Prosím o kontrolu logu. (zpomalený notebook) Vyřešeno

[jerabina]

Vidím to tam, opravíme to.

Prosím stáhni příslušnou verzi programu pro Tvůj systém 32-bit/64-bit Farbar Recovery Scan Tool (FRST)
32bit.:
http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
64bit.:
http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
a ulož jej na plochu. ,pak spusť FRST jako správce
Potvrď způsob užití.
Neměň žádné z výchozích nastavení a klikni na položku „Scan“ („Skenovat“) .Když je skenování dokončeno, ukážou se dva logy = FRST.txt a Addition.txt a uloží se na ploše.Prosím zkopíruj sem celý jejich obsah.

[Reklama]

[Shacooler]

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:07-02-2016
Ran by Josef (administrator) on ALES (14-02-2016 00:52:49)
Running from C:\Users\Josef\Desktop
Loaded Profiles: Josef (Available Profiles: Josef)
Platform: Windows 8.1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(HP) C:\Windows\System32\HPSIsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.5\GoogleCrashHandler.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.5\GoogleCrashHandler64.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Pixart Imaging Inc) C:\Windows\System32\TiltWheelMouse.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
() C:\Users\Josef\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
() C:\Users\Josef\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\livecomm.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2234144 2014-02-05] (NVIDIA Corporation)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2778864 2014-08-06] (Synaptics Incorporated)
HKLM\...\Run: [MouseDriver] => C:\WINDOWS\system32\TiltWheelMouse.exe [241152 2013-04-09] (Pixart Imaging Inc)
HKLM-x32\...\Run: [WindowsDriverScan86] => C:\Program Files (x86)\Adobe Arkalis\Arkalis86.lnk [1501 2014-08-10] ()
HKLM-x32\...\Run: [WindowsDriverScan64] => C:\Program Files (x86)\Adobe Arkalis\Arkalis.lnk [1419 2014-08-10] ()
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7139768 2016-02-13] (AVAST Software)
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-218325960-1562441860-233008465-1001\...\Run: [Sony PC Companion] => C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [466144 2014-11-27] (Sony)
HKU\S-1-5-21-218325960-1562441860-233008465-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3014224 2016-02-04] (Valve Corporation)
HKU\S-1-5-21-218325960-1562441860-233008465-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8591272 2015-11-16] (Piriform Ltd)
HKU\S-1-5-21-218325960-1562441860-233008465-1001\...\Run: [MK LOL] => C:\Program Files (x86)\MKJogo\MK IM\Bin\MKIM.exe [813560 2016-01-27] (MKGame)
HKU\S-1-5-21-218325960-1562441860-233008465-1001\...\Run: [cz.seznam.software.autoupdate] => C:\Users\Josef\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-218325960-1562441860-233008465-1001\...\Run: [cz.seznam.software.szndesktop] => C:\Users\Josef\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [103080 2015-05-26] ()
HKU\S-1-5-21-218325960-1562441860-233008465-1001\...\MountPoints2: {2746ddd8-c343-11e4-be8a-7c0507ffab92} - "F:\Startme.exe"
HKU\S-1-5-21-218325960-1562441860-233008465-1001\...\MountPoints2: {e1da111f-9387-11e4-be71-7c0507ffab92} - "F:\SISetup.exe"
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [174296 2014-03-04] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\WINDOWS\SysWOW64\nvinit.dll => C:\WINDOWS\SysWOW64\nvinit.dll [148016 2014-03-04] (NVIDIA Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-02-13] (AVAST Software)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 213.46.172.37 213.46.172.36
Tcpip\..\Interfaces\{E5DA2A4D-6EF2-4E15-B669-2309E1D6A40B}: [DhcpNameServer] 192.168.3.1
Tcpip\..\Interfaces\{F8DE17BA-3433-4C5A-87C4-A349DE0AD942}: [DhcpNameServer] 213.46.172.37 213.46.172.36

Internet Explorer:
==================
SearchScopes: HKU\S-1-5-21-218325960-1562441860-233008465-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2012-10-01] (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-02-13] (AVAST Software)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2012-10-01] (Microsoft Corporation)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2012-10-01] (Microsoft Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-02-13] (AVAST Software)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2012-10-01] (Microsoft Corporation)

FireFox:
========
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1223183.dll [2015-12-22] (Adobe Systems, Inc.)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2012-10-01] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-10] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-10] (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2012-10-01] (Microsoft Corporation)
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-02-13]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: Avast SafePrice - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-02-13]

