Prosím o kontrolu logu - zpomalené pc Vyřešeno

Místo pro vaše HiJackThis logy a logy z dalších programů…

Moderátoři: Mods_senior, Security team

Uživatelský avatar
karbi02
Level 2.5
Level 2.5
Příspěvky: 383
Registrován: březen 07
Pohlaví: Nespecifikováno
Stav:
Offline

Re: Prosím o kontrolu logu - zpomalené pc

Příspěvekod karbi02 » 08 čer 2015 17:01

Ještě dodám, zrovna teď mi to udělal FRTS, že se dost často stává, že běží nějakej program a nahoře se objeví "Neodpovídá" a zůstane to viset delší dobu... Nebo teď CCleaner, dám čistit registry, program zůstane viset na 60procentech třeba 5 minut a když dám třeba zrušit,, nebo ukončit, tak opět "Neodpovídá"...
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:07-06-2015
Ran by Uživatel (administrator) on AMD on 08-06-2015 16:44:42
Running from C:\Users\Uživatel\Desktop
Loaded Profiles: Uživatel (Available Profiles: Uživatel)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
(SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_WT50RP.EXE
(UASSOFT.COM) C:\Program Files (x86)\Mouse Driver\KMWDSrv.exe
(O&O Software GmbH) C:\Program Files\OO Software\Defrag\oodag.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
(TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
(VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(NewSoft Technology Corporation) C:\Windows\System32\spool\drivers\x64\3\WrtMon.exe
(O&O Software GmbH) C:\Program Files\OO Software\Defrag\oodtray.exe
(BitTorrent Inc.) C:\Users\Uživatel\AppData\Roaming\uTorrent\uTorrent.exe
(NewSoft Technology Corporation) C:\Windows\System32\spool\drivers\x64\3\WrtProc.exe
(VIA) C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_17_0_0_169.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_17_0_0_169.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\egui.exe [6325424 2012-10-23] (ESET)
HKLM\...\Run: [WrtMon.exe] => C:\Windows\system32\spool\drivers\x64\3\WrtMon.exe [26448 2008-05-24] (NewSoft Technology Corporation)
HKLM\...\Run: [OODefragTray] => C:\Program Files\OO Software\Defrag\oodtray.exe [4012360 2011-01-25] (O&O Software GmbH)
HKLM-x32\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [5123216 2000-01-01] (VIA)
HKU\S-1-5-21-3056490246-2549413826-2647440247-1000\...\Run: [uTorrent] => C:\Users\Uživatel\AppData\Roaming\uTorrent\uTorrent.exe [1694560 2015-05-06] (BitTorrent Inc.)
HKU\S-1-5-21-3056490246-2549413826-2647440247-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> (None)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk [2013-02-12]
ShortcutTarget: Adobe Gamma Loader.lnk -> C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
BootExecute: autocheck autochk * OODBS

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-3056490246-2549413826-2647440247-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\S-1-5-21-3056490246-2549413826-2647440247-1000\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\S-1-5-21-3056490246-2549413826-2647440247-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/en-us/?pc=UP97&ocid=UP97DHP
HKU\S-1-5-21-3056490246-2549413826-2647440247-1000\Software\Microsoft\Internet Explorer\Main,Old Start Page = http://www.msn.com/en-us/?pc=UP97&ocid=UP97DHP
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3056490246-2549413826-2647440247-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
BHO-x32: E-Web Print -> {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} -> C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2012-04-26] (SEIKO EPSON CORPORATION)
BHO-x32: Pomocná služba pro přihlášení k účtu Microsoft -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2011-11-29] (Sun Microsystems, Inc.)
Toolbar: HKLM-x32 - E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2012-04-26] (SEIKO EPSON CORPORATION)
Toolbar: HKU\.DEFAULT -> No Name - {D930602D-A752-4287-828B-EF0B1F48825C} - No File
DPF: HKLM-x32 {0067DBFC-A752-458C-AE6E-B9C7E63D4824} http://www.logitech.com/devicedetector/ ... tion32.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll [2011-06-07] (Advanced Micro Devices)
Filter-x32: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll [2011-06-07] (Advanced Micro Devices)
Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll [2011-06-07] (Advanced Micro Devices)
Filter-x32: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll [2011-06-07] (Advanced Micro Devices)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.1

FireFox:
========
FF ProfilePath: C:\Users\Uživatel\AppData\Roaming\Mozilla\Firefox\Profiles\ug9pn33s.default
FF Homepage: hxxp://www.idnes.cz/
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_169.dll [2015-04-15] ()
FF Plugin: @java.com/JavaPlugin -> C:\Program Files\Java\jre7\bin\new_plugin\npjp2.dll [2014-10-28] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-16] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_169.dll [2015-04-15] ()
FF Plugin-x32: @gametap.com/npdd,version=1.0 -> C:\Program Files (x86)\Downloader\npdd.dll [2010-02-19] (Metaboli)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2014-01-06] (Google, Inc.)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-05-01] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3056490246-2549413826-2647440247-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Uživatel\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2009-11-30] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-3056490246-2549413826-2647440247-1000: gameus.co.kr/HisLauncher -> C:\Users\Uživatel\AppData\Roaming\GameUs\HisLauncher\1.0.0.0\npHisLauncher.dll [2013-04-30] (GameUs)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\np-mswmp.dll [2007-04-10] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npdeployJava1.dll [2011-10-03] (Sun Microsystems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2015-05-01] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll [2012-02-11] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll [2012-02-11] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll [2012-02-11] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll [2012-02-11] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll [2012-02-11] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin6.dll [2012-02-11] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin7.dll [2012-02-11] (Apple Inc.)
FF SearchPlugin: C:\Users\Uživatel\AppData\Roaming\Mozilla\Firefox\Profiles\ug9pn33s.default\searchplugins\dictionarycom.xml [2011-03-27]
FF SearchPlugin: C:\Users\Uživatel\AppData\Roaming\Mozilla\Firefox\Profiles\ug9pn33s.default\searchplugins\google-blogs.xml [2011-03-27]
FF SearchPlugin: C:\Users\Uživatel\AppData\Roaming\Mozilla\Firefox\Profiles\ug9pn33s.default\searchplugins\google-books.xml [2011-03-27]
FF SearchPlugin: C:\Users\Uživatel\AppData\Roaming\Mozilla\Firefox\Profiles\ug9pn33s.default\searchplugins\google-directory.xml [2011-03-27]
FF SearchPlugin: C:\Users\Uživatel\AppData\Roaming\Mozilla\Firefox\Profiles\ug9pn33s.default\searchplugins\google-finance.xml [2011-03-27]
FF SearchPlugin: C:\Users\Uživatel\AppData\Roaming\Mozilla\Firefox\Profiles\ug9pn33s.default\searchplugins\google-groups.xml [2011-03-27]
FF SearchPlugin: C:\Users\Uživatel\AppData\Roaming\Mozilla\Firefox\Profiles\ug9pn33s.default\searchplugins\google-images.xml [2011-03-27]
FF SearchPlugin: C:\Users\Uživatel\AppData\Roaming\Mozilla\Firefox\Profiles\ug9pn33s.default\searchplugins\google-maps.xml [2011-03-27]
FF SearchPlugin: C:\Users\Uživatel\AppData\Roaming\Mozilla\Firefox\Profiles\ug9pn33s.default\searchplugins\google-news.xml [2011-03-27]
FF SearchPlugin: C:\Users\Uživatel\AppData\Roaming\Mozilla\Firefox\Profiles\ug9pn33s.default\searchplugins\google-products.xml [2011-03-27]
FF SearchPlugin: C:\Users\Uživatel\AppData\Roaming\Mozilla\Firefox\Profiles\ug9pn33s.default\searchplugins\google-scholar.xml [2011-03-27]
FF SearchPlugin: C:\Users\Uživatel\AppData\Roaming\Mozilla\Firefox\Profiles\ug9pn33s.default\searchplugins\google-trends.xml [2011-03-27]
FF SearchPlugin: C:\Users\Uživatel\AppData\Roaming\Mozilla\Firefox\Profiles\ug9pn33s.default\searchplugins\google-video.xml [2011-03-27]
FF SearchPlugin: C:\Users\Uživatel\AppData\Roaming\Mozilla\Firefox\Profiles\ug9pn33s.default\searchplugins\imdb.xml [2011-03-27]
FF SearchPlugin: C:\Users\Uživatel\AppData\Roaming\Mozilla\Firefox\Profiles\ug9pn33s.default\searchplugins\longman-english-dictionary.xml [2011-03-27]
FF SearchPlugin: C:\Users\Uživatel\AppData\Roaming\Mozilla\Firefox\Profiles\ug9pn33s.default\searchplugins\motoinzercecz.xml [2010-10-21]
FF SearchPlugin: C:\Users\Uživatel\AppData\Roaming\Mozilla\Firefox\Profiles\ug9pn33s.default\searchplugins\thesauruscom.xml [2011-03-27]
FF SearchPlugin: C:\Users\Uživatel\AppData\Roaming\Mozilla\Firefox\Profiles\ug9pn33s.default\searchplugins\youtube.xml [2011-03-27]
FF Extension: Star Stable Online - C:\Users\Uživatel\AppData\Roaming\Mozilla\Firefox\Profiles\ug9pn33s.default\Extensions\plugin@starstable.com [2014-10-30]
FF Extension: Adblock Plus - C:\Users\Uživatel\AppData\Roaming\Mozilla\Firefox\Profiles\ug9pn33s.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-10-29]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2015-06-02]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2015-06-02]
FF HKLM-x32\...\Firefox\Extensions: [e-webprint@epson.com] - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on
FF Extension: E-Web Print - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on [2013-01-03]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF Extension: ESET Smart Security Extension - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2012-11-14]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AMD FUEL Service; C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe [344064 2014-11-20] (Advanced Micro Devices, Inc.) [File not signed]
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1394816 2015-05-01] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1772672 2015-05-01] (Microsoft Corporation)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [1329304 2012-10-23] (ESET)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 KMWDSERVICE; C:\Program Files (x86)\Mouse Driver\KMWDSrv.exe [1821184 2009-08-31] (UASSOFT.COM) [File not signed]
S4 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2015-04-14] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1080120 2015-04-14] (Malwarebytes Corporation)
R2 OODefragAgent; C:\Program Files\OO Software\Defrag\oodag.exe [3136328 2011-01-25] (O&O Software GmbH)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [66872 2011-09-23] ()
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27760 2000-01-01] (VIA Technologies, Inc.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 61883; C:\Windows\System32\DRIVERS\61883.sys [60288 2009-07-14] (Microsoft Corporation)
R2 AODDriver4.3; C:\Program Files\AMD\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-11] (Advanced Micro Devices)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R3 CamSuiteVAC; C:\Windows\System32\DRIVERS\CamSuiteVAC.sys [56320 2008-09-18] ()
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [211344 2012-10-08] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [149592 2012-10-08] (ESET)
R2 epfw; C:\Windows\System32\DRIVERS\epfw.sys [189208 2012-10-08] (ESET)
R1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [59440 2012-10-08] (ESET)
R0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [64072 2012-10-08] (ESET)
S2 Hardlock; C:\Windows\system32\drivers\hardlock.sys [296448 2005-06-14] (Aladdin Knowledge Systems Ltd.) [File not signed]
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-04-14] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-04-14] (Malwarebytes Corporation)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15416 2009-05-14] ()
S3 PAC7302; C:\Windows\System32\DRIVERS\PAC7302.SYS [532480 2009-04-28] (PixArt Imaging Inc.)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [564824 2013-06-05] (Duplex Secure Ltd.)
U3 TrueSight; C:\Windows\System32\drivers\TrueSight.sys [37624 2015-06-05] ()
S3 trufos; C:\Windows\System32\drivers\trufos.sys [350160 2015-01-04] (BitDefender S.R.L.)
U5 usbser; C:\Windows\System32\Drivers\usbser.sys [33280 2013-08-29] (Microsoft Corporation)
U5 VWiFiFlt; C:\Windows\System32\Drivers\VWiFiFlt.sys [59904 2009-07-14] (Microsoft Corporation)
R2 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC}; C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\000.fcl [146928 2010-12-29] (CyberLink Corp.)
U3 aap92kvq; C:\Windows\System32\Drivers\aap92kvq.sys [0 ] (Advanced Micro Devices) <==== ATTENTION (zero byte File/Folder)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 cpuz136; \??\C:\Windows\TEMP\cpuz136\cpuz136_x64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-06-08 16:38 - 2015-06-08 16:40 - 00055843 _____ C:\Users\Uživatel\Desktop\Addition.txt
2015-06-08 16:37 - 2015-06-08 16:44 - 00019235 _____ C:\Users\Uživatel\Desktop\FRST.txt
2015-06-08 16:37 - 2015-06-08 16:44 - 00000000 ____D C:\FRST
2015-06-08 16:32 - 2015-06-08 16:32 - 02108928 _____ (Farbar) C:\Users\Uživatel\Desktop\FRST64.exe
2015-06-08 15:35 - 2015-06-08 15:36 - 00000000 ____D C:\Users\Uživatel\Documents\Euro Truck Simulator 2
2015-06-08 15:35 - 2015-06-08 15:35 - 00001166 _____ C:\Users\Public\Desktop\Euro Truck Simulator 2 Gold Bundle x86.lnk
2015-06-07 20:39 - 2015-06-07 20:39 - 00000000 ___SH C:\Users\Uživatel\AppData\Local\LumaEmu
2015-06-07 20:39 - 2015-06-07 20:39 - 00000000 ____D C:\Users\Uživatel\AppData\Local\LumaEmu_SteamCloud
2015-06-07 19:01 - 2015-06-07 19:01 - 508170371 _____ C:\Windows\MEMORY.DMP
2015-06-07 11:10 - 2015-06-07 11:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Gaming Evolved
2015-06-07 11:10 - 2015-06-07 11:10 - 00000000 ____D C:\ProgramData\ATI
2015-06-07 11:09 - 2015-06-07 11:09 - 00000000 ____D C:\Users\Uživatel\AppData\Roaming\library_dir
2015-06-07 11:08 - 2015-06-07 13:55 - 00000000 ____D C:\Users\Uživatel\AppData\Roaming\Raptr
2015-06-07 11:08 - 2015-06-07 11:10 - 00000000 ____D C:\Program Files (x86)\Raptr
2015-06-07 11:07 - 2015-06-07 11:07 - 00058394 _____ C:\Windows\SysWOW64\CCCInstall_201506071107391831.log
2015-06-07 11:07 - 2015-06-07 11:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2015-06-07 11:07 - 2015-06-07 11:07 - 00000000 ____D C:\Program Files (x86)\AMD AVT
2015-06-07 10:41 - 2015-06-07 10:41 - 00000000 ____D C:\ProgramData\Package Cache
2015-06-07 10:29 - 2015-06-07 10:36 - 305804342 _____ C:\Users\Uživatel\Downloads\amd-catalyst-omega-14.12-with-dotnet45-win7-64bit.zip
2015-06-06 21:37 - 2015-06-06 21:37 - 00003152 _____ C:\Windows\System32\Tasks\{451A5B57-7B06-4AED-93D5-C7FF71A2E874}
2015-06-06 21:35 - 2015-06-06 21:35 - 00204496 _____ (Malwarebytes) C:\Users\Uživatel\Desktop\startuplite-setup-1.07.exe
2015-06-06 20:15 - 2015-06-06 20:15 - 00020984 _____ C:\ComboFix.txt
2015-06-06 20:08 - 2015-06-06 20:08 - 00000540 _____ C:\Windows\PFRO.log
2015-06-06 18:51 - 2011-06-26 08:45 - 00256000 _____ C:\Windows\PEV.exe
2015-06-06 18:51 - 2010-11-07 19:20 - 00208896 _____ C:\Windows\MBR.exe
2015-06-06 18:51 - 2009-04-20 06:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2015-06-06 18:51 - 2000-08-31 02:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2015-06-06 18:51 - 2000-08-31 02:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2015-06-06 18:51 - 2000-08-31 02:00 - 00098816 _____ C:\Windows\sed.exe
2015-06-06 18:51 - 2000-08-31 02:00 - 00080412 _____ C:\Windows\grep.exe
2015-06-06 18:51 - 2000-08-31 02:00 - 00068096 _____ C:\Windows\zip.exe
2015-06-06 18:50 - 2015-06-06 20:15 - 00000000 ____D C:\Qoobox
2015-06-06 18:40 - 2015-06-06 18:40 - 05628238 ____R (Swearware) C:\Users\Uživatel\Desktop\ComboFix.exe
2015-06-06 16:49 - 2015-06-08 16:29 - 00001055 _____ C:\Windows\setupact.log
2015-06-06 16:49 - 2015-06-06 16:49 - 00000000 _____ C:\Windows\setuperr.log
2015-06-06 16:29 - 2015-06-06 16:29 - 00001197 _____ C:\Users\Public\Desktop\Wise Registry Cleaner.lnk
2015-06-06 16:29 - 2015-06-06 16:29 - 00000000 ____D C:\Users\Uživatel\AppData\Roaming\Wise Registry Cleaner
2015-06-06 16:29 - 2015-06-06 16:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wise Registry Cleaner
2015-06-06 16:29 - 2015-06-06 16:29 - 00000000 ____D C:\Program Files (x86)\Wise
2015-06-06 16:28 - 2015-06-06 16:28 - 03990848 _____ (WiseCleaner.com ) C:\Users\Uživatel\Downloads\WRCFree.exe
2015-06-05 17:21 - 2015-06-05 16:56 - 00024064 _____ C:\Windows\zoek-delete.exe
2015-06-05 17:03 - 2015-01-02 20:08 - 00015971 _____ C:\zoek-results2015-01-02-180826.log
2015-06-05 16:52 - 2015-06-05 16:52 - 01308672 _____ C:\Users\Uživatel\Desktop\zoek.exe
2015-06-05 15:05 - 2015-06-05 15:05 - 00000000 ____D C:\Users\Uživatel\AppData\Roaming\GameUs
2015-06-05 15:04 - 2015-06-05 15:04 - 00540672 _____ C:\Users\Uživatel\Downloads\HisLauncher.msi
2015-06-04 20:40 - 2015-06-04 20:40 - 00000000 ____D C:\Users\Uživatel\AppData\Local\Adobe
2015-06-04 14:22 - 2015-06-04 14:22 - 00000207 _____ C:\Windows\tweaking.com-regbackup-AMD-Windows-7-Home-Premium-(64-bit).dat
2015-06-04 14:22 - 2015-06-04 14:22 - 00000000 ____D C:\RegBackup
2015-06-03 19:11 - 2015-06-06 09:31 - 00136408 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-06-03 19:11 - 2015-06-04 15:40 - 00001072 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-06-03 19:11 - 2015-06-04 15:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-06-03 19:11 - 2015-06-04 15:40 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-06-03 19:11 - 2015-04-14 09:37 - 00107736 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-06-03 19:11 - 2015-04-14 09:37 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-06-03 19:11 - 2015-04-14 09:37 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2015-06-03 16:28 - 2015-06-03 16:28 - 00448512 _____ (OldTimer Tools) C:\Users\Uživatel\Downloads\TFC(1).exe
2015-06-03 16:21 - 2015-06-03 16:21 - 00050688 _____ (Atribune.org) C:\Users\Uživatel\Downloads\ATF-Cleaner(1).exe
2015-06-02 19:48 - 2015-06-03 12:06 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-06-01 14:49 - 2015-06-01 14:49 - 00000000 ____D C:\Users\Uživatel\AppData\Local\GWX
2015-05-29 21:10 - 2015-05-30 09:39 - 00019015 _____ C:\Users\Uživatel\Desktop\rega.odt
2015-05-24 20:03 - 2015-05-24 20:04 - 11196567 _____ C:\Users\Uživatel\Desktop\KARBI TM1.zip
2015-05-23 22:29 - 2015-05-23 22:29 - 05514746 _____ C:\Users\Uživatel\Downloads\Crack P.zip
2015-05-23 22:29 - 2015-05-23 22:29 - 00000060 _____ C:\Users\Uživatel\Downloads\Crack P.zip.loc
2015-05-18 16:04 - 2015-05-18 16:04 - 02845184 _____ (Mgr. Tomas Papousek) C:\Users\Uživatel\Downloads\cm897f.exe
2015-05-13 13:26 - 2015-05-01 15:17 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-05-13 13:26 - 2015-05-01 15:16 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-05-13 12:04 - 2015-04-22 04:28 - 00389840 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-05-13 12:04 - 2015-04-22 03:48 - 00342736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-05-13 12:04 - 2015-04-21 19:14 - 24971776 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-05-13 12:04 - 2015-04-21 19:08 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-05-13 12:04 - 2015-04-21 19:07 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-05-13 12:04 - 2015-04-21 18:51 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-05-13 12:04 - 2015-04-21 18:50 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-05-13 12:04 - 2015-04-21 18:50 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-05-13 12:04 - 2015-04-21 18:50 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-05-13 12:04 - 2015-04-21 18:49 - 02885120 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-05-13 12:04 - 2015-04-21 18:48 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-05-13 12:04 - 2015-04-21 18:41 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-05-13 12:04 - 2015-04-21 18:40 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-05-13 12:04 - 2015-04-21 18:37 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-05-13 12:04 - 2015-04-21 18:35 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-05-13 12:04 - 2015-04-21 18:35 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-05-13 12:04 - 2015-04-21 18:35 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-05-13 12:04 - 2015-04-21 18:34 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-05-13 12:04 - 2015-04-21 18:31 - 06025728 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-05-13 12:04 - 2015-04-21 18:26 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-05-13 12:04 - 2015-04-21 18:25 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-05-13 12:04 - 2015-04-21 18:24 - 19691008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-05-13 12:04 - 2015-04-21 18:22 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-05-13 12:04 - 2015-04-21 18:14 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-05-13 12:04 - 2015-04-21 18:11 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-05-13 12:04 - 2015-04-21 18:11 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-05-13 12:04 - 2015-04-21 18:10 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2015-05-13 12:04 - 2015-04-21 18:09 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-05-13 12:04 - 2015-04-21 18:09 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-05-13 12:04 - 2015-04-21 18:08 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-05-13 12:04 - 2015-04-21 18:08 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-05-13 12:04 - 2015-04-21 18:05 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-05-13 12:04 - 2015-04-21 18:04 - 02278400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-05-13 12:04 - 2015-04-21 18:03 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-05-13 12:04 - 2015-04-21 18:02 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-05-13 12:04 - 2015-04-21 18:00 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-05-13 12:04 - 2015-04-21 17:58 - 00664576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-05-13 12:04 - 2015-04-21 17:58 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-05-13 12:04 - 2015-04-21 17:57 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-05-13 12:04 - 2015-04-21 17:49 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-05-13 12:04 - 2015-04-21 17:49 - 00720384 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-05-13 12:04 - 2015-04-21 17:48 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-05-13 12:04 - 2015-04-21 17:47 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-05-13 12:04 - 2015-04-21 17:46 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-05-13 12:04 - 2015-04-21 17:43 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-05-13 12:04 - 2015-04-21 17:40 - 14401536 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-05-13 12:04 - 2015-04-21 17:39 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-05-13 12:04 - 2015-04-21 17:38 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-05-13 12:04 - 2015-04-21 17:36 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-05-13 12:04 - 2015-04-21 17:31 - 04305920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-05-13 12:04 - 2015-04-21 17:27 - 02352128 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-05-13 12:04 - 2015-04-21 17:26 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-05-13 12:04 - 2015-04-21 17:25 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-05-13 12:04 - 2015-04-21 17:24 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2015-05-13 12:04 - 2015-04-21 17:17 - 12828672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-05-13 12:04 - 2015-04-21 17:15 - 01547264 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-05-13 12:04 - 2015-04-21 17:03 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-05-13 12:04 - 2015-04-21 17:02 - 01882112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-05-13 12:04 - 2015-04-21 16:58 - 01310208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-05-13 12:04 - 2015-04-21 16:56 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-05-13 12:02 - 2015-05-05 03:29 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-05-13 12:02 - 2015-05-05 03:12 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-05-13 12:02 - 2015-04-18 05:10 - 00460800 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2015-05-13 12:02 - 2015-04-18 04:56 - 00342016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2015-05-13 12:01 - 2015-04-27 21:28 - 05569984 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-05-13 12:01 - 2015-04-27 21:28 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-05-13 12:01 - 2015-04-27 21:28 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-05-13 12:01 - 2015-04-27 21:26 - 01728960 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-05-13 12:01 - 2015-04-27 21:23 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-05-13 12:01 - 2015-04-27 21:23 - 01254400 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2015-05-13 12:01 - 2015-04-27 21:23 - 01162752 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2015-05-13 12:01 - 2015-04-27 21:23 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2015-05-13 12:01 - 2015-04-27 21:23 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2015-05-13 12:01 - 2015-04-27 21:23 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-05-13 12:01 - 2015-04-27 21:23 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-05-13 12:01 - 2015-04-27 21:23 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2015-05-13 12:01 - 2015-04-27 21:23 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2015-05-13 12:01 - 2015-04-27 21:23 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-05-13 12:01 - 2015-04-27 21:23 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-05-13 12:01 - 2015-04-27 21:23 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2015-05-13 12:01 - 2015-04-27 21:23 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2015-05-13 12:01 - 2015-04-27 21:23 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-05-13 12:01 - 2015-04-27 21:23 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-05-13 12:01 - 2015-04-27 21:23 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\sechost.dll
2015-05-13 12:01 - 2015-04-27 21:23 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-05-13 12:01 - 2015-04-27 21:23 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-05-13 12:01 - 2015-04-27 21:23 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-05-13 12:01 - 2015-04-27 21:23 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-05-13 12:01 - 2015-04-27 21:23 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-05-13 12:01 - 2015-04-27 21:23 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-05-13 12:01 - 2015-04-27 21:23 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2015-05-13 12:01 - 2015-04-27 21:23 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2015-05-13 12:01 - 2015-04-27 21:22 - 00404992 _____ (Microsoft Corporation) C:\Windows\system32\tracerpt.exe
2015-05-13 12:01 - 2015-04-27 21:22 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2015-05-13 12:01 - 2015-04-27 21:22 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-05-13 12:01 - 2015-04-27 21:22 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-05-13 12:01 - 2015-04-27 21:22 - 00104448 _____ (Microsoft Corporation) C:\Windows\system32\logman.exe
2015-05-13 12:01 - 2015-04-27 21:22 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\typeperf.exe
2015-05-13 12:01 - 2015-04-27 21:22 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\relog.exe
2015-05-13 12:01 - 2015-04-27 21:22 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-05-13 12:01 - 2015-04-27 21:22 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\diskperf.exe
2015-05-13 12:01 - 2015-04-27 21:21 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-05-13 12:01 - 2015-04-27 21:18 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-05-13 12:01 - 2015-04-27 21:18 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-05-13 12:01 - 2015-04-27 21:16 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-05-13 12:01 - 2015-04-27 21:16 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-05-13 12:01 - 2015-04-27 21:16 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 21:16 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 21:16 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 21:16 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 21:16 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 21:16 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 21:16 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 21:16 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 21:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 21:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 21:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 21:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 21:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 21:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 21:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 21:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 21:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 21:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 21:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 21:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 21:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 21:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 21:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 21:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 21:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 21:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 21:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 21:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 21:11 - 03989440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-05-13 12:01 - 2015-04-27 21:11 - 03934144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-05-13 12:01 - 2015-04-27 21:08 - 01310744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-05-13 12:01 - 2015-04-27 21:05 - 00635392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2015-05-13 12:01 - 2015-04-27 21:05 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-05-13 12:01 - 2015-04-27 21:05 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-05-13 12:01 - 2015-04-27 21:05 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-05-13 12:01 - 2015-04-27 21:05 - 00092160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sechost.dll
2015-05-13 12:01 - 2015-04-27 21:05 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-05-13 12:01 - 2015-04-27 21:05 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-05-13 12:01 - 2015-04-27 21:05 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2015-05-13 12:01 - 2015-04-27 21:05 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2015-05-13 12:01 - 2015-04-27 21:04 - 00641536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2015-05-13 12:01 - 2015-04-27 21:04 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-05-13 12:01 - 2015-04-27 21:04 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tracerpt.exe
2015-05-13 12:01 - 2015-04-27 21:04 - 00082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\logman.exe
2015-05-13 12:01 - 2015-04-27 21:04 - 00040448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\typeperf.exe
2015-05-13 12:01 - 2015-04-27 21:04 - 00037888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\relog.exe
2015-05-13 12:01 - 2015-04-27 21:04 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2015-05-13 12:01 - 2015-04-27 21:04 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-05-13 12:01 - 2015-04-27 21:03 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2015-05-13 12:01 - 2015-04-27 21:03 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2015-05-13 12:01 - 2015-04-27 21:03 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-05-13 12:01 - 2015-04-27 21:03 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2015-05-13 12:01 - 2015-04-27 21:03 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\diskperf.exe
2015-05-13 12:01 - 2015-04-27 21:03 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2015-05-13 12:01 - 2015-04-27 21:01 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-05-13 12:01 - 2015-04-27 21:01 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2015-05-13 12:01 - 2015-04-27 20:59 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-05-13 12:01 - 2015-04-27 20:59 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2015-05-13 12:01 - 2015-04-27 20:59 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 20:59 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 20:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 20:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 20:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 20:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 20:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 20:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 20:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 20:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 20:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 20:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 20:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 20:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 20:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 20:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 20:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 20:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 20:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 20:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 20:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 20:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 20:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 20:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 20:06 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll
2015-05-13 12:01 - 2015-04-27 19:57 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2015-05-13 12:01 - 2015-04-27 19:57 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2015-05-13 12:01 - 2015-04-27 19:55 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 19:55 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 19:55 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 19:55 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2015-05-13 12:01 - 2015-04-20 05:17 - 01647104 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-05-13 12:01 - 2015-04-20 05:17 - 01179136 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2015-05-13 12:01 - 2015-04-20 04:56 - 01250816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2015-05-13 12:01 - 2015-04-20 04:11 - 03204608 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-05-13 12:01 - 2015-04-13 05:28 - 00328704 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2015-05-13 12:01 - 2015-04-08 05:29 - 00275456 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2015-05-13 12:01 - 2015-04-08 05:29 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\jnwmon.dll
2015-05-13 12:01 - 2015-04-08 05:14 - 00216064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InkEd.dll
2015-05-13 12:01 - 2015-03-04 06:41 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
2015-05-13 12:01 - 2015-03-04 06:41 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\aelupsvc.dll
2015-05-13 12:01 - 2015-03-04 06:41 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\sdbinst.exe
2015-05-13 12:01 - 2015-03-04 06:41 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\shimeng.dll
2015-05-13 12:01 - 2015-03-04 06:11 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shimeng.dll
2015-05-13 12:01 - 2015-03-04 06:10 - 00295936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apphelp.dll
2015-05-13 12:01 - 2015-03-04 06:10 - 00020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sdbinst.exe
2015-05-13 12:01 - 2015-02-18 09:06 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2015-05-13 12:01 - 2015-02-18 09:04 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2015-05-13 12:01 - 2015-01-29 05:19 - 02543104 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll
2015-05-13 12:01 - 2015-01-29 05:02 - 02311168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpdshext.dll

