\Minecraft1.7.10) (Version: - )
MovieEdit Task (x32 Version: 2.1.0.20 - Canon) Hidden
Mozilla Firefox 52.0.2 (x86 cs) (HKLM-x32\...\Mozilla Firefox 52.0.2 (x86 cs)) (Version: 52.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 52.0.2.6291 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MWSnap 3 (HKLM-x32\...\MWSnap 3) (Version: 3.0.0.74 - Mirek Wojtowicz)
MyPhoneExplorer (HKLM-x32\...\MPE) (Version: 1.84 - F.J. Wechselberger)
Nero 9 Essentials (HKLM-x32\...\{008e9e4e-f06f-4a47-bb11-28c5586a62dc}) (Version: - Nero AG)
Nero 9 Essentials (HKLM-x32\...\{f5a65781-697a-4260-99ec-b3d0f737de66}) (Version: - Nero AG)
Nero BackItUp (HKLM-x32\...\{0420F95C-11FF-4E02-B967-6CC22B188F9F}) (Version: 5.2.21001 - Nero AG)
Nero BackItUp and Burn (HKLM-x32\...\{E08CC458-41FB-4BB5-9B08-2C83DB55A5B9}) (Version: 1.2.0030 - Nero AG)
Nero BurnRights (HKLM-x32\...\{397516AE-7DFE-4F90-84E0-BD616D559434}) (Version: 3.626001 - Nero AG)
Nero Express (HKLM-x32\...\{6C3CF7AC-5AB0-42D9-93C0-68166A57AFB6}) (Version: 9.6.16000 - Nero AG)
Nero RescueAgent (HKLM-x32\...\{51E2F9B3-A972-4F58-B4EF-4D9676D9F5D1}) (Version: 2.6.25002 - Nero AG)
NVIDIA GeForce Experience 1.6 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 1.6 - NVIDIA Corporation)
NVIDIA Performance (HKLM-x32\...\InstallShield_{7C7F30F4-94E7-4AA8-8941-90C4A80C68BF}) (Version: 1.00.0000 - NVIDIA Corporation)
NVIDIA System Monitor (HKLM-x32\...\InstallShield_{E9CFBE78-ED91-4FCF-9E6F-210E477E527D}) (Version: 1.00.0000 - NVIDIA Corporation)
NVIDIA System Update (HKLM-x32\...\InstallShield_{6F69C969-2942-4E7B-B594-75B37664B8BA}) (Version: 1.00.0000 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.13.0604 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.0604 - NVIDIA Corporation)
NVIDIA Virtual Audio 12.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver) (Version: 1.2.1 - NVIDIA Corporation)
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version: - )
Opera Stable 45.0.2552.812 (HKLM-x32\...\Opera 45.0.2552.812) (Version: 45.0.2552.812 - Opera Software)
Origin (HKLM-x32\...\Origin) (Version: 9.2.1.4399 - Electronic Arts, Inc.)
osu! (HKLM-x32\...\{C3592426-531E-4110-911D-BFECE2CE284C}) (Version: 0.0.0.0 - peppy)
Outlast (HKLM-x32\...\Outlast) (Version: UPDATE 6 - Red Barrels Games)
Ovládací panel NVIDIA 331.82 (Version: 331.82 - NVIDIA Corporation) Hidden
Ovládací prvek ActiveX platformy Windows Live Mesh pro vzdálená připojení (HKLM-x32\...\{B6190387-0036-4BEB-8D74-A0AFC5F14706}) (Version: 15.4.5722.2 - Microsoft Corporation)
Pando Media Booster (HKLM-x32\...\{980A182F-E0A2-4A40-94C1-AE0C1235902E}) (Version: 2.6.0.9 - Pando Networks Inc.)
Photo Service - powered by myphotobook (HKLM-x32\...\eu.myphotobook.001F9DF2D0BAABEB11F42CCEE43224607B61109C.1) (Version: 1.0.7-279 - myphotobook GmbH)
PhotoStitch (x32 Version: 3.1.16 - Canon) Hidden
PicPick (HKLM-x32\...\PicPick) (Version: 4.1.4 - NGWIN)
PlayReady PC Runtime amd64 (HKLM\...\{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}) (Version: 1.3.0 - Microsoft Corporation)
PowerDVD (HKLM-x32\...\{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}) (Version: 7.0.1702.0 - CyberLink Corporation)
PowerISO (HKLM-x32\...\PowerISO) (Version: 6.8 - Power Software Ltd)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.991 - Even Balance, Inc.)
QuickTime 7 (HKLM-x32\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.)
RAW Image Task 2.2 (x32 Version: 2.2 - Canon) Hidden
Realtek Ethernet Controller Driver For Windows 7 (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.19.409.2010 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6069 - Realtek Semiconductor Corp.)
RESIDENT EVIL (HKLM-x32\...\RESIDENT EVIL) (Version: - )
Rybka 4 (HKLM-x32\...\{F9683839-1A7F-4874-91B7-64CDF4AC4679}) (Version: 12.0.0 - ChessBase)
Rybka 4 (x32 Version: 12.0.0 - ChessBase) Hidden
Sada Compatibility Pack pro systém Office 2007 (HKLM-x32\...\{90120000-0020-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Scooby-Doo(TM), Case File #2 The Scary Stone Dragon (HKLM-x32\...\Scooby-Doo(TM), Case File #2 The Scary Stone Dragon) (Version: - )
Screenshot Captor 4.8 (HKLM-x32\...\ScreenshotCaptor_is1) (Version: - )
SHIELD Streaming (Version: 1.05.19 - NVIDIA Corporation) Hidden
Skype™ 7.32 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.32.104 - Skype Technologies S.A.)
Sophos Virus Removal Tool (HKLM-x32\...\{B829E117-D072-41EA-9606-9826A38D34C1}) (Version: 2.5.6 - Sophos Limited)
Speccy (HKLM\...\Speccy) (Version: 1.12 - Piriform)
STDU Converter version 2.0.127.0 (HKLM-x32\...\STDU Converter_is1) (Version: 2.0.127.0 - STDUtility)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Surfing Protection (HKLM-x32\...\IObit Surfing Protection_is1) (Version: 1.2 - IObit)
SwissManagerUniCode (HKLM\...\{100A0E84-2F27-4776-BD1F-8105A27DFA56}) (Version: 12.0.0.76 - Dipl. Ing. Heinz Herzog)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.0.8.1 - Synaptics Incorporated)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.18 - TeamSpeak Systems GmbH)