Chrome:
=======
CHR Profile: C:\Users\Josef\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Users\Josef\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-02-14]
CHR Extension: (Dokumenty Google) - C:\Users\Josef\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-02-14]
CHR Extension: (Disk Google) - C:\Users\Josef\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-02-14]
CHR Extension: (YouTube) - C:\Users\Josef\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-02-14]
CHR Extension: (Vyhledávání Google) - C:\Users\Josef\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-02-14]
CHR Extension: (Tabulky Google) - C:\Users\Josef\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-02-14]
CHR Extension: (Dokumenty Google offline) - C:\Users\Josef\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-02-14]
CHR Extension: (Avast Online Security) - C:\Users\Josef\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-02-14]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Josef\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-02-14]
CHR Extension: (Gmail) - C:\Users\Josef\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-02-14]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2016-02-13]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [237096 2016-02-13] (AVAST Software)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1593632 2014-02-05] (NVIDIA Corporation)
S3 Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [155824 2013-02-04] (Avanquest Software) [File not signed]
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [332800 2013-04-25] (IDT, Inc.) [File not signed]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2016-02-13] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [107792 2016-02-13] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2016-02-13] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-02-13] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1065720 2016-02-13] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [463744 2016-02-13] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [165344 2016-02-13] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [287016 2016-02-13] (AVAST Software)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
S3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [44296 2015-03-30] (LogMeIn Inc.)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-03] (Intel Corporation)
S3 mvusbews; C:\Windows\System32\Drivers\mvusbews.sys [20480 2012-12-24] (Marvell Semiconductor, Inc.)
R3 RTWlanE; C:\Windows\system32\DRIVERS\rtwlane.sys [2987224 2013-11-24] (Realtek Semiconductor Corporation )
R3 Thotkey; C:\Windows\System32\drivers\Thotkey.sys [32624 2013-08-19] (Windows (R) Win 7 DDK provider)
S3 t_mouse.sys; C:\Windows\system32\DRIVERS\t_mouse.sys [6144 2013-04-09] ()
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-02-14 00:52 - 2016-02-14 00:53 - 00013691 _____ C:\Users\Josef\Desktop\FRST.txt
2016-02-14 00:52 - 2016-02-14 00:52 - 02370560 _____ (Farbar) C:\Users\Josef\Desktop\FRST64.exe
2016-02-14 00:52 - 2016-02-14 00:52 - 00000000 ____D C:\FRST
2016-02-14 00:30 - 2016-02-13 23:36 - 00024064 _____ C:\WINDOWS\zoek-delete.exe
2016-02-13 23:35 - 2016-02-14 00:26 - 00000000 ____D C:\zoek_backup
2016-02-13 23:34 - 2016-02-13 23:34 - 01309184 _____ C:\Users\Josef\Desktop\zoek.exe
2016-02-13 21:58 - 2016-02-13 21:58 - 00000000 ____D C:\Users\Josef\Desktop\MC51
2016-02-13 13:03 - 2016-02-13 13:02 - 00398152 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2016-02-13 13:02 - 2016-02-13 13:02 - 00052184 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2016-02-13 12:16 - 2016-02-13 12:16 - 25154632 _____ C:\Users\Josef\Desktop\RogueKillerX64.exe
2016-02-13 12:15 - 2016-02-13 12:15 - 00000624 _____ C:\Users\Josef\Desktop\JRT.txt
2016-02-13 12:09 - 2016-02-13 12:09 - 01609032 _____ (Malwarebytes) C:\Users\Josef\Desktop\JRT.exe
2016-02-12 17:15 - 2016-02-13 12:05 - 00000000 ____D C:\AdwCleaner
2016-02-12 17:15 - 2016-02-12 17:15 - 01508352 _____ C:\Users\Josef\Downloads\adwcleaner_5.033.exe
2016-02-12 16:19 - 2016-02-12 16:19 - 710865723 _____ C:\WINDOWS\MEMORY.DMP
2016-02-12 16:19 - 2016-02-12 16:19 - 00302624 _____ C:\WINDOWS\Minidump\021216-36406-01.dmp
2016-02-12 16:19 - 2016-02-12 16:19 - 00000000 ____D C:\WINDOWS\Minidump
2016-02-12 16:18 - 2016-02-12 16:18 - 00448512 _____ (OldTimer Tools) C:\Users\Josef\Downloads\TFC.exe
2016-02-12 11:31 - 2016-02-12 11:31 - 00388608 _____ (Trend Micro Inc.) C:\Users\Josef\Downloads\HijackThis.exe
2016-02-12 08:25 - 2016-02-12 08:25 - 02759076 _____ C:\Users\Josef\Downloads\TC_32-64bit.zip
2016-02-11 18:58 - 2016-02-11 18:58 - 57569888 _____ (Oracle Corporation) C:\Users\Josef\Downloads\jre-8u74-windows-x64.exe
2016-02-10 13:46 - 2016-02-10 13:47 - 00000000 ____D C:\Users\Josef\AppData\Local\Apps\Windows 7 USB DVD Download Tool
2016-02-10 13:46 - 2016-02-10 13:46 - 00002564 _____ C:\Users\Josef\Desktop\Windows 7 USB DVD Download Tool.lnk
2016-02-10 13:46 - 2016-02-10 13:46 - 00000000 ____D C:\Users\Josef\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows 7 USB DVD Download Tool
2016-02-10 13:43 - 2016-02-10 13:43 - 02721168 _____ (Microsoft Corporation) C:\Users\Josef\Downloads\Windows7-USB-DVD-Download-Tool-Installer-en-US.exe
2016-02-10 11:26 - 2016-02-10 11:26 - 00000935 _____ C:\Users\Josef\Desktop\nativelog.txt
2016-02-10 11:18 - 2016-02-10 11:18 - 00000000 ____D C:\Users\Josef\Documents\MC-51
2016-02-10 11:17 - 2016-02-10 11:17 - 03357294 _____ (DR. J. Rathlev ) C:\Users\Josef\Downloads\mc-setup-5.7.08.exe
2016-02-10 11:17 - 2016-02-10 11:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MC-Tools
2016-02-10 11:17 - 2016-02-10 11:17 - 00000000 ____D C:\Program Files (x86)\MC-Tools
2016-02-10 11:16 - 2016-02-10 11:17 - 03357294 _____ (DR. J. Rathlev ) C:\Users\Josef\Downloads\Nepotvrzeno 335583.crdownload
2016-02-10 11:00 - 2016-02-10 11:03 - 00000000 ____D C:\Users\Josef\Downloads\Windows 7 Ultimate Sp1 x86-x64 En-Us OEM ESD Sept2015 Pre-Activation=-{TEAM OS}=
2016-02-10 10:59 - 2016-02-10 10:59 - 00020650 _____ C:\Users\Josef\Downloads\[kat.cr]windows.7.ultimate.sp1.x86.x64.en.us.oem.esd.sept2015.pre.activation.team.os.torrent
2016-02-09 21:19 - 2016-02-09 21:19 - 00000000 ____D C:\$WINDOWS.~BT
2016-02-09 19:36 - 2016-02-09 19:36 - 00000000 ____D C:\Users\Josef\AppData\Roaming\Nero
2016-02-09 19:35 - 2016-02-09 19:35 - 00002929 _____ C:\Users\Public\Desktop\Nero 2016.lnk
2016-02-09 19:35 - 2016-02-09 19:35 - 00000000 ____D C:\WINDOWS\System32\Tasks\Nero
2016-02-09 19:34 - 2016-02-09 19:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero 2016
2016-02-09 19:33 - 2016-02-09 19:35 - 00000000 ____D C:\ProgramData\Nero
2016-02-09 19:33 - 2016-02-09 19:35 - 00000000 ____D C:\Program Files (x86)\Nero
2016-02-09 19:33 - 2016-02-09 19:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero
2016-02-06 18:19 - 2016-02-14 00:25 - 00000000 ____D C:\Users\Default\AppData\Local\Google
2016-02-06 18:19 - 2016-02-14 00:25 - 00000000 ____D C:\Users\Default User\AppData\Local\Google
2016-02-06 18:19 - 2016-02-06 18:19 - 00000000 ____D C:\Program Files (x86)\Seznam.cz
2016-02-06 18:18 - 2016-02-14 00:39 - 00000000 ____D C:\Users\Josef\AppData\Roaming\Seznam.cz
2016-02-05 23:56 - 2016-02-05 23:56 - 00000000 ____D C:\Users\Josef\Documents\SimCity
2016-02-05 23:55 - 2016-02-05 23:55 - 00001736 _____ C:\Users\Josef\Desktop\Play SimCity 2013 Offline.lnk
2016-02-05 22:37 - 2016-02-05 22:50 - 3991994368 _____ C:\Users\Josef\Downloads\WINDOWS 7 ALL IN ONE(PRE-ACTIVATED).ISO
2016-01-28 10:37 - 2016-01-28 10:37 - 00000000 ____D C:\Users\Josef\Documents\League of Legends
2016-01-24 16:45 - 2016-01-24 16:45 - 00000000 ____D C:\Users\Josef\AppData\Local\Smellyriver
2016-01-24 16:43 - 2016-01-24 16:45 - 00000000 ____D C:\Users\Josef\Desktop\Tank inspector
2016-01-23 20:03 - 2016-01-23 20:03 - 00000000 ____D C:\Users\Josef\Documents\Banished
2016-01-17 14:30 - 2016-01-17 14:31 - 00000000 ____D C:\Program Files (x86)\Minecraft
2016-01-17 14:30 - 2016-01-17 14:30 - 00000973 _____ C:\Users\Public\Desktop\Minecraft.lnk
2016-01-17 14:30 - 2016-01-17 14:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minecraft