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-06-08 16:40 - 2011-01-31 12:04 - 00000000 ____D C:\Users\Uživatel\AppData\Roaming\uTorrent
2015-06-08 16:40 - 2009-07-14 06:45 - 00023584 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-06-08 16:40 - 2009-07-14 06:45 - 00023584 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-06-08 16:36 - 2011-01-03 01:54 - 01824366 _____ C:\Windows\WindowsUpdate.log
2015-06-08 16:34 - 2009-07-14 17:18 - 00878986 _____ C:\Windows\system32\perfh005.dat
2015-06-08 16:34 - 2009-07-14 17:18 - 00212552 _____ C:\Windows\system32\perfc005.dat
2015-06-08 16:34 - 2009-07-14 07:13 - 00006256 _____ C:\Windows\system32\PerfStringBackup.INI
2015-06-08 16:30 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-06-08 16:29 - 2012-02-21 16:01 - 04699508 _____ C:\Windows\system32\oodbs.lor
2015-06-08 15:35 - 2015-01-08 19:38 - 00001166 _____ C:\Users\Public\Desktop\Euro Truck Simulator 2 Gold Bundle x64.lnk
2015-06-08 15:35 - 2015-01-08 19:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Euro Truck Simulator 2 Gold Bundle
2015-06-08 15:35 - 2015-01-08 19:35 - 00000000 ____D C:\Program Files (x86)\Euro Truck Simulator 2 Gold Bundle
2015-06-08 15:16 - 2014-04-20 13:12 - 00000000 ____D C:\Users\Uživatel\Desktop\Euro Truck Simulator 2
2015-06-08 15:15 - 2014-11-12 21:15 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-06-08 14:26 - 2011-03-31 08:12 - 00000000 ____D C:\Users\Uživatel\Documents\TrackMania
2015-06-08 14:25 - 2013-02-28 20:56 - 00000000 ____D C:\Users\Uživatel\Documents\ManiaPlanet
2015-06-08 14:24 - 2013-05-24 18:38 - 00000000 ____D C:\ProgramData\ManiaPlanet
2015-06-08 13:46 - 2011-01-23 21:18 - 00003962 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{91B8059C-F4AE-48E4-8537-08C98180782D}
2015-06-07 21:40 - 2011-01-25 22:30 - 00000000 ____D C:\Users\Uživatel\AppData\Roaming\Skype
2015-06-07 19:01 - 2011-01-20 18:51 - 00000000 ____D C:\Windows\Minidump
2015-06-07 11:07 - 2013-12-19 15:27 - 00000000 ____D C:\ProgramData\AMD
2015-06-07 11:07 - 2012-04-07 18:36 - 00000000 ____D C:\Program Files\AMD
2015-06-07 11:05 - 2011-01-05 06:45 - 00000000 ____D C:\Program Files\ATI Technologies
2015-06-07 10:42 - 2011-01-23 23:47 - 00000000 ____D C:\Program Files (x86)\AMD
2015-06-07 10:38 - 2012-05-05 09:13 - 00000000 ____D C:\AMD
2015-06-06 21:33 - 2013-12-16 22:27 - 00000000 ____D C:\Users\Uživatel\Desktop\bezpečnost
2015-06-06 20:10 - 2009-07-14 04:34 - 00000215 _____ C:\Windows\system.ini
2015-06-06 20:07 - 2013-12-16 20:03 - 00000000 ____D C:\Windows\erdnt
2015-06-06 20:07 - 2009-07-14 04:34 - 96993280 _____ C:\Windows\system32\config\software.bak
2015-06-06 20:07 - 2009-07-14 04:34 - 68419584 _____ C:\Windows\system32\config\components.bak
2015-06-06 20:07 - 2009-07-14 04:34 - 26214400 _____ C:\Windows\system32\config\system.bak
2015-06-06 20:07 - 2009-07-14 04:34 - 00524288 _____ C:\Windows\system32\config\default.bak
2015-06-06 20:07 - 2009-07-14 04:34 - 00024576 _____ C:\Windows\system32\config\security.bak
2015-06-06 20:07 - 2009-07-14 04:34 - 00024576 _____ C:\Windows\system32\config\sam.bak
2015-06-06 20:06 - 2011-01-27 16:43 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-06-06 16:25 - 2012-04-07 18:19 - 00000000 ____D C:\Program Files (x86)\Steam
2015-06-06 16:24 - 2015-01-12 15:37 - 00000000 ____D C:\Users\Uživatel\AppData\Local\CrashDumps
2015-06-06 16:13 - 2011-01-23 21:59 - 00000000 ____D C:\Program Files (x86)\Adobe
2015-06-06 12:38 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\NDF
2015-06-05 18:59 - 2014-10-15 14:19 - 00037624 _____ C:\Windows\system32\Drivers\TrueSight.sys
2015-06-05 17:32 - 2015-01-02 19:51 - 00009595 _____ C:\zoek-results.log
2015-06-05 17:32 - 2015-01-02 19:46 - 00000000 ____D C:\zoek_backup
2015-06-05 17:19 - 2011-03-03 12:56 - 00000000 ____D C:\Users\Uživatel\AppData\Local\Google
2015-06-04 15:22 - 2014-10-15 14:19 - 00000000 ____D C:\ProgramData\RogueKiller
2015-06-04 14:11 - 2015-01-01 13:45 - 00000000 ____D C:\AdwCleaner
2015-06-03 17:57 - 2014-10-22 16:52 - 00000000 ____D C:\Users\Uživatel\Desktop\obrázky jana
2015-06-03 17:56 - 2015-04-27 15:51 - 00000000 ___RD C:\Users\Uživatel\Desktop\PaintTool SAI English Pack
2015-06-03 12:06 - 2012-10-16 19:17 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-06-02 09:43 - 2014-10-26 10:41 - 00000000 ____D C:\Users\Public\StarStableOnline
2015-05-28 21:22 - 2011-01-03 01:54 - 00000000 ____D C:\Users\Uživatel
2015-05-28 21:04 - 2015-04-04 10:25 - 00000000 ___SD C:\Windows\system32\GWX
2015-05-28 21:04 - 2012-12-04 16:40 - 00000000 ____D C:\Users\Uživatel\AppData\Roaming\Winamp
2015-05-28 21:02 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\registration
2015-05-20 22:28 - 2015-04-04 10:25 - 00000000 ___SD C:\Windows\SysWOW64\GWX
2015-05-19 17:21 - 2009-07-14 07:08 - 00032592 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2015-05-18 20:17 - 2015-03-14 20:54 - 00000000 ____D C:\Users\Uživatel\Desktop\rychlost připojení
2015-05-14 22:20 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2015-05-14 17:26 - 2014-11-21 15:36 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2015-05-13 14:21 - 2009-07-14 06:45 - 00358176 _____ C:\Windows\system32\FNTCACHE.DAT
2015-05-13 14:19 - 2009-07-14 17:37 - 00000000 ____D C:\Program Files\Windows Journal
2015-05-13 14:19 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\AdvancedInstallers
2015-05-13 13:42 - 2013-07-28 16:31 - 00000000 ____D C:\Windows\system32\MRT
2015-05-13 13:28 - 2011-01-23 19:37 - 140425016 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-05-13 13:26 - 2012-05-10 14:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-05-13 13:25 - 2012-05-10 14:13 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2015-05-13 13:25 - 2012-05-10 14:13 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight

==================== Files in the root of some directories =======

2012-02-11 20:01 - 2012-02-11 20:01 - 0000268 ____R () C:\Users\Uživatel\AppData\Roaming\Caches
2012-02-11 20:01 - 2012-02-11 20:01 - 0000268 ____R () C:\Users\Uživatel\AppData\Roaming\Calibrators
2012-02-11 20:01 - 2012-02-11 20:01 - 0000268 ____R () C:\Users\Uživatel\AppData\Roaming\Carbon
2015-04-19 10:30 - 2015-04-20 08:44 - 0000000 _____ () C:\Users\Uživatel\AppData\Roaming\FileIn.cns
2015-04-19 10:30 - 2015-04-20 08:44 - 0000000 _____ () C:\Users\Uživatel\AppData\Roaming\FileOut.cns
2011-02-08 10:21 - 2013-11-27 20:59 - 0001057 _____ () C:\Users\Uživatel\AppData\Roaming\vso_ts_preview.xml
2011-02-16 15:39 - 2013-11-09 22:03 - 0008192 _____ () C:\Users\Uživatel\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-06-07 20:39 - 2015-06-07 20:39 - 0000000 ___SH () C:\Users\Uživatel\AppData\Local\LumaEmu
2011-01-29 18:46 - 2013-06-01 21:59 - 0007605 _____ () C:\Users\Uživatel\AppData\Local\resmon.resmoncfg
2013-08-26 17:48 - 2013-08-26 17:48 - 0000061 _____ () C:\Users\Uživatel\AppData\Local\SRDownloader(1).err
2013-08-26 16:41 - 2013-08-27 14:15 - 0001112 _____ () C:\Users\Uživatel\AppData\Local\SRDownloader(1).nast
2011-07-17 20:24 - 2011-07-18 10:42 - 0000896 _____ () C:\Users\Uživatel\AppData\Local\SRDownloader.nast
2011-01-25 22:31 - 2011-01-25 22:31 - 0000048 ____H () C:\ProgramData\ezsidmv.dat
2011-10-15 19:06 - 2012-03-22 20:04 - 0000193 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.64.bc
2012-02-11 20:01 - 2012-11-25 17:05 - 0000020 ____H () C:\ProgramData\PKP_DLet.DAT

Some files in TEMP:
====================
C:\Users\Uživatel\AppData\Local\Temp\raptrpatch.exe
C:\Users\Uživatel\AppData\Local\Temp\raptr_stub.exe


Some zero byte size files/folders:
==========================
C:\Windows\logo_1.exe
C:\Windows\RUNDL132.EXE
C:\Windows\VDLL.DLL
C:\Windows\SysWOW64\runouce.exe

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
Naposledy upravil(a) karbi02 dne 08 čer 2015 17:21, celkem upraveno 1 x.

Reklama
Uživatelský avatar
karbi02
Level 2.5
Level 2.5
Příspěvky: 383
Registrován: březen 07
Pohlaví: Nespecifikováno
Stav:
Offline

Re: Prosím o kontrolu logu - zpomalené pc

Příspěvekod karbi02 » 08 čer 2015 17:01

Additional scan result of Farbar Recovery Scan Tool (x64) Version:07-06-2015
Ran by Uživatel at 2015-06-08 16:45:04
Running from C:\Users\Uživatel\Desktop
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3056490246-2549413826-2647440247-500 - Administrator - Disabled)
Guest (S-1-5-21-3056490246-2549413826-2647440247-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3056490246-2549413826-2647440247-1009 - Limited - Enabled)
Uživatel (S-1-5-21-3056490246-2549413826-2647440247-1000 - Administrator - Enabled) => C:\Users\Uživatel

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: ESET Smart Security 6.0 (Enabled - Up to date) {77DEAFED-8149-104B-25A1-21771CA47CD1}
AS: ESET Smart Security 6.0 (Enabled - Up to date) {CCBF4E09-A773-1FC5-1F11-1A056723366C}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: ESET personal firewall (Enabled) {4FE52EC8-CB26-1113-0EFE-8842E2773BAA}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