The Battle for Middle-earth (tm) II (HKLM-x32\...\{2A9F95AB-65A3-432c-8631-B8BC5BF7477A}) (Version: - )
Toshiba Assist (HKLM-x32\...\{1B87C40B-A60B-4EF3-9A68-706CF4B69978}) (Version: 3.00.11 - TOSHIBA CORPORATION)
TOSHIBA Bulletin Board (HKLM-x32\...\InstallShield_{C14518AF-1A0F-4D39-8011-69BAA01CD380}) (Version: 1.6.07.64 - TOSHIBA Corporation)
TOSHIBA ConfigFree (HKLM-x32\...\{1777CCDA-F2F2-4A77-ACF4-0B7341229BBB}) (Version: 8.0.29 - TOSHIBA Corporation)
TOSHIBA Disc Creator (HKLM\...\{5DA0E02F-970B-424B-BF41-513A5018E4C0}) (Version: 2.1.0.2 for x64 - TOSHIBA Corporation)
TOSHIBA eco Utility (HKLM-x32\...\InstallShield_{B3FF1CD9-B2F0-4D71-BB55-5F580401C48E}) (Version: 1.2.11.64 - TOSHIBA Corporation)
TOSHIBA Face Recognition (HKLM-x32\...\InstallShield_{F67FA545-D8E5-4209-86B1-AEE045D1003F}) (Version: 3.1.3.64 - TOSHIBA Corporation)
TOSHIBA Flash Cards Support Utility (HKLM-x32\...\InstallShield_{620BBA5E-F848-4D56-8BDA-584E44584C5E}) (Version: 1.63.0.6C - TOSHIBA CORPORATION)
TOSHIBA Hardware Setup (HKLM-x32\...\InstallShield_{5279374D-87FE-4879-9385-F17278EBB9D3}) (Version: 1.63.0.22C - Název společnosti:)
TOSHIBA HDD Protection (HKLM\...\{94A90C69-71C1-470A-88F5-AA47ECC96B40}) (Version: 2.2.0.4 - TOSHIBA Corporation)
TOSHIBA Heslo správce (HKLM-x32\...\InstallShield_{51B4E156-14A5-4904-9AE4-B1AA2A0E46BE}) (Version: 1.63.0.9C - TOSHIBA CORPORATION)
Toshiba Manuals (HKLM-x32\...\{90FF4432-21B7-4AF6-BA6E-FB8C1FED9173}) (Version: 10.01 - TOSHIBA)
TOSHIBA Media Controller (HKLM-x32\...\{983CD6FE-8320-4B80-A8F6-0D0366E0AA22}) (Version: 1.0.80.3.64 - TOSHIBA CORPORATION)
TOSHIBA Media Controller Plug-in (HKLM-x32\...\{F26FDF57-483E-42C8-A9C9-EEE1EDB256E0}) (Version: 1.0.5.10 - TOSHIBA CORPORATION)
TOSHIBA Online Product Information (HKLM-x32\...\{2290A680-4083-410A-ADCC-7092C67FC052}) (Version: 2.09.0001 - TOSHIBA)
TOSHIBA PC Health Monitor (HKLM\...\{9DECD0F9-D3E8-48B0-A390-1CF09F54E3A4}) (Version: 1.6.0.64 - TOSHIBA Corporation)
TOSHIBA Recovery Media Creator (HKLM\...\{B65BBB06-1F8E-48F5-8A54-B024A9E15FDF}) (Version: 2.1.0.4 x64 - TOSHIBA Corporation)
TOSHIBA Recovery Media Creator Reminder (HKLM-x32\...\InstallShield_{773970F1-5EBA-4474-ADEE-1EA3B0A59492}) (Version: 1.00.0019 - TOSHIBA)
TOSHIBA ReelTime (HKLM-x32\..\InstallShield_{A0E99122-25C1-4CA4-9063-499A2A814EB6}) (Version: 1.6.06.64 - TOSHIBA Corporation)
TOSHIBA Remote Control Manager (HKLM-x32\...\{FEB650EB-7639-444E-9FC2-C33EE6ED1A37}) (Version: 3.0.1.0 - TOSHIBA CORPORATION)
TOSHIBA Service Station (HKLM-x32\...\{AC6569FA-6919-442A-8552-073BE69E247A}) (Version: 2.1.40 - TOSHIBA)
TOSHIBA Sleep Utility (HKLM-x32\...\{654F7484-88C5-46DC-AB32-C66BCB0E2102}) (Version: 1.4.1.3 - TOSHIBA Corporation)
TOSHIBA TEMPRO (HKLM-x32\...\{F082CB11-4794-4259-99A1-D91BA762AD15}) (Version: 3.35 - Toshiba Europe GmbH)
TOSHIBA Value Added Package (HKLM-x32\...\InstallShield_{066CFFF8-12BF-4390-A673-75F95EFF188E}) (Version: 1.3.4.64 - TOSHIBA Corporation)
TOSHIBA Web Camera Application (HKLM-x32\...\{5E6F6CF3-BACC-4144-868C-E14622C658F3}) (Version: 1.1.1.15 - TOSHIBA Corporation)
Total Commander (Remove or Repair) (HKLM-x32\...\Totalcmd) (Version: - )
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
Ulead VideoStudio 6 SE DVD (HKLM-x32\...\{5404E185-BD7C-4A72-ABD0-91A411A05726}) (Version: - Ulead Systems, Inc.)
Unity Web Player (HKU\S-1-5-21-2006602166-2821085519-2699951813-1001\...\UnityWebPlayer) (Version: - Unity Technologies ApS)
Universal Document Converter (Demo) (HKLM-x32\...\Universal Document Converter_is1) (Version: 5.3 - fCoder Group, Inc.)
Uplay (HKLM-x32\...\Uplay) (Version: 4.0 - Ubisoft)
Utility Common Driver (x32 Version: 1.0.52.1C - TOSHIBA) Hidden
VideoCam Suite 3.0 (HKLM-x32\..\{1D5EB783-25F8-495B-8B01-DE6D1BFBB8B4}) (Version: 3.00.031.1033 - Panasonic Corporation)
Visual C++ 2008 x86 Runtime - v9.0.30729.01 (HKLM-x32\..\{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01) (Version: 9.0.30729.01 - Microsoft Corporation)
Visual Studio 2008 x64 Redistributables (HKLM-x32\...\{FCDBEA60-79F0-4FAE-BBA8-55A26C609A49}) (Version: 10.0.0.2 - AVG Technologies)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
vivoTV (HKLM-x32\...\vivoTV_is1) (Version: - )
VNC Mirror Driver 1.8.0 (HKLM\...\VNCMirror_is1) (Version: 1.8.0 - RealVNC Ltd.)
VNC Printer Driver 1.8.0 (HKLM\...\VNCPrinter_is1) (Version: 1.8.0 - RealVNC Ltd.)
VNC Server 5.0.3 (HKLM\...\RealVNC_is1) (Version: 5.0.3 - RealVNC Ltd)
VNC Viewer 5.0.3 (HKLM\...\RealVNCViewer_is1) (Version: 50.3 - RealVNC Ltd)
Výstraha HDD/SSD TOSHIBA (HKLM-x32\...\InstallShield_{D4322448-B6AF-4316-B859-D8A0E84DCB38}) (Version: 3.1.64.6 - TOSHIBA Corporation)
Výstraha HDD/SSD TOSHIBA (Version: 3.1.64.6 - TOSHIBA Corporation) Hidden
Výstraha HDD/SSD TOSHIBA (x32 Version: 3.1.64.6 - TOSHIBA Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3502.0922 - Microsoft Corporation)
Windows Live Sync (HKLM-x32\...\{068B46A0-8858-4CEB-80BC-A4AE787A05FC}) (Version: 14.0.8089.726 - Microsoft Corporation)
Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