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-02-14 00:48 - 2014-12-22 21:02 - 00000970 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-02-14 00:34 - 2015-03-18 13:11 - 00000000 ____D C:\Program Files (x86)\Steam
2016-02-14 00:34 - 2014-12-27 23:21 - 00000000 __RDO C:\Users\Josef\OneDrive
2016-02-14 00:33 - 2013-08-22 15:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-02-14 00:32 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2016-02-13 21:48 - 2015-01-09 10:30 - 00003954 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{C1FD94B2-C7F6-45F0-8A4F-E063F006F98D}
2016-02-13 13:03 - 2015-11-26 23:54 - 00287016 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswvmm.sys
2016-02-13 13:03 - 2015-11-26 23:54 - 00003924 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2016-02-13 13:03 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\Inf
2016-02-13 13:02 - 2015-11-26 23:54 - 01065720 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2016-02-13 13:02 - 2015-11-26 23:54 - 00463744 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2016-02-13 13:02 - 2015-11-26 23:54 - 00165344 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2016-02-13 13:02 - 2015-11-26 23:54 - 00107792 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2016-02-13 13:02 - 2015-11-26 23:54 - 00103064 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2016-02-13 13:02 - 2015-11-26 23:54 - 00074544 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2016-02-13 13:02 - 2015-11-26 23:54 - 00037656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2016-02-13 12:17 - 2015-10-24 13:54 - 00028272 _____ C:\WINDOWS\system32\Drivers\TrueSight.sys
2016-02-12 20:43 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\rescache
2016-02-12 18:15 - 2015-04-30 07:28 - 00000080 _____ C:\Users\Josef\AppData\Local剜捯獫慴⁲慇敭屳呇⁁屖湥楴汴浥湥⹴湩潦
2016-02-12 18:14 - 2015-02-04 16:32 - 00000000 ____D C:\Users\Josef\AppData\Roaming\TS3Client
2016-02-12 17:28 - 2015-04-06 19:03 - 00000000 ____D C:\Users\Josef\AppData\Roaming\.minecraft
2016-02-12 17:22 - 2015-01-29 13:03 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-02-12 17:12 - 2014-12-27 23:01 - 00000000 ____D C:\Users\Josef
2016-02-12 16:34 - 2014-12-22 17:04 - 00003596 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-218325960-1562441860-233008465-1001
2016-02-12 16:21 - 2014-12-27 18:02 - 01239040 ___SH C:\Users\Josef\Desktop\Thumbs.db
2016-02-12 10:25 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-02-11 22:42 - 2014-12-23 20:37 - 00000000 ____D C:\Users\Josef\AppData\Roaming\Skype
2016-02-11 18:19 - 2012-07-26 08:59 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-02-11 13:02 - 2015-12-30 00:18 - 00000000 ____D C:\Users\Josef\Documents\TrackMania
2016-02-10 20:52 - 2015-04-07 10:41 - 00002203 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-02-10 20:52 - 2014-12-22 21:02 - 00002232 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-02-10 19:00 - 2013-08-22 16:36 - 00000000 ___HD C:\Program Files\WindowsApps
2016-02-10 16:08 - 2014-12-27 23:02 - 00001908 _____ C:\WINDOWS\diagwrn.xml
2016-02-10 16:08 - 2014-12-27 23:02 - 00001908 _____ C:\WINDOWS\diagerr.xml
2016-02-10 16:03 - 2015-01-29 12:55 - 00000000 _____ C:\Recovery.txt
2016-02-10 11:10 - 2015-01-01 15:26 - 00000000 ____D C:\Users\Josef\AppData\Roaming\uTorrent
2016-02-10 10:43 - 2014-12-22 21:02 - 00003942 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2016-02-10 10:43 - 2014-12-22 21:02 - 00003706 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2016-02-10 10:43 - 2014-12-22 21:02 - 00000966 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-02-10 10:25 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\en-GB
2016-02-10 10:25 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\en-GB
2016-02-10 10:25 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Windows Defender
2016-02-10 10:25 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2016-02-10 10:24 - 2014-09-24 16:59 - 00000000 ____D C:\Program Files\Windows Journal
2016-02-10 10:24 - 2014-09-24 16:39 - 00000000 ____D C:\WINDOWS\SysWOW64\winrm
2016-02-10 10:24 - 2014-09-24 16:39 - 00000000 ____D C:\WINDOWS\SysWOW64\WCN
2016-02-10 10:24 - 2014-09-24 16:39 - 00000000 ____D C:\WINDOWS\SysWOW64\slmgr
2016-02-10 10:24 - 2014-09-24 16:39 - 00000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2016-02-10 10:24 - 2014-09-24 16:39 - 00000000 ____D C:\WINDOWS\system32\winrm
2016-02-10 10:24 - 2014-09-24 16:39 - 00000000 ____D C:\WINDOWS\system32\WCN
2016-02-10 10:24 - 2014-09-24 16:39 - 00000000 ____D C:\WINDOWS\system32\slmgr
2016-02-10 10:24 - 2014-09-24 16:39 - 00000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2016-02-10 10:24 - 2013-08-22 16:36 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-02-10 10:24 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\WinStore
2016-02-10 10:24 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2016-02-10 10:24 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\migwiz
2016-02-10 10:24 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2016-02-10 10:24 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\Help
2016-02-10 10:24 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\FileManager
2016-02-10 10:24 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2016-02-10 10:24 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Common Files\System
2016-02-10 10:24 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2016-02-10 10:24 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe
2016-02-10 10:24 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-02-10 10:24 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\servicing
2016-02-10 10:10 - 2015-08-12 22:48 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wu.upgrade.ps.dll
2016-02-06 12:43 - 2014-09-24 17:23 - 01745984 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-02-06 12:43 - 2014-09-24 16:39 - 00739924 _____ C:\WINDOWS\system32\perfh005.dat
2016-02-06 12:43 - 2014-09-24 16:39 - 00151610 _____ C:\WINDOWS\system32\perfc005.dat
2016-02-06 12:30 - 2015-12-02 15:30 - 00000000 ____D C:\Users\Josef\AppData\Local\CrashDumps
2016-02-05 23:55 - 2015-01-12 18:01 - 00000000 ____D C:\Games
2016-02-05 22:55 - 2015-04-30 07:25 - 00000000 ____D C:\Program Files (x86)\Rockstar Games
2016-02-05 22:55 - 2015-04-30 07:24 - 00000000 ____D C:\Program Files\Rockstar Games
2016-01-30 17:48 - 2015-11-14 22:55 - 00000000 ____D C:\Users\Josef\AppData\Local\wf-launcher
2016-01-30 16:26 - 2015-11-14 22:55 - 00000000 ____D C:\ProgramData\GFACE
2016-01-27 17:33 - 2014-12-23 22:35 - 00000058 _____ C:\WINDOWS\JQHApp.dat
2016-01-27 17:32 - 2015-12-30 22:37 - 00001127 _____ C:\Users\Josef\Desktop\MK LOL.lnk
2016-01-27 17:32 - 2014-12-23 20:50 - 00000000 ____D C:\Users\Josef\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MKJogo
2016-01-25 12:40 - 2015-01-06 23:43 - 01046528 ___SH C:\Users\Josef\Downloads\Thumbs.db
2016-01-22 08:34 - 2015-01-22 21:14 - 00000000 ___RD C:\Users\Josef\Desktop\škola
2016-01-21 10:09 - 2014-12-22 16:56 - 00000000 ____D C:\Users\Josef\AppData\Local\Packages

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2016-02-06 08:31

==================== End of FRST.txt ============================

[Shacooler]

Additional scan result of Farbar Recovery Scan Tool (x64) Version:07-02-2016
Ran by Josef (2016-02-14 00:53:49)
Running from C:\Users\Josef\Desktop
Windows 8.1 (X64) (2014-12-27 22:17:04)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-218325960-1562441860-233008465-500 - Administrator - Disabled)
Guest (S-1-5-21-218325960-1562441860-233008465-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-218325960-1562441860-233008465-1005 - Limited - Enabled)
Josef (S-1-5-21-218325960-1562441860-233008465-1001 - Administrator - Enabled) => C:\Users\Josef