«GRID 2» 1.0.85.8679 (HKLM-x32\...\«GRID 2»_is1) (Version: 1.0.85.8679 - Codemasters)
µTorrent (HKU\S-1-5-21-3056490246-2549413826-2647440247-1000\...\uTorrent) (Version: 3.4.3.40298 - BitTorrent Inc.)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.0.0.4080 - Adobe Systems Incorporated)
Adobe Flash Player 17 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 17.0.0.169 - Adobe Systems Incorporated)
Adobe Flash Player 17 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 17.0.0.169 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.11) - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.11 - Adobe Systems Incorporated)
AMD Catalyst Install Manager (HKLM\...\{047D5657-1DAC-2B16-E110-F4A9C0E7EF2C}) (Version: 8.0.881.0 - Advanced Micro Devices, Inc.)
AMD Catalyst Install Manager (HKLM\...\{F2A7CE36-57BF-5C86-952D-90DBF3746D82}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
Apple Application Support (HKLM-x32\...\{EE6097DD-05F4-4178-9719-D3170BF098E8}) (Version: 1.4.1 - Apple Inc.)
Audacity 2.0.2 (HKLM-x32\...\Audacity_is1) (Version: 2.0.2 - Audacity Team)
Balíček ovladače systému Windows - OLYMPUS IMAGING CORP. Camera Communication Driver Package (09/09/2009 1.0.0.0) (HKLM\...\2C1C2F29FADF39F533CEEE67B90F07A5306A4BDB) (Version: 09/09/2009 1.0.0.0 - OLYMPUS IMAGING CORP.)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
BusinessCards MX (HKLM-x32\...\{0D5B5ED2-3E38-4585-B1F3-64B2A9EA95D6}_is1) (Version: 4.90 - MOJOSOFT)
CCleaner (HKLM\...\CCleaner) (Version: 4.19 - Piriform)
CDBurnerXP (HKLM\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.3.8.2474 - CDBurnerXP)
ConvertXtoDVD 4.1.8.344 (HKLM-x32\...\{DB6AB705-C9BD-40E3-8929-2EA57F36A4FF}_is1) (Version: 4.1.8.344 - )
CPUID HWMonitor 1.15 (HKLM\...\CPUID HWMonitor_is1) (Version: - )
CrazyTalk Cam Suite PRO (HKLM-x32\...\{D1504C77-1B19-4AF0-8DEC-946666123B55}) (Version: 3.0 - Reallusion)
CrystalDiskInfo 6.2.2 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 6.2.2 - Crystal Dew World)
CutePDF Writer 2.8 (HKLM\...\CutePDF Writer Installation) (Version: - )
CyberLink PowerDVD 10 (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.2429.51 - CyberLink Corp.)
CyberLink PowerDVD 10.0.1516.51 - odinstalovat češtinu (HKLM-x32\...\CyberLink PowerDVD 10.0.1516.51) (Version: - Michellin & Pavlík)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.47.1.0333 - Disc Soft Ltd)
Download Navigator (HKLM-x32\...\{D0353B68-A142-4F89-A46E-1C9A7745D636}) (Version: 3.4.1 - SEIKO EPSON CORPORATION)
Downloader (HKLM-x32\...\Downloader) (Version: - )
Drakensang Online (HKLM-x32\...\Drakensang Online) (Version: - )
EA Download Manager (HKLM-x32\...\EA Download Manager) (Version: 6.0.4.124 - Electronic Arts, Inc.)
EA Download Manager UI (HKLM-x32\...\com.ea.Vault.919CACB699904AC5D41B606703500DD39747C02D.1) (Version: 6.0.4.124 - Electronic Arts)
EA Download Manager UI (x32 Version: 6.0.4 - Electronic Arts) Hidden
EPSON BX635FWD Series Printer Uninstall (HKLM\...\EPSON BX635FWD Series) (Version: - SEIKO EPSON Corporation)
Epson Connect Printer Setup (HKLM-x32\...\{D9B1D51B-EB56-410D-AEB5-1CCFAC4B6C8C}) (Version: 1.1.1 - SEIKO EPSON CORPORATION)
Epson Easy Photo Print 2 (HKLM-x32\...\{FFF841F3-9A15-4F61-BD16-C19F132E5A27}) (Version: 2.3.0.0 - SEIKO EPSON CORPORATION)
Epson Easy Photo Print Plug-in for PMB(Picture Motion Browser) (HKLM-x32\...\{B2D55EB8-32C5-4B43-9006-9E97DECBA178}) (Version: 1.00.0000 - SEIKO EPSON CORPORATION2)
Epson Event Manager (HKLM-x32\...\{FA9D303D-0FB2-49C7-9397-8E6B11EA892D}) (Version: 2.50.0001 - SEIKO EPSON CORPORATION)
Epson E-Web Print (HKLM-x32\...\{FB897D16-F0A7-4674-96F1-1C26963BA244}) (Version: 1.15.0000 - SEIKO EPSON CORPORATION)
Epson FAX Utility (HKLM-x32\...\{0CBE6C93-CB2E-4378-91EE-12BE6D4E2E4A}) (Version: 1.20.00 - SEIKO EPSON CORPORATION)
EPSON Printer Finder (HKLM-x32\...\{B8ECD0D3-AE08-4891-B6C7-32F96B75EB6C}) (Version: 1.0.0 - SEIKO EPSON CORPORATION)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation)
EpsonNet Print (HKLM-x32\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.4j - SEIKO EPSON CORPORATION)
ESET Smart Security (HKLM\...\{685906B8-E4CF-40DC-BAF1-8DED5B5637B8}) (Version: 6.0.302.4 - ESET, spol s r. o.)
Euro Truck Simulator 2 Gold Bundle verze v1.14.0.4s (HKLM-x32\...\Euro Truck Simulator 2 Gold Bundle_is1) (Version: v1.14.0.4s - R.G. Danik1B9)
EveryonePiano 1.6 (HKLM-x32\...\EveryonePiano_is1) (Version: 1.6.10.24 - EveryonePiano.com)
Eye 312 (HKLM-x32\...\{74F923F2-2B11-4E2E-B638-A1772A9F7B7B}) (Version: 1.0.0.28 - KYE SYSTEMS CORP.)
F1 2011 (x32 Version: 1.0.0002.129 - Codemasters) Hidden
F1 2014 (HKLM-x32\...\RjEyMDE0_is1) (Version: 1 - )
Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Game Alarm (HKU\S-1-5-21-3056490246-2549413826-2647440247-1000\...\gamealarm-DEFAULT) (Version: - )
Google Update Helper (x32 Version: 1.3.22.3 - Google Inc.) Hidden
Google+ Auto Backup (HKLM-x32\...\{A50DE037-B5C0-4C8A-8049-B0C576B313D1}) (Version: 1.0.21.81 - Google)
GRID 2 (c) Codemasters version 1 (HKLM-x32\...\R1JJRDI=_is1) (Version: 1 - )
HeavyLoad V3.2 (HKLM-x32\...\HeavyLoad_is1) (Version: 3.2 - JAM Software)
High-Definition Video Playback 10 (x32 Version: 7.0.11400.29.0 - Nero AG) Hidden
HisLauncher (HKLM-x32\...\{17E8DD45-2F02-4491-9819-FBD1C0336C59}) (Version: 1.0.0.0 - GameUs)
Java(TM) 7 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417000FF}) (Version: 7.0.0 - Oracle)
Jpeg Resampler Vs 6+ (HKLM-x32\...\JpegResampler2010_is1) (Version: - Jpeg Resampler)
Junk Mail filter update (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
KB-350e (HKLM-x32\...\{7F25D625-A159-49F7-B5C5-6654860EC116}) (Version: 1.00.0000 - Montery)
K-Lite Codec Pack (64-bit) v4.1.0 (HKLM\...\KLiteCodecPack64_is1) (Version: 4.1.0 - )
K-Lite Codec Pack 4.3.1 (Full) (HKLM-x32\...\KLiteCodecPack_is1) (Version: 4.3.1 - )
Logitech Gaming Software 5.10 (HKLM\...\{1444D2EE-C7AD-44A8-844F-2634B49353D1}) (Version: 5.10.127 - Logitech)
Logitech Gaming Software 64 (HKLM-x32\...\InstallShield_{58BF5D14-CBCF-473C-B0E0-A7955A23224E}) (Version: - )
Malwarebytes Anti-Malware verze 2.1.6.1022 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.6.1022 - Malwarebytes Corporation)
ManiaPlanet (HKLM-x32\...\ManiaPlanet_is1) (Version: - Nadeo)
Matrix Code Emulator 1.50 (HKLM-x32\...\Matrix Code Emulator_is1) (Version: - Reality Rift Studios)
MediaFeed (HKLM-x32\...\MediaFeed) (Version: 309 - MediaFeed.me)
Metric Collection SDK 35 (x32 Version: 1.2.0006.00 - Lenovo Group Limited) Hidden
Microsoft .NET Framework 4.5.2 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{F2508213-9989-4E85-A078-72BE483917EF}) (Version: 3.5.88.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3056490246-2549413826-2647440247-1000\...\OneDriveSetup.exe) (Version: 17.3.1171.0714 - Microsoft Corporation)
Microsoft Primary Interoperability Assemblies 2005 (HKLM-x32\...\{D24DB8B9-BB6C-4334-9619-BA1C650E13D3}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM-x32\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{402ED4A1-8F5B-387A-8688-997ABF58B8F2}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Mouse Driver (HKLM-x32\...\InstallShield_{55BFC356-5A7B-482F-A213-9ACFDDFF6037}) (Version: 5.1 - Driver Builder)
Mouse Driver (x32 Version: 5.1 - Driver Builder) Hidden
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
MozBackup 1.4.10 (HKLM-x32\...\MozBackup) (Version: - Pavel Cvrcek)
Mozilla Firefox 38.0.5 (x86 cs) (HKLM-x32\...\Mozilla Firefox 38.0.5 (x86 cs)) (Version: 38.0.5 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
Mozilla Thunderbird 24.2.0 (x86 cs) (HKLM-x32\...\Mozilla Thunderbird 24.2.0 (x86 cs)) (Version: 24.2.0 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP2 Parser and SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
NEC Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{D7BF9739-8A68-4335-BBEE-37752AD9E86B}) (Version: 1.0.19.0 - NEC Electronics Corporation)
NEC Electronics USB 3.0 Host Controller Driver (x32 Version: 1.0.19.0 - NEC Electronics Corporation) Hidden
Nero 10 PiP EffectPack 1 (HKLM-x32\...\{EF3A4DAE-F16F-4AC1-87BB-FE00A784084F}) (Version: 10.2.10200.0.0 - Nero AG)
Nero BackItUp 10 (HKLM-x32\...\{68AB6930-5BFF-4FF6-923B-516A91984FE6}) (Version: 5.4.11600.19.100 - Nero AG)
Nero Burning ROM 10 (HKLM-x32\...\{7A5D731D-B4B3-490E-B339-75685712BAAB}) (Version: 10.0.11100.10.100 - Nero AG)
Nero BurnRights 10 (HKLM-x32\...\{943CFD7D-5336-47AF-9418-E02473A5A517}) (Version: 4.0.11000.12.100 - Nero AG)
Nero CoverDesigner 10 (HKLM-x32\...\{FCF00A6E-FB58-477A-ABE9-232907105521}) (Version: 5.0.10900.11.100 - Nero AG)
Nero DiscSpeed 10 (HKLM-x32\...\{34490F4E-48D0-492E-8249-B48BECF0537C}) (Version: 6.0.10800.7.100 - Nero AG)
Nero Express 10 (HKLM-x32\...\{70550193-1C22-445C-8FA4-564E155DB1A7}) (Version: 10.0.11000.10.100 - Nero AG)
Nero InfoTool 10 (HKLM-x32\...\{F412B4AF-388C-4FF5-9B2F-33DB1C536953}) (Version: 7.0.10800.8.100 - Nero AG)
Nero MediaHub 10 (HKLM-x32\...\{1F7FB68F-52F6-46A3-B42F-38CE46295AE5}) (Version: 1.0.13400.11.100 - Nero AG)
Nero Multimedia Suite 10 (HKLM-x32\...\{277C1559-4CF7-44FF-8D07-98AA9C13AABD}) (Version: 10.0.13100 - Nero AG)
Nero Recode 10 (HKLM-x32\...\{8ECEC853-5C3D-4B10-B5C7-FF11FF724807}) (Version: 4.6.10900.4.100 - Nero AG)
Nero RescueAgent 10 (HKLM-x32\...\{E337E787-CF61-4B7B-B84F-509202A54023}) (Version: 3.0.10900.9.100 - Nero AG)
Nero SoundTrax 10 (HKLM-x32\...\{E1EE5339-5D32-458F-BAAB-B19F6301BCE2}) (Version: 4.6.10600.2.100 - Nero AG)
Nero StartSmart 10 (HKLM-x32\...\{F61D489E-6C44-49AC-AD02-7DA8ACA73A65}) (Version: 10.0.11200.12.100 - Nero AG)
Nero Update (HKLM-x32\...\{65BB0407-4CC8-4DC7-952E-3EEFDF05602A}) (Version: 1.0.0017 - Nero AG)
Nero Vision 10 (HKLM-x32\...\{9A4297F3-2A51-4ED9-92CA-4BCB8380947E}) (Version: 7.0.11100.8.100 - Nero AG)
Nero WaveEditor 10 (HKLM-x32\...\{EDCDFAD5-DF80-4600-A493-E9DAD6810230}) (Version: 5.6.10600.2.100 - Nero AG)
O&O Defrag Professional (HKLM\...\{1C430BCD-D2CD-4F2B-8476-4267F0B9E485}) (Version: 14.1.431 - O&O Software GmbH)
Ogg Codecs 0.81.15562 (HKLM-x32\...\Ogg Codecs) (Version: 0.81.15562 - Xiph.Org)
OLYMPUS Viewer 3 (HKLM-x32\...\{1B28182C-253F-4CFE-AF4A-87CB416D5F73}) (Version: 1.0.0 - OLYMPUS IMAGING CORP.)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
OpenOffice.org 3.2 (HKLM-x32\...\{FAB43061-FEFB-46E8-A159-96710395DB5E}) (Version: 3.2.9505 - OpenOffice.org)
Ovladače videa společnosti Pinnacle (HKLM\...\{6DE721A5-5E89-4D74-994C-652BB3C0672E}) (Version: 12.1.0.030 - Pinnacle Systems)
PCSpeedUp (HKU\S-1-5-21-3056490246-2549413826-2647440247-1000\...\3027380830.www.pcspeedup.com) (Version: - www.pcspeedup.com) <==== ATTENTION
PCSpeedUp Application (HKU\S-1-5-21-3056490246-2549413826-2647440247-1000\...\3669561691.www.pcspeedup.com) (Version: - www.pcspeedup.com) <==== ATTENTION
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.)
Picture Control Utility (HKLM-x32\...\{87441A59-5E64-4096-A170-14EFE67200C3}) (Version: 1.2.2 - Nikon)
Pinnacle Studio 15 (HKLM-x32\...\{1362E602-9625-42D3-B57F-CDA9D26F9DA8}) (Version: 15.0.0.7593 - Pinnacle Systems)
Platform (x32 Version: 1.34 - VIA Technologies, Inc.) Hidden
Příručka pro síť EPSON BX635FWD Series (HKLM-x32\...\EPSON BX635FWD Series Netg) (Version: - )
QuickTime (HKLM-x32\...\{57752979-A1C9-4C02-856B-FBB27AC4E02C}) (Version: 7.69.80.9 - Apple Inc.)
rajče průvodce verze 1.59.42.257 (HKLM-x32\...\rajče.net_is1) (Version: - rajče.net)
Raptr (HKLM-x32\...\Raptr) (Version: - )
Rapture3D 2.3.22 Game (HKLM-x32\...\{D2FCA41E-AC01-4DCD-B3A7-DC9E32363065}}_is1) (Version: - Blue Ripple Sound)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.47.714.2011 - Realtek)
Revo Uninstaller Pro 3.1.2 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.1.2 - VS Revo Group, Ltd.)
Ski Challenge 13 (AT) (HKU\S-1-5-21-3056490246-2549413826-2647440247-1000\...\sc13-AT_MAIN) (Version: - )
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.4.0.9058 - Microsoft Corporation)
Skype™ 7.4 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.4.102 - Skype Technologies S.A.)
SlimComputer (HKLM-x32\...\{84AC08CB-C712-40DB-950F-4E0CA6170B8D}) (Version: 1.3.24430 - SlimWare Utilities, Inc.)
SlimDrivers (HKLM-x32\...\{0BEB28E4-E5EA-40DE-8982-1F13005DC08B}) (Version: 2.2.25937 - SlimWare Utilities, Inc.)
Sniper Elite III (HKLM-x32\...\Sniper Elite III_is1) (Version: 1.01 - Codemasters)
Sony Ericsson Update Service (HKLM-x32\...\Update Service) (Version: 2.11.6.12 - Sony Ericsson Mobile Communications AB)
SPAMfighter (x32 Version: 7.6.104 - Spamfighter ApS) Hidden
Star Stable (HKLM-x32\...\{2B03B553-4983-4005-99C4-31DFC25B4BB9}) (Version: 1.00.0000 - Star Stable Entertainment AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamViewer 7 (HKLM-x32\...\TeamViewer 7) (Version: 7.0.12979 - TeamViewer)
The KMPlayer (remove only) (HKLM-x32\...\The KMPlayer) (Version: - )
The Lord of the Rings FREE Trial (x32 Version: 1.00.0000 - ATI Technologies Inc.) Hidden
TmUnitedForever Update 2010-03-15 (HKLM-x32\...\TmUnitedForever_is1) (Version: - Nadeo)
TomTom HOME (HKLM-x32\...\{7A2BB1C8-903D-4585-9F3B-CADD67D07D37}) (Version: 2.9.8 - Název společnosti:)
TomTom HOME Visual Studio Merge Modules (HKLM-x32\...\{8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}) (Version: 1.0.2 - TomTom International B.V.)
Total Commander (Remove or Repair) (HKLM-x32\...\Totalcmd) (Version: 7.56a - Ghisler Software GmbH)
Unity Web Player (HKU\S-1-5-21-3056490246-2549413826-2647440247-1000\...\UnityWebPlayer) (Version: 2.6.1f3_31223 - Unity Technologies ApS)
Uživatelská příručka EPSON BX635FWD Series (HKLM-x32\...\EPSON BX635FWD Series Useg) (Version: - )
VIA Platforma Ovladače zařízení (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.34 - VIA Technologies, Inc.)
ViewNX 2 (HKLM-x32\...\{DDD62492-32A7-412B-8AF1-2CF032AD42E3}) (Version: 2.1.2 - Nikon)
Winamp (HKLM-x32\...\Winamp) (Version: 5.623 - Nullsoft, Inc)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
WinRAR 4.11 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.11.0 - win.rar GmbH)
Wise Registry Cleaner 8.52 (HKLM-x32\...\Wise Registry Cleaner_is1) (Version: 8.52 - WiseCleaner.com, Inc.)
XnView 1.97.8 (HKLM-x32\...\XnView_is1) (Version: 1.97.8 - Gougelet Pierre-e)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3056490246-2549413826-2647440247-1000_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\Uživatel\AppData\Local\Microsoft\SkyDrive\17.3.1171.0714\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3056490246-2549413826-2647440247-1000_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\Uživatel\AppData\Local\Microsoft\SkyDrive\17.3.1171.0714\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3056490246-2549413826-2647440247-1000_Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}\InprocServer32 -> C:\Users\Uživatel\AppData\Local\Microsoft\SkyDrive\17.3.1171.0714\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3056490246-2549413826-2647440247-1000_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\Uživatel\AppData\Local\Microsoft\SkyDrive\17.3.1171.0714\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3056490246-2549413826-2647440247-1000_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\Uživatel\AppData\Local\Microsoft\SkyDrive\17.3.1171.0714\amd64\FileSyncApi64.dll (Microsoft Corporation)

==================== Restore Points =========================

19-05-2015 14:08:54 Windows Update
20-05-2015 22:27:30 Windows Update
26-05-2015 11:11:31 Windows Update
28-05-2015 20:58:59 Operace obnovení
28-05-2015 21:29:17 Windows Update
02-06-2015 13:18:12 Windows Update
05-06-2015 15:04:56 Installed HisLauncher
05-06-2015 15:05:31 Installed HisLauncher
07-06-2015 10:40:36 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727
07-06-2015 10:41:36 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2015-06-06 20:10 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0F89964D-1D4E-4403-BA30-DA40A546CAD4} - System32\Tasks\{511757D0-DE76-4B57-A416-FCB0EC7B38EE} => pcalua.exe -a "C:\Program Files (x86)\Speeditup Free\SpeedItUp.exe" -d "C:\Program Files (x86)\Speeditup Free"
Task: {1252B3C8-DFAC-4D2E-9DBD-914899B6BE9C} - System32\Tasks\GoogleUpdateTaskMachineCore1cec67ae6703a25 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {2A1DD301-67E1-43CB-B854-84D2C7D00816} - System32\Tasks\{1D83A5F9-74E3-4D25-BB4C-E271D991B347} => pcalua.exe -a C:\Users\Uživatel\Desktop\FreeRapid-0.85u1\frd.exe -d C:\Users\Uživatel\Desktop\FreeRapid-0.85u1
Task: {324640E6-67DC-4D53-91BB-8D20AE39978D} - System32\Tasks\Microsoft\Windows\Windows Activation Technologies\ValidationTask => C:\Windows\system32\Wat\WatAdminSvc.exe [2011-01-23] (Microsoft Corporation)
Task: {382E409F-CCA4-46B5-A042-5D2E4DCF604D} - System32\Tasks\{53A494EF-F5B2-4397-851E-503166EF1FC1} => C:\Program Files (x86)\Skype\\Phone\Skype.exe [2015-04-17] (Skype Technologies S.A.)
Task: {49F60143-BD0A-4EB5-85D3-BBFD453A3813} - System32\Tasks\{36B48ABA-F189-4A9D-BCB7-8FF4B9E94BFB} => pcalua.exe -a C:\Users\Uživatel\Desktop\FreeRapid-0.85u1\frd.exe -d C:\Users\Uživatel\Desktop\FreeRapid-0.85u1
Task: {4C114375-C0EB-4CF7-9059-A9C472725F7E} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-05-07] (Microsoft Corporation)
Task: {53AF0CFD-1B4B-43A8-926F-8950D5181B90} - System32\Tasks\{451A5B57-7B06-4AED-93D5-C7FF71A2E874} => pcalua.exe -a C:\Users\Uživatel\Desktop\startuplite-setup-1.07.exe -d C:\Users\Uživatel\Desktop
Task: {6287C12F-1E5F-4871-9213-2572F522A925} - System32\Tasks\{2484197B-A51D-422F-826F-33D5CE26531F} => pcalua.exe -a E:\setup.exe -d E:\
Task: {698984A5-4977-4EFE-8868-1D00084D7A92} - System32\Tasks\{23AA1EC8-D8B3-471B-9CDA-DBB66B65CBE3} => pcalua.exe -a C:\Users\Uživatel\Downloads\DreamAquariumXP.exe -d "C:\Program Files (x86)\Mozilla Firefox"
Task: {6B6BDB63-CB7D-4BE4-B6F7-B84092077949} - System32\Tasks\{5DE3AA4A-F44B-40A8-A365-8E295189F4AA} => pcalua.exe -a C:\Users\Uživatel\Desktop\mwav.exe -d "C:\Program Files (x86)\Mozilla Firefox"
Task: {730E86D5-3D6A-49DA-AF20-801DC8D1C639} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle => C:\Windows\system32\GWX\GWX.exe [2015-05-07] (Microsoft Corporation)
Task: {7710BF6B-520D-48A0-A210-0028415548B1} - System32\Tasks\{0828DE00-805F-4687-AC88-A5ABB54B1D67} => pcalua.exe -a F:\Setup.EXE -d F:\
Task: {79A0BB9F-D3BA-483A-95DC-62C0C66E4B61} - System32\Tasks\{634928AA-D900-4324-9594-81F81B141289} => pcalua.exe -a "C:\Program Files (x86)\IObit\Advanced SystemCare 6\UninstallPromote.exe" -d "C:\Program Files (x86)\IObit\Advanced SystemCare 6"
Task: {7C898BC7-2F08-47D1-99BF-6F877FB843DD} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-04-15] (Adobe Systems Incorporated)
Task: {7CCED4A0-14E0-4163-86E1-BE332929E17B} - System32\Tasks\{909C39EF-F2BC-4484-80AD-307F7CD8034D} => pcalua.exe -a "C:\Program Files (x86)\Common Files\Logitech\QCDRV\BIN\SETUP.EXE" -c UNINSTALL REMOVEPROMPT
Task: {7E90D533-D58F-418C-9F66-ADD8DDBA33B5} - System32\Tasks\{AFAC37A0-6614-4E8E-8D4F-1935E8C48F02} => pcalua.exe -a C:\Users\Uživatel\Downloads\mwav.exe -d C:\Users\Uživatel\Downloads
Task: {7F9E910E-2CDD-46C0-87FA-37FEEF241750} - System32\Tasks\GoogleUpdateTaskMachineUA1cec67ae75cbd1b => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {859A3805-6DC8-4D92-A11E-9F4836A69EE2} - \SlimDrivers Startup No Task File <==== ATTENTION
Task: {965835C6-D6BD-4844-859C-4BA42ADEA07E} - System32\Tasks\SidebarExecute => C:\Program Files (x86)\Windows Sidebar\sidebar.exe [2010-11-20] (Microsoft Corporation)
Task: {97369D31-8CE7-4ED4-B205-83FE8153D37C} - System32\Tasks\{E327E099-396F-498A-9802-A657F09E99C1} => pcalua.exe -a "C:\Users\Uživatel\Desktop\o&amp;o defrag professional edition 14.1.431 (CZ + CDkey)\oodefragpro14143164bitcz.exe" -d "C:\Users\Uživatel\Desktop\o&amp;o defrag professional edition 14.1.431 (CZ + CDkey)"
Task: {99A9BCD5-ADBF-4B10-97B7-5BEE5F1A756E} - System32\Tasks\{51CFF580-8827-4F89-9CDA-A4CC496574D0} => pcalua.exe -a C:\Users\Uživatel\Downloads\solutoinstaller.exe -d C:\Users\Uživatel\Downloads
Task: {9F8DF28A-A780-4F98-B997-4450B307881B} - System32\Tasks\{21278465-5104-4549-8191-5464F22520C0} => pcalua.exe -a C:\Users\Uživatel\Desktop\frd.exe -d C:\Users\Uživatel\Desktop
Task: {A72FCECD-3213-4F02-80C2-855E2AF3D11D} - System32\Tasks\{51781ECB-AA2C-494B-B1F2-BE87593B5AF0} => pcalua.exe -a "C:\Users\Uživatel\Desktop\nepoužívané programy\mwav.exe" -d "C:\Users\Uživatel\Desktop\nepoužívané programy"
Task: {AC24CD3D-9A50-4D28-AC5C-F9941B5FF48D} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => schtasks
Task: {AD0872DA-CC56-4E98-85E0-4370B3A605FD} - System32\Tasks\ASC6_PerformanceMonitor => C:\Program Files (x86)\IObit\Advanced SystemCare 6\Monitor.exe
Task: {B0FEEAE7-2880-43A3-AD39-A4BF7A987AEF} - System32\Tasks\{40701556-40CC-42F2-8DB6-6BD9B7B078B1} => pcalua.exe -a C:\Users\Uživatel\Downloads\lgs508.exe -d C:\Windows\system32
Task: {B500F688-2885-4BF6-980A-01CB52B8C428} - System32\Tasks\{D873D07D-7C9A-4800-8884-429EA175247D} => pcalua.exe -a C:\Users\Uživatel\Desktop\mwav(1).exe -d C:\Users\Uživatel\Desktop
Task: {B79D917B-4B86-48BA-8FE2-89E2CB809A12} - System32\Tasks\{DA0E4CFA-2EEE-4BDE-8D2D-FCCF65147AD9} => pcalua.exe -a "C:\Program Files (x86)\InstallShield Installation Information\{04AF7536-446D-4F5A-8920-B4E885E4581B}\Presto.exe" -c -runfromtemp -l0x0009 -removeonly
Task: {B8E846F0-69B0-471A-AABE-8FC079000380} - System32\Tasks\{5B95AF26-1DD7-43C9-B8EF-4631A42DE18F} => pcalua.exe -a "C:\Program Files (x86)\Samsung\Kies\KiesDriverInstaller.exe" -d "C:\Program Files (x86)\Samsung\Kies"
Task: {BB8F13DC-0E7E-4035-AD4C-A14DECA3A1F9} - System32\Tasks\{16F850D1-13FD-46B2-AC3F-FD2453C3BA4A} => pcalua.exe -a "C:\Windows\Speeditup Free\uninstall.exe" -c "/U:C:\Program Files (x86)\Speeditup Free\irunin.xml"
Task: {BCCE7E51-2DE9-498D-B069-36298B22F1ED} - System32\Tasks\{21FD2EB6-FD3F-469D-B451-0A21BA679111} => pcalua.exe -a "C:\Users\Uživatel\Desktop\CyberLink PowerDVD 9 Ultra Build 2227 FINAL\PDVD9U.Activator.exe" -d "C:\Users\Uživatel\Desktop\CyberLink PowerDVD 9 Ultra Build 2227 FINAL"
Task: {CA2CEE4F-8147-4D06-AC7F-885F19F4FDD5} - System32\Tasks\{9F232022-49A8-4A84-A99D-5241D4CFE059} => pcalua.exe -a C:\Users\Uživatel\Downloads\fuk.exe -d C:\Users\Uživatel\Downloads
Task: {CD23C184-4C31-432C-BCF7-399A513F8851} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-10-23] (Piriform Ltd)
Task: {D4C0DF6D-37D0-4AC0-ACF1-AED0110E0400} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe [2014-09-10] (Lenovo)
Task: {E76BAF77-AEFB-4584-A5BF-951F4DD245AE} - System32\Tasks\{DAED7DD1-3A05-473E-AD8F-E93F8ECDAFB6} => pcalua.exe -a "C:\Users\Uživatel\Documents\instalační programy\MozBackup-1.4.10-EN.exe" -d "C:\Users\Uživatel\Documents\instalační programy"
Task: {EBA1C84D-A7A5-46F5-9557-12A552CD83ED} - System32\Tasks\{3D1F7B5C-229D-4C35-96CB-56AF22070580} => pcalua.exe -a C:\Users\Uživatel\Downloads\jxpiinstall(1).exe -d "C:\Program Files (x86)\Mozilla Firefox"
Task: {F737A774-1522-4F85-A528-6AFAC9275020} - System32\Tasks\Microsoft\Windows\Setup\gwx\launchtrayprocess => C:\Windows\system32\GWX\GWX.exe [2015-05-07] (Microsoft Corporation)
Task: {FB54E5EE-2B5D-49E8-A766-F9D84BF237EB} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\Logon => C:\Windows\system32\GWX\GWX.exe [2015-05-07] (Microsoft Corporation)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Loaded Modules (Whitelisted) ==============

2011-01-23 22:00 - 2007-07-12 23:37 - 00085504 _____ () C:\Windows\System32\cpwmon64.dll
2014-11-20 21:23 - 2014-11-20 21:23 - 00214528 _____ () C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
2014-02-11 06:08 - 2014-02-11 06:08 - 00817152 _____ () C:\Program Files\AMD\ATI.ACE\Fuel\Device.dll
2014-02-11 06:08 - 2014-02-11 06:08 - 03650560 _____ () C:\Program Files\AMD\ATI.ACE\Fuel\Platform.dll
2011-09-23 09:22 - 2011-09-23 09:31 - 00066872 ____N () C:\Windows\SysWOW64\PnkBstrA.exe
2011-01-23 22:00 - 2012-02-17 21:55 - 00193536 _____ () C:\Program Files\WinRAR\rarext.dll
2012-04-01 09:53 - 2010-09-06 18:21 - 00538435 _____ () C:\Program Files (x86)\JpegResampler2010\JRcm64.dll
2013-05-30 14:17 - 2013-01-15 18:59 - 00161088 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCExtMenu_64.dll
2012-10-07 11:01 - 2000-01-01 02:00 - 00078480 _____ () C:\Program Files (x86)\VIA\VIAudioi\VDeck\QsApoApi64.dll
2012-10-07 11:01 - 2000-01-01 02:00 - 00386192 _____ () C:\Program Files (x86)\VIA\VIAudioi\VDeck\Dts2ApoApi64.dll
2015-04-15 19:16 - 2015-04-15 19:16 - 16863920 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_169.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MSIServer => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MSIServer => ""="Service"