WinPump (HKU\S-1-5-21-2006602166-2821085519-2699951813-1001\...\WinPump) (Version: - )
WinRAR (HKLM\..\WinRAR archiver) (Version: - )
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {075527AC-20A2-47C0-9734-CA0D17A4D0E0} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-05-05] (Piriform Ltd)
Task: {07F27407-5A47-496C-83D7-58D57A4ACAD6} - System32\Tasks\GoogleUpdateTaskMachineUA1d13f2efcf4e26 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {16EF13FE-582D-4868-A5C1-4DA6D01C257C} - System32\Tasks\{063C503E-091F-4392-A66E-EA86CAE4CC9E} => C:\Program Files (x86)\Fritz a Šachlík\FRITZ_SACHLIK.EXE [2016-10-13] (Macromedia, Inc.)
Task: {227ECB23-0CA6-4AF9-AF20-BA404E496531} - System32\Tasks\ConfigFree Startup Programs => C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe [2010-02-22] (TOSHIBA CORPORATION)
Task: {248CA0DA-A5CB-412D-AC78-224DFE06C86B} - System32\Tasks\Program k provádění aktualizací online InstallShield Software => C:\Program Files (x86)\Common Files\InstallShield\UpdateService\ISUSPM.exe [2004-08-09] (InstallShield Software Corporation)
Task: {2594307C-5969-4526-A850-05D3E578B949} - System32\Tasks\{06B3DDE9-EB73-4F5C-82B4-19BFEC3EF58A} => C:\Program Files (x86)\EA Games\Harry Potter\System\HP.exe [2001-10-29] ()
Task: {2A8FAD6E-990F-4F23-A6A7-D117E9EB1FD9} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-03-19] (Adobe Systems Incorporated)
Task: {301D899B-3A58-420A-B001-F92793CF5946} - System32\Tasks\{83D21282-7AB8-4AE6-BE07-63B1F5038F50} => C:\Program Files (x86)\EA Games\Harry Potter\System\HP.exe [2001-10-29] ()
Task: {304D8D92-7B91-4ABB-87FB-4BBA2653C6AA} - System32\Tasks\{A248DCF3-8187-4E65-9F63-FA58842BA928} => C:\Program Files (x86)\EA Games\Harry Potter\System\HP.exe [2001-10-29] ()
Task: {314F82C5-793A-4BD0-9B68-A033068D53E1} - System32\Tasks\{CD4579F7-D019-41F3-9DAF-E7E7FEF812E0} => C:\Program Files (x86)\Centauri\CDROMEK35\ferda.exe [2004-06-24] (Centauri Production)
Task: {366AD7FF-2470-44DD-A269-43DDA1A0623A} - System32\Tasks\Toshiba NBAgent => C:\Program Files (x86)\Nero\Nero BackItUp & Burn\Nero BackItUp\NBAgent.exe [2010-03-09] (Nero AG)
Task: {3E113766-BE52-4942-9C0E-0B3283E498EA} - System32\Tasks\{F196E9D2-752D-44B1-AFB6-918A56591CB4} => pcalua.exe -a "C:\program files (x86)\steam\steamapps\common\left 4 dead 2\bin\addoninstaller.exe" -d "C:\Program Files (x86)\Steam\SteamApps\common\left 4 dead 2\left4dead2\addons" -c C:\PROGRA~2\Steam\STEAMA~1\common\LEFT4D~1\LEFT4D~1\addons\HELMS_~1.VPK
Task: {3EB70058-6FF7-425D-95C2-3D061BA24D59} - System32\Tasks\Google Updater and Installer => C:\Users\Toshiba\AppData\Local\Google\Update\GoogleUpdate.exe
Task: {43ECF115-A5AA-4129-861C-2E2E985572FA} - System32\Tasks\Program k provádění aktualizací online Adobe => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-04-25] (Adobe Systems Incorporated)
Task: {4A337063-42B5-4DD3-B58A-0DDA037B0643} - System32\Tasks\{6B11A877-0E27-4600-8CA1-899E8047B2AC} => C:\Program Files (x86)\Fritz a Šachlík\FRITZ_SACHLIKEXE [2016-10-13] (Macromedia, Inc.)
Task: {4A7B72EE-3646-4460-9373-245667E497E8} - System32\Tasks\Opera scheduled Autoupdate 1433012676 => C:\Program Files (x86)\Opera\launcher.exe [2017-05-15] (Opera Software)
Task: {50B78195-80A3-47BC-B56D-86C5AA5A6A2F} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {518A0A6A-A4F5-4E29-BE78-92572A82D22F} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {53E2A2E1-6D4E-4470-9ABB-562C799E9F08} - System32\Tasks\{101A4015-4708-4E92-A5F3-7CAF7AA01E13} => C:\Program Files (x86)\Fritz a Šachlík\FRITZ_SACHLIKEXE [2016-10-13] (Macromedia, Inc.)
Task: {53ED1695-DE58-451E-A6C9-4284E6A84499} - System32\Tasks\{778CE6CA-D1FB-4F30-A3B3-3611A0CBB83C} => pcalua.exe -a "C:\virtual dub mpeg2\auxsetup.exe" -d "C:\virtual dub mpeg2"
Task: {6B2DD8A2-5861-4762-B51C-1FB7B6C6D095} - System32\Tasks\{24822D96-B1DF-4B79-B614-0876BCB5BFE0} => C:\Program Files (x86)\EA Games\Harry Potter\System\HP.exe [2001-10-29] ()
Task: {6F2C6B18-7066-4C0D-ACC5-63DBDCC90562} - System32\Tasks\{DF421D1B-223D-4C0C-B40F-78952F5B9601} => pcalua.exe -a "E:\Fritz 11\Setup\setup.exe" -d "E:\Fritz 11\Setup"
Task: {77382B24-72A0-48E9-88AC-390BCA692757} - System32\Tasks\{1A670522-C3DC-403F-8963-45D5087B27E1} => C:\Program Files (x86)\Centauri\CDROMEK35\ferda.exe [2004-06-24] (Centauri Production)
Task: {842A6CA6-0681-4CFC-9AB2-797AEB9A9D85} - System32\Tasks\{2B812F0F-1894-48BD-95C7-04BF228C02D2} => C:\Program Files (x86)\EA Games\Harry Potter\System\HP.exe [2001-10-29] ()
Task: {A3E36919-432D-44A0-9AA7-DC9E312274EA} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02] (Oracle Corporation)
Task: {A829DD62-90AB-45AA-B737-1823FACE133D} - System32\Tasks\GoogleUpdateTaskMachineCore1d13f2eeddbead => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {BE7B0696-30D6-43DE-AC43-9411CA5F8C4C} - System32\Tasks\{41E70FCD-820B-4AB3-A5F4-E025B5BD660B} => D:\Setup.exe
Task: {BF64320A-66BD-4F23-A315-F88CB64D2742} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\windows\SysWOW64\Macromed\Flash\FlashUtil32_24_0_0_221_pepper.exe [2017-02-14] (Adobe Systems Incorporated)