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Shockwave Player 12.2 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.2.3.183 - Adobe Systems, Inc.)
Assassin's Creed IV Black Flag (HKLM-x32\...\Steam App 242050) (Version: - Ubisoft Montreal)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 11.1.2253 - AVAST Software)
BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.68.1077 - AB Team, d.o.o.)
CCleaner (HKLM\...\CCleaner) (Version: 5.12 - Piriform)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve)
CPUID CPU-Z 1.74 (HKLM\...\CPUID CPU-Z_is1) (Version: - )
Free Auto Clicker 4.1.6 (HKLM-x32\...\Free Auto Clicker_is1) (Version: - FreeAutoClicker Co., Ltd.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 48.0.2564.109 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.29.5 - Google Inc.) Hidden
HP LaserJet Professional M1130-M1210 MFP Series (HKLM\...\HP LaserJet Professional M1130-M1210 MFP Series) (Version: - )
IDT Audio Driver (HKLM\...\{11424B27-C16B-4505-9667-82A10AD1B1DC}) (Version: 6.10.6472.0 - IDT)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3345 - Intel Corporation)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden
Malwarebytes Anti-Malware verze 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
Mc-Tools 5.7.8.0 (HKLM-x32\...\Mc-Tools_is1) (Version: 5.7.8.0 - DR. J. Rathlev)
Microsoft Office Professional Plus 2013 (HKLM-x32\...\Office15.PROPLUSR) (Version: 15.0.4420.1017 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
Minecraft Launcher 1.8 (HKLM-x32\...\Minecraft Launcher 1.8 1.0.0) (Version: 1.0.0 - Mojang)
MK LOL (HKU\S-1-5-21-218325960-1562441860-233008465-1001\...\MK LOL) (Version: - )
Nástroje kontroly pravopisu pro Microsoft Office 2013 – čeština (HKLM-x32\...\{90150000-001F-0405-0000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation)
Nero 2016 (HKLM-x32\...\{4297E807-5633-466A-8AC0-5AC48D310471}) (Version: 17.0.02000 - Nero AG)
Nero Info (HKLM-x32\...\{F030BFE8-8476-4C08-A553-233DE80A2BE1}) (Version: 16.0.2000 - Nero AG)
NVIDIA Ovladače grafiky 335.23 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 335.23 - NVIDIA Corporation)
NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation)
Outils de vérification linguistique 2013 de Microsoft Office - Français (x32 Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Ovládací panel NVIDIA 335.23 (Version: 335.23 - NVIDIA Corporation) Hidden
PAYDAY 2 (HKLM-x32\...\Steam App 218620) (Version: - OVERKILL - a Starbreeze Studio.)
Prerequisite installer (x32 Version: 17.0.0002 - Nero AG) Hidden
Rocket League (HKLM-x32\...\Steam App 252950) (Version: - Psyonix)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.7.2 - Rockstar Games)
Scan To (HKLM\...\{E8A34AC8-0137-4515-A94B-0A0946DDC251}) (Version: 2.0.1 - HP)
Seznam Software (HKU\S-1-5-21-218325960-1562441860-233008465-1001\...\SeznamInstall) (Version: - Seznam.cz)
Skype™ 7.2 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.2.103 - Skype Technologies S.A.)
Sony PC Companion 2.10.251 (HKLM-x32\...\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}) (Version: 2.10.251 - Sony)
Stashimi Stub Installer (x32 Version: 18.001.1 - Nero AG) Hidden
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 17.0.10.51 - Synaptics Incorporated)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TrackMania Nations Forever (HKLM-x32\...\Steam App 11020) (Version: - Nadeo)
Uplay (HKLM-x32\...\Uplay) (Version: 4.0 - Ubisoft)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Windows 7 USB/DVD Download Tool (HKLM-x32\...\{CCF298AF-9CE1-4B26-B251-486E98A34789}) (Version: 1.0.30 - Microsoft Corporation)
WinRAR 5.20 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.20.0 - win.rar GmbH)
World of Tanks - Common Test (HKU\S-1-5-21-218325960-1562441860-233008465-1001\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812ct}_is1) (Version: - Wargaming.net)
World of Tanks (HKU\S-1-5-21-218325960-1562441860-233008465-1001\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812EU}_is1) (Version: - Wargaming.net)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {081A0614-27DB-450E-874C-5480E3D31FBA} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {10150D64-9721-40F8-B386-6C3ABA0615BE} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-02-13] (AVAST Software)
Task: {280BBC85-575B-45FA-A381-B09A90D0AD70} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2014-08-06] (Synaptics Incorporated)
Task: {285A02C6-BB56-40A2-9C42-CDA882ACC915} - System32\Tasks\{3F108AFA-9120-49D7-9AB1-66BB1D6AAEEC} => Chrome.exe hxxp://ui.skype.com/ui/0/7.4.64.102/cs/ ... rogressBar
Task: {2D4E1EBA-7B15-4F45-B8E0-642EEB59DC9D} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {53B73941-35C1-4CF6-A520-5F796044C088} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2016-01-20] (AVAST Software)
Task: {6AE2E15F-96EF-41B0-9CDC-BA516B320F31} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe
Task: {71654D97-1F0F-460B-85D3-3B465AEF40EE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
Task: {792A9385-4616-4700-9143-EDBB876149A2} - \avastBCLRestartS-1-5-21-218325960-1562441860-233008465-1001 -> No File <==== ATTENTION
Task: {954E5327-46B1-4EE0-9888-DF0B55C92098} - System32\Tasks\Java Platform SE Auto Updater => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
Task: {B0340173-60FF-437C-BA1A-C3E4B3B720C9} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
Task: {B256F8BD-9148-449A-85E4-D02799767B22} - System32\Tasks\Nero\Nero Info => C:\Program Files (x86)\Common Files\Nero\Nero Info\NeroInfo.exe [2015-06-04] (Nero AG)
Task: {DFE73423-D942-4B79-A86F-5B014554F89D} - System32\Tasks\{027CAACA-F117-4228-B76B-1AAD7264B9C1} => Chrome.exe hxxp://ui.skype.com/ui/0/7.5.0.102/cs/a ... age=tsMain
Task: {EF2252D7-F5E3-4B40-8582-6FB5CEF4A3BC} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-11-16] (Piriform Ltd)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2014-03-27 10:59 - 2014-03-04 15:35 - 00013088 _____ () C:\Program Files\NVIDIA Corporation\CoProcManager\detoured.dll
2014-12-27 22:53 - 2014-03-04 14:05 - 00116056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-01-04 16:06 - 2012-09-29 13:25 - 00409088 _____ () C:\WINDOWS\System32\HPM1210LM.DLL
2015-01-04 16:06 - 2012-09-29 13:25 - 00074240 _____ () C:\WINDOWS\system32\spool\PRTPROCS\x64\HPM1210PP.dll
2012-10-01 20:34 - 2012-10-01 20:34 - 06522480 _____ () C:\Program Files\Microsoft Office\Office15\1033\GrooveIntlResource.dll
2016-02-06 18:19 - 2015-05-26 12:35 - 00079872 _____ () C:\Users\Josef\AppData\Roaming\Seznam.cz\bin\24710libfoxloader-x64.dll
2013-11-04 19:22 - 2013-11-04 19:22 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2016-02-06 18:18 - 2015-05-26 12:38 - 00457384 _____ () C:\Users\Josef\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
2016-02-06 18:19 - 2015-05-26 12:36 - 00073896 _____ () C:\Users\Josef\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe
2015-11-16 17:55 - 2015-11-16 17:55 - 00047104 _____ () C:\Program Files\CCleaner\lang\lang-1029.dll
2016-02-13 13:02 - 2016-02-13 13:02 - 00113496 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2016-02-13 13:02 - 2016-02-13 13:02 - 00133768 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-02-13 22:12 - 2016-02-13 22:12 - 02829824 _____ () C:\Program Files\AVAST Software\Avast\defs\16021301\algo.dll
2016-02-13 13:02 - 2016-02-13 13:02 - 00480760 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2016-02-06 18:19 - 2015-05-26 12:37 - 00078504 _____ () C:\Users\Josef\AppData\Roaming\Seznam.cz\bin\24707libfoxloader.dll
2015-03-18 13:15 - 2015-12-15 06:54 - 00782336 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2015-03-18 13:15 - 2015-07-03 17:12 - 04962816 _____ () C:\Program Files (x86)\Steam\v8.dll
2015-03-18 13:15 - 2016-02-04 22:02 - 02546768 _____ () C:\Program Files (x86)\Steam\video.dll
2015-03-18 13:15 - 2015-07-03 17:12 - 01556992 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2015-03-18 13:15 - 2015-07-03 17:12 - 01187840 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2015-03-18 13:15 - 2015-09-24 01:33 - 02549248 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2015-03-18 13:15 - 2015-09-24 01:33 - 00491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2015-03-18 13:15 - 2015-09-24 01:33 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2015-03-18 13:15 - 2015-09-24 01:33 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2015-03-18 13:15 - 2015-09-24 01:33 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2015-03-18 13:15 - 2016-02-04 22:01 - 00802896 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2015-07-28 19:22 - 2015-12-30 02:51 - 00208896 _____ () C:\Program Files (x86)\Steam\bin\openvr_api.dll
2016-02-06 18:18 - 2015-05-26 12:38 - 00862888 _____ () C:\Users\Josef\AppData\Roaming\Seznam.cz\bin\lightspeed.dll
2016-01-17 22:29 - 2016-01-17 22:29 - 40539648 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2015-03-18 13:15 - 2016-01-06 02:52 - 48387872 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 14:25 - 2016-02-13 23:39 - 00000753 ____A C:\WINDOWS\system32\Drivers\etc\hosts


127.0.0.1 localhost

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-218325960-1562441860-233008465-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Josef\Desktop\Red-Wallpaper-1920x1080-47010.jpg
DNS Servers: 213.46.172.37 - 213.46.172.36
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