==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3056490246-2549413826-2647440247-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Uživatel\AppData\Roaming\Mozilla\Firefox\Pozadí plochy.bmp
DNS Servers: 10.0.0.1

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk => C:\Windows\pss\McAfee Security Scan Plus.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Uživatel^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 3.2.lnk => C:\Windows\pss\OpenOffice.org 3.2.lnk.Startup
MSCONFIG\startupfolder: C:^Users^Uživatel^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Registrace .lnk => C:\Windows\pss\Registrace .lnk.Startup
MSCONFIG\startupfolder: C:^Users^Uživatel^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Registrace NHL™ 09.lnk => C:\Windows\pss\Registrace NHL™ 09.lnk.Startup
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: BDRegion => C:\Program Files (x86)\Cyberlink\Shared files\brs.exe
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: DAEMON Tools Lite => "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
MSCONFIG\startupreg: EEventManager => "C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe"
MSCONFIG\startupreg: EPLTarget =>
MSCONFIG\startupreg: FUFAXRCV => "C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXRCV.exe"
MSCONFIG\startupreg: FUFAXSTM => "C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe"
MSCONFIG\startupreg: Google+ Auto Backup => "C:\Users\Uživatel\AppData\Local\Programs\Google\Google+ Auto Backup\Google+ Auto Backup.exe" /autostart
MSCONFIG\startupreg: KB350e => C:\Program Files (x86)\KB350e\MagicKey.exe
MSCONFIG\startupreg: KMCONFIG => C:\Program Files (x86)\Mouse Driver\StartAutorun.exe KMConfig.exe
MSCONFIG\startupreg: NBAgent => "C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe" /WinStart
MSCONFIG\startupreg: OODefragTray => C:\Program Files\OO Software\Defrag\oodtray.exe
MSCONFIG\startupreg: PAC7302_Monitor => C:\Windows\PixArt\PAC7302\Monitor.exe
MSCONFIG\startupreg: Raptr => C:\PROGRA~2\Raptr\raptrstub.exe --startup
MSCONFIG\startupreg: RemoteControl10 => "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: StartCCC => "C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\steam.exe" -silent
MSCONFIG\startupreg: TomTomHOME.exe => "C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe"
MSCONFIG\startupreg: Uninstall C: =>
MSCONFIG\startupreg: uTorrent => "C:\Users\Uživatel\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
MSCONFIG\startupreg: WinampAgent => "C:\Program Files (x86)\Winamp\winampa.exe"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{07AB6B05-938A-4F11-B467-9047AACF2891}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{95D20690-4947-4ADF-97B2-7447478BC3FA}C:\program files (x86)\tmunitedforever\tmforever.exe] => (Allow) C:\program files (x86)\tmunitedforever\tmforever.exe
FirewallRules: [UDP Query User{6E92E095-28AE-491B-9503-80CFE4743051}C:\program files (x86)\tmunitedforever\tmforever.exe] => (Allow) C:\program files (x86)\tmunitedforever\tmforever.exe
FirewallRules: [TCP Query User{DFD366D7-822E-4B02-8C22-1BF57E35050E}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{F99DC0A4-624C-4271-8B01-A3812F70A7FB}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [{50C24A51-D7DD-4C3C-8E48-24CEBFDF41FC}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe
FirewallRules: [{B596CD0A-900F-4B2C-A3BF-46CF61C28C4C}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD10.EXE
FirewallRules: [{46E873A3-67FE-4D20-A8CC-54868DE2BCD7}] => (Allow) C:\Program Files (x86)\Sony Ericsson\Update Service\Update Service.exe
FirewallRules: [{4FDBCA32-86D4-41A3-9809-BD1015883208}] => (Allow) C:\Program Files (x86)\Sony Ericsson\Update Service\Update Service.exe
FirewallRules: [{8B02A13F-76D3-412B-9A93-221D3BAD43DC}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{BA5D9A7F-1B64-4FEE-99FA-7E8D5657D495}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{A48F2F24-5E6A-4D40-BCC1-A0771B4818E8}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{8CE7A480-A2CA-4D30-9AE4-FD8B8944EF0A}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [TCP Query User{87D400FB-5DFA-4AE3-8F16-BDCCCDA4A9E8}C:\program files (x86)\mozilla firefox\plugin-container.exe] => (Allow) C:\program files (x86)\mozilla firefox\plugin-container.exe
FirewallRules: [UDP Query User{4B92744E-9C6D-4A55-9A6A-358C61AC16BE}C:\program files (x86)\mozilla firefox\plugin-container.exe] => (Allow) C:\program files (x86)\mozilla firefox\plugin-container.exe
FirewallRules: [{D52C9671-A381-4971-BC9F-A573B4B86D88}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 15\Programs\RM.exe
FirewallRules: [{3DC34CE0-4C42-42E7-AECC-4FD4D373DA4B}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 15\Programs\RM.exe
FirewallRules: [{F36E8052-0340-4D86-95E8-9B89F53D8AF5}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 15\Programs\Studio.exe
FirewallRules: [{D87447FA-F70D-4226-A6C6-52E4E6E5A7CD}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 15\Programs\Studio.exe
FirewallRules: [{DA8D1DA5-C2FA-4A5E-8A78-AE3DE073A747}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 15\Programs\umi.exe
FirewallRules: [{9BDD3BB7-5331-4328-87DF-0D12C6125F48}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 15\Programs\umi.exe
FirewallRules: [{E2545292-F202-4E25-98DF-68FA95FC3C67}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{40BEF925-1105-4F69-91BA-9D0614E5BC77}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{96F3AA7A-1830-4D89-ABE3-DD5B34ED76FB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\amd driver updater, vista and 7, 64 bit\Setup.exe
FirewallRules: [{72042235-519C-4515-80B6-4F04A0512C5C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\amd driver updater, vista and 7, 64 bit\Setup.exe
FirewallRules: [{9C874FF9-73DB-4D33-A4FB-794104EEB053}] => (Allow) C:\Program Files (x86)\TeamViewer\Version7\TeamViewer.exe
FirewallRules: [{11C97C13-05C0-472B-81D8-59FF277668F6}] => (Allow) C:\Program Files (x86)\TeamViewer\Version7\TeamViewer.exe
FirewallRules: [{70DE2C60-2BCE-44C8-B7A1-A5E87481C1ED}] => (Allow) C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
FirewallRules: [{84576211-94B1-4C31-8AA4-0BE6A6A5D2C4}] => (Allow) C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
FirewallRules: [{47B502A4-609F-43C3-95C4-A19552B89560}] => (Allow) E:\Network\EpsonNetSetup\ENEasyApp.exe
FirewallRules: [{5F7DC926-6368-4DD4-8A3E-E48BE39BBDB2}] => (Allow) E:\Network\EpsonNetSetup\ENEasyApp.exe
FirewallRules: [{FDBD8FC5-0A7C-4CEF-BC74-548B647125C8}] => (Allow) C:\Program Files (x86)\EPSON Software\ECPrinterSetup\ENPApp.exe
FirewallRules: [{41FFA72A-CD61-4866-98C3-150DF4472D23}] => (Allow) C:\Program Files (x86)\EPSON Software\ECPrinterSetup\ENPApp.exe
FirewallRules: [{F11418A6-8B3E-4AAF-B5B5-237745BFFF07}] => (Allow) C:\Windows\SysWOW64\muzapp.exe
FirewallRules: [{1449DF1B-6508-4117-BF8A-3F9F5D325AA7}] => (Allow) C:\Windows\SysWOW64\muzapp.exe
FirewallRules: [{601D60FA-5C44-43A7-800C-65040FFED8C2}] => (Allow) C:\Users\Uživatel\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{EA831206-9408-4843-85AA-C30D461BF906}] => (Allow) C:\Users\Uživatel\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{B8DC80BC-F33F-47F2-BAD8-16B9478DA049}] => (Allow) C:\Users\Uživatel\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{E11F2792-967F-4E95-8BD4-0B066C460FE6}] => (Allow) C:\Users\Uživatel\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{8E5BBC44-CC62-40AE-9AF3-3E2DD602CCAD}] => (Allow) C:\Users\Uživatel\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
FirewallRules: [{930D54D5-C5C6-4D2D-A1B7-7CB22368DCBE}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{210A6FC0-F499-442F-8323-1ECD36E13BD0}] => (Allow) LPort=2869
FirewallRules: [{41F18EE5-D2BB-4036-8804-90FA6B3D1C21}] => (Allow) LPort=1900
FirewallRules: [{5BEB209D-ED12-4DC8-B500-0780179C47BC}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{9D2831C4-1BAC-43FC-A8A5-187F02D17F6E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{1AC63888-04CF-47F3-87E3-A3C2E6B093A5}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{466E1275-1FD0-4F65-8BA4-33E0BF9F548C}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3689\Agent.exe
FirewallRules: [{FD135AAA-635E-45F0-A698-8F08F1FEDD49}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3689\Agent.exe
FirewallRules: [{DC5B3067-B09C-4CFA-BC20-D2F91472E2F1}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{A6446780-5403-4770-A020-CB7EEFC45245}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{25FDB404-1185-4E2C-A704-E6AED32FE264}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe
FirewallRules: [{3A351126-DCF7-468A-93EC-C2FD76A6ECC7}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe
FirewallRules: [{194B41C5-CA43-46BA-8E41-6A2E27A294B2}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe
FirewallRules: [{15FC4503-C3AF-4FAB-898B-2E601BEA8C20}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (06/08/2015 04:34:20 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT AUTHORITY)
Description: Uvolnění řetězců čítačů výkonu pro službu WmiApRpl (WmiApRpl) se nezdařilo. První hodnota DWORD v datové oblasti obsahuje kód chyby.

Error: (06/08/2015 04:34:20 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: Hodnota řetězce výkonu v registru výkonu je poškozena, pokud proces Performance zprostředkovatele čítače rozšíření. Hodnotu BaseIndex z registru výkonu obsahuje první hodnota DWORD datové části. Hodnotu LastCounter obsahuje druhá hodnota DWORD a hodnotu LastHelp obsahuje třetí hodnota DWORD datové části.

Error: (06/08/2015 04:34:20 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: Hodnota řetězce výkonu v registru výkonu je poškozena, pokud proces Performance zprostředkovatele čítače rozšíření. Hodnotu BaseIndex z registru výkonu obsahuje první hodnota DWORD datové části. Hodnotu LastCounter obsahuje druhá hodnota DWORD a hodnotu LastHelp obsahuje třetí hodnota DWORD datové části.

Error: (06/08/2015 02:20:03 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT AUTHORITY)
Description: Uvolnění řetězců čítačů výkonu pro službu WmiApRpl (WmiApRpl) se nezdařilo. První hodnota DWORD v datové oblasti obsahuje kód chyby.

Error: (06/08/2015 02:20:03 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: Hodnota řetězce výkonu v registru výkonu je poškozena, pokud proces Performance zprostředkovatele čítače rozšíření. Hodnotu BaseIndex z registru výkonu obsahuje první hodnota DWORD datové části. Hodnotu LastCounter obsahuje druhá hodnota DWORD a hodnotu LastHelp obsahuje třetí hodnota DWORD datové části.

Error: (06/08/2015 02:20:03 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: Hodnota řetězce výkonu v registru výkonu je poškozena, pokud proces Performance zprostředkovatele čítače rozšíření. Hodnotu BaseIndex z registru výkonu obsahuje první hodnota DWORD datové části. Hodnotu LastCounter obsahuje druhá hodnota DWORD a hodnotu LastHelp obsahuje třetí hodnota DWORD datové části.

Error: (06/08/2015 01:46:23 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT AUTHORITY)
Description: Uvolnění řetězců čítačů výkonu pro službu WmiApRpl (WmiApRpl) se nezdařilo. První hodnota DWORD v datové oblasti obsahuje kód chyby.

Error: (06/08/2015 01:46:23 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: Hodnota řetězce výkonu v registru výkonu je poškozena, pokud proces Performance zprostředkovatele čítače rozšíření. Hodnotu BaseIndex z registru výkonu obsahuje první hodnota DWORD datové části. Hodnotu LastCounter obsahuje druhá hodnota DWORD a hodnotu LastHelp obsahuje třetí hodnota DWORD datové části.

Error: (06/08/2015 01:46:23 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: Hodnota řetězce výkonu v registru výkonu je poškozena, pokud proces Performance zprostředkovatele čítače rozšíření. Hodnotu BaseIndex z registru výkonu obsahuje první hodnota DWORD datové části. Hodnotu LastCounter obsahuje druhá hodnota DWORD a hodnotu LastHelp obsahuje třetí hodnota DWORD datové části.

Error: (06/08/2015 01:46:12 PM) (Source: Customer Experience Improvement Program) (EventID: 1006) (User: )
Description: 80004005


System errors:
=============
Error: (06/08/2015 04:31:02 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: specifické pro aplikaciMístníSpuštění{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (pomocí LRPC)

Error: (06/08/2015 04:30:04 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Hardlock neuspěla při spuštění v důsledku následující chyby:
%%577

Error: (06/08/2015 04:30:02 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Publikování prostředků rozpoznávání funkcí byla ukončena s následující chybou:
%%-2147014847

Error: (06/08/2015 03:08:09 PM) (Source: Schannel) (EventID: 4102) (User: NT AUTHORITY)
Description: Při pokusu přistoupit k privátnímu klíči pověření SSL Server došlo k závažné chybě. Kód chyby vrácený kryptografickým modulem je 0x8009030d. Stav interní chyby je 10001.

Error: (06/08/2015 03:03:17 PM) (Source: Schannel) (EventID: 4102) (User: NT AUTHORITY)
Description: Při pokusu přistoupit k privátnímu klíči pověření SSL Server došlo k závažné chybě. Kód chyby vrácený kryptografickým modulem je 0x8009030d. Stav interní chyby je 10001.

Error: (06/08/2015 02:37:56 PM) (Source: Schannel) (EventID: 4102) (User: NT AUTHORITY)
Description: Při pokusu přistoupit k privátnímu klíči pověření SSL Server došlo k závažné chybě. Kód chyby vrácený kryptografickým modulem je 0x8009030d. Stav interní chyby je 10001.

Error: (06/08/2015 02:35:07 PM) (Source: Schannel) (EventID: 4102) (User: NT AUTHORITY)
Description: Při pokusu přistoupit k privátnímu klíči pověření SSL Server došlo k závažné chybě. Kód chyby vrácený kryptografickým modulem je 0x8009030d. Stav interní chyby je 10001.

Error: (06/08/2015 02:33:35 PM) (Source: Schannel) (EventID: 4102) (User: NT AUTHORITY)
Description: Při pokusu přistoupit k privátnímu klíči pověření SSL Server došlo k závažné chybě. Kód chyby vrácený kryptografickým modulem je 0x8009030d. Stav interní chyby je 10001.

Error: (06/08/2015 02:32:05 PM) (Source: Schannel) (EventID: 4102) (User: NT AUTHORITY)
Description: Při pokusu přistoupit k privátnímu klíči pověření SSL Server došlo k závažné chybě. Kód chyby vrácený kryptografickým modulem je 0x8009030d. Stav interní chyby je 10001.

Error: (06/08/2015 02:27:20 PM) (Source: Schannel) (EventID: 4102) (User: NT AUTHORITY)
Description: Při pokusu přistoupit k privátnímu klíči pověření SSL Server došlo k závažné chybě. Kód chyby vrácený kryptografickým modulem je 0x8009030d. Stav interní chyby je 10001.


Microsoft Office:
=========================
Error: (06/08/2015 04:34:20 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT AUTHORITY)
Description: WmiApRplWmiApRpl8F20300004D070000

Error: (06/08/2015 04:34:20 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: Performance1637070000000000000000000009030000

Error: (06/08/2015 04:34:20 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: Performance1637070000000000000000000009030000

Error: (06/08/2015 02:20:03 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT AUTHORITY)
Description: WmiApRplWmiApRpl8F20300004D070000

Error: (06/08/2015 02:20:03 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: Performance1637070000000000000000000009030000

Error: (06/08/2015 02:20:03 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: Performance1637070000000000000000000009030000

Error: (06/08/2015 01:46:23 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT AUTHORITY)
Description: WmiApRplWmiApRpl8F20300004D070000

Error: (06/08/2015 01:46:23 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: Performance1637070000000000000000000009030000

Error: (06/08/2015 01:46:23 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: Performance1637070000000000000000000009030000

Error: (06/08/2015 01:46:12 PM) (Source: Customer Experience Improvement Program) (EventID: 1006) (User: )
Description: 80004005


CodeIntegrity Errors:
===================================
Date: 2015-06-08 16:30:04.878
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hardlock.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-06-08 16:30:04.769
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hardlock.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-06-08 14:15:52.582
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hardlock.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-06-08 14:15:52.488
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hardlock.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-06-08 13:42:06.253
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hardlock.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-06-08 13:42:06.144
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hardlock.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-06-07 19:02:48.668
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hardlock.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-06-07 19:02:48.543
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hardlock.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-06-07 15:48:33.128
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hardlock.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-06-07 15:48:32.972
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hardlock.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info ===========================

Processor: AMD Phenom(tm) II X4 955 Processor
Percentage of memory in use: 37%
Total physical RAM: 4094.18 MB
Available physical RAM: 2542.29 MB
Total Pagefile: 8186.57 MB
Available Pagefile: 6303.21 MB
Total Virtual: 8192 MB
Available Virtual: 8191.83 MB

==================== Drives ================================

Drive c: (System) (Fixed) (Total:247.82 GB) (Free:65.06 GB) NTFS
Drive d: (Data) (Fixed) (Total:683.59 GB) (Free:309.26 GB) NTFS

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43298
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu logu - zpomalené pc

Příspěvekod jaro3 » 08 čer 2015 19:00

Odinstaluj:
Speeditup
IObit\Advanced SystemCare
mwav
McAfee Security Scan


ComboFix se odinstaluje takto:
Start-Spustit a zadej ComboFix /Uninstall

Vyčisti systém CCleanerem

Stáhni si OTC

na plochu. Poklepej na něj. Potom klikni na Clean up!.
Restartuj PC , pokud Ti bude doporučeno.

C:\Users\Uživatel\Downloads\Crack P.zip
C:\Users\Uživatel\Downloads\Crack P.zip.loc

to smaž!

Prosím, postupuj následujícím způsobem:
Otevřít poznámkový blok (Start => Všechny programy => Příslušenství => Poznámkový blok).
Prosím, zkopíruj do něj celý obsah níže.

Kód: Vybrat vše

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-3056490246-2549413826-2647440247-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3056490246-2549413826-2647440247-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
Toolbar: HKU\.DEFAULT -> No Name - {D930602D-A752-4287-828B-EF0B1F48825C} - No File
U3 aap92kvq; C:\Windows\System32\Drivers\aap92kvq.sys [0 ] (Advanced Micro Devices) <==== ATTENTION (zero byte File/Folder)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 cpuz136; \??\C:\Windows\TEMP\cpuz136\cpuz136_x64.sys [X]
C:\ProgramData\PKP_DLet.DAT
C:\Windows\logo_1.exe
C:\Windows\RUNDL132.EXE
C:\Windows\VDLL.DLL
C:\Windows\SysWOW64\runouce.exe
PCSpeedUp (HKU\S-1-5-21-3056490246-2549413826-2647440247-1000\...\3027380830.www.pcspeedup.com) (Version: - www.pcspeedup.com) <==== ATTENTION
PCSpeedUp Application (HKU\S-1-5-21-3056490246-2549413826-2647440247-1000\...\3669561691.www.pcspeedup.com) (Version: - www.pcspeedup.com) <==== ATTENTION
Task: {0F89964D-1D4E-4403-BA30-DA40A546CAD4} - System32\Tasks\{511757D0-DE76-4B57-A416-FCB0EC7B38EE} => pcalua.exe -a "C:\Program Files (x86)\Speeditup Free\SpeedItUp.exe" -d "C:\Program Files (x86)\Speeditup Free"
Task: {1252B3C8-DFAC-4D2E-9DBD-914899B6BE9C} - System32\Tasks\GoogleUpdateTaskMachineCore1cec67ae6703a25 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {7F9E910E-2CDD-46C0-87FA-37FEEF241750} - System32\Tasks\GoogleUpdateTaskMachineUA1cec67ae75cbd1b => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {859A3805-6DC8-4D92-A11E-9F4836A69EE2} - \SlimDrivers Startup No Task File <==== ATTENTION



(Můžeš použít funkci „vybrat vše“, klepni pravým tlačítkem myši na levé horní políčko v otevřeném poznámkovém bloku a zvol „ Vložit“).

Ulož jej na na plochu jako fixlist.txt


Spusťt FRST a stiskni tlačítko „Fix“ (Opravit) jen jednou a čekej.
Nástroj vypracuje log na ploše (Fixlog.txt), prosím zkopíruj sem celý jeho obsah.

Stáhni si Memtest:

Políčko , ve kterém je napsáno:
All unused RAM -ponech , jak je.
-dej Start , nech nejméně 2h běžet , pokud bude po 2h stále 0 errors , jsou v pořádku.


Ještě zkontrolovat HDD na chyby ,popř. zkusit jeho defragmentaci ..


Stáhni si CrystalDiskInfo
Spusť program a klikni na Úpravy-Kopírovat. Poté sem vlož pomocí Ctrl+V obsah logu.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

Uživatelský avatar
karbi02
Level 2.5
Level 2.5
Příspěvky: 383
Registrován: březen 07
Pohlaví: Nespecifikováno
Stav:
Offline

Re: Prosím o kontrolu logu - zpomalené pc

Příspěvekod karbi02 » 08 čer 2015 19:42

Nevím, kde ty programy hledat. V C/Program Files 86 jsem je nenašel. Akorát v IObit\Advanced SystemCare je ASCExtMenu_64.dlll. MWaV byl jen na ploše, to jsem smazal. Když jsem dal odinstalovat nebo změnit program, tak tam také žádný z nich není. Prohledat soubory taky ne...Zbtytek jsem udělal, mem test nechám běžet ráno.