Task: {CC32AA77-F199-43C6-9068-9CCF7A42D936} - System32\Tasks\{7CC62AAC-8E2C-4FD5-85A1-4DE75AA30768} => pcalua.exe -a C:\Users\Toshiba\Downloads\crossfire.exe -d C:\Users\Toshiba\Downloads
Task: {CE856A2E-236C-4FF1-9571-50E22D7DA9A3} - System32\Tasks\{F8691433-49A2-4787-9893-D69B37A51D11} => C:\Program Files (x86)\Fritz a Šachlík\FRITZ_SACHLIK.EXE [2016-10-13] (Macromedia, Inc.)
Task: {D1A8ACC5-F7E8-4EA7-BB6E-C9013B58E982} - System32\Tasks\{9B59B75E-328D-4286-952F-E330DC84AB79} => pcalua.exe -a "E:\Fritz 11\Setup.exe" -d "E:\Fritz 11"
Task: {D1D357FA-76C3-46C4-97D0-F7FDDF42F1F8} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-04-25] (Adobe Systems Incorporated)
Task: {D9BE6C93-70EB-4CF0-B9DC-3E68A446AE4D} - System32\Tasks\{0D9C5792-3B65-4A42-8735-F5BA4B992755} => pcalua.exe -a "C:\Users\Toshiba\Music\aŠachy\A Collection of 669 Chess Books - Part 1 of 2 (A-I)\00 Pdf Reader.Exe" -d "C:\Users\Toshiba\Music\aŠachy\A Collection of 669 Chess Books - Part 1 of 2 (A-I)"
Task: {DAFA92BF-C3A1-46A6-9382-9B4144384026} - System32\Tasks\{CB72AAC0-990A-46B9-8AC7-707E41089DB5} => C:\Program Files (x86)\Fritz a Šachlík\FRITZ_SACHLIK.EXE [2016-10-13] (Macromedia, Inc.)
Task: {DDA71FB3-A850-4D1E-B9C3-0B246AFF90E3} - System32\Tasks\{4EA85020-EBB2-455D-966F-728B67FEE3D5} => pcalua.exe -a C:\PPK\virtualdub\auxsetup.exe -d C:\PPK\virtualdub
Task: {DFA2148C-1104-4571-9466-677AB18F38B2} - System32\Tasks\{3127B2EE-1D23-4058-9BAB-07F86B0B2D89} => C:\Program Files (x86)\EA Games\Harry Potter\System\HP.exe [2001-10-29] ()
Task: {ED8BB7BC-51EE-4DF3-A397-496F4E2CA71F} - System32\Tasks\{181777C1-AC39-46AD-A2C1-3B6C2E5DD71D} => pcalua.exe -a D:\Setup\setup.exe -d D:\Setup
Task: {F0B1DC9A-7A4E-4960-A93C-73E6C3DD0286} - System32\Tasks\{562931CB-0C96-4EF8-BBE7-8273908A5BD1} => pcalua.exe -a C:\Users\Toshiba\Documents\gygabyte\QuickInstall.exe -d C:\Users\Toshiba\Documents\gygabyte
Task: {F2186338-1BC4-4B5A-8EEC-493D45544880} - System32\Tasks\{24337459-0A85-4985-919A-A6DA9AFE76D7} => pcalua.exe -a "C:\Program Files (x86)\Software.com\Download Center\Download.exe" -c -u
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\windows\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\windows\SysWOW64\Macromed\Flash\FlashUtil32_24_0_0_221_pepper.exe
Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
==================== Shortcuts =============================
(The entries could be listed to be restored or removed.)
==================== Loaded Modules (Whitelisted) ==============
2013-07-24 12:32 - 2013-11-11 17:02 - 00102176 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2011-01-27 01:10 - 2010-03-15 12:28 - 00166400 _____ () C:\Program Files\WinRAR\rarext.dll
2012-01-17 17:47 - 2015-12-21 15:03 - 00076152 _____ () C:\windows\SysWOW64\PnkBstrA.exe
2010-12-29 14:00 - 2009-04-17 12:01 - 00247152 ____N () C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
2010-03-03 14:15 - 2010-03-03 14:15 - 08762680 _____ () C:\Program Files\Toshiba\FlashCards\BlackPng.dll
2009-11-03 13:26 - 2009-11-03 13:26 - 00053560 _____ () C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnZ.dll
2010-03-03 14:15 - 2010-03-03 14:15 - 00019256 _____ () C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF10.dll
2010-03-03 14:15 - 2010-03-03 14:15 - 00019256 _____ () C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF11.dll
2010-05-07 20:26 - 2009-06-22 14:40 - 00022328 _____ () C:\Program Files\TOSHIBA\Toshiba Assist\NotifyX.dll
2009-03-12 20:08 - 2009-03-12 20:08 - 00048640 _____ () C:\Program Files (x86)\Toshiba\PCDiag\NotifyPCD.dll
2009-07-25 16:38 - 2009-07-25 16:38 - 00017800 _____ () C:\Program Files\TOSHIBA\TOSHIBA Disc Creator\NotifyTDC.dll
2010-03-19 14:28 - 2010-03-19 14:28 - 03409256 _____ () C:\Program Files\Toshiba\BulletinBoard\TosNcUi.dll
2017-05-18 16:15 - 2017-05-09 16:38 - 02270672 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll
2010-03-12 15:41 - 2010-03-12 15:41 - 00417080 _____ () C:\Program Files\TOSHIBA\FlashCards\Hotkey\TcrdKBB.exe
2013-10-27 10:05 - 2010-01-25 22:16 - 00114688 _____ () C:\Program Files (x86)\GIGABYTE\vivoTV\ScheduleAgent.exe
2017-05-05 18:07 - 2017-05-05 18:07 - 00065536 _____ () C:\Program Files\CCleaner\lang\lang-1029.dll
2010-12-29 14:04 - 2010-05-05 15:06 - 00094208 _____ () C:\Program Files (x86)\GIGABYTE\U8300 Utilities\CONRCtl.exe
2010-02-05 17:44 - 2010-02-05 17:44 - 00079192 _____ () C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosIPCWraper.dll
2013-10-27 10:05 - 2009-12-18 17:52 - 00027136 _____ () C:\Program Files (x86)\GIGABYTE\vivoTV\ScheduledRecording.dll
2013-10-27 10:05 - 2009-09-15 14:56 - 00005632 _____ () C:\Program Files (x86)\GIGABYTE\vivoTV\SRPOTimer.dll
2017-05-19 20:17 - 2017-05-15 08:11 - 66244184 _____ () C:\Program Files (x86)\Opera\45.0.2552.812\opera_browser.dll
2017-05-19 20:16 - 2017-05-15 08:11 - 02926680 _____ () C:\Program Files (x86)\Opera\45.0.2552.812\libglesv2.dll
2017-05-19 20:16 - 2017-05-15 08:11 - 00088152 _____ () C:\Program Files (x86)\Opera\45.0.2552.812\libegl.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)