HKLM\...\StartupApproved\Run32: => "WindowsDriverScan64"
HKLM\...\StartupApproved\Run32: => "WindowsDriverScan86"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKU\S-1-5-21-218325960-1562441860-233008465-1001\...\StartupApproved\StartupFolder: => "Curse.lnk"
HKU\S-1-5-21-218325960-1562441860-233008465-1001\...\StartupApproved\Run: => "MK LOL"
HKU\S-1-5-21-218325960-1562441860-233008465-1001\...\StartupApproved\Run: => "Sony PC Companion"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{9A5BDAB3-0A41-4C31-98ED-FDC723EE409C}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{ED689AC9-BA32-4F4B-B104-B02AAC05FDC6}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{692667DB-131E-4384-BF69-D12FA5C1DFFE}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [TCP Query User{CF89FA77-93CF-4384-97F7-C55A1556D61F}C:\users\josef\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\josef\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{4D2521FB-79DA-4A92-8946-C6E86B36D87F}C:\users\josef\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\josef\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [TCP Query User{38DB13B5-284C-438A-A108-DC8387B42E63}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe
FirewallRules: [UDP Query User{220E00C6-4CBC-456E-AFFD-C8D79E7DF7AA}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe
FirewallRules: [TCP Query User{2CD995A9-063C-4F50-94F5-63ED7F870B13}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe
FirewallRules: [UDP Query User{AF935665-EA10-4B29-90D3-B1FD9713E0DA}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe
FirewallRules: [{FA09D5AB-7DEE-44C1-A35E-74F2BF33C678}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe
FirewallRules: [{B8A77A9F-8D2D-4667-A889-358E986633BD}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe
FirewallRules: [{AF567FC1-8111-4F38-8FBF-B5FE8E28EC55}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{63640333-3CB5-414E-A45A-063F87C275EC}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [TCP Query User{5C5893D8-5198-4583-9B7C-47EE9534827F}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe
FirewallRules: [UDP Query User{2E058C2C-2088-4477-9CBF-7ACA6E06FBC9}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe
FirewallRules: [TCP Query User{5702CEFA-1324-4836-BB12-0364FD8636E2}C:\users\josef\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\josef\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{5E3CF1AA-B414-4735-9858-3EF6AA46598B}C:\users\josef\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\josef\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [TCP Query User{5BACB8AA-A9CE-4CED-A158-8FA58E72A64A}E:\easysetupassistant\wr741n\easysetupassistant.exe] => (Allow) E:\easysetupassistant\wr741n\easysetupassistant.exe
FirewallRules: [UDP Query User{378F6725-07B7-4A77-9B59-47F860B58987}E:\easysetupassistant\wr741n\easysetupassistant.exe] => (Allow) E:\easysetupassistant\wr741n\easysetupassistant.exe
FirewallRules: [{1D216709-1AE0-4EA3-89A6-77D8BB082641}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{60540592-969A-45B3-ADA4-44E250A635AD}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{867489A6-BA62-44AA-A33A-E77FAD231D18}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{9E8E548C-D2BB-4A42-BAD9-A0EBDA83E462}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{59857E9E-2B73-4C23-B9C7-9C29A2BAB2E0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [{C14ACF88-052C-496B-8206-E6E19487F51B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [{663C650F-35C7-41F6-8D1A-796C5A08BC45}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{D158088F-FC58-4939-A9F4-922F5BE973B2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{15C61921-43AF-4CF2-906F-FE9FE24CB4F0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{CBEFBB47-EF26-4560-B6D5-81096B9AA70E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{BAC0CECD-3F5D-4838-AC8A-A142758E69D3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{5D2BE006-7C04-4201-B1B4-E6C04C31A650}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{E9E1E12A-112A-4458-BC9E-09BE0554BC46}] => (Allow) C:\Users\Josef\Desktop\Steam.exe
FirewallRules: [{7451669A-054C-4ED7-B0EC-75F0F208AB75}] => (Allow) C:\Users\Josef\Desktop\Steam.exe
FirewallRules: [{B6B29D78-635B-4233-93CC-7F06359913F8}] => (Allow) C:\Program Files\KMSnano\qemu-system-i386.exe
FirewallRules: [{6561CE63-1685-4982-A614-AF7825A4F761}] => (Allow) C:\Program Files\KMSnano\qemu-system-i386.exe
FirewallRules: [{4C6F2E37-C355-4426-A161-D8142009CE08}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Assassin's Creed IV Black Flag\AC4BFSP.exe
FirewallRules: [{C5EF54F2-6DD3-4A20-98A3-22DCADA510A6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Assassin's Creed IV Black Flag\AC4BFSP.exe
FirewallRules: [{4BB2243C-C26B-4E65-9A1A-AD2F44BD5376}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Assassin's Creed IV Black Flag\AC4BFMP.exe
FirewallRules: [{2D0D58AA-854E-4A6B-A73E-A934366F25FA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Assassin's Creed IV Black Flag\AC4BFMP.exe
FirewallRules: [{F7BA123F-82E3-43D6-9281-C3F48370CA62}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe
FirewallRules: [{B285057E-5E69-4218-986D-BCE73158F9B4}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe
FirewallRules: [{6ACE951B-AE35-450D-BA72-5524F0FED68C}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{165E7090-29AB-4D3B-9E02-071803643238}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [TCP Query User{A96795C1-3432-4AA4-B827-EB4F3B113DC1}C:\program files (x86)\java\jre1.8.0_45\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_45\bin\javaw.exe
FirewallRules: [UDP Query User{297BAC2B-3A58-478B-8475-2F0470706DEE}C:\program files (x86)\java\jre1.8.0_45\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_45\bin\javaw.exe
FirewallRules: [TCP Query User{B913D5A4-4380-4152-85FF-FCF18DC9F11E}C:\games\world_of_tanks_ct\wotlauncher.exe] => (Block) C:\games\world_of_tanks_ct\wotlauncher.exe
FirewallRules: [UDP Query User{1507B382-3F47-4FA3-AA94-C1080B016C0C}C:\games\world_of_tanks_ct\wotlauncher.exe] => (Block) C:\games\world_of_tanks_ct\wotlauncher.exe
FirewallRules: [TCP Query User{AE8AE1FF-8899-4468-AD11-D35857E34C14}C:\games\world_of_tanks_ct\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_ct\worldoftanks.exe
FirewallRules: [UDP Query User{3A990889-AB43-43CB-B03B-7A99A1C228DD}C:\games\world_of_tanks_ct\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_ct\worldoftanks.exe
FirewallRules: [TCP Query User{AB9EA694-AE2D-4B7F-B2D4-43AF77E73F66}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe
FirewallRules: [UDP Query User{C8D7F902-F2D8-4847-BD86-F715B85E01CE}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe
FirewallRules: [{1D37B09C-3A38-43CB-8A7A-A208DFCF35D1}] => (Allow) C:\Program Files (x86)\Rockstar Games\Grand Theft Auto IV\LaunchGTAIV.exe
FirewallRules: [{0DC5216C-DCC8-406E-AF09-CB8360EBB771}] => (Allow) C:\Program Files (x86)\Rockstar Games\Grand Theft Auto IV\LaunchGTAIV.exe
FirewallRules: [TCP Query User{3B30B09C-D8D1-4838-8934-A9D701E46FBE}C:\program files (x86)\tmnationsforever\tmforever.exe] => (Allow) C:\program files (x86)\tmnationsforever\tmforever.exe
FirewallRules: [UDP Query User{CF0FDA2C-9FE2-40E5-978A-C41868950A39}C:\program files (x86)\tmnationsforever\tmforever.exe] => (Allow) C:\program files (x86)\tmnationsforever\tmforever.exe
FirewallRules: [{ED9140BC-6416-4F90-A526-C7549A1E60CD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TrackMania Nations Forever\TmForever.exe
FirewallRules: [{D554A6B5-0C49-434B-9374-005A4493A972}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TrackMania Nations Forever\TmForever.exe
FirewallRules: [{3B514B22-02F7-46CE-99BC-355181C0EFE5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TrackMania Nations Forever\TmForeverLauncher.exe
FirewallRules: [{11DE9558-CA58-49C5-B37D-5CDE99129496}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TrackMania Nations Forever\TmForeverLauncher.exe
FirewallRules: [TCP Query User{51A7F275-117C-4198-B968-988515DB63FC}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{C71824A2-A41F-4C13-A727-D62D70147993}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{D19C92B4-6403-426A-AFBE-F0E3398A2AE8}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{6CF8D99F-10D0-4021-B519-8834F9FDC2A2}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{99F84026-3ABF-41B7-8B78-029FE7D972D4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warface\live\nw.exe
FirewallRules: [{DE45AD62-DD96-4238-A022-90392AE0223B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warface\live\nw.exe
FirewallRules: [TCP Query User{38581D97-3AB5-4306-92BB-E55FF4C78161}C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [UDP Query User{99579B41-7354-4EA2-8BED-1BDC47EA2E9D}C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [{9AE0A69E-84F8-4203-B56A-130492EC3EBE}] => (Allow) C:\Games\SimCity 2013 Offline\SimCity\SimCity.exe
FirewallRules: [{6F608643-462D-4381-A3DB-D5B7B9EDFF98}] => (Allow) C:\Games\SimCity 2013 Offline\SimCity\SimCity.exe
FirewallRules: [{D0EE264F-6C6E-4920-9F72-2ED1E114E58A}] => (Allow) C:\Games\SimCity 2013 Offline\SimCity\SimCity.exe
FirewallRules: [{45D8A1E4-C29D-4E51-82C8-AB09730FE964}] => (Allow) C:\Games\SimCity 2013 Offline\SimCity\SimCity.exe
FirewallRules: [{8006A6EF-2B0B-4AD6-BFC9-1B3B8C861127}] => (Allow) C:\Program Files (x86)\Nero\Nero 2016\Nero Burning ROM\StartNBR.exe
FirewallRules: [{12B7BFED-C1A1-43BF-899A-4EC45536E197}] => (Allow) C:\Program Files (x86)\Nero\Nero 2016\Nero Burning ROM\nero.exe
FirewallRules: [{E2AB1B02-30B1-4904-8099-562F947BA3E8}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{A07C66E4-577A-4575-B6C5-D22832BA1DD3}C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [UDP Query User{92CEE4A4-DE29-4622-9651-403CABFF634B}C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [{41B53FAA-ACD7-43E6-A794-A9B123187787}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{DA42628D-D2EF-4E8B-BFFB-281230600399}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe

==================== Restore Points =========================

26-01-2016 15:44:47 Naplánovaný kontrolní bod
02-02-2016 21:37:24 Naplánovaný kontrolní bod
09-02-2016 19:23:42 Installed Nero 2016.
11-02-2016 18:59:01 Removed Java 8 Update 45
13-02-2016 12:10:35 JRT Pre-Junkware Removal

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (02/10/2016 05:24:17 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program LiveComm.exe verze 17.5.9600.20911 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: 16a4

Čas spuštění: 01d1641eb6ed5bec

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe

ID hlášení: afab1459-d012-11e5-beeb-7c0507ffab92

Úplný název chybujícího balíčku: microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe

ID aplikace související s chybujícím balíčkem: ppleae38af2e007f4358a809ac99a64a67c1

Error: (02/10/2016 02:07:10 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: ALES)
Description: Aplikaci windows.immersivecontrolpanel_cw5n1h2txyewy!microsoft.windows.immersivecontrolpanel se nepovedlo aktivovat, protože došlo k chybě: -2144927142. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.

Error: (02/10/2016 02:07:07 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2486) (User: ALES)
Description: Aplikace windows.immersivecontrolpanel_6.2.0.0_neutral_neutral_cw5n1h2txyewy+microsoft.windows.immersivecontrolpanel se nespustila ve stanovenou dobu.

Error: (02/10/2016 01:29:16 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program SystemSettings.exe verze 6.3.9600.17489 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: 10bc

Čas spuštění: 01d163fe8dd057e3

Čas ukončení: 15

Cesta k aplikaci: C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe

ID hlášení: df15ca63-cff1-11e5-bee4-7c0507ffab92

Úplný název chybujícího balíčku: windows.immersivecontrolpanel_6.2.0.0_neutral_neutral_cw5n1h2txyewy

ID aplikace související s chybujícím balíčkem: microsoft.windows.immersivecontrolpanel

Error: (02/10/2016 01:28:32 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: ALES)
Description: Balíček windows.immersivecontrolpanel_6.2.0.0_neutral_neutral_cw5n1h2txyewy+microsoft.windows.immersivecontrolpanel se ukončil, protože jeho pozastavování trvalo moc dlouho.

Error: (02/10/2016 01:22:17 PM) (Source: Microsoft-Windows-LocationProvider) (EventID: 2006) (User: NT AUTHORITY)
Description: There was an error with the Windows Location Provider database

Error: (02/09/2016 07:29:07 PM) (Source: MsiInstaller) (EventID: 1043) (User: NT AUTHORITY)
Description: Nepodařilo se ukončit transakci Instalační služby systému Windows . Při ukončování transakce došlo k chybě 5.

Error: (02/09/2016 10:52:22 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program javaw.exe verze 8.0.25.18 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: 1588

Čas spuštění: 01d1631f3872e3ec

Čas ukončení: 57

Cesta k aplikaci: C:\Program Files (x86)\Minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe

ID hlášení: cb5e0d4e-cf12-11e5-bede-7c0507ffab92

Úplný název chybujícího balíčku:

ID aplikace související s chybujícím balíčkem:

Error: (02/08/2016 09:41:44 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program rads_user_kernel.exe verze 0.0.0.0 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: d5c

Čas spuštění: 01d162b11766428c

Čas ukončení: 4

Cesta k aplikaci: C:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe

ID hlášení: 5af01637-cea4-11e5-bede-7c0507ffab92

Úplný název chybujícího balíčku:

ID aplikace související s chybujícím balíčkem:

Error: (02/06/2016 05:12:26 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program LiveComm.exe verze 17.5.9600.20911 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: 15cc

Čas spuštění: 01d160f87526cfda

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe

ID hlášení: 68b45f1a-ccec-11e5-bedd-7c0507ffab92

Úplný název chybujícího balíčku: microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe

ID aplikace související s chybujícím balíčkem: ppleae38af2e007f4358a809ac99a64a67c1


System errors:
=============
Error: (02/14/2016 12:32:14 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: specifické pro aplikaciMístníAktivace{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYSYSTEMS-1-5-18LocalHost (pomocí LRPC)Není k dispoziciNení k dispozici

Error: (02/14/2016 12:24:54 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (02/14/2016 12:24:53 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (02/14/2016 12:24:53 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (02/14/2016 12:24:52 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (02/14/2016 12:24:51 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (02/13/2016 12:12:10 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba NVIDIA Display Driver Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (02/13/2016 12:05:18 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Služba Windows Media Player Network Sharing byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund: Restartovat službu.

Error: (02/13/2016 12:05:18 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Steam Client Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (02/13/2016 12:05:16 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Windows Search byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund: Restartovat službu.


CodeIntegrity:
===================================
Date: 2015-05-03 14:06:49.482
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-05-02 05:56:57.652
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-04-27 22:49:56.382
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-04-15 13:00:52.116
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-04-03 22:51:03.349
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-03-31 15:47:53.159
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-03-21 11:23:31.674
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-03-16 11:47:40.006
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-03-13 16:24:58.878
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-03-11 01:06:16.698
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i5-3230M CPU @ 2.60GHz
Percentage of memory in use: 16%
Total physical RAM: 8067.27 MB
Available physical RAM: 6736.98 MB
Total Virtual: 16259.27 MB
Available Virtual: 14947.39 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:464.81 GB) (Free:215.82 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 44AD1C4E)

Partition: GPT.

==================== End of Addition.txt ============================

[jerabina]

Jak to máš s legalitou operačního systému? Asi nic moc co?

Prosím, postupuj následujícím způsobem:
Otevřít poznámkový blok (Start => Všechny programy => Příslušenství => Poznámkový blok).
Prosím, zkopíruj do něj celý obsah níže.

Kód: Vybrat vše

Start
CloseProcesses:

HKLM-x32\...\Run: [WindowsDriverScan86] => C:\Program Files (x86)\Adobe Arkalis\Arkalis86.lnk [1501 2014-08-10] ()
HKLM-x32\...\Run: [WindowsDriverScan64] => C:\Program Files (x86)\Adobe Arkalis\Arkalis.lnk [1419 2014-08-10] ()
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-218325960-1562441860-233008465-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8591272 2015-11-16] (Piriform Ltd)
HKU\S-1-5-21-218325960-1562441860-233008465-1001\...\Run: [cz.seznam.software.autoupdate] => C:\Users\Josef\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-218325960-1562441860-233008465-1001\...\Run: [cz.seznam.software.szndesktop] => C:\Users\Josef\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [103080 2015-05-26] ()
HKU\S-1-5-21-218325960-1562441860-233008465-1001\...\MountPoints2: {2746ddd8-c343-11e4-be8a-7c0507ffab92} - "F:\Startme.exe"
HKU\S-1-5-21-218325960-1562441860-233008465-1001\...\MountPoints2: {e1da111f-9387-11e4-be71-7c0507ffab92} - "F:\SISetup.exe"

C:\Program Files (x86)\Adobe Arkalis

FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-10] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-10] (Google Inc.)