Fix result of Farbar Recovery Scan Tool (x64) Version:07-06-2015
Ran by Uživatel at 2015-06-08 19:18:27 Run:1
Running from C:\Users\Uživatel\Desktop
Loaded Profiles: Uživatel (Available Profiles: Uživatel)
Boot Mode: Normal
==============================================

fixlist content:
*****************
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-3056490246-2549413826-2647440247-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3056490246-2549413826-2647440247-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
Toolbar: HKU\.DEFAULT -> No Name - {D930602D-A752-4287-828B-EF0B1F48825C} - No File
U3 aap92kvq; C:\Windows\System32\Drivers\aap92kvq.sys [0 ] (Advanced Micro Devices) <==== ATTENTION (zero byte File/Folder)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 cpuz136; \??\C:\Windows\TEMP\cpuz136\cpuz136_x64.sys [X]
C:\ProgramData\PKP_DLet.DAT
C:\Windows\logo_1.exe
C:\Windows\RUNDL132.EXE
C:\Windows\VDLL.DLL
C:\Windows\SysWOW64\runouce.exe
PCSpeedUp (HKU\S-1-5-21-3056490246-2549413826-2647440247-1000\...\3027380830.www.pcspeedup.com) (Version: - www.pcspeedup.com) <==== ATTENTION
PCSpeedUp Application (HKU\S-1-5-21-3056490246-2549413826-2647440247-1000\...\3669561691.www.pcspeedup.com) (Version: - www.pcspeedup.com) <==== ATTENTION
Task: {0F89964D-1D4E-4403-BA30-DA40A546CAD4} - System32\Tasks\{511757D0-DE76-4B57-A416-FCB0EC7B38EE} => pcalua.exe -a "C:\Program Files (x86)\Speeditup Free\SpeedItUp.exe" -d "C:\Program Files (x86)\Speeditup Free"
Task: {1252B3C8-DFAC-4D2E-9DBD-914899B6BE9C} - System32\Tasks\GoogleUpdateTaskMachineCore1cec67ae6703a25 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {7F9E910E-2CDD-46C0-87FA-37FEEF241750} - System32\Tasks\GoogleUpdateTaskMachineUA1cec67ae75cbd1b => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {859A3805-6DC8-4D92-A11E-9F4836A69EE2} - \SlimDrivers Startup No Task File <==== ATTENTION
*****************

"HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => key removed successfully
"HKU\S-1-5-21-3056490246-2549413826-2647440247-1000\SOFTWARE\Policies\Microsoft\Internet Explorer" => key removed successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Local Page => value restored successfully
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
"HKU\S-1-5-21-3056490246-2549413826-2647440247-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66}" => key removed successfully
HKCR\CLSID\{012E1000-F331-11DB-8314-0800200C9A66} => key not found.
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D930602D-A752-4287-828B-EF0B1F48825C} => value removed successfully
HKCR\CLSID\{D930602D-A752-4287-828B-EF0B1F48825C} => key not found.
aap92kvq => Service not found.
catchme => Service removed successfully
cpuz136 => Service removed successfully
C:\ProgramData\PKP_DLet.DAT => moved successfully.
C:\Windows\logo_1.exe => moved successfully.
C:\Windows\RUNDL132.EXE => moved successfully.
C:\Windows\VDLL.DLL => moved successfully.
C:\Windows\SysWOW64\runouce.exe => moved successfully.
PCSpeedUp (HKU\S-1-5-21-3056490246-2549413826-2647440247-1000\...\3027380830.www.pcspeedup.com) (Version: - www.pcspeedup.com) <==== ATTENTION => Error: No automatic fix found for this entry.
PCSpeedUp Application (HKU\S-1-5-21-3056490246-2549413826-2647440247-1000\...\3669561691.www.pcspeedup.com) (Version: - www.pcspeedup.com) <==== ATTENTION => Error: No automatic fix found for this entry.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0F89964D-1D4E-4403-BA30-DA40A546CAD4}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0F89964D-1D4E-4403-BA30-DA40A546CAD4}" => key removed successfully
C:\Windows\System32\Tasks\{511757D0-DE76-4B57-A416-FCB0EC7B38EE} => moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{511757D0-DE76-4B57-A416-FCB0EC7B38EE}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{1252B3C8-DFAC-4D2E-9DBD-914899B6BE9C}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1252B3C8-DFAC-4D2E-9DBD-914899B6BE9C}" => key removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore1cec67ae6703a25 => moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore1cec67ae6703a25" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7F9E910E-2CDD-46C0-87FA-37FEEF241750}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7F9E910E-2CDD-46C0-87FA-37FEEF241750}" => key removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA1cec67ae75cbd1b => moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA1cec67ae75cbd1b" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{859A3805-6DC8-4D92-A11E-9F4836A69EE2}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{859A3805-6DC8-4D92-A11E-9F4836A69EE2}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SlimDrivers Startup" => key removed successfully

==== End of Fixlog 19:18:28 ====
==== End of Fixlog 19:18:28 ====


----------------------------------------------------------------------------
CrystalDiskInfo 6.3.1 (C) 2008-2015 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows 7 Home Premium SP1 [6.1 Build 7601] (x64)
Date : 2015/06/08 19:41:51

-- Controller Map ----------------------------------------------------------
+ ATA Channel 0 (0) [ATA]
- TSSTcorp CDDVDW SH-S223C ATA Device
- ATA Channel 1 (1) [ATA]
- ATA Channel 0 (0) [ATA]
+ PCI Standardní dvoukanálový řadič IDE [ATA]
- ATA Channel 0 (0)
+ ATA Channel 1 (1)
- SAMSUNG HD103SJ ATA Device
+ PCI Standardní dvoukanálový řadič IDE [ATA]
- ATA Channel 0 (0)
- ATA Channel 1 (1)
+ PCI Standardní dvoukanálový řadič IDE [ATA]
- ATA Channel 0 (0)
- ATA Channel 1 (1)
+ AB5813TV IDE Controller [SCSI]
- VMRAJ FW56BSXE3G5M SCSI CdRom Device

-- Disk List ---------------------------------------------------------------
(1) SAMSUNG HD103SJ : 1000,2 GB [0/1/1, pd1]

----------------------------------------------------------------------------
(1) SAMSUNG HD103SJ
----------------------------------------------------------------------------
Model : SAMSUNG HD103SJ
Firmware : 1AJ10001
Serial Number : S246J90ZA24716
Disk Size : 1000,2 GB (8,4/137,4/1000,2/1000,2)
Buffer Size : 32767 KB
Queue Depth : 32
# of Sectors : 1953525168
Rotation Rate : 7200 RPM
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ATA8-ACS version 6
Transfer Mode : ---- | SATA/300
Power On Hours : 13061 hod.
Power On Count : 4731 krát
Temperature : 37 C (98 F)
Health Status : Dobrý
Features : S.M.A.R.T., APM, AAM, 48bit LBA, NCQ
APM Level : 0000h [OFF]
AAM Level : FE00h [OFF]

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 100 100 _51 000000000008 Počet chyb čtení
02 252 252 __0 000000000000 Průchodnost disku
03 _71 _70 _25 000000002298 Čas na roztočení ploten
04 _96 _96 __0 00000000129D Počet spuštění/zastavení
05 252 252 _10 000000000000 Počet přemapovaných sektorů
07 252 252 _51 000000000000 Počet chybných hledání
08 252 252 _15 000000000000 Čas potřebný na vyhledání
09 100 100 __0 000000003305 Hodin v činnosti
0A 252 252 _51 000000000000 Počet opakovaných pokusů o roztočení ploten
0B 252 252 __0 000000000000 Počet pokusů o překalibrování
0C _96 _96 __0 00000000127B Počet cyklů zapnutí zařízení
BF 100 100 __0 00000000006A Počet udalostí zaznamenaných otřesovým senzorem
C0 252 252 __0 000000000000 Počet vypnutí disku
C2 _63 _56 __0 002C000E0025 Teplota
C3 100 100 __0 000000000000 Počet oprav chybného čtení
C4 252 252 __0 000000000000 Počet udalostí s číslem realokování sektorů
C5 252 252 __0 000000000000 Počet podezřelých sektorů
C6 252 252 __0 000000000000 Počet neopravitelných sektorů
C7 100 100 __0 000000000001 Počet chyb v kontrolním součtu UltraDMA
C8 100 100 __0 0000000005B4 Počet chyb při zápisu sektorů
DF 252 252 __0 000000000000 Zatížení budiče magnetických hlav způsobené opakovanými úkony
E1 100 100 __0 0000000012A9 Počet cyklů načítání/vymazání

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0040 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 5332 3436 4A39 305A 4132 3437 3136 2020 2020 2020
020: 0000 FFFF 0050 3141 4A31 3030 3031 5341 4D53 554E
030: 4720 4844 3130 3353 4A20 2020 2020 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 4000 2F00
050: 4000 0200 0200 0007 3FFF 0010 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 001F 1706 0000 004C 0040
080: 01FF 0028 746B 7F69 4123 7469 BC41 4123 407F 004A
090: 004A 0000 FFFE 0000 FE00 0000 0000 0000 0000 0000
100: 6DB0 7470 0000 0000 0000 0000 4000 0000 5002 4E92
110: 03A2 E5F5 0000 0000 0000 0000 0000 0000 0000 401C
120: 401C 0000 0000 0000 0000 0000 0000 0000 0029 0000
130: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
140: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0002 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 003F 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 1C20 0000 0000
220: 0000 0000 101F 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 0400 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 67A5

-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 2F 00 64 64 08 00 00 00 00 00 00 02 26
010: 00 FC FC 00 00 00 00 00 00 00 03 23 00 47 46 98
020: 22 00 00 00 00 00 04 32 00 60 60 9D 12 00 00 00
030: 00 00 05 33 00 FC FC 00 00 00 00 00 00 00 07 2E
040: 00 FC FC 00 00 00 00 00 00 00 08 24 00 FC FC 00
050: 00 00 00 00 00 00 09 32 00 64 64 05 33 00 00 00
060: 00 00 0A 32 00 FC FC 00 00 00 00 00 00 00 0B 32
070: 00 FC FC 00 00 00 00 00 00 00 0C 32 00 60 60 7B
080: 12 00 00 00 00 00 BF 22 00 64 64 6A 00 00 00 00
090: 00 00 C0 22 00 FC FC 00 00 00 00 00 00 00 C2 02
0A0: 00 3F 38 25 00 0E 00 2C 00 00 C3 3A 00 64 64 00
0B0: 00 00 00 00 00 00 C4 32 00 FC FC 00 00 00 00 00
0C0: 00 00 C5 32 00 FC FC 00 00 00 00 00 00 00 C6 30
0D0: 00 FC FC 00 00 00 00 00 00 00 C7 36 00 64 64 01
0E0: 00 00 00 00 00 00 C8 2A 00 64 64 B4 05 00 00 00
0F0: 00 00 DF 32 00 FC FC 00 00 00 00 00 00 00 E1 32
100: 00 64 64 A9 12 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 DC 23 00 5B
170: 03 00 01 00 02 99 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 26

-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 33 00 00 00 00 00 00 00 00 00 00 02 00
010: 00 00 00 00 00 00 00 00 00 00 03 19 00 00 00 00
020: 00 00 00 00 00 00 04 00 00 00 00 00 00 00 00 00
030: 00 00 05 0A 00 00 00 00 00 00 00 00 00 00 07 33
040: 00 00 00 00 00 00 00 00 00 00 08 0F 00 00 00 00
050: 00 00 00 00 00 00 09 00 00 00 00 00 00 00 00 00
060: 00 00 0A 33 00 00 00 00 00 00 00 00 00 00 0B 00
070: 00 00 00 00 00 00 00 00 00 00 0C 00 00 00 00 00
080: 00 00 00 00 00 00 BF 00 00 00 00 00 00 00 00 00
090: 00 00 C0 00 00 00 00 00 00 00 00 00 00 00 C2 00
0A0: 00 00 00 00 00 00 00 00 00 00 C3 00 00 00 00 00
0B0: 00 00 00 00 00 00 C4 00 00 00 00 00 00 00 00 00
0C0: 00 00 C5 00 00 00 00 00 00 00 00 00 00 00 C6 00
0D0: 00 00 00 00 00 00 00 00 00 00 C7 00 00 00 00 00
0E0: 00 00 00 00 00 00 C8 00 00 00 00 00 00 00 00 00
0F0: 00 00 DF 00 00 00 00 00 00 00 00 00 00 00 E1 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 3B

Uživatelský avatar
jerabina
člen Security týmu
Level 6
Level 6
Příspěvky: 3647
Registrován: březen 13
Bydliště: Litoměřice
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu logu - zpomalené pc

Příspěvekod jerabina » 08 čer 2015 19:56

Dobře, disk ti zkontroluje kolega, já to ještě dočistím.

Udělej nový log z FRST.
Když nevíš jak dál, přichází na řadu prostudovat manuál!
HJT návod

Pokud neodpovídám do vašich témat v sekci HJT když jsem online, tak je to jen proto, že jsem na mobilu kde je studování logů a psaní skriptů nemožné. Neberte to tedy prosím jako ignoraci.

Uživatelský avatar
karbi02
Level 2.5
Level 2.5
Příspěvky: 383
Registrován: březen 07
Pohlaví: Nespecifikováno
Stav:
Offline

Re: Prosím o kontrolu logu - zpomalené pc

Příspěvekod karbi02 » 08 čer 2015 20:10

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:07-06-2015
Ran by Uživatel (administrator) on AMD on 08-06-2015 19:59:05
Running from C:\Users\Uživatel\Desktop
Loaded Profiles: Uživatel (Available Profiles: Uživatel)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
(SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_WT50RP.EXE
(UASSOFT.COM) C:\Program Files (x86)\Mouse Driver\KMWDSrv.exe
(O&O Software GmbH) C:\Program Files\OO Software\Defrag\oodag.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
(TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
(VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(NewSoft Technology Corporation) C:\Windows\System32\spool\drivers\x64\3\WrtMon.exe
(O&O Software GmbH) C:\Program Files\OO Software\Defrag\oodtray.exe
(BitTorrent Inc.) C:\Users\Uživatel\AppData\Roaming\uTorrent\uTorrent.exe
(NewSoft Technology Corporation) C:\Windows\System32\spool\drivers\x64\3\WrtProc.exe
(VIA) C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\egui.exe [6325424 2012-10-23] (ESET)
HKLM\...\Run: [WrtMon.exe] => C:\Windows\system32\spool\drivers\x64\3\WrtMon.exe [26448 2008-05-24] (NewSoft Technology Corporation)
HKLM\...\Run: [OODefragTray] => C:\Program Files\OO Software\Defrag\oodtray.exe [4012360 2011-01-25] (O&O Software GmbH)
HKLM-x32\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [5123216 2000-01-01] (VIA)
HKU\S-1-5-21-3056490246-2549413826-2647440247-1000\...\Run: [uTorrent] => C:\Users\Uživatel\AppData\Roaming\uTorrent\uTorrent.exe [1694560 2015-05-06] (BitTorrent Inc.)
HKU\S-1-5-21-3056490246-2549413826-2647440247-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [6501656 2014-10-23] (Piriform Ltd)
HKU\S-1-5-21-3056490246-2549413826-2647440247-1000\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe --minimize
HKU\S-1-5-21-3056490246-2549413826-2647440247-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> (None)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk [2013-02-12]
ShortcutTarget: Adobe Gamma Loader.lnk -> C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
BootExecute: autocheck autochk * OODBS

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\S-1-5-21-3056490246-2549413826-2647440247-1000\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\S-1-5-21-3056490246-2549413826-2647440247-1000\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.yahoo.com/?fr=vmn&type=vmn_ ... 0608__yaie
HKU\S-1-5-21-3056490246-2549413826-2647440247-1000\Software\Microsoft\Internet Explorer\Main,Old Start Page = http://www.msn.com/en-us/?pc=UP97&ocid=UP97DHP
SearchScopes: HKU\S-1-5-21-3056490246-2549413826-2647440247-1000 -> {C0C3A6C6-03BC-4195-8FCB-AEA091301353} URL = https://search.yahoo.com/search?fr=vmn& ... 8__yaie&p={searchTerms}
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
BHO-x32: E-Web Print -> {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} -> C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2012-04-26] (SEIKO EPSON CORPORATION)
BHO-x32: Pomocná služba pro přihlášení k účtu Microsoft -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2011-11-29] (Sun Microsystems, Inc.)
Toolbar: HKLM-x32 - E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2012-04-26] (SEIKO EPSON CORPORATION)
DPF: HKLM-x32 {0067DBFC-A752-458C-AE6E-B9C7E63D4824} http://www.logitech.com/devicedetector/ ... tion32.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll [2011-06-07] (Advanced Micro Devices)
Filter-x32: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll [2011-06-07] (Advanced Micro Devices)
Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll [2011-06-07] (Advanced Micro Devices)
Filter-x32: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll [2011-06-07] (Advanced Micro Devices)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.1