==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)

==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 04:34 - 2017-05-20 11:17 - 00000027 _____ C:\windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-2006602166-2821085519-2699951813-1001\Control Panel\Desktop\\Wallpaper -> C:\Data aplikací\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
MSCONFIG\startupreg: DAEMON Tools Lite Automount => "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
MSCONFIG\startupreg: Malwarebytes TrayApp => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe
MSCONFIG\startupreg: NBAgent => "C:\Program Files (x86)\Nero\Nero BackItUp & Burn\Nero BackItUp\NBAgent.exe" /WinStart
MSCONFIG\startupreg: PicPick Start => "C:\Program Files (x86)\PicPick\picpick.exe" /startup
MSCONFIG\startupreg: RemoteControl => "C:\Program Files (x86)\CyberLink\PowerDVD\PDVDServ.exe"
MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\steam.exe" -silent
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{7839D6BF-B732-4283-B8EC-D7956681BA88}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{5A15FDE2-AB17-470F-AE57-A484A157552A}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{21BD3DFA-FF93-4685-852A-98E6BAF036DF}] => (Allow) C:\Program Files (x86)\Windows Live\Sync\WindowsLiveSync.exe
FirewallRules: [{6F916AAA-8483-4932-88D7-E01A7CCF86DA}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
FirewallRules: [{7B300E7A-4BA6-4A90-8E6B-0B46B11A8D72}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
FirewallRules: [{96C9A88E-9CA9-4AEB-BB74-C244B7348DB2}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{EAAF4FA8-5900-45E7-8ACE-FADC071ADFB2}] => (Allow) LPort=2869
FirewallRules: [{71A70B8D-5565-479D-BAB0-02B9BA9745A7}] => (Allow) LPort=1900
FirewallRules: [{BDA57DC5-E1E6-43FB-B7BD-E3FAEDE5E0AC}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe
FirewallRules: [{52AE38D1-AB75-43FD-A14D-1F09526B66DC}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{A9CE5B32-480B-4299-87B0-59FC005C02B0}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [TCP Query User{293DC405-06E3-4299-9E86-05DB1293EA60}C:\program files (x86)\pando networks\media booster\pmb.exe] => (Block) C:\program files (x86)\pando networks\media booster\pmb.exe
FirewallRules: [UDP Query User{AE85C31B-DE02-4851-8562-9664455B922F}C:\program files (x86)\pando networks\media booster\pmb.exe] => (Block) C:\program files (x86)\pando networks\media booster\pmb.exe
FirewallRules: [TCP Query User{D6AA2601-303E-455C-83B2-7EECDF46DE36}C:\windows\syswow64\javaw.exe] => (Block) C:\windows\syswow64\javaw.exe
FirewallRules: [UDP Query User{EEE63137-C1E2-47DF-A8A1-2D0F4B004A51}C:\windows\syswow64\javaw.exe] => (Block) C:\windows\syswow64\javaw.exe
FirewallRules: [{974A4704-1901-40CE-826E-A04956D358FF}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [{6EE50774-C2CF-4AB8-9989-773321172D86}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [TCP Query User{18ECB90C-62F4-4546-82B1-047A1521D89B}C:\windows\syswow64\javaw.exe] => (Block) C:\windows\syswow64\javaw.exe
FirewallRules: [UDP Query User{5EF78E9B-F503-4E79-A78B-CCAA938011C8}C:\windows\syswow64\javaw.exe] => (Block) C:\windows\syswow64\javaw.exe
FirewallRules: [{51820546-2E6A-4058-85B6-3AF16E6BC09C}] => (Allow) C:\Program Files\RealVNC\VNC Server\vncserver.exe
FirewallRules: [{802A95B7-184C-4C7E-B573-C542772D79D7}] => (Allow) C:\Program Files\RealVNC\VNC Server\vncserver.exe
FirewallRules: [TCP Query User{D1BB3A0C-9790-4F15-AB31-1B0549B7B14B}C:\program files\realvnc\vnc viewer\vncviewer.exe] => (Block) C:\program files\realvnc\vnc viewer\vncviewer.exe
FirewallRules: [UDP Query User{87C8F049-6F38-4B19-A8FB-AF0AE0A15ED5}C:\program files\realvnc\vnc viewer\vncviewer.exe] => (Block) C:\program files\realvnc\vnc viewer\vncviewer.exe
FirewallRules: [TCP Query User{0532ED5D-C5F7-47B0-BD50-D0774DD83BA4}C:\program files\realvnc\vnc viewer\vncviewer.exe] => (Allow) C:\program files\realvnc\vnc viewer\vncviewer.exe
FirewallRules: [UDP Query User{761F7DCC-CAC6-4BDA-A75C-867F90D2BE0B}C:\program files\realvnc\vnc viewer\vncviewer.exe] => (Allow) C:\program files\realvnc\vnc viewer\vncviewer.exe
FirewallRules: [{7113C977-34D5-4173-BE9C-27928303C75D}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{BBAE7197-8E76-4BE2-B1F4-8ABCAAC79CAD}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{3D3AF773-F3B8-41E0-AEDA-5DFFBFD217F1}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{9D8EA70F-DDBB-4B65-8A7A-2E1356212658}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{6200BD53-3676-442A-88D2-417628EF2AB9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{1F9759E5-EEE0-4D61-A720-5697B1B09BB0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [TCP Query User{93916A23-EFB2-4F1B-9739-60A85143DD72}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre7\bin\javaw.exe
FirewallRules: [UDP Query User{1E6EB3F4-C2EA-4F4C-9F91-64CB92C63B1D}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre7\bin\javaw.exe
FirewallRules: [{EA6AB938-0BD0-48AC-A2AE-8D6B85CABF4E}] => (Allow) C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
FirewallRules: [{D01AD390-38DC-4A68-BCCF-83897A4BE03C}] => (Allow) C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
FirewallRules: [{B779C218-0734-4EB1-8949-7CC3AB98FF01}] => (Allow) C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
FirewallRules: [{1D312986-D187-4592-942E-7F6F81B4426A}] => (Allow) C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
FirewallRules: [{B39115EF-278F-45E1-8AC1-50C783B16558}] => (Allow) C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
FirewallRules: [TCP Query User{DAE2399A-2097-43EE-B2CC-618CA6B10D52}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre7\bin\javaw.exe
FirewallRules: [UDP Query User{DE2890F0-C1D5-44E8-8825-C998A73E3A38}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre7\bin\javaw.exe
FirewallRules: [TCP Query User{D469F14E-A5B5-4808-B519-E6D4D2FA96AB}C:\program files (x86)\origin games\battlefield 3\bf3.exe] => (Allow) C:\program files (x86)\origin games\battlefield 3\bf3.exe
FirewallRules: [UDP Query User{8253CC7E-0788-4CDE-92DA-5533D34898A4}C:\program files (x86)\origin games\battlefield 3\bf3.exe] => (Allow) C:\program files (x86)\origin games\battlefield 3\bf3.exe
FirewallRules: [{74433039-427B-4B05-89D5-2353905E8F0A}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
FirewallRules: [{8391BE1C-2A10-4F55-9252-4032D314B3F2}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{8228E9DE-301F-42E8-AEC3-172220AD0381}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{21B45F65-9297-41E2-8C36-8DCFBDEE87C5}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{5B838129-9FF6-4648-A7A0-DD9251B01ABE}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{B385D6BA-2A37-48CF-B9FA-6AEFADD7FA51}] => (Allow) C:\Program Files (x86)\Ubisoft\Assassin's Creed IV Black Flag\AC4BFSP.exe