C:\Users\Josef\AppData\Local剜捯獫慴⁲慇敭屳呇⁁屖湥楴汴浥湥⹴湩潦

Task: {285A02C6-BB56-40A2-9C42-CDA882ACC915} - System32\Tasks\{3F108AFA-9120-49D7-9AB1-66BB1D6AAEEC} => Chrome.exe hxxp://ui.skype.com/ui/0/7.4.64.102/cs/ ... rogressBar
Task: {71654D97-1F0F-460B-85D3-3B465AEF40EE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
Task: {954E5327-46B1-4EE0-9888-DF0B55C92098} - System32\Tasks\Java Platform SE Auto Updater => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
Task: {B0340173-60FF-437C-BA1A-C3E4B3B720C9} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc
Task: {DFE73423-D942-4B79-A86F-5B014554F89D} - System32\Tasks\{027CAACA-F117-4228-B76B-1AAD7264B9C1} => Chrome.exe hxxp://ui.skype.com/ui/0/7.5.0.102/cs/a ... age=tsMain
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

C:\Program Files (x86)\Google\Update

EmptyTemp:
End

(Můžeš použít funkci „vybrat vše“, klepni pravým tlačítkem myši na levé horní políčko v otevřeném poznámkovém bloku a zvol „ Vložit“).

Ulož jej na na plochu jako fixlist.txt

Spusťt FRST a stiskni tlačítko „Fix“ (Opravit) jen jednou a čekej.
Nástroj vypracuje log na ploše (Fixlog.txt), prosím zkopíruj sem celý jeho obsah.

[Shacooler]

Měl bych mít originál. Koupil jsem noťas už s OS

[Shacooler]

Fix result of Farbar Recovery Scan Tool (x64) Version:07-02-2016
Ran by Josef (2016-02-14 01:49:50) Run:1
Running from C:\Users\Josef\Desktop
Loaded Profiles: Josef (Available Profiles: Josef)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:

HKLM-x32\...\Run: [WindowsDriverScan86] => C:\Program Files (x86)\Adobe Arkalis\Arkalis86.lnk [1501 2014-08-10] ()
HKLM-x32\...\Run: [WindowsDriverScan64] => C:\Program Files (x86)\Adobe Arkalis\Arkalis.lnk [1419 2014-08-10] ()
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-218325960-1562441860-233008465-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8591272 2015-11-16] (Piriform Ltd)
HKU\S-1-5-21-218325960-1562441860-233008465-1001\...\Run: [cz.seznam.software.autoupdate] => C:\Users\Josef\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-218325960-1562441860-233008465-1001\...\Run: [cz.seznam.software.szndesktop] => C:\Users\Josef\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [103080 2015-05-26] ()
HKU\S-1-5-21-218325960-1562441860-233008465-1001\...\MountPoints2: {2746ddd8-c343-11e4-be8a-7c0507ffab92} - "F:\Startme.exe"
HKU\S-1-5-21-218325960-1562441860-233008465-1001\...\MountPoints2: {e1da111f-9387-11e4-be71-7c0507ffab92} - "F:\SISetup.exe"

C:\Program Files (x86)\Adobe Arkalis

FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-10] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-10] (Google Inc.)

C:\Users\Josef\AppData\Local???????????????????

Task: {285A02C6-BB56-40A2-9C42-CDA882ACC915} - System32\Tasks\{3F108AFA-9120-49D7-9AB1-66BB1D6AAEEC} => Chrome.exe hxxp://ui.skype.com/ui/0/7.4.64.102/cs/ ... rogressBar
Task: {71654D97-1F0F-460B-85D3-3B465AEF40EE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
Task: {954E5327-46B1-4EE0-9888-DF0B55C92098} - System32\Tasks\Java Platform SE Auto Updater => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
Task: {B0340173-60FF-437C-BA1A-C3E4B3B720C9} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc
Task: {DFE73423-D942-4B79-A86F-5B014554F89D} - System32\Tasks\{027CAACA-F117-4228-B76B-1AAD7264B9C1} => Chrome.exe hxxp://ui.skype.com/ui/0/7.5.0.102/cs/a ... age=tsMain
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

C:\Program Files (x86)\Google\Update

EmptyTemp:
End
*****************

Processes closed successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\WindowsDriverScan86 => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\WindowsDriverScan64 => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\seznam-listicka-distribuce => value removed successfully
HKU\S-1-5-21-218325960-1562441860-233008465-1001\Software\Microsoft\Windows\CurrentVersion\Run\\CCleaner Monitoring => value removed successfully
HKU\S-1-5-21-218325960-1562441860-233008465-1001\Software\Microsoft\Windows\CurrentVersion\Run\\cz.seznam.software.autoupdate => value removed successfully
HKU\S-1-5-21-218325960-1562441860-233008465-1001\Software\Microsoft\Windows\CurrentVersion\Run\\cz.seznam.software.szndesktop => value removed successfully
"HKU\S-1-5-21-218325960-1562441860-233008465-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{2746ddd8-c343-11e4-be8a-7c0507ffab92}" => key removed successfully
HKCR\CLSID\{2746ddd8-c343-11e4-be8a-7c0507ffab92} => key not found.
"HKU\S-1-5-21-218325960-1562441860-233008465-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e1da111f-9387-11e4-be71-7c0507ffab92}" => key removed successfully
HKCR\CLSID\{e1da111f-9387-11e4-be71-7c0507ffab92} => key not found.
C:\Program Files (x86)\Adobe Arkalis => moved successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3" => key removed successfully
C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll => moved successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9" => key removed successfully
C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll => not found.

=========== "C:\Users\Josef\AppData\Local???????????????????" ==========

C:\Users\Josef\AppData\Local剜捯獫慴⁲慇敭屳呇⁁屖湥楴汴浥湥⹴湩潦 => moved successfully

========= End -> "C:\Users\Josef\AppData\Local???????????????????" ========

"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{285A02C6-BB56-40A2-9C42-CDA882ACC915}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{285A02C6-BB56-40A2-9C42-CDA882ACC915}" => key removed successfully
C:\WINDOWS\System32\Tasks\{3F108AFA-9120-49D7-9AB1-66BB1D6AAEEC} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{3F108AFA-9120-49D7-9AB1-66BB1D6AAEEC}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{71654D97-1F0F-460B-85D3-3B465AEF40EE}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{71654D97-1F0F-460B-85D3-3B465AEF40EE}" => key removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{954E5327-46B1-4EE0-9888-DF0B55C92098}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{954E5327-46B1-4EE0-9888-DF0B55C92098}" => key removed successfully
C:\WINDOWS\System32\Tasks\Java Platform SE Auto Updater => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Java Platform SE Auto Updater" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{B0340173-60FF-437C-BA1A-C3E4B3B720C9}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B0340173-60FF-437C-BA1A-C3E4B3B720C9}" => key removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{DFE73423-D942-4B79-A86F-5B014554F89D}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DFE73423-D942-4B79-A86F-5B014554F89D}" => key removed successfully
C:\WINDOWS\System32\Tasks\{027CAACA-F117-4228-B76B-1AAD7264B9C1} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{027CAACA-F117-4228-B76B-1AAD7264B9C1}" => key removed successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully
C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => moved successfully
C:\Program Files (x86)\Google\Update => moved successfully
EmptyTemp: => 693.6 MB temporary data Removed.


The system needed a reboot.

==== End of Fixlog 01:50:00 ====

[jerabina]

Já jenom, že tam máš spoustu stažených aktivátorů a cracknutých verzí Windows. To nevíš, že jsi stahoval?

Co problémy jinak?

[Shacooler]

Jo, vím že jsem to stahoval. Chtěl jsem si dát warez WN7.
Jinak mi přijde, že ntb je pořád stejný.