FireFox:
========
FF ProfilePath: C:\Users\Uživatel\AppData\Roaming\Mozilla\Firefox\Profiles\ug9pn33s.default
FF DefaultSearchEngine: Yahoo
FF SelectedSearchEngine: Yahoo
FF Homepage: hxxp://www.idnes.cz/
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_169.dll [2015-04-15] ()
FF Plugin: @java.com/JavaPlugin -> C:\Program Files\Java\jre7\bin\new_plugin\npjp2.dll [2014-10-28] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-16] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_169.dll [2015-04-15] ()
FF Plugin-x32: @gametap.com/npdd,version=1.0 -> C:\Program Files (x86)\Downloader\npdd.dll [2010-02-19] (Metaboli)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2014-01-06] (Google, Inc.)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-05-01] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3056490246-2549413826-2647440247-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Uživatel\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2009-11-30] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-3056490246-2549413826-2647440247-1000: gameus.co.kr/HisLauncher -> C:\Users\Uživatel\AppData\Roaming\GameUs\HisLauncher\1.0.0.0\npHisLauncher.dll [2013-04-30] (GameUs)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\np-mswmp.dll [2007-04-10] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npdeployJava1.dll [2011-10-03] (Sun Microsystems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2015-05-01] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll [2012-02-11] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll [2012-02-11] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll [2012-02-11] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll [2012-02-11] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll [2012-02-11] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin6.dll [2012-02-11] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin7.dll [2012-02-11] (Apple Inc.)
FF Extension: Star Stable Online - C:\Users\Uživatel\AppData\Roaming\Mozilla\Firefox\Profiles\ug9pn33s.default\Extensions\plugin@starstable.com [2014-10-30]
FF Extension: Adblock Plus - C:\Users\Uživatel\AppData\Roaming\Mozilla\Firefox\Profiles\ug9pn33s.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-10-29]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2015-06-02]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2015-06-02]
FF HKLM-x32\...\Firefox\Extensions: [e-webprint@epson.com] - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on
FF Extension: E-Web Print - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on [2013-01-03]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF Extension: ESET Smart Security Extension - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2012-11-14]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AMD FUEL Service; C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe [344064 2014-11-20] (Advanced Micro Devices, Inc.) [File not signed]
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1394816 2015-05-01] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1772672 2015-05-01] (Microsoft Corporation)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [1329304 2012-10-23] (ESET)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 KMWDSERVICE; C:\Program Files (x86)\Mouse Driver\KMWDSrv.exe [1821184 2009-08-31] (UASSOFT.COM) [File not signed]
S4 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2015-04-14] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1080120 2015-04-14] (Malwarebytes Corporation)
R2 OODefragAgent; C:\Program Files\OO Software\Defrag\oodag.exe [3136328 2011-01-25] (O&O Software GmbH)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [66872 2011-09-23] ()
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27760 2000-01-01] (VIA Technologies, Inc.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 61883; C:\Windows\System32\DRIVERS\61883.sys [60288 2009-07-14] (Microsoft Corporation)
R2 AODDriver4.3; C:\Program Files\AMD\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-11] (Advanced Micro Devices)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R3 CamSuiteVAC; C:\Windows\System32\DRIVERS\CamSuiteVAC.sys [56320 2008-09-18] ()
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [211344 2012-10-08] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [149592 2012-10-08] (ESET)
R2 epfw; C:\Windows\System32\DRIVERS\epfw.sys [189208 2012-10-08] (ESET)
R1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [59440 2012-10-08] (ESET)
R0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [64072 2012-10-08] (ESET)
S2 Hardlock; C:\Windows\system32\drivers\hardlock.sys [296448 2005-06-14] (Aladdin Knowledge Systems Ltd.) [File not signed]
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-04-14] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-04-14] (Malwarebytes Corporation)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15416 2009-05-14] ()
S3 PAC7302; C:\Windows\System32\DRIVERS\PAC7302.SYS [532480 2009-04-28] (PixArt Imaging Inc.)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [564824 2013-06-05] (Duplex Secure Ltd.)
U3 TrueSight; C:\Windows\System32\drivers\TrueSight.sys [37624 2015-06-05] ()
S3 trufos; C:\Windows\System32\drivers\trufos.sys [350160 2015-01-04] (BitDefender S.R.L.)
U5 usbser; C:\Windows\System32\Drivers\usbser.sys [33280 2013-08-29] (Microsoft Corporation)
U5 VWiFiFlt; C:\Windows\System32\Drivers\VWiFiFlt.sys [59904 2009-07-14] (Microsoft Corporation)
R2 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC}; C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\000.fcl [146928 2010-12-29] (CyberLink Corp.)
U3 ab5813tv; C:\Windows\System32\Drivers\ab5813tv.sys [0 ] (Advanced Micro Devices) <==== ATTENTION (zero byte File/Folder)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-06-08 19:59 - 2015-06-08 19:59 - 00016155 _____ C:\Users\Uživatel\Desktop\FRST.txt
2015-06-08 19:59 - 2015-06-08 19:59 - 00000000 ____D C:\FRST
2015-06-08 19:58 - 2015-06-08 19:58 - 02108928 _____ (Farbar) C:\Users\Uživatel\Desktop\FRST64.exe
2015-06-08 19:31 - 2015-06-08 19:31 - 00002832 _____ C:\Windows\SysWOW64\LavasoftTcpServiceOff.ini
2015-06-08 19:31 - 2015-06-08 19:31 - 00002832 _____ C:\Windows\system32\LavasoftTcpServiceOff.ini
2015-06-08 19:31 - 2015-06-08 19:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft
2015-06-08 19:31 - 2015-05-25 10:24 - 00429392 _____ (Lavasoft Limited) C:\Windows\system32\LavasoftTcpService64.dll
2015-06-08 19:31 - 2015-05-25 10:24 - 00347976 _____ (Lavasoft Limited) C:\Windows\SysWOW64\LavasoftTcpService.dll
2015-06-08 19:29 - 2015-06-08 19:29 - 03015448 _____ (Crystal Dew World ) C:\Users\Uživatel\Downloads\CrystalDiskInfo6_3_1-en.exe
2015-06-08 19:29 - 2015-06-08 19:29 - 00001156 _____ C:\Users\Uživatel\Desktop\CrystalDiskInfo.lnk
2015-06-08 19:29 - 2015-06-08 19:29 - 00000000 ____D C:\Users\Uživatel\AppData\Roaming\OpenCandy
2015-06-08 19:29 - 2015-06-08 19:29 - 00000000 ____D C:\ProgramData\Lavasoft
2015-06-08 15:35 - 2015-06-08 15:36 - 00000000 ____D C:\Users\Uživatel\Documents\Euro Truck Simulator 2
2015-06-07 20:39 - 2015-06-07 20:39 - 00000000 ___SH C:\Users\Uživatel\AppData\Local\LumaEmu
2015-06-07 20:39 - 2015-06-07 20:39 - 00000000 ____D C:\Users\Uživatel\AppData\Local\LumaEmu_SteamCloud
2015-06-07 19:01 - 2015-06-07 19:01 - 508170371 _____ C:\Windows\MEMORY.DMP
2015-06-07 11:10 - 2015-06-07 11:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Gaming Evolved
2015-06-07 11:10 - 2015-06-07 11:10 - 00000000 ____D C:\ProgramData\ATI
2015-06-07 11:09 - 2015-06-07 11:09 - 00000000 ____D C:\Users\Uživatel\AppData\Roaming\library_dir
2015-06-07 11:08 - 2015-06-07 13:55 - 00000000 ____D C:\Users\Uživatel\AppData\Roaming\Raptr
2015-06-07 11:08 - 2015-06-07 11:10 - 00000000 ____D C:\Program Files (x86)\Raptr
2015-06-07 11:07 - 2015-06-07 11:07 - 00058394 _____ C:\Windows\SysWOW64\CCCInstall_201506071107391831.log
2015-06-07 11:07 - 2015-06-07 11:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2015-06-07 11:07 - 2015-06-07 11:07 - 00000000 ____D C:\Program Files (x86)\AMD AVT
2015-06-07 10:41 - 2015-06-07 10:41 - 00000000 ____D C:\ProgramData\Package Cache
2015-06-07 10:29 - 2015-06-07 10:36 - 305804342 _____ C:\Users\Uživatel\Downloads\amd-catalyst-omega-14.12-with-dotnet45-win7-64bit.zip
2015-06-06 21:37 - 2015-06-06 21:37 - 00003152 _____ C:\Windows\System32\Tasks\{451A5B57-7B06-4AED-93D5-C7FF71A2E874}
2015-06-06 21:35 - 2015-06-06 21:35 - 00204496 _____ (Malwarebytes) C:\Users\Uživatel\Desktop\startuplite-setup-1.07.exe
2015-06-06 20:08 - 2015-06-06 20:08 - 00000540 _____ C:\Windows\PFRO.log
2015-06-06 16:49 - 2015-06-08 19:22 - 00001223 _____ C:\Windows\setupact.log
2015-06-06 16:49 - 2015-06-06 16:49 - 00000000 _____ C:\Windows\setuperr.log
2015-06-06 16:29 - 2015-06-06 16:29 - 00001197 _____ C:\Users\Public\Desktop\Wise Registry Cleaner.lnk
2015-06-06 16:29 - 2015-06-06 16:29 - 00000000 ____D C:\Users\Uživatel\AppData\Roaming\Wise Registry Cleaner
2015-06-06 16:29 - 2015-06-06 16:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wise Registry Cleaner
2015-06-06 16:29 - 2015-06-06 16:29 - 00000000 ____D C:\Program Files (x86)\Wise
2015-06-06 16:28 - 2015-06-06 16:28 - 03990848 _____ (WiseCleaner.com ) C:\Users\Uživatel\Downloads\WRCFree.exe
2015-06-05 17:21 - 2015-06-05 16:56 - 00024064 _____ C:\Windows\zoek-delete.exe
2015-06-05 17:03 - 2015-01-02 20:08 - 00015971 _____ C:\zoek-results2015-01-02-180826.log
2015-06-05 16:52 - 2015-06-05 16:52 - 01308672 _____ C:\Users\Uživatel\Desktop\zoek.exe
2015-06-05 15:05 - 2015-06-05 15:05 - 00000000 ____D C:\Users\Uživatel\AppData\Roaming\GameUs
2015-06-05 15:04 - 2015-06-05 15:04 - 00540672 _____ C:\Users\Uživatel\Downloads\HisLauncher.msi
2015-06-04 20:40 - 2015-06-04 20:40 - 00000000 ____D C:\Users\Uživatel\AppData\Local\Adobe
2015-06-04 14:22 - 2015-06-04 14:22 - 00000207 _____ C:\Windows\tweaking.com-regbackup-AMD-Windows-7-Home-Premium-(64-bit).dat
2015-06-04 14:22 - 2015-06-04 14:22 - 00000000 ____D C:\RegBackup
2015-06-03 19:11 - 2015-06-06 09:31 - 00136408 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-06-03 19:11 - 2015-06-04 15:40 - 00001072 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-06-03 19:11 - 2015-06-04 15:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-06-03 19:11 - 2015-06-04 15:40 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-06-03 19:11 - 2015-04-14 09:37 - 00107736 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-06-03 19:11 - 2015-04-14 09:37 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-06-03 19:11 - 2015-04-14 09:37 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2015-06-03 16:28 - 2015-06-03 16:28 - 00448512 _____ (OldTimer Tools) C:\Users\Uživatel\Downloads\TFC(1).exe
2015-06-03 16:21 - 2015-06-03 16:21 - 00050688 _____ (Atribune.org) C:\Users\Uživatel\Downloads\ATF-Cleaner(1).exe
2015-06-02 19:48 - 2015-06-03 12:06 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-06-01 14:49 - 2015-06-01 14:49 - 00000000 ____D C:\Users\Uživatel\AppData\Local\GWX
2015-05-29 21:10 - 2015-05-30 09:39 - 00019015 _____ C:\Users\Uživatel\Desktop\rega.odt
2015-05-24 20:03 - 2015-05-24 20:04 - 11196567 _____ C:\Users\Uživatel\Desktop\KARBI TM1.zip
2015-05-18 16:04 - 2015-05-18 16:04 - 02845184 _____ (Mgr. Tomas Papousek) C:\Users\Uživatel\Downloads\cm897f.exe
2015-05-13 13:26 - 2015-05-01 15:17 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-05-13 13:26 - 2015-05-01 15:16 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-05-13 12:04 - 2015-04-22 04:28 - 00389840 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-05-13 12:04 - 2015-04-22 03:48 - 00342736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-05-13 12:04 - 2015-04-21 19:14 - 24971776 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-05-13 12:04 - 2015-04-21 19:08 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-05-13 12:04 - 2015-04-21 19:07 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-05-13 12:04 - 2015-04-21 18:51 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-05-13 12:04 - 2015-04-21 18:50 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-05-13 12:04 - 2015-04-21 18:50 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-05-13 12:04 - 2015-04-21 18:50 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-05-13 12:04 - 2015-04-21 18:49 - 02885120 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-05-13 12:04 - 2015-04-21 18:48 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-05-13 12:04 - 2015-04-21 18:41 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-05-13 12:04 - 2015-04-21 18:40 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-05-13 12:04 - 2015-04-21 18:37 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-05-13 12:04 - 2015-04-21 18:35 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-05-13 12:04 - 2015-04-21 18:35 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-05-13 12:04 - 2015-04-21 18:35 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-05-13 12:04 - 2015-04-21 18:34 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-05-13 12:04 - 2015-04-21 18:31 - 06025728 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-05-13 12:04 - 2015-04-21 18:26 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-05-13 12:04 - 2015-04-21 18:25 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-05-13 12:04 - 2015-04-21 18:24 - 19691008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-05-13 12:04 - 2015-04-21 18:22 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-05-13 12:04 - 2015-04-21 18:14 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-05-13 12:04 - 2015-04-21 18:11 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-05-13 12:04 - 2015-04-21 18:11 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-05-13 12:04 - 2015-04-21 18:10 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2015-05-13 12:04 - 2015-04-21 18:09 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-05-13 12:04 - 2015-04-21 18:09 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-05-13 12:04 - 2015-04-21 18:08 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-05-13 12:04 - 2015-04-21 18:08 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-05-13 12:04 - 2015-04-21 18:05 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-05-13 12:04 - 2015-04-21 18:04 - 02278400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-05-13 12:04 - 2015-04-21 18:03 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-05-13 12:04 - 2015-04-21 18:02 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-05-13 12:04 - 2015-04-21 18:00 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-05-13 12:04 - 2015-04-21 17:58 - 00664576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-05-13 12:04 - 2015-04-21 17:58 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-05-13 12:04 - 2015-04-21 17:57 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-05-13 12:04 - 2015-04-21 17:49 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-05-13 12:04 - 2015-04-21 17:49 - 00720384 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-05-13 12:04 - 2015-04-21 17:48 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-05-13 12:04 - 2015-04-21 17:47 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-05-13 12:04 - 2015-04-21 17:46 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-05-13 12:04 - 2015-04-21 17:43 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-05-13 12:04 - 2015-04-21 17:40 - 14401536 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-05-13 12:04 - 2015-04-21 17:39 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-05-13 12:04 - 2015-04-21 17:38 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-05-13 12:04 - 2015-04-21 17:36 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-05-13 12:04 - 2015-04-21 17:31 - 04305920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-05-13 12:04 - 2015-04-21 17:27 - 02352128 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-05-13 12:04 - 2015-04-21 17:26 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-05-13 12:04 - 2015-04-21 17:25 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-05-13 12:04 - 2015-04-21 17:24 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2015-05-13 12:04 - 2015-04-21 17:17 - 12828672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-05-13 12:04 - 2015-04-21 17:15 - 01547264 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-05-13 12:04 - 2015-04-21 17:03 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-05-13 12:04 - 2015-04-21 17:02 - 01882112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-05-13 12:04 - 2015-04-21 16:58 - 01310208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-05-13 12:04 - 2015-04-21 16:56 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-05-13 12:02 - 2015-05-05 03:29 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-05-13 12:02 - 2015-05-05 03:12 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-05-13 12:02 - 2015-04-18 05:10 - 00460800 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2015-05-13 12:02 - 2015-04-18 04:56 - 00342016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2015-05-13 12:01 - 2015-04-27 21:28 - 05569984 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-05-13 12:01 - 2015-04-27 21:28 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-05-13 12:01 - 2015-04-27 21:28 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-05-13 12:01 - 2015-04-27 21:26 - 01728960 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-05-13 12:01 - 2015-04-27 21:23 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-05-13 12:01 - 2015-04-27 21:23 - 01254400 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2015-05-13 12:01 - 2015-04-27 21:23 - 01162752 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2015-05-13 12:01 - 2015-04-27 21:23 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2015-05-13 12:01 - 2015-04-27 21:23 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2015-05-13 12:01 - 2015-04-27 21:23 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-05-13 12:01 - 2015-04-27 21:23 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-05-13 12:01 - 2015-04-27 21:23 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2015-05-13 12:01 - 2015-04-27 21:23 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2015-05-13 12:01 - 2015-04-27 21:23 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-05-13 12:01 - 2015-04-27 21:23 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-05-13 12:01 - 2015-04-27 21:23 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2015-05-13 12:01 - 2015-04-27 21:23 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2015-05-13 12:01 - 2015-04-27 21:23 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-05-13 12:01 - 2015-04-27 21:23 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-05-13 12:01 - 2015-04-27 21:23 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\sechost.dll
2015-05-13 12:01 - 2015-04-27 21:23 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-05-13 12:01 - 2015-04-27 21:23 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-05-13 12:01 - 2015-04-27 21:23 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-05-13 12:01 - 2015-04-27 21:23 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-05-13 12:01 - 2015-04-27 21:23 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-05-13 12:01 - 2015-04-27 21:23 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-05-13 12:01 - 2015-04-27 21:23 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2015-05-13 12:01 - 2015-04-27 21:23 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2015-05-13 12:01 - 2015-04-27 21:22 - 00404992 _____ (Microsoft Corporation) C:\Windows\system32\tracerpt.exe
2015-05-13 12:01 - 2015-04-27 21:22 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2015-05-13 12:01 - 2015-04-27 21:22 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-05-13 12:01 - 2015-04-27 21:22 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-05-13 12:01 - 2015-04-27 21:22 - 00104448 _____ (Microsoft Corporation) C:\Windows\system32\logman.exe
2015-05-13 12:01 - 2015-04-27 21:22 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\typeperf.exe
2015-05-13 12:01 - 2015-04-27 21:22 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\relog.exe
2015-05-13 12:01 - 2015-04-27 21:22 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-05-13 12:01 - 2015-04-27 21:22 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\diskperf.exe
2015-05-13 12:01 - 2015-04-27 21:21 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-05-13 12:01 - 2015-04-27 21:18 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-05-13 12:01 - 2015-04-27 21:18 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-05-13 12:01 - 2015-04-27 21:16 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-05-13 12:01 - 2015-04-27 21:16 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-05-13 12:01 - 2015-04-27 21:16 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 21:16 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 21:16 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 21:16 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 21:16 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 21:16 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 21:16 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 21:16 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 21:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 21:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 21:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 21:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 21:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 21:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 21:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 21:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 21:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 21:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 21:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 21:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 21:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 21:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 21:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 21:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 21:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 21:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 21:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 21:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 21:11 - 03989440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-05-13 12:01 - 2015-04-27 21:11 - 03934144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-05-13 12:01 - 2015-04-27 21:08 - 01310744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-05-13 12:01 - 2015-04-27 21:05 - 00635392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2015-05-13 12:01 - 2015-04-27 21:05 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-05-13 12:01 - 2015-04-27 21:05 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-05-13 12:01 - 2015-04-27 21:05 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-05-13 12:01 - 2015-04-27 21:05 - 00092160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sechost.dll
2015-05-13 12:01 - 2015-04-27 21:05 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-05-13 12:01 - 2015-04-27 21:05 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-05-13 12:01 - 2015-04-27 21:05 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2015-05-13 12:01 - 2015-04-27 21:05 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2015-05-13 12:01 - 2015-04-27 21:04 - 00641536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2015-05-13 12:01 - 2015-04-27 21:04 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-05-13 12:01 - 2015-04-27 21:04 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tracerpt.exe
2015-05-13 12:01 - 2015-04-27 21:04 - 00082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\logman.exe
2015-05-13 12:01 - 2015-04-27 21:04 - 00040448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\typeperf.exe
2015-05-13 12:01 - 2015-04-27 21:04 - 00037888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\relog.exe
2015-05-13 12:01 - 2015-04-27 21:04 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2015-05-13 12:01 - 2015-04-27 21:04 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-05-13 12:01 - 2015-04-27 21:03 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2015-05-13 12:01 - 2015-04-27 21:03 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2015-05-13 12:01 - 2015-04-27 21:03 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-05-13 12:01 - 2015-04-27 21:03 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2015-05-13 12:01 - 2015-04-27 21:03 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\diskperf.exe
2015-05-13 12:01 - 2015-04-27 21:03 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2015-05-13 12:01 - 2015-04-27 21:01 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-05-13 12:01 - 2015-04-27 21:01 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2015-05-13 12:01 - 2015-04-27 20:59 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-05-13 12:01 - 2015-04-27 20:59 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2015-05-13 12:01 - 2015-04-27 20:59 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 20:59 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 20:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 20:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 20:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 20:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 20:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 20:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 20:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 20:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 20:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 20:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 20:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 20:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 20:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 20:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 20:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 20:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 20:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 20:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 20:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 20:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 20:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 20:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 20:06 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll
2015-05-13 12:01 - 2015-04-27 19:57 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2015-05-13 12:01 - 2015-04-27 19:57 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2015-05-13 12:01 - 2015-04-27 19:55 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 19:55 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 19:55 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-05-13 12:01 - 2015-04-27 19:55 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2015-05-13 12:01 - 2015-04-20 05:17 - 01647104 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-05-13 12:01 - 2015-04-20 05:17 - 01179136 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2015-05-13 12:01 - 2015-04-20 04:56 - 01250816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2015-05-13 12:01 - 2015-04-20 04:11 - 03204608 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-05-13 12:01 - 2015-04-13 05:28 - 00328704 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2015-05-13 12:01 - 2015-04-08 05:29 - 00275456 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2015-05-13 12:01 - 2015-04-08 05:29 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\jnwmon.dll
2015-05-13 12:01 - 2015-04-08 05:14 - 00216064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InkEd.dll
2015-05-13 12:01 - 2015-03-04 06:41 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
2015-05-13 12:01 - 2015-03-04 06:41 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\aelupsvc.dll
2015-05-13 12:01 - 2015-03-04 06:41 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\sdbinst.exe
2015-05-13 12:01 - 2015-03-04 06:41 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\shimeng.dll
2015-05-13 12:01 - 2015-03-04 06:11 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shimeng.dll
2015-05-13 12:01 - 2015-03-04 06:10 - 00295936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apphelp.dll
2015-05-13 12:01 - 2015-03-04 06:10 - 00020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sdbinst.exe
2015-05-13 12:01 - 2015-02-18 09:06 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2015-05-13 12:01 - 2015-02-18 09:04 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2015-05-13 12:01 - 2015-01-29 05:19 - 02543104 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll
2015-05-13 12:01 - 2015-01-29 05:02 - 02311168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpdshext.dll

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-06-08 19:58 - 2011-01-31 12:04 - 00000000 ____D C:\Users\Uživatel\AppData\Roaming\uTorrent
2015-06-08 19:50 - 2011-01-03 01:54 - 01872909 _____ C:\Windows\WindowsUpdate.log
2015-06-08 19:48 - 2013-02-28 20:56 - 00000000 ____D C:\Users\Uživatel\Documents\ManiaPlanet
2015-06-08 19:47 - 2013-05-24 18:38 - 00000000 ____D C:\ProgramData\ManiaPlanet
2015-06-08 19:32 - 2009-07-14 06:45 - 00023584 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-06-08 19:32 - 2009-07-14 06:45 - 00023584 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-06-08 19:31 - 2015-01-12 15:37 - 00000000 ____D C:\Users\Uživatel\AppData\Local\CrashDumps
2015-06-08 19:29 - 2015-01-04 21:08 - 00000000 ____D C:\Program Files (x86)\CrystalDiskInfo
2015-06-08 19:26 - 2009-07-14 17:18 - 00916066 _____ C:\Windows\system32\perfh005.dat
2015-06-08 19:26 - 2009-07-14 17:18 - 00225086 _____ C:\Windows\system32\perfc005.dat
2015-06-08 19:26 - 2009-07-14 07:13 - 00006256 _____ C:\Windows\system32\PerfStringBackup.INI
2015-06-08 19:22 - 2012-02-21 16:01 - 04703336 _____ C:\Windows\system32\oodbs.lor
2015-06-08 19:22 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-06-08 19:15 - 2014-11-12 21:15 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-06-08 19:15 - 2011-01-25 22:01 - 00000000 ___RD C:\Users\Uživatel\Desktop\nepoužívané programy
2015-06-08 19:08 - 2013-12-16 20:03 - 00000000 ____D C:\Windows\erdnt
2015-06-08 15:16 - 2014-04-20 13:12 - 00000000 ____D C:\Users\Uživatel\Desktop\Euro Truck Simulator 2
2015-06-08 14:26 - 2011-03-31 08:12 - 00000000 ____D C:\Users\Uživatel\Documents\TrackMania
2015-06-08 13:46 - 2011-01-23 21:18 - 00003962 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{91B8059C-F4AE-48E4-8537-08C98180782D}
2015-06-07 21:40 - 2011-01-25 22:30 - 00000000 ____D C:\Users\Uživatel\AppData\Roaming\Skype
2015-06-07 19:01 - 2011-01-20 18:51 - 00000000 ____D C:\Windows\Minidump
2015-06-07 11:07 - 2013-12-19 15:27 - 00000000 ____D C:\ProgramData\AMD
2015-06-07 11:07 - 2012-04-07 18:36 - 00000000 ____D C:\Program Files\AMD
2015-06-07 11:05 - 2011-01-05 06:45 - 00000000 ____D C:\Program Files\ATI Technologies
2015-06-07 10:42 - 2011-01-23 23:47 - 00000000 ____D C:\Program Files (x86)\AMD
2015-06-07 10:38 - 2012-05-05 09:13 - 00000000 ____D C:\AMD
2015-06-06 20:10 - 2009-07-14 04:34 - 00000215 _____ C:\Windows\system.ini
2015-06-06 20:07 - 2009-07-14 04:34 - 96993280 _____ C:\Windows\system32\config\software.bak
2015-06-06 20:07 - 2009-07-14 04:34 - 68419584 _____ C:\Windows\system32\config\components.bak
2015-06-06 20:07 - 2009-07-14 04:34 - 26214400 _____ C:\Windows\system32\config\system.bak
2015-06-06 20:07 - 2009-07-14 04:34 - 00524288 _____ C:\Windows\system32\config\default.bak
2015-06-06 20:07 - 2009-07-14 04:34 - 00024576 _____ C:\Windows\system32\config\security.bak
2015-06-06 20:07 - 2009-07-14 04:34 - 00024576 _____ C:\Windows\system32\config\sam.bak
2015-06-06 20:06 - 2011-01-27 16:43 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-06-06 16:25 - 2012-04-07 18:19 - 00000000 ____D C:\Program Files (x86)\Steam
2015-06-06 16:13 - 2011-01-23 21:59 - 00000000 ____D C:\Program Files (x86)\Adobe
2015-06-06 12:38 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\NDF
2015-06-05 18:59 - 2014-10-15 14:19 - 00037624 _____ C:\Windows\system32\Drivers\TrueSight.sys
2015-06-05 17:32 - 2015-01-02 19:51 - 00009595 _____ C:\zoek-results.log
2015-06-05 17:32 - 2015-01-02 19:46 - 00000000 ____D C:\zoek_backup
2015-06-05 17:19 - 2011-03-03 12:56 - 00000000 ____D C:\Users\Uživatel\AppData\Local\Google
2015-06-04 15:22 - 2014-10-15 14:19 - 00000000 ____D C:\ProgramData\RogueKiller
2015-06-04 14:11 - 2015-01-01 13:45 - 00000000 ____D C:\AdwCleaner
2015-06-03 17:57 - 2014-10-22 16:52 - 00000000 ____D C:\Users\Uživatel\Desktop\obrázky jana
2015-06-03 17:56 - 2015-04-27 15:51 - 00000000 ___RD C:\Users\Uživatel\Desktop\PaintTool SAI English Pack
2015-06-03 12:06 - 2012-10-16 19:17 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-06-02 09:43 - 2014-10-26 10:41 - 00000000 ____D C:\Users\Public\StarStableOnline
2015-05-28 21:22 - 2011-01-03 01:54 - 00000000 ____D C:\Users\Uživatel
2015-05-28 21:04 - 2015-04-04 10:25 - 00000000 ___SD C:\Windows\system32\GWX
2015-05-28 21:04 - 2012-12-04 16:40 - 00000000 ____D C:\Users\Uživatel\AppData\Roaming\Winamp
2015-05-28 21:02 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\registration
2015-05-20 22:28 - 2015-04-04 10:25 - 00000000 ___SD C:\Windows\SysWOW64\GWX
2015-05-19 17:21 - 2009-07-14 07:08 - 00032592 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2015-05-18 20:17 - 2015-03-14 20:54 - 00000000 ____D C:\Users\Uživatel\Desktop\rychlost připojení
2015-05-14 22:20 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2015-05-14 17:26 - 2014-11-21 15:36 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2015-05-13 14:21 - 2009-07-14 06:45 - 00358176 _____ C:\Windows\system32\FNTCACHE.DAT
2015-05-13 14:19 - 2009-07-14 17:37 - 00000000 ____D C:\Program Files\Windows Journal
2015-05-13 14:19 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\AdvancedInstallers
2015-05-13 13:42 - 2013-07-28 16:31 - 00000000 ____D C:\Windows\system32\MRT
2015-05-13 13:28 - 2011-01-23 19:37 - 140425016 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-05-13 13:26 - 2012-05-10 14:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-05-13 13:25 - 2012-05-10 14:13 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2015-05-13 13:25 - 2012-05-10 14:13 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight

==================== Files in the root of some directories =======

2012-02-11 20:01 - 2012-02-11 20:01 - 0000268 ____R () C:\Users\Uživatel\AppData\Roaming\Caches
2012-02-11 20:01 - 2012-02-11 20:01 - 0000268 ____R () C:\Users\Uživatel\AppData\Roaming\Calibrators
2012-02-11 20:01 - 2012-02-11 20:01 - 0000268 ____R () C:\Users\Uživatel\AppData\Roaming\Carbon
2015-04-19 10:30 - 2015-04-20 08:44 - 0000000 _____ () C:\Users\Uživatel\AppData\Roaming\FileIn.cns
2015-04-19 10:30 - 2015-04-20 08:44 - 0000000 _____ () C:\Users\Uživatel\AppData\Roaming\FileOut.cns
2011-02-08 10:21 - 2013-11-27 20:59 - 0001057 _____ () C:\Users\Uživatel\AppData\Roaming\vso_ts_preview.xml
2011-02-16 15:39 - 2013-11-09 22:03 - 0008192 _____ () C:\Users\Uživatel\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-06-07 20:39 - 2015-06-07 20:39 - 0000000 ___SH () C:\Users\Uživatel\AppData\Local\LumaEmu
2011-01-29 18:46 - 2013-06-01 21:59 - 0007605 _____ () C:\Users\Uživatel\AppData\Local\resmon.resmoncfg
2013-08-26 17:48 - 2013-08-26 17:48 - 0000061 _____ () C:\Users\Uživatel\AppData\Local\SRDownloader(1).err
2013-08-26 16:41 - 2013-08-27 14:15 - 0001112 _____ () C:\Users\Uživatel\AppData\Local\SRDownloader(1).nast
2011-07-17 20:24 - 2011-07-18 10:42 - 0000896 _____ () C:\Users\Uživatel\AppData\Local\SRDownloader.nast
2011-01-25 22:31 - 2011-01-25 22:31 - 0000048 ____H () C:\ProgramData\ezsidmv.dat
2011-10-15 19:06 - 2012-03-22 20:04 - 0000193 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.64.bc

Some files in TEMP:
====================
C:\Users\Uživatel\AppData\Local\Temp\raptrpatch.exe
C:\Users\Uživatel\AppData\Local\Temp\raptr_stub.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-06-03 18:59

==================== End of log ============================

Uživatelský avatar
karbi02
Level 2.5
Level 2.5
Příspěvky: 383
Registrován: březen 07
Pohlaví: Nespecifikováno
Stav:
Offline

Re: Prosím o kontrolu logu - zpomalené pc

Příspěvekod karbi02 » 08 čer 2015 20:11

Additional scan result of Farbar Recovery Scan Tool (x64) Version:07-06-2015
Ran by Uživatel at 2015-06-08 19:59:54
Running from C:\Users\Uživatel\Desktop
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3056490246-2549413826-2647440247-500 - Administrator - Disabled)
Guest (S-1-5-21-3056490246-2549413826-2647440247-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3056490246-2549413826-2647440247-1009 - Limited - Enabled)
Uživatel (S-1-5-21-3056490246-2549413826-2647440247-1000 - Administrator - Enabled) => C:\Users\Uživatel

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: ESET Smart Security 6.0 (Enabled - Up to date) {77DEAFED-8149-104B-25A1-21771CA47CD1}
AS: ESET Smart Security 6.0 (Enabled - Up to date) {CCBF4E09-A773-1FC5-1F11-1A056723366C}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: ESET personal firewall (Enabled) {4FE52EC8-CB26-1113-0EFE-8842E2773BAA}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