FirewallRules: [{D773F775-72E4-45DC-B235-2E49ACA653A9}] => (Allow) C:\Program Files (x86)\Ubisoft\Assassin's Creed IV Black Flag\AC4BFSP.exe
FirewallRules: [{BE145550-B575-4650-8D22-0F8A2A63DF1D}] => (Allow) C:\Program Files (x86)\Ubisoft\Assassin's Creed IV Black Flag\AC4BFMP.exe
FirewallRules: [{5B793848-A402-4A17-A088-40721BF4A662}] => (Allow) C:\Program Files (x86)\Ubisoft\Assassin's Creed IV Black Flag\AC4BFMP.exe
FirewallRules: [TCP Query User{A0872162-62E7-4C8B-9BBE-F36DC005878C}C:\program files (x86)\ubisoft\assassin's creed iv black flag\ac4bfsp.exe] => (Allow) C:\program files (x86)\ubisoft\assassin's creed iv black flag\ac4bfsp.exe
FirewallRules: [UDP Query User{8187EF0E-B7BC-4250-89AD-96B6C25B6F0E}C:\program files (x86)\ubisoft\assassin's creed iv black flag\ac4bfsp.exe] => (Allow) C:\program files (x86)\ubisoft\assassin's creed iv black flag\ac4bfsp.exe
FirewallRules: [{84B59976-FBAE-4446-9F3A-F05C25B9B213}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{A4F0D002-062C-4904-B9F4-E43CDF31E13E}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{D96D22EB-5CB6-4836-A036-E6A72FA6B13F}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [{01FC7422-44E6-401A-B7E3-F3E4CD378FE6}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [TCP Query User{D9A982B9-6875-4F42-BD7F-B497C52EF1FA}C:\program files (x86)\hearthstone\hearthstone.exe] => (Block) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [UDP Query User{146EF322-6113-4674-B323-39CB9CEF2B2B}C:\program files (x86)\hearthstone\hearthstone.exe] => (Block) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [{2496D7F6-C947-4B2E-910C-5C4C45BB15B0}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2737\Agent.exe
FirewallRules: [{61A2FC06-0847-4C8B-9ACC-E401494BAD43}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2737\Agent.exe
FirewallRules: [TCP Query User{ADF685D6-BC5A-4030-8600-CD4520233B88}C:\programdata\battle.net\agent\agent.beta.2753\agent.exe] => (Allow) C:\programdata\battle.net\agent\agent.beta.2753\agent.exe
FirewallRules: [UDP Query User{B076F037-5133-4DED-8099-0B858AC03E46}C:\programdata\battle.net\agent\agent.beta.2753\agent.exe] => (Allow) C:\programdata\battle.net\agent\agent.beta.2753\agent.exe
FirewallRules: [{16930391-B65D-404A-BCE6-34E923FE66FA}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2753\Agent.exe
FirewallRules: [{3265CDC7-16C6-4661-893C-B1BBD768AD12}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2753\Agent.exe
FirewallRules: [{A0C2A718-F95F-4210-8FBC-76BDC14F3B2B}] => (Allow) C:\Program Files (x86)\Electronic Arts\The Battle for Middle-earth (tm) II\game.dat
FirewallRules: [{BED606A3-F97C-4047-B17B-CBA43EEC2CC0}] => (Allow) C:\Program Files (x86)\Electronic Arts\The Battle for Middle-earth (tm) II\game.dat
FirewallRules: [TCP Query User{D4546845-A298-4EDF-A416-0FDBC83E7A53}G:\hearthstone\hearthstone.exe] => (Allow) G:\hearthstone\hearthstone.exe
FirewallRules: [UDP Query User{DF6002EE-85DF-4FE3-B296-DE78B9512436}G:\hearthstone\hearthstone.exe] => (Allow) G:\hearthstone\hearthstone.exe
FirewallRules: [TCP Query User{3787A2A4-973A-4CB7-89F7-C975B4312EA2}C:\program files (x86)\red barrels games\outlast\binaries\win32\olgame.exe] => (Block) C:\program files (x86)\red barrels games\outlast\binaries\win32\olgame.exe
FirewallRules: [UDP Query User{D2991F0B-4CC6-4A31-9A6A-73D17ED08B6D}C:\program files (x86)\red barrels games\outlast\binaries\win32\olgame.exe] => (Block) C:\program files (x86)\red barrels games\outlast\binaries\win32\olgame.exe
FirewallRules: [TCP Query User{717C2660-3B58-4EF0-980A-DB4A3B44136E}C:\program files (x86)\red barrels games\outlast\binaries\win64\olgame.exe] => (Block) C:\program files (x86)\red barrels games\outlast\binaries\win64\olgame.exe
FirewallRules: [UDP Query User{9307BFAF-6846-4252-94F0-15440DFB6C1D}C:\program files (x86)\red barrels games\outlast\binaries\win64\olgame.exe] => (Block) C:\program files (x86)\red barrels games\outlast\binaries\win64\olgame.exe
FirewallRules: [TCP Query User{28DD8815-6715-4B24-9B65-FD31156789D8}G:\warcraft iii\war3.exe] => (Allow) G:\warcraft iii\war3.exe
FirewallRules: [UDP Query User{BD80C79E-FB7B-4DAB-A9C2-15CB353EBE9D}G:\warcraft iii\war3.exe] => (Allow) G:\warcraft iii\war3.exe
FirewallRules: [TCP Query User{43A24B82-FCD5-442A-BD96-AA99E8A749F1}G:\warcraft iii\war3.exe] => (Allow) G:\warcraft iii\war3.exe
FirewallRules: [UDP Query User{741A0112-53EE-48A1-813F-E61FFC3FBA7B}G:\warcraft iii\war3.exe] => (Allow) G:\warcraft iii\war3.exe
FirewallRules: [{5C4A4AF9-CFD4-4031-98A4-79A0693AD2DB}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\left 4 dead 2\left4dead2.exe
FirewallRules: [{92A6674C-9496-48AF-90A1-0A437D4E7831}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\left 4 dead 2\left4dead2.exe
FirewallRules: [{960B80A9-4369-421C-B257-C84238495A20}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe
FirewallRules: [{67D275F5-685E-4192-850D-8423A11149E1}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe
FirewallRules: [{D6119BCF-36AF-41E9-B229-A4354785BEA2}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DBDownloader.exe
FirewallRules: [{EB154597-2728-418C-A268-E83F73214906}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DBDownloader.exe
FirewallRules: [{3CC1114D-EEFC-4FFD-B979-DD133A2D3730}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe
FirewallRules: [{2DB9783A-85E2-47F6-89B9-C11AF3BD07DD}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe
FirewallRules: [{F23A0B84-88C0-424F-83BF-E5E555237B99}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{44883940-2237-4D06-ADB7-1387D26B5058}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{FFC25EE2-4E53-43A1-8187-65BACA928EA4}C:\program files (x86)\mozilla firefox\plugin-container.exe] => (Allow) C:\program files (x86)\mozilla firefox\plugin-container.exe
FirewallRules: [UDP Query User{BAF5E97D-2847-4CF3-94BB-C1996569F1D0}C:\program files (x86)\mozilla firefox\plugin-container.exe] => (Allow) C:\program files (x86)\mozilla firefox\plugin-container.exe
FirewallRules: [TCP Query User{6451E12A-D443-484C-91E6-6F69D11DA337}C:\program files (x86)\red barrels games\outlast\binaries\win64\olgame.exe] => (Allow) C:\program files (x86)\red barrels games\outlast\binaries\win64\olgame.exe
FirewallRules: [UDP Query User{0F903EC6-EDEB-40A4-8350-0A83B2358073}C:\program files (x86)\red barrels games\outlast\binaries\win64\olgame.exe] => (Allow) C:\program files (x86)\red barrels games\outlast\binaries\win64\olgame.exe
FirewallRules: [{78F4E741-B36A-4FE6-8A20-BB367044AB4E}] => (Allow) C:\Program Files (x86)\Opera\43.0.2442.1144\opera.exe
FirewallRules: [{550A7409-41A1-4A4C-AC49-79C9F13DF213}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{BB73C6E4-4463-48D2-B13B-61121C5AA5EA}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{2D6C71D2-2A0E-48DE-84D4-6600886DA347}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{275ABEEF-C08C-4BAC-8F2E-B5855D0D060D}] => (Allow) C:\Program Files (x86)\Opera\45.0.2552.812\opera.exe