[Shacooler]

https://ctrlv.cz/256c
Tohle mi teď dělá GTA5, nevíte někdo co s tím ?

[jaro3]

já tam nic nevidím , hry nejsou můj koníček..

Stáhni si Memtest:

Políčko , ve kterém je napsáno:
All unused RAM -ponech , jak je.
-dej Start , nech nejméně 2h běžet , pokud bude po 2h stále 0 errors , jsou v pořádku.


Ještě zkontrolovat HDD na chyby ,popř. zkusit jeho defragmentaci ..


Stáhni si CrystalDiskInfo
Spusť program a klikni na Úpravy-Kopírovat. Poté sem vlož pomocí Ctrl+V obsah logu.

[Shacooler]

----------------------------------------------------------------------------
CrystalDiskInfo 6.7.0 (C) 2008-2016 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows 8.1 [6.3 Build 9600] (x64)
Date : 2016/02/15 13:13:57

-- Controller Map ----------------------------------------------------------
+ Standardní řadič SATA AHCI [ATA]
- TOSHIBA MQ01ABF050
- TSSTcorp CDDVDW SU-208FB
- Řadič prostorů úložišť [SCSI]

-- Disk List ---------------------------------------------------------------
(1) TOSHIBA MQ01ABF050 : 500,1 GB [0/0/0, pd1]

----------------------------------------------------------------------------
(1) TOSHIBA MQ01ABF050
----------------------------------------------------------------------------
Model : TOSHIBA MQ01ABF050
Firmware : AM003M
Serial Number : 634CW3CWT
Disk Size : 500,1 GB (8,4/137,4/500,1/500,1)
Buffer Size : 8192 KB
Queue Depth : 32 # of Sectors : 976773168
Rotation Rate : 5400 RPM
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ----
Transfer Mode : SATA/300 | SATA/300
Power On Hours : 4089 hod.
Power On Count : 1692 krát
Temperature : 51 C (123 F)
Health Status : Dobrý
Features : S.M.A.R.T., APM, 48bit LBA, NCQ
APM Level : 0080h [ON]
AAM Level : ----

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 100 100 _50 000000000000 Počet chyb čtení
02 100 100 _50 000000000000 Průchodnost disku
03 100 100 __1 00000000051B Čas na roztočení ploten
04 100 100 __0 0000000006D1 Počet spuštění/zastavení
05 100 100 _50 000000000000 Počet přemapovaných sektorů
07 100 100 _50 000000000000 Počet chybných hledání
08 100 100 _50 000000000000 Čas potřebný na vyhledání
09 _90 _90 __0 000000000FF9 Hodin v činnosti
0A 134 100 _30 000000000000 Počet opakovaných pokusů o roztočení ploten
0C 100 100 __0 00000000069C Počet cyklů zapnutí zařízení
BF 100 100 __0 000000000085 Počet udalostí zaznamenaných otřesovým senzorem
C0 100 100 __0 000000000010 Počet vypnutí disku
C1 _99 _99 __0 000000004623 Počet cyklů načítání/vymazání
C2 100 100 __0 003A00100033 Teplota
C4 100 100 __0 000000000000 Počet udalostí s číslem realokování sektorů
C5 100 100 __0 000000000000 Počet podezřelých sektorů
C6 100 100 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
DC 100 100 __0 000000000000 Posunutí disku vůči ose
DE _90 _90 __0 000000000FB2 Počet hodin zalažení budoucího mechanismu magnetických hlav
DF 100 100 __0 000000000000 Zatížení budiče magnetických hlav způsobené opakovanými úkony
E0 100 100 __0 000000000000 Zatížení budiče magnetických hlav způsobené napětím mechanických částí
E2 100 100 __0 0000000000FD Celkový čas zatížení budiče magnetických hlav
F0 100 100 __1 000000000000 Čas nastavování hlaviček - v hodinách

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0040 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 2020 2020 2020 2020 2020 2036 3334 4357 3343 5754
020: 0000 4000 0000 414D 3030 334D 2020 544F 5348 4942
030: 4120 4D51 3031 4142 4630 3530 2020 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 0000 2F00
050: 4000 0200 0000 0007 3FFF 0010 003F FC10 00FB 0110
060: FFFF 0FFF 0007 0407 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 001F 0F06 0004 004C 0048
080: 01F8 0000 746B 7D09 6163 7469 BC09 6163 003F 0038
090: 0038 0080 FFFE 0000 0000 0000 0000 0000 0000 0000
100: 6030 3A38 0000 0000 0000 0000 4000 0000 5000 0394
110: D4A0 09F3 0000 0000 0000 0000 0000 0000 0000 401C
120: 401C 0000 0000 0000 0000 0000 0000 0000 0029 0000
130: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
140: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0003 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 003D 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 1518 0000 0000
220: 0000 0000 101F 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 0080 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 DDA5

-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 0B 00 64 64 00 00 00 00 00 00 00 02 05
010: 00 64 64 00 00 00 00 00 00 00 03 27 00 64 64 1B
020: 05 00 00 00 00 00 04 32 00 64 64 D1 06 00 00 00
030: 00 00 05 33 00 64 64 00 00 00 00 00 00 00 07 0B
040: 00 64 64 00 00 00 00 00 00 00 08 05 00 64 64 00
050: 00 00 00 00 00 00 09 32 00 5A 5A F9 0F 00 00 00
060: 00 00 0A 33 00 86 64 00 00 00 00 00 00 00 0C 32
070: 00 64 64 9C 06 00 00 00 00 00 BF 32 00 64 64 85
080: 00 00 00 00 00 00 C0 32 00 64 64 10 00 00 00 00
090: 00 00 C1 32 00 63 63 23 46 00 00 00 00 00 C2 22
0A0: 00 64 64 33 00 10 00 3A 00 00 C4 32 00 64 64 00
0B0: 00 00 00 00 00 00 C5 32 00 64 64 00 00 00 00 00
0C0: 00 00 C6 30 00 64 64 00 00 00 00 00 00 00 C7 32
0D0: 00 C8 C8 00 00 00 00 00 00 00 DC 02 00 64 64 00
0E0: 00 00 00 00 00 00 DE 32 00 5A 5A B2 0F 00 00 00
0F0: 00 00 DF 32 00 64 64 00 00 00 00 00 00 00 E0 22
100: 00 64 64 00 00 00 00 00 00 00 E2 26 00 64 64 FD
110: 00 00 00 00 00 00 F0 01 00 64 64 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 78 00 00 5B
170: 03 00 01 00 02 78 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 35

-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 32 00 00 00 00 00 00 00 00 00 00 02 32
010: 00 00 00 00 00 00 00 00 00 00 03 01 00 00 00 00
020: 00 00 00 00 00 00 04 00 00 00 00 00 00 00 00 00
030: 00 00 05 32 00 00 00 00 00 00 00 00 00 00 07 32
040: 00 00 00 00 00 00 00 00 00 00 08 32 00 00 00 00
050: 00 00 00 00 00 00 09 00 00 00 00 00 00 00 00 00
060: 00 00 0A 1E 00 00 00 00 00 00 00 00 00 00 0C 00
070: 00 00 00 00 00 00 00 00 00 00 BF 00 00 00 00 00
080: 00 00 00 00 00 00 C0 00 00 00 00 00 00 00 00 00
090: 00 00 C1 00 00 00 00 00 00 00 00 00 00 00 C2 00
0A0: 00 00 00 00 00 00 00 00 00 00 C4 00 00 00 00 00
0B0: 00 00 00 00 00 00 C5 00 00 00 00 00 00 00 00 00
0C0: 00 00 C6 00 00 00 00 00 00 00 00 00 00 00 C7 00
0D0: 00 00 00 00 00 00 00 00 00 00 DC 00 00 00 00 00
0E0: 00 00 00 00 00 00 DE 00 00 00 00 00 00 00 00 00
0F0: 00 00 DF 00 00 00 00 00 00 00 00 00 00 00 E0 00
100: 00 00 00 00 00 00 00 00 00 00 E2 00 00 00 00 00
110: 00 00 00 00 00 00 F0 01 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 36

[Shacooler]

memtest mi píše toto : https://ctrlv.cz/ZGcH