«GRID 2» 1.0.85.8679 (HKLM-x32\...\«GRID 2»_is1) (Version: 1.0.85.8679 - Codemasters)
µTorrent (HKU\S-1-5-21-3056490246-2549413826-2647440247-1000\...\uTorrent) (Version: 3.4.3.40298 - BitTorrent Inc.)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.0.0.4080 - Adobe Systems Incorporated)
Adobe Flash Player 17 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 17.0.0.169 - Adobe Systems Incorporated)
Adobe Flash Player 17 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 17.0.0.169 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.11) - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.11 - Adobe Systems Incorporated)
AMD Catalyst Install Manager (HKLM\...\{047D5657-1DAC-2B16-E110-F4A9C0E7EF2C}) (Version: 8.0.881.0 - Advanced Micro Devices, Inc.)
AMD Catalyst Install Manager (HKLM\...\{F2A7CE36-57BF-5C86-952D-90DBF3746D82}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
Apple Application Support (HKLM-x32\...\{EE6097DD-05F4-4178-9719-D3170BF098E8}) (Version: 1.4.1 - Apple Inc.)
Audacity 2.0.2 (HKLM-x32\...\Audacity_is1) (Version: 2.0.2 - Audacity Team)
Balíček ovladače systému Windows - OLYMPUS IMAGING CORP. Camera Communication Driver Package (09/09/2009 1.0.0.0) (HKLM\...\2C1C2F29FADF39F533CEEE67B90F07A5306A4BDB) (Version: 09/09/2009 1.0.0.0 - OLYMPUS IMAGING CORP.)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
BusinessCards MX (HKLM-x32\...\{0D5B5ED2-3E38-4585-B1F3-64B2A9EA95D6}_is1) (Version: 4.90 - MOJOSOFT)
CCleaner (HKLM\...\CCleaner) (Version: 4.19 - Piriform)
CDBurnerXP (HKLM\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.3.8.2474 - CDBurnerXP)
ConvertXtoDVD 4.1.8.344 (HKLM-x32\...\{DB6AB705-C9BD-40E3-8929-2EA57F36A4FF}_is1) (Version: 4.1.8.344 - )
CPUID HWMonitor 1.15 (HKLM\...\CPUID HWMonitor_is1) (Version: - )
CrazyTalk Cam Suite PRO (HKLM-x32\...\{D1504C77-1B19-4AF0-8DEC-946666123B55}) (Version: 3.0 - Reallusion)
CrystalDiskInfo 6.3.1 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 6.3.1 - Crystal Dew World)
CutePDF Writer 2.8 (HKLM\...\CutePDF Writer Installation) (Version: - )
CyberLink PowerDVD 10 (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.2429.51 - CyberLink Corp.)
CyberLink PowerDVD 10.0.1516.51 - odinstalovat češtinu (HKLM-x32\...\CyberLink PowerDVD 10.0.1516.51) (Version: - Michellin & Pavlík)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.47.1.0333 - Disc Soft Ltd)
Download Navigator (HKLM-x32\...\{D0353B68-A142-4F89-A46E-1C9A7745D636}) (Version: 3.4.1 - SEIKO EPSON CORPORATION)
Downloader (HKLM-x32\...\Downloader) (Version: - )
Drakensang Online (HKLM-x32\...\Drakensang Online) (Version: - )
EA Download Manager (HKLM-x32\...\EA Download Manager) (Version: 6.0.4.124 - Electronic Arts, Inc.)
EA Download Manager UI (HKLM-x32\...\com.ea.Vault.919CACB699904AC5D41B606703500DD39747C02D.1) (Version: 6.0.4.124 - Electronic Arts)
EA Download Manager UI (x32 Version: 6.0.4 - Electronic Arts) Hidden
EPSON BX635FWD Series Printer Uninstall (HKLM\...\EPSON BX635FWD Series) (Version: - SEIKO EPSON Corporation)
Epson Connect Printer Setup (HKLM-x32\...\{D9B1D51B-EB56-410D-AEB5-1CCFAC4B6C8C}) (Version: 1.1.1 - SEIKO EPSON CORPORATION)
Epson Easy Photo Print 2 (HKLM-x32\...\{FFF841F3-9A15-4F61-BD16-C19F132E5A27}) (Version: 2.3.0.0 - SEIKO EPSON CORPORATION)
Epson Easy Photo Print Plug-in for PMB(Picture Motion Browser) (HKLM-x32\...\{B2D55EB8-32C5-4B43-9006-9E97DECBA178}) (Version: 1.00.0000 - SEIKO EPSON CORPORATION2)
Epson Event Manager (HKLM-x32\...\{FA9D303D-0FB2-49C7-9397-8E6B11EA892D}) (Version: 2.50.0001 - SEIKO EPSON CORPORATION)
Epson E-Web Print (HKLM-x32\...\{FB897D16-F0A7-4674-96F1-1C26963BA244}) (Version: 1.15.0000 - SEIKO EPSON CORPORATION)
Epson FAX Utility (HKLM-x32\...\{0CBE6C93-CB2E-4378-91EE-12BE6D4E2E4A}) (Version: 1.20.00 - SEIKO EPSON CORPORATION)
EPSON Printer Finder (HKLM-x32\...\{B8ECD0D3-AE08-4891-B6C7-32F96B75EB6C}) (Version: 1.0.0 - SEIKO EPSON CORPORATION)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation)
EpsonNet Print (HKLM-x32\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.4j - SEIKO EPSON CORPORATION)
ESET Smart Security (HKLM\...\{685906B8-E4CF-40DC-BAF1-8DED5B5637B8}) (Version: 6.0.302.4 - ESET, spol s r. o.)
EveryonePiano 1.6 (HKLM-x32\...\EveryonePiano_is1) (Version: 1.6.10.24 - EveryonePiano.com)
Eye 312 (HKLM-x32\...\{74F923F2-2B11-4E2E-B638-A1772A9F7B7B}) (Version: 1.0.0.28 - KYE SYSTEMS CORP.)
F1 2011 (x32 Version: 1.0.0002.129 - Codemasters) Hidden
F1 2014 (HKLM-x32\...\RjEyMDE0_is1) (Version: 1 - )
Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Game Alarm (HKU\S-1-5-21-3056490246-2549413826-2647440247-1000\...\gamealarm-DEFAULT) (Version: - )
Google Update Helper (x32 Version: 1.3.22.3 - Google Inc.) Hidden
Google+ Auto Backup (HKLM-x32\...\{A50DE037-B5C0-4C8A-8049-B0C576B313D1}) (Version: 1.0.21.81 - Google)
GRID 2 (c) Codemasters version 1 (HKLM-x32\...\R1JJRDI=_is1) (Version: 1 - )
HeavyLoad V3.2 (HKLM-x32\...\HeavyLoad_is1) (Version: 3.2 - JAM Software)
High-Definition Video Playback 10 (x32 Version: 7.0.11400.29.0 - Nero AG) Hidden
HisLauncher (HKLM-x32\...\{17E8DD45-2F02-4491-9819-FBD1C0336C59}) (Version: 1.0.0.0 - GameUs)
Java(TM) 7 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417000FF}) (Version: 7.0.0 - Oracle)
Jpeg Resampler Vs 6+ (HKLM-x32\...\JpegResampler2010_is1) (Version: - Jpeg Resampler)
Junk Mail filter update (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
KB-350e (HKLM-x32\...\{7F25D625-A159-49F7-B5C5-6654860EC116}) (Version: 1.00.0000 - Montery)
K-Lite Codec Pack (64-bit) v4.1.0 (HKLM\...\KLiteCodecPack64_is1) (Version: 4.1.0 - )
K-Lite Codec Pack 4.3.1 (Full) (HKLM-x32\...\KLiteCodecPack_is1) (Version: 4.3.1 - )
Logitech Gaming Software 5.10 (HKLM\...\{1444D2EE-C7AD-44A8-844F-2634B49353D1}) (Version: 5.10.127 - Logitech)
Logitech Gaming Software 64 (HKLM-x32\...\InstallShield_{58BF5D14-CBCF-473C-B0E0-A7955A23224E}) (Version: - )
Malwarebytes Anti-Malware verze 2.1.6.1022 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.6.1022 - Malwarebytes Corporation)
ManiaPlanet (HKLM-x32\...\ManiaPlanet_is1) (Version: - Nadeo)
Matrix Code Emulator 1.50 (HKLM-x32\...\Matrix Code Emulator_is1) (Version: - Reality Rift Studios)
MediaFeed (HKLM-x32\...\MediaFeed) (Version: 309 - MediaFeed.me)
Metric Collection SDK 35 (x32 Version: 1.2.0006.00 - Lenovo Group Limited) Hidden
Microsoft .NET Framework 4.5.2 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{F2508213-9989-4E85-A078-72BE483917EF}) (Version: 3.5.88.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3056490246-2549413826-2647440247-1000\...\OneDriveSetup.exe) (Version: 17.3.1171.0714 - Microsoft Corporation)
Microsoft Primary Interoperability Assemblies 2005 (HKLM-x32\...\{D24DB8B9-BB6C-4334-9619-BA1C650E13D3}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM-x32\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{402ED4A1-8F5B-387A-8688-997ABF58B8F2}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Mouse Driver (HKLM-x32\...\InstallShield_{55BFC356-5A7B-482F-A213-9ACFDDFF6037}) (Version: 5.1 - Driver Builder)
Mouse Driver (x32 Version: 5.1 - Driver Builder) Hidden
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
MozBackup 1.4.10 (HKLM-x32\...\MozBackup) (Version: - Pavel Cvrcek)
Mozilla Firefox 38.0.5 (x86 cs) (HKLM-x32\...\Mozilla Firefox 38.0.5 (x86 cs)) (Version: 38.0.5 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
Mozilla Thunderbird 24.2.0 (x86 cs) (HKLM-x32\...\Mozilla Thunderbird 24.2.0 (x86 cs)) (Version: 24.2.0 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP2 Parser and SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
NEC Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{D7BF9739-8A68-4335-BBEE-37752AD9E86B}) (Version: 1.0.19.0 - NEC Electronics Corporation)
NEC Electronics USB 3.0 Host Controller Driver (x32 Version: 1.0.19.0 - NEC Electronics Corporation) Hidden
Nero 10 PiP EffectPack 1 (HKLM-x32\...\{EF3A4DAE-F16F-4AC1-87BB-FE00A784084F}) (Version: 10.2.10200.0.0 - Nero AG)
Nero BackItUp 10 (HKLM-x32\...\{68AB6930-5BFF-4FF6-923B-516A91984FE6}) (Version: 5.4.11600.19.100 - Nero AG)
Nero Burning ROM 10 (HKLM-x32\...\{7A5D731D-B4B3-490E-B339-75685712BAAB}) (Version: 10.0.11100.10.100 - Nero AG)
Nero BurnRights 10 (HKLM-x32\...\{943CFD7D-5336-47AF-9418-E02473A5A517}) (Version: 4.0.11000.12.100 - Nero AG)
Nero CoverDesigner 10 (HKLM-x32\...\{FCF00A6E-FB58-477A-ABE9-232907105521}) (Version: 5.0.10900.11.100 - Nero AG)
Nero DiscSpeed 10 (HKLM-x32\...\{34490F4E-48D0-492E-8249-B48BECF0537C}) (Version: 6.0.10800.7.100 - Nero AG)
Nero Express 10 (HKLM-x32\...\{70550193-1C22-445C-8FA4-564E155DB1A7}) (Version: 10.0.11000.10.100 - Nero AG)
Nero InfoTool 10 (HKLM-x32\...\{F412B4AF-388C-4FF5-9B2F-33DB1C536953}) (Version: 7.0.10800.8.100 - Nero AG)
Nero MediaHub 10 (HKLM-x32\...\{1F7FB68F-52F6-46A3-B42F-38CE46295AE5}) (Version: 1.0.13400.11.100 - Nero AG)
Nero Multimedia Suite 10 (HKLM-x32\...\{277C1559-4CF7-44FF-8D07-98AA9C13AABD}) (Version: 10.0.13100 - Nero AG)
Nero Recode 10 (HKLM-x32\...\{8ECEC853-5C3D-4B10-B5C7-FF11FF724807}) (Version: 4.6.10900.4.100 - Nero AG)
Nero RescueAgent 10 (HKLM-x32\...\{E337E787-CF61-4B7B-B84F-509202A54023}) (Version: 3.0.10900.9.100 - Nero AG)
Nero SoundTrax 10 (HKLM-x32\...\{E1EE5339-5D32-458F-BAAB-B19F6301BCE2}) (Version: 4.6.10600.2.100 - Nero AG)
Nero StartSmart 10 (HKLM-x32\...\{F61D489E-6C44-49AC-AD02-7DA8ACA73A65}) (Version: 10.0.11200.12.100 - Nero AG)
Nero Update (HKLM-x32\...\{65BB0407-4CC8-4DC7-952E-3EEFDF05602A}) (Version: 1.0.0017 - Nero AG)
Nero Vision 10 (HKLM-x32\...\{9A4297F3-2A51-4ED9-92CA-4BCB8380947E}) (Version: 7.0.11100.8.100 - Nero AG)
Nero WaveEditor 10 (HKLM-x32\...\{EDCDFAD5-DF80-4600-A493-E9DAD6810230}) (Version: 5.6.10600.2.100 - Nero AG)
O&O Defrag Professional (HKLM\...\{1C430BCD-D2CD-4F2B-8476-4267F0B9E485}) (Version: 14.1.431 - O&O Software GmbH)
Ogg Codecs 0.81.15562 (HKLM-x32\...\Ogg Codecs) (Version: 0.81.15562 - Xiph.Org)
OLYMPUS Viewer 3 (HKLM-x32\...\{1B28182C-253F-4CFE-AF4A-87CB416D5F73}) (Version: 1.0.0 - OLYMPUS IMAGING CORP.)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
OpenOffice.org 3.2 (HKLM-x32\...\{FAB43061-FEFB-46E8-A159-96710395DB5E}) (Version: 3.2.9505 - OpenOffice.org)
Ovladače videa společnosti Pinnacle (HKLM\...\{6DE721A5-5E89-4D74-994C-652BB3C0672E}) (Version: 12.1.0.030 - Pinnacle Systems)
PCSpeedUp (HKU\S-1-5-21-3056490246-2549413826-2647440247-1000\...\3027380830.www.pcspeedup.com) (Version: - http://www.pcspeedup.com) <==== ATTENTION
PCSpeedUp Application (HKU\S-1-5-21-3056490246-2549413826-2647440247-1000\...\3669561691.www.pcspeedup.com) (Version: - http://www.pcspeedup.com) <==== ATTENTION
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.)
Picture Control Utility (HKLM-x32\...\{87441A59-5E64-4096-A170-14EFE67200C3}) (Version: 1.2.2 - Nikon)
Pinnacle Studio 15 (HKLM-x32\...\{1362E602-9625-42D3-B57F-CDA9D26F9DA8}) (Version: 15.0.0.7593 - Pinnacle Systems)
Platform (x32 Version: 1.34 - VIA Technologies, Inc.) Hidden
Příručka pro síť EPSON BX635FWD Series (HKLM-x32\...\EPSON BX635FWD Series Netg) (Version: - )
QuickTime (HKLM-x32\...\{57752979-A1C9-4C02-856B-FBB27AC4E02C}) (Version: 7.69.80.9 - Apple Inc.)
rajče průvodce verze 1.59.42.257 (HKLM-x32\...\rajče.net_is1) (Version: - rajče.net)
Raptr (HKLM-x32\...\Raptr) (Version: - )
Rapture3D 2.3.22 Game (HKLM-x32\...\{D2FCA41E-AC01-4DCD-B3A7-DC9E32363065}}_is1) (Version: - Blue Ripple Sound)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.47.714.2011 - Realtek)
Revo Uninstaller Pro 3.1.2 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.1.2 - VS Revo Group, Ltd.)
Ski Challenge 13 (AT) (HKU\S-1-5-21-3056490246-2549413826-2647440247-1000\...\sc13-AT_MAIN) (Version: - )
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.4.0.9058 - Microsoft Corporation)
Skype™ 7.4 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.4.102 - Skype Technologies S.A.)
SlimComputer (HKLM-x32\...\{84AC08CB-C712-40DB-950F-4E0CA6170B8D}) (Version: 1.3.24430 - SlimWare Utilities, Inc.)
SlimDrivers (HKLM-x32\...\{0BEB28E4-E5EA-40DE-8982-1F13005DC08B}) (Version: 2.2.25937 - SlimWare Utilities, Inc.)
Sniper Elite III (HKLM-x32\...\Sniper Elite III_is1) (Version: 1.01 - Codemasters)
Sony Ericsson Update Service (HKLM-x32\...\Update Service) (Version: 2.11.6.12 - Sony Ericsson Mobile Communications AB)
SPAMfighter (x32 Version: 7.6.104 - Spamfighter ApS) Hidden
Star Stable (HKLM-x32\...\{2B03B553-4983-4005-99C4-31DFC25B4BB9}) (Version: 1.00.0000 - Star Stable Entertainment AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamViewer 7 (HKLM-x32\...\TeamViewer 7) (Version: 7.0.12979 - TeamViewer)
The KMPlayer (remove only) (HKLM-x32\...\The KMPlayer) (Version: - )
The Lord of the Rings FREE Trial (x32 Version: 1.00.0000 - ATI Technologies Inc.) Hidden
TmUnitedForever Update 2010-03-15 (HKLM-x32\...\TmUnitedForever_is1) (Version: - Nadeo)
TomTom HOME (HKLM-x32\...\{7A2BB1C8-903D-4585-9F3B-CADD67D07D37}) (Version: 2.9.8 - Název společnosti:)
TomTom HOME Visual Studio Merge Modules (HKLM-x32\...\{8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}) (Version: 1.0.2 - TomTom International B.V.)
Total Commander (Remove or Repair) (HKLM-x32\...\Totalcmd) (Version: 7.56a - Ghisler Software GmbH)
Unity Web Player (HKU\S-1-5-21-3056490246-2549413826-2647440247-1000\...\UnityWebPlayer) (Version: 2.6.1f3_31223 - Unity Technologies ApS)
Uživatelská příručka EPSON BX635FWD Series (HKLM-x32\...\EPSON BX635FWD Series Useg) (Version: - )
VIA Platforma Ovladače zařízení (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.34 - VIA Technologies, Inc.)
ViewNX 2 (HKLM-x32\...\{DDD62492-32A7-412B-8AF1-2CF032AD42E3}) (Version: 2.1.2 - Nikon)
Winamp (HKLM-x32\...\Winamp) (Version: 5.623 - Nullsoft, Inc)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
WinRAR 4.11 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.11.0 - win.rar GmbH)
Wise Registry Cleaner 8.52 (HKLM-x32\...\Wise Registry Cleaner_is1) (Version: 8.52 - WiseCleaner.com, Inc.)
XnView 1.97.8 (HKLM-x32\...\XnView_is1) (Version: 1.97.8 - Gougelet Pierre-e)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3056490246-2549413826-2647440247-1000_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\Uživatel\AppData\Local\Microsoft\SkyDrive\17.3.1171.0714\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3056490246-2549413826-2647440247-1000_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\Uživatel\AppData\Local\Microsoft\SkyDrive\17.3.1171.0714\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3056490246-2549413826-2647440247-1000_Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}\InprocServer32 -> C:\Users\Uživatel\AppData\Local\Microsoft\SkyDrive\17.3.1171.0714\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3056490246-2549413826-2647440247-1000_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\Uživatel\AppData\Local\Microsoft\SkyDrive\17.3.1171.0714\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3056490246-2549413826-2647440247-1000_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\Uživatel\AppData\Local\Microsoft\SkyDrive\17.3.1171.0714\amd64\FileSyncApi64.dll (Microsoft Corporation)

==================== Restore Points =========================

08-06-2015 19:08:36 ComboFix created restore point
08-06-2015 19:30:11 LavasoftWeCompanion
08-06-2015 19:46:07 LavasoftWeCompanion

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2015-06-06 20:10 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {2A1DD301-67E1-43CB-B854-84D2C7D00816} - System32\Tasks\{1D83A5F9-74E3-4D25-BB4C-E271D991B347} => pcalua.exe -a C:\Users\Uživatel\Desktop\FreeRapid-0.85u1\frd.exe -d C:\Users\Uživatel\Desktop\FreeRapid-0.85u1
Task: {324640E6-67DC-4D53-91BB-8D20AE39978D} - System32\Tasks\Microsoft\Windows\Windows Activation Technologies\ValidationTask => C:\Windows\system32\Wat\WatAdminSvc.exe [2011-01-23] (Microsoft Corporation)
Task: {382E409F-CCA4-46B5-A042-5D2E4DCF604D} - System32\Tasks\{53A494EF-F5B2-4397-851E-503166EF1FC1} => C:\Program Files (x86)\Skype\\Phone\Skype.exe [2015-04-17] (Skype Technologies S.A.)
Task: {49F60143-BD0A-4EB5-85D3-BBFD453A3813} - System32\Tasks\{36B48ABA-F189-4A9D-BCB7-8FF4B9E94BFB} => pcalua.exe -a C:\Users\Uživatel\Desktop\FreeRapid-0.85u1\frd.exe -d C:\Users\Uživatel\Desktop\FreeRapid-0.85u1
Task: {4C114375-C0EB-4CF7-9059-A9C472725F7E} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-05-07] (Microsoft Corporation)
Task: {53AF0CFD-1B4B-43A8-926F-8950D5181B90} - System32\Tasks\{451A5B57-7B06-4AED-93D5-C7FF71A2E874} => pcalua.exe -a C:\Users\Uživatel\Desktop\startuplite-setup-1.07.exe -d C:\Users\Uživatel\Desktop
Task: {6287C12F-1E5F-4871-9213-2572F522A925} - System32\Tasks\{2484197B-A51D-422F-826F-33D5CE26531F} => pcalua.exe -a E:\setup.exe -d E:\
Task: {698984A5-4977-4EFE-8868-1D00084D7A92} - System32\Tasks\{23AA1EC8-D8B3-471B-9CDA-DBB66B65CBE3} => pcalua.exe -a C:\Users\Uživatel\Downloads\DreamAquariumXP.exe -d "C:\Program Files (x86)\Mozilla Firefox"
Task: {6B6BDB63-CB7D-4BE4-B6F7-B84092077949} - System32\Tasks\{5DE3AA4A-F44B-40A8-A365-8E295189F4AA} => pcalua.exe -a C:\Users\Uživatel\Desktop\mwav.exe -d "C:\Program Files (x86)\Mozilla Firefox"
Task: {730E86D5-3D6A-49DA-AF20-801DC8D1C639} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle => C:\Windows\system32\GWX\GWX.exe [2015-05-07] (Microsoft Corporation)
Task: {7710BF6B-520D-48A0-A210-0028415548B1} - System32\Tasks\{0828DE00-805F-4687-AC88-A5ABB54B1D67} => pcalua.exe -a F:\Setup.EXE -d F:\
Task: {79A0BB9F-D3BA-483A-95DC-62C0C66E4B61} - System32\Tasks\{634928AA-D900-4324-9594-81F81B141289} => pcalua.exe -a "C:\Program Files (x86)\IObit\Advanced SystemCare 6\UninstallPromote.exe" -d "C:\Program Files (x86)\IObit\Advanced SystemCare 6"
Task: {7C898BC7-2F08-47D1-99BF-6F877FB843DD} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-04-15] (Adobe Systems Incorporated)
Task: {7CCED4A0-14E0-4163-86E1-BE332929E17B} - System32\Tasks\{909C39EF-F2BC-4484-80AD-307F7CD8034D} => pcalua.exe -a "C:\Program Files (x86)\Common Files\Logitech\QCDRV\BIN\SETUP.EXE" -c UNINSTALL REMOVEPROMPT
Task: {7E90D533-D58F-418C-9F66-ADD8DDBA33B5} - System32\Tasks\{AFAC37A0-6614-4E8E-8D4F-1935E8C48F02} => pcalua.exe -a C:\Users\Uživatel\Downloads\mwav.exe -d C:\Users\Uživatel\Downloads
Task: {965835C6-D6BD-4844-859C-4BA42ADEA07E} - System32\Tasks\SidebarExecute => C:\Program Files (x86)\Windows Sidebar\sidebar.exe [2010-11-20] (Microsoft Corporation)
Task: {97369D31-8CE7-4ED4-B205-83FE8153D37C} - System32\Tasks\{E327E099-396F-498A-9802-A657F09E99C1} => pcalua.exe -a "C:\Users\Uživatel\Desktop\o&amp;o defrag professional edition 14.1.431 (CZ + CDkey)\oodefragpro14143164bitcz.exe" -d "C:\Users\Uživatel\Desktop\o&amp;o defrag professional edition 14.1.431 (CZ + CDkey)"
Task: {99A9BCD5-ADBF-4B10-97B7-5BEE5F1A756E} - System32\Tasks\{51CFF580-8827-4F89-9CDA-A4CC496574D0} => pcalua.exe -a C:\Users\Uživatel\Downloads\solutoinstaller.exe -d C:\Users\Uživatel\Downloads
Task: {9F8DF28A-A780-4F98-B997-4450B307881B} - System32\Tasks\{21278465-5104-4549-8191-5464F22520C0} => pcalua.exe -a C:\Users\Uživatel\Desktop\frd.exe -d C:\Users\Uživatel\Desktop
Task: {A72FCECD-3213-4F02-80C2-855E2AF3D11D} - System32\Tasks\{51781ECB-AA2C-494B-B1F2-BE87593B5AF0} => pcalua.exe -a "C:\Users\Uživatel\Desktop\nepoužívané programy\mwav.exe" -d "C:\Users\Uživatel\Desktop\nepoužívané programy"
Task: {AC24CD3D-9A50-4D28-AC5C-F9941B5FF48D} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => schtasks
Task: {AD0872DA-CC56-4E98-85E0-4370B3A605FD} - System32\Tasks\ASC6_PerformanceMonitor => C:\Program Files (x86)\IObit\Advanced SystemCare 6\Monitor.exe
Task: {B0FEEAE7-2880-43A3-AD39-A4BF7A987AEF} - System32\Tasks\{40701556-40CC-42F2-8DB6-6BD9B7B078B1} => pcalua.exe -a C:\Users\Uživatel\Downloads\lgs508.exe -d C:\Windows\system32
Task: {B500F688-2885-4BF6-980A-01CB52B8C428} - System32\Tasks\{D873D07D-7C9A-4800-8884-429EA175247D} => pcalua.exe -a C:\Users\Uživatel\Desktop\mwav(1).exe -d C:\Users\Uživatel\Desktop
Task: {B79D917B-4B86-48BA-8FE2-89E2CB809A12} - System32\Tasks\{DA0E4CFA-2EEE-4BDE-8D2D-FCCF65147AD9} => pcalua.exe -a "C:\Program Files (x86)\InstallShield Installation Information\{04AF7536-446D-4F5A-8920-B4E885E4581B}\Presto.exe" -c -runfromtemp -l0x0009 -removeonly
Task: {B8E846F0-69B0-471A-AABE-8FC079000380} - System32\Tasks\{5B95AF26-1DD7-43C9-B8EF-4631A42DE18F} => pcalua.exe -a "C:\Program Files (x86)\Samsung\Kies\KiesDriverInstaller.exe" -d "C:\Program Files (x86)\Samsung\Kies"
Task: {BB8F13DC-0E7E-4035-AD4C-A14DECA3A1F9} - System32\Tasks\{16F850D1-13FD-46B2-AC3F-FD2453C3BA4A} => pcalua.exe -a "C:\Windows\Speeditup Free\uninstall.exe" -c "/U:C:\Program Files (x86)\Speeditup Free\irunin.xml"
Task: {BCCE7E51-2DE9-498D-B069-36298B22F1ED} - System32\Tasks\{21FD2EB6-FD3F-469D-B451-0A21BA679111} => pcalua.exe -a "C:\Users\Uživatel\Desktop\CyberLink PowerDVD 9 Ultra Build 2227 FINAL\PDVD9U.Activator.exe" -d "C:\Users\Uživatel\Desktop\CyberLink PowerDVD 9 Ultra Build 2227 FINAL"
Task: {CA2CEE4F-8147-4D06-AC7F-885F19F4FDD5} - System32\Tasks\{9F232022-49A8-4A84-A99D-5241D4CFE059} => pcalua.exe -a C:\Users\Uživatel\Downloads\fuk.exe -d C:\Users\Uživatel\Downloads
Task: {CD23C184-4C31-432C-BCF7-399A513F8851} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-10-23] (Piriform Ltd)
Task: {D4C0DF6D-37D0-4AC0-ACF1-AED0110E0400} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe [2014-09-10] (Lenovo)
Task: {E76BAF77-AEFB-4584-A5BF-951F4DD245AE} - System32\Tasks\{DAED7DD1-3A05-473E-AD8F-E93F8ECDAFB6} => pcalua.exe -a "C:\Users\Uživatel\Documents\instalační programy\MozBackup-1.4.10-EN.exe" -d "C:\Users\Uživatel\Documents\instalační programy"
Task: {EBA1C84D-A7A5-46F5-9557-12A552CD83ED} - System32\Tasks\{3D1F7B5C-229D-4C35-96CB-56AF22070580} => pcalua.exe -a C:\Users\Uživatel\Downloads\jxpiinstall(1).exe -d "C:\Program Files (x86)\Mozilla Firefox"
Task: {F737A774-1522-4F85-A528-6AFAC9275020} - System32\Tasks\Microsoft\Windows\Setup\gwx\launchtrayprocess => C:\Windows\system32\GWX\GWX.exe [2015-05-07] (Microsoft Corporation)
Task: {FB54E5EE-2B5D-49E8-A766-F9D84BF237EB} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\Logon => C:\Windows\system32\GWX\GWX.exe [2015-05-07] (Microsoft Corporation)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Loaded Modules (Whitelisted) ==============