ondrej.nov
nováček
Příspěvky: 28
Registrován: květen 17
Pohlaví: Nespecifikováno

Re: Brutalne zpomaleny PC - log

Příspěvekod ondrej.nov » 24 kvě 2017 16:20

==================== Restore Points =========================
21-05-2017 11:37:28 End of disinfection
23-05-2017 15:38:22 Windows Update
==================== Faulty Device Manager Devices =============
Name: ZAM Helper Driver
Description: ZAM Helper Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: ZAM
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
Name: ZAM Guard Driver
Description: ZAM Guard Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: ZAM_Guard
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

==================== Event log errors: =========================
Application errors:
==================
Error: (05/24/2017 02:01:34 PM) (Source: SideBySide) (EventID: 63) (User: )
Description: Generování kontextu aktivace pro c:\program files (x86)\common files\adobe air\versions\1.0\Adobe AIR.dll se nezdařilo. Chyba v souboru manifestu nebo zásady c:\program files (x86)\common files\adobe air\versions\1.0\Adobe AIR.dll na řádku 3.
Hodnota MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR atributu version v prvku assemblyIdentity je neplatná.
Error: (05/24/2017 01:37:36 PM) (Source: NvStreamSvc) (EventID: 1) (User: )
Description: Event-ID 1
Error: (05/24/2017 01:37:36 PM) (Source: NvStreamSvc) (EventID: 1) (User: )
Description: Event-ID 1
Error: (05/23/2017 09:02:21 PM) (Source: NvStreamSvc) (EventID: 1) (User: )
Description: Event-ID 1
Error: (05/23/2017 09:02:21 PM) (Source: NvStreamSvc) (EventID: 1) (User: )
Description: Event-ID 1
Error: (05/23/2017 03:38:26 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny ConvertStringSidToSid(S-1-5-21-2006602166-2821085519-2699951813-1000.bak) došlo k neočekávané chybě. hr= 0x80070539, Struktura ID zabezpečení není platná.
.

Operace:
Událost OnIdentify
Shromažďování dat modulu pro zápis
Kontext:
Kontext spuštění: Shadow Copy Optimization Writer
ID třídy modulu pro zápis: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
Název modulu pro zápis: Shadow Copy Optimization Writer
ID instance modulu pro zápis: {7b65d891-a2b2-4c44-945f-b9e62d441c47}
Error: (05/23/2017 02:16:40 PM) (Source: SideBySide) (EventID: 63) (User: )
Description: Generování kontextu aktivace pro c:\program files (x86)\common files\adobe air\versions\1.0\Adobe AIR.dll se nezdařilo. Chyba v souboru manifestu nebo zásady c:\program files (x86)\common files\adobe air\versions\1.0\Adobe AIR.dll na řádku 3.
Hodnota MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR atributu version v prvku assemblyIdentity je neplatná.
Error: (05/23/2017 01:57:37 PM) (Source: NvStreamSvc) (EventID: 1) (User: )
Description: Event-ID 1
Error: (05/23/2017 01:57:37 PM) (Source: NvStreamSvc) (EventID: 1) (User: )
Description: Event-ID 1
Error: (05/22/2017 01:53:06 PM) (Source: SideBySide) (EventID: 63) (User: )
Description: Generování kontextu aktivace pro c:\program files (x86)\common files\adobe air\versions\1.0\Adobe AIR.dll se nezdařilo. Chyba v souboru manifestu nebo zásady c:\program files (x86)\common files\adobe air\versions\1.0\Adobe AIR.dll na řádku 3.
Hodnota MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR atributu version v prvku assemblyIdentity je neplatná.

System errors:
=============
Error: (05/24/2017 01:39:26 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba LiveUpdate byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (05/24/2017 01:37:08 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Conexant Polaris IR Transceiver neuspěla při spuštění v důsledku následující chyby:
Zvolenou službu nelze spustit, protože není povolena nebo s ní není spojeno žádné povolené zařízení.
Error: (05/23/2017 09:01:36 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Conexant Polaris IR Transceiver neuspěla při spuštění v důsledku následující chyby:
Zvolenou službu nelze spustit, protože není povolena nebo s ní není spojeno žádné povolené zařízení.
Error: (05/23/2017 01:58:29 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba LiveUpdate byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (05/23/2017 01:57:11 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Conexant Polaris IR Transceiver neuspěla při spuštění v důsledku následující chyby:
Zvolenou službu nelze spustit, protože není povolena nebo s ní není spojeno žádné povolené zařízení.
Error: (05/22/2017 01:28:44 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba LiveUpdate byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (05/22/2017 01:27:19 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Conexant Polaris IR Transceiver neuspěla při spuštění v důsledku následující chyby:
Zvolenou službu nelze spustit, protože není povolena nebo s ní není spojeno žádné povolené zařízení.
Error: (05/21/2017 05:39:47 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba TPCH Service neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (05/21/2017 05:39:47 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby TPCH Service bylo dosaženo časového limitu (30000 ms).
Error: (05/21/2017 05:39:48 PM) (Source: DCOM) (EventID: 10005) (User: )
Description: Služba DCOM zjistila chybu %%1053 = Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas. při pokusu o spuštění služby TPCHSrv s argumenty za účelem spuštění serveru:
{45CC1698-D1CF-417B-BC32-80EB79E05EF1}

CodeIntegrity:
===================================
Date: 2017-05-20 11:14:11.076
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-05-20 11:14:10.842
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-05-20 11:14:10.624
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-05-20 11:14:10.390
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-05-20 10:57:30.569
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-05-20 10:57:30.335
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-05-20 10:57:30.116
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-05-20 10:57:29.867
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-05-20 04:27:37.352
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-05-20 04:27:37.118
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

==================== Memory info ===========================
Processor: Intel(R) Core(TM) i5 CPU M 430 @ 2.27GHz
Percentage of memory in use: 56%
Total physical RAM: 3954.67 MB
Available physical RAM: 1721.68 MB
Total Virtual: 7907.53 MB
Available Virtual: 4809.19 MB
==================== Drives ================================
Drive c: (TI30611600A) (Fixed) (Total:586.25 GB) (Free:70.58 GB) NTFS ==>[system with boot components (obtained from drive)]
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 596.2 GB) (Disk ID: D84FB3B0)
Partition 1: (Active) - (Size=1.5 GB) - (Type=27)
Partition 2: (Not Active) - (Size=586.2 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=8.5 GB) - (Type=17)
==================== End of Addition.txt ============================
-------- Původní zpráva -------

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 36911
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž

Re: Brutalne zpomaleny PC - log

Příspěvekod jaro3 » 24 kvě 2017 20:20

Prosím, postupuj následujícím způsobem:
Otevřít poznámkový blok (Start => Všechny programy => Příslušenství => Poznámkový blok).
Prosím, zkopíruj do něj celý obsah níže.

Kód: Vybrat vše

Start
CloseProcesses:
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => -> No File
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-2006602166-2821085519-2699951813-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
SearchScopes: HKLM -> DefaultScope {E75392A3-3B2F-4E0B-B55A-820374FBABFE} URL = hxxp://www.bing.com/search?q={searchTerms}&form=TSHMDF&pc=MATM&src=IE-SearchBox
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {E75392A3-3B2F-4E0B-B55A-820374FBABFE} URL = hxxp://www.bing.com/search?q={searchTerms}&form=TSHMDF&pc=MATM&src=IE-SearchBox
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> Backup.Old.DefaultScope {5ABE60D2-1424-4179-BFEC-C803448C2DEB}
SearchScopes: HKLM-x32 -> {59EFC183-1B2D-D77C-E209-0304DF913DDF} URL = hxxp://www.bing.com/search?q={searchTerms}&form=TSHMDF&pc=MATM&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-2006602166-2821085519-2699951813-1001 -> Backup.Old.DefaultScope {95B7759C-8C7F-4BF1-B163-73684A933233}
SearchScopes: HKU\S-1-5-21-2006602166-2821085519-2699951813-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-2006602166-2821085519-2699951813-1001 -> {0616E362-A0BF-406D-9F8C-E2336F34B210} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-2006602166-2821085519-2699951813-1001 -> {0C95C021-4F2F-4DAF-9685-2B809FC4584E} URL = hxxp://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-2006602166-2821085519-2699951813-1001 -> {0EB828CD-7793-4880-9870-74A34AC5ECAD} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-2006602166-2821085519-2699951813-1001 -> {10B0930D-7460-4A61-B293-71D7E73C6251} URL = hxxp://rover.ebay.com/rover/1/710-71511 ... 4?satitle={searchTerms}
SearchScopes: HKU\S-1-5-21-2006602166-2821085519-2699951813-1001 -> {257484FB-36CE-4F98-A1D2-557A65F26676} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-2006602166-2821085519-2699951813-1001 -> {6BDE3B32-C997-477A-8E59-0DCD106A2AA4} URL = hxxp://www.firmy.cz/?q={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-2006602166-2821085519-2699951813-1001 -> {75953385-6471-4ACE-B005-732A11299C9A} URL = hxxp://www.bing.com/search?FORM=UP97DF& ... =072213&q={searchTerms}&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-2006602166-2821085519-2699951813-1001 -> {7F3C978E-BCE1-46E5-A32A-B0B09077B9C1} URL = hxxp://www.amazon.co.uk/gp/search?ie=UTF8&keywords={searchTerms}&tag=tochibauk-win7-ie-search-21&index=blended&linkCode=ur2
SearchScopes: HKU\S-1-5-21-2006602166-2821085519-2699951813-1001 -> {BB6FE0DC-73A4-4267-A7E9-74A34528EB35} URL = hxxp://www.novinky.cz/hledej?w={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-2006602166-2821085519-2699951813-1001 -> {C6913264-5BAA-4787-B45F-3A6F1123BB9F} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-2006602166-2821085519-2699951813-1001 -> {FD49F983-1E12-4A4A-8876-3CA127086F61} URL = hxxp://www.mapy.cz/?query={searchTerms}&sourceid=QuickSearch_12454
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @esn/npbattlelog,version=2.3.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.1\npbattlelog.dll [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
CHR DefaultSearchURL: Default -> hxxp://zooms.searchalgo.com/search/?cat ... b&s=zds&q={searchTerms}
CHR DefaultSearchKeyword: Default -> t
CHR DefaultSuggestURL: Default -> hxxp://sug.searchalgo.com/search/index_sg.php?q={searchTerms}
U2 CP_OMDRV; no ImagePath
U2 VNASC; no ImagePath
C:\ProgramData\AVG
C:\Users\Toshiba\AppData\Local\AvgSetupLog
C:\Users\Toshiba\AppData\Local\Avg
C:\windows\System32\Tasks\GoogleUpdateTaskMachineUA1d13f2efcf4e26
C:\windows\System32\Tasks\GoogleUpdateTaskMachineCore1d13f2eeddbead
C:\ProgramData\ezsidmv.dat
C:\ProgramData\KGyGaAvL.sys
C:\ProgramData\Microsoft.SqlServer.Compact.400.32.bc
C:\ProgramData\Microsoft.SqlServer.Compact.400.64.bc
C:\ProgramData\C__Program Files (x86)_WebcamMax_wcmmon.exe
Task: {07F27407-5A47-496C-83D7-58D57A4ACAD6} - System32\Tasks\GoogleUpdateTaskMachineUA1d13f2efcf4e26 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {A829DD62-90AB-45AA-B737-1823FACE133D} - System32\Tasks\GoogleUpdateTaskMachineCore1d13f2eeddbead => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

EmptyTemp:
End

(Můžeš použít funkci „vybrat vše“, klepni pravým tlačítkem myši na levé horní políčko v otevřeném poznámkovém bloku a zvol „ Vložit“).

Ulož jej na na plochu jako fixlist.txt


Spusťt FRST a stiskni tlačítko „Fix“ (Opravit) jen jednou a čekej.
Nástroj vypracuje log na ploše (Fixlog.txt), prosím zkopíruj sem celý jeho obsah.

C:\Users\Toshiba\Downloads\62373.ini
C:\Users\Toshiba\Downloads\2LF_1516_9K.ini
C:\Users\Toshiba\Downloads\2LF_1516_9K.ini
C:\Users\Toshiba\Downloads\korpiklaanisadjlfofjksdhfisdkfbnjkdfbnrk.ppt
a podobně si stahoval sám?

Aktualizuj javu:
http://www.oracle.com/technetwork/java/ ... 33155.html
Java SE Runtime Environment 8

Klikni na Accept License Agreement
Vyber si OS (Windows nebo Windows x64, Offline Installation)
jre-8-windows-i586-p.exe nebo
jre-8-windows-x64.exe
Stáhni ( download) a nainstaluj.
Ostatní javy odeber v přidat/odebrat programy.


Drive c: (TI30611600A) (Fixed) (Total:586.25 GB) (Free:70.58 GB) NTFS
nedostatek volného místa na disku!! Něco odinstaluj , smaž. Máš mít nejméně 15-20% volného místa na syst. disku , pro zajištění bezproblémového chodu windows!!
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra


Zpět na “HiJackThis”

Kdo je online

Uživatelé prohlížející si toto fórum: CommonCrawl [Bot], jukpu a 4 hosti