2011-01-23 22:00 - 2007-07-12 23:37 - 00085504 _____ () C:\Windows\System32\cpwmon64.dll
2014-11-20 21:23 - 2014-11-20 21:23 - 00214528 _____ () C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
2014-02-11 06:08 - 2014-02-11 06:08 - 00817152 _____ () C:\Program Files\AMD\ATI.ACE\Fuel\Device.dll
2014-02-11 06:08 - 2014-02-11 06:08 - 03650560 _____ () C:\Program Files\AMD\ATI.ACE\Fuel\Platform.dll
2011-09-23 09:22 - 2011-09-23 09:31 - 00066872 ____N () C:\Windows\SysWOW64\PnkBstrA.exe
2012-04-01 09:53 - 2010-09-06 18:21 - 00538435 _____ () C:\Program Files (x86)\JpegResampler2010\JRcm64.dll
2011-01-23 22:00 - 2012-02-17 21:55 - 00193536 _____ () C:\Program Files\WinRAR\rarext.dll
2013-05-30 14:17 - 2013-01-15 18:59 - 00161088 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCExtMenu_64.dll
2012-10-07 11:01 - 2000-01-01 02:00 - 00078480 _____ () C:\Program Files (x86)\VIA\VIAudioi\VDeck\QsApoApi64.dll
2012-10-07 11:01 - 2000-01-01 02:00 - 00386192 _____ () C:\Program Files (x86)\VIA\VIAudioi\VDeck\Dts2ApoApi64.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MSIServer => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MSIServer => ""="Service"

==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-3056490246-2549413826-2647440247-1000\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-3056490246-2549413826-2647440247-1000\...\webcompanion.com -> hxxp://webcompanion.com


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3056490246-2549413826-2647440247-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Uživatel\AppData\Roaming\Mozilla\Firefox\Pozadí plochy.bmp
DNS Servers: 10.0.0.1

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk => C:\Windows\pss\McAfee Security Scan Plus.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Uživatel^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 3.2.lnk => C:\Windows\pss\OpenOffice.org 3.2.lnk.Startup
MSCONFIG\startupfolder: C:^Users^Uživatel^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Registrace .lnk => C:\Windows\pss\Registrace .lnk.Startup
MSCONFIG\startupfolder: C:^Users^Uživatel^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Registrace NHL™ 09.lnk => C:\Windows\pss\Registrace NHL™ 09.lnk.Startup
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: BDRegion => C:\Program Files (x86)\Cyberlink\Shared files\brs.exe
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: DAEMON Tools Lite => "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
MSCONFIG\startupreg: EEventManager => "C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe"
MSCONFIG\startupreg: EPLTarget =>
MSCONFIG\startupreg: FUFAXRCV => "C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXRCV.exe"
MSCONFIG\startupreg: FUFAXSTM => "C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe"
MSCONFIG\startupreg: Google+ Auto Backup => "C:\Users\Uživatel\AppData\Local\Programs\Google\Google+ Auto Backup\Google+ Auto Backup.exe" /autostart
MSCONFIG\startupreg: KB350e => C:\Program Files (x86)\KB350e\MagicKey.exe
MSCONFIG\startupreg: KMCONFIG => C:\Program Files (x86)\Mouse Driver\StartAutorun.exe KMConfig.exe
MSCONFIG\startupreg: NBAgent => "C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe" /WinStart
MSCONFIG\startupreg: OODefragTray => C:\Program Files\OO Software\Defrag\oodtray.exe
MSCONFIG\startupreg: PAC7302_Monitor => C:\Windows\PixArt\PAC7302\Monitor.exe
MSCONFIG\startupreg: Raptr => C:\PROGRA~2\Raptr\raptrstub.exe --startup
MSCONFIG\startupreg: RemoteControl10 => "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: StartCCC => "C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\steam.exe" -silent
MSCONFIG\startupreg: TomTomHOME.exe => "C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe"
MSCONFIG\startupreg: Uninstall C: =>
MSCONFIG\startupreg: uTorrent => "C:\Users\Uživatel\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
MSCONFIG\startupreg: WinampAgent => "C:\Program Files (x86)\Winamp\winampa.exe"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{07AB6B05-938A-4F11-B467-9047AACF2891}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{95D20690-4947-4ADF-97B2-7447478BC3FA}C:\program files (x86)\tmunitedforever\tmforever.exe] => (Allow) C:\program files (x86)\tmunitedforever\tmforever.exe
FirewallRules: [UDP Query User{6E92E095-28AE-491B-9503-80CFE4743051}C:\program files (x86)\tmunitedforever\tmforever.exe] => (Allow) C:\program files (x86)\tmunitedforever\tmforever.exe
FirewallRules: [TCP Query User{DFD366D7-822E-4B02-8C22-1BF57E35050E}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{F99DC0A4-624C-4271-8B01-A3812F70A7FB}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [{50C24A51-D7DD-4C3C-8E48-24CEBFDF41FC}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe
FirewallRules: [{B596CD0A-900F-4B2C-A3BF-46CF61C28C4C}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD10.EXE
FirewallRules: [{46E873A3-67FE-4D20-A8CC-54868DE2BCD7}] => (Allow) C:\Program Files (x86)\Sony Ericsson\Update Service\Update Service.exe
FirewallRules: [{4FDBCA32-86D4-41A3-9809-BD1015883208}] => (Allow) C:\Program Files (x86)\Sony Ericsson\Update Service\Update Service.exe
FirewallRules: [{8B02A13F-76D3-412B-9A93-221D3BAD43DC}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{BA5D9A7F-1B64-4FEE-99FA-7E8D5657D495}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{A48F2F24-5E6A-4D40-BCC1-A0771B4818E8}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{8CE7A480-A2CA-4D30-9AE4-FD8B8944EF0A}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [TCP Query User{87D400FB-5DFA-4AE3-8F16-BDCCCDA4A9E8}C:\program files (x86)\mozilla firefox\plugin-container.exe] => (Allow) C:\program files (x86)\mozilla firefox\plugin-container.exe
FirewallRules: [UDP Query User{4B92744E-9C6D-4A55-9A6A-358C61AC16BE}C:\program files (x86)\mozilla firefox\plugin-container.exe] => (Allow) C:\program files (x86)\mozilla firefox\plugin-container.exe
FirewallRules: [{D52C9671-A381-4971-BC9F-A573B4B86D88}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 15\Programs\RM.exe
FirewallRules: [{3DC34CE0-4C42-42E7-AECC-4FD4D373DA4B}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 15\Programs\RM.exe
FirewallRules: [{F36E8052-0340-4D86-95E8-9B89F53D8AF5}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 15\Programs\Studio.exe
FirewallRules: [{D87447FA-F70D-4226-A6C6-52E4E6E5A7CD}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 15\Programs\Studio.exe
FirewallRules: [{DA8D1DA5-C2FA-4A5E-8A78-AE3DE073A747}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 15\Programs\umi.exe
FirewallRules: [{9BDD3BB7-5331-4328-87DF-0D12C6125F48}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 15\Programs\umi.exe
FirewallRules: [{E2545292-F202-4E25-98DF-68FA95FC3C67}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{40BEF925-1105-4F69-91BA-9D0614E5BC77}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{96F3AA7A-1830-4D89-ABE3-DD5B34ED76FB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\amd driver updater, vista and 7, 64 bit\Setup.exe
FirewallRules: [{72042235-519C-4515-80B6-4F04A0512C5C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\amd driver updater, vista and 7, 64 bit\Setup.exe
FirewallRules: [{9C874FF9-73DB-4D33-A4FB-794104EEB053}] => (Allow) C:\Program Files (x86)\TeamViewer\Version7\TeamViewer.exe
FirewallRules: [{11C97C13-05C0-472B-81D8-59FF277668F6}] => (Allow) C:\Program Files (x86)\TeamViewer\Version7\TeamViewer.exe
FirewallRules: [{70DE2C60-2BCE-44C8-B7A1-A5E87481C1ED}] => (Allow) C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
FirewallRules: [{84576211-94B1-4C31-8AA4-0BE6A6A5D2C4}] => (Allow) C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
FirewallRules: [{47B502A4-609F-43C3-95C4-A19552B89560}] => (Allow) E:\Network\EpsonNetSetup\ENEasyApp.exe
FirewallRules: [{5F7DC926-6368-4DD4-8A3E-E48BE39BBDB2}] => (Allow) E:\Network\EpsonNetSetup\ENEasyApp.exe
FirewallRules: [{FDBD8FC5-0A7C-4CEF-BC74-548B647125C8}] => (Allow) C:\Program Files (x86)\EPSON Software\ECPrinterSetup\ENPApp.exe
FirewallRules: [{41FFA72A-CD61-4866-98C3-150DF4472D23}] => (Allow) C:\Program Files (x86)\EPSON Software\ECPrinterSetup\ENPApp.exe
FirewallRules: [{F11418A6-8B3E-4AAF-B5B5-237745BFFF07}] => (Allow) C:\Windows\SysWOW64\muzapp.exe
FirewallRules: [{1449DF1B-6508-4117-BF8A-3F9F5D325AA7}] => (Allow) C:\Windows\SysWOW64\muzapp.exe
FirewallRules: [{601D60FA-5C44-43A7-800C-65040FFED8C2}] => (Allow) C:\Users\Uživatel\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{EA831206-9408-4843-85AA-C30D461BF906}] => (Allow) C:\Users\Uživatel\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{B8DC80BC-F33F-47F2-BAD8-16B9478DA049}] => (Allow) C:\Users\Uživatel\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{E11F2792-967F-4E95-8BD4-0B066C460FE6}] => (Allow) C:\Users\Uživatel\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{8E5BBC44-CC62-40AE-9AF3-3E2DD602CCAD}] => (Allow) C:\Users\Uživatel\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
FirewallRules: [{930D54D5-C5C6-4D2D-A1B7-7CB22368DCBE}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{210A6FC0-F499-442F-8323-1ECD36E13BD0}] => (Allow) LPort=2869
FirewallRules: [{41F18EE5-D2BB-4036-8804-90FA6B3D1C21}] => (Allow) LPort=1900
FirewallRules: [{5BEB209D-ED12-4DC8-B500-0780179C47BC}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{9D2831C4-1BAC-43FC-A8A5-187F02D17F6E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{1AC63888-04CF-47F3-87E3-A3C2E6B093A5}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{466E1275-1FD0-4F65-8BA4-33E0BF9F548C}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3689\Agent.exe
FirewallRules: [{FD135AAA-635E-45F0-A698-8F08F1FEDD49}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3689\Agent.exe
FirewallRules: [{DC5B3067-B09C-4CFA-BC20-D2F91472E2F1}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{A6446780-5403-4770-A020-CB7EEFC45245}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{25FDB404-1185-4E2C-A704-E6AED32FE264}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe
FirewallRules: [{3A351126-DCF7-468A-93EC-C2FD76A6ECC7}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe
FirewallRules: [{194B41C5-CA43-46BA-8E41-6A2E27A294B2}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe
FirewallRules: [{15FC4503-C3AF-4FAB-898B-2E601BEA8C20}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (06/08/2015 07:31:45 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: plugin-container.exe, verze: 38.0.5.5623, časové razítko: 0x5563c49a
Název chybujícího modulu: mozalloc.dll, verze: 38.0.5.5623, časové razítko: 0x5563b229
Kód výjimky: 0x80000003
Posun chyby: 0x00001aa1
ID chybujícího procesu: 0xa28
Čas spuštění chybující aplikace: 0xplugin-container.exe0
Cesta k chybující aplikaci: plugin-container.exe1
Cesta k chybujícímu modulu: plugin-container.exe2
ID zprávy: plugin-container.exe3

Error: (06/08/2015 07:26:36 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT AUTHORITY)
Description: Uvolnění řetězců čítačů výkonu pro službu WmiApRpl (WmiApRpl) se nezdařilo. První hodnota DWORD v datové oblasti obsahuje kód chyby.

Error: (06/08/2015 07:26:36 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: Hodnota řetězce výkonu v registru výkonu je poškozena, pokud proces Performance zprostředkovatele čítače rozšíření. Hodnotu BaseIndex z registru výkonu obsahuje první hodnota DWORD datové části. Hodnotu LastCounter obsahuje druhá hodnota DWORD a hodnotu LastHelp obsahuje třetí hodnota DWORD datové části.

Error: (06/08/2015 07:26:36 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: Hodnota řetězce výkonu v registru výkonu je poškozena, pokud proces Performance zprostředkovatele čítače rozšíření. Hodnotu BaseIndex z registru výkonu obsahuje první hodnota DWORD datové části. Hodnotu LastCounter obsahuje druhá hodnota DWORD a hodnotu LastHelp obsahuje třetí hodnota DWORD datové části.

Error: (06/08/2015 07:18:29 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: plugin-container.exe, verze: 38.0.5.5623, časové razítko: 0x5563c49a
Název chybujícího modulu: mozalloc.dll, verze: 38.0.5.5623, časové razítko: 0x5563b229
Kód výjimky: 0x80000003
Posun chyby: 0x00001aa1
ID chybujícího procesu: 0x778
Čas spuštění chybující aplikace: 0xplugin-container.exe0
Cesta k chybující aplikaci: plugin-container.exe1
Cesta k chybujícímu modulu: plugin-container.exe2
ID zprávy: plugin-container.exe3

Error: (06/08/2015 06:51:45 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT AUTHORITY)
Description: Uvolnění řetězců čítačů výkonu pro službu WmiApRpl (WmiApRpl) se nezdařilo. První hodnota DWORD v datové oblasti obsahuje kód chyby.

Error: (06/08/2015 06:51:45 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: Hodnota řetězce výkonu v registru výkonu je poškozena, pokud proces Performance zprostředkovatele čítače rozšíření. Hodnotu BaseIndex z registru výkonu obsahuje první hodnota DWORD datové části. Hodnotu LastCounter obsahuje druhá hodnota DWORD a hodnotu LastHelp obsahuje třetí hodnota DWORD datové části.

Error: (06/08/2015 06:51:45 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: Hodnota řetězce výkonu v registru výkonu je poškozena, pokud proces Performance zprostředkovatele čítače rozšíření. Hodnotu BaseIndex z registru výkonu obsahuje první hodnota DWORD datové části. Hodnotu LastCounter obsahuje druhá hodnota DWORD a hodnotu LastHelp obsahuje třetí hodnota DWORD datové části.

Error: (06/08/2015 04:58:22 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT AUTHORITY)
Description: Uvolnění řetězců čítačů výkonu pro službu WmiApRpl (WmiApRpl) se nezdařilo. První hodnota DWORD v datové oblasti obsahuje kód chyby.

Error: (06/08/2015 04:58:22 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: Hodnota řetězce výkonu v registru výkonu je poškozena, pokud proces Performance zprostředkovatele čítače rozšíření. Hodnotu BaseIndex z registru výkonu obsahuje první hodnota DWORD datové části. Hodnotu LastCounter obsahuje druhá hodnota DWORD a hodnotu LastHelp obsahuje třetí hodnota DWORD datové části.


System errors:
=============
Error: (06/08/2015 07:46:28 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba LavasoftTcpService neuspěla při spuštění v důsledku následující chyby:
%%1053

Error: (06/08/2015 07:46:28 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby LavasoftTcpService bylo dosaženo časového limitu (30000 ms).

Error: (06/08/2015 07:43:37 PM) (Source: Schannel) (EventID: 4102) (User: NT AUTHORITY)
Description: Při pokusu přistoupit k privátnímu klíči pověření SSL Server došlo k závažné chybě. Kód chyby vrácený kryptografickým modulem je 0x8009030d. Stav interní chyby je 10001.

Error: (06/08/2015 07:43:37 PM) (Source: Schannel) (EventID: 4102) (User: NT AUTHORITY)
Description: Při pokusu přistoupit k privátnímu klíči pověření SSL Server došlo k závažné chybě. Kód chyby vrácený kryptografickým modulem je 0x8009030d. Stav interní chyby je 10001.

Error: (06/08/2015 07:25:17 PM) (Source: Schannel) (EventID: 4102) (User: NT AUTHORITY)
Description: Při pokusu přistoupit k privátnímu klíči pověření SSL Server došlo k závažné chybě. Kód chyby vrácený kryptografickým modulem je 0x8009030d. Stav interní chyby je 10001.

Error: (06/08/2015 07:23:20 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: specifické pro aplikaciMístníSpuštění{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (pomocí LRPC)

Error: (06/08/2015 07:22:23 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Hardlock neuspěla při spuštění v důsledku následující chyby:
%%577

Error: (06/08/2015 07:22:20 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Publikování prostředků rozpoznávání funkcí byla ukončena s následující chybou:
%%-2147014847

Error: (06/08/2015 06:48:32 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: specifické pro aplikaciMístníSpuštění{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (pomocí LRPC)

Error: (06/08/2015 06:47:35 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Hardlock neuspěla při spuštění v důsledku následující chyby:
%%577


Microsoft Office:
=========================
Error: (06/08/2015 07:31:45 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: plugin-container.exe38.0.5.56235563c49amozalloc.dll38.0.5.56235563b2298000000300001aa1a2801d0a210c9a8da0cC:\Program Files (x86)\Mozilla Firefox\plugin-container.exeC:\Program Files (x86)\Mozilla Firefox\mozalloc.dll3b8cc88c-0e04-11e5-8c9a-20cf30f1674b

Error: (06/08/2015 07:26:36 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT AUTHORITY)
Description: WmiApRplWmiApRpl8F20300004D070000

Error: (06/08/2015 07:26:36 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: Performance1637070000000000000000000009030000

Error: (06/08/2015 07:26:36 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: Performance1637070000000000000000000009030000

Error: (06/08/2015 07:18:29 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: plugin-container.exe38.0.5.56235563c49amozalloc.dll38.0.5.56235563b2298000000300001aa177801d0a20dd25d6b8bC:\Program Files (x86)\Mozilla Firefox\plugin-container.exeC:\Program Files (x86)\Mozilla Firefox\mozalloc.dll613f1811-0e02-11e5-846e-20cf30f1674b

Error: (06/08/2015 06:51:45 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT AUTHORITY)
Description: WmiApRplWmiApRpl8F20300004D070000

Error: (06/08/2015 06:51:45 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: Performance1637070000000000000000000009030000

Error: (06/08/2015 06:51:45 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: Performance1637070000000000000000000009030000

Error: (06/08/2015 04:58:22 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT AUTHORITY)
Description: WmiApRplWmiApRpl8F20300004D070000

Error: (06/08/2015 04:58:22 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: Performance1637070000000000000000000009030000


CodeIntegrity Errors:
===================================
Date: 2015-06-08 19:22:23.287
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hardlock.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-06-08 19:22:23.178
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hardlock.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-06-08 18:47:35.270
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hardlock.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-06-08 18:47:35.161
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hardlock.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-06-08 16:53:54.052
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hardlock.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-06-08 16:53:53.958
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hardlock.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-06-08 16:30:04.878
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hardlock.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-06-08 16:30:04.769
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hardlock.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-06-08 14:15:52.582
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hardlock.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-06-08 14:15:52.488
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hardlock.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info ===========================

Processor: AMD Phenom(tm) II X4 955 Processor
Percentage of memory in use: 42%
Total physical RAM: 4094.18 MB
Available physical RAM: 2369.25 MB
Total Pagefile: 8186.57 MB
Available Pagefile: 6505.46 MB
Total Virtual: 8192 MB
Available Virtual: 8191.81 MB

==================== Drives ================================

Drive c: (System) (Fixed) (Total:247.82 GB) (Free:81.77 GB) NTFS
Drive d: (Data) (Fixed) (Total:683.59 GB) (Free:309.26 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 6F08E6BD)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=247.8 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=683.6 GB) - (Type=07 NTFS)

==================== End of log ============================

Uživatelský avatar
jerabina
člen Security týmu
Level 6
Level 6
Příspěvky: 3647
Registrován: březen 13
Bydliště: Litoměřice
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu logu - zpomalené pc

Příspěvekod jerabina » 08 čer 2015 20:42

Odinstaluj následující programy: (mělo by jít normálně přes ovládací panely)

Kód: Vybrat vše

PcSpeedUp
Wise Registry Cleaner
O&O Defrag Professional


Počítač můžeš jednou za čas pročistit CCleanerem, to bohatě stačí. Místo O&O Defrag Professional je lepší použít Defraggler

Vypni trvale Windows Defender! Máš tam už ESET, ten jeho práci zastupuje.

Na Virustotal otestuj následující soubor:

Kód: Vybrat vše

C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe

Pokud by ti to psalo, že soubor již byl analyzován, klikni na reanalyse.

Prosím, postupuj následujícím způsobem:
Otevřít poznámkový blok (Start => Všechny programy => Příslušenství => Poznámkový blok).
Prosím, zkopíruj do něj celý obsah níže.

Kód: Vybrat vše

Start
CloseProcesses:

HKLM\...\Run: [OODefragTray] => C:\Program Files\OO Software\Defrag\oodtray.exe [4012360 2011-01-25] (O&O Software GmbH)
HKU\S-1-5-21-3056490246-2549413826-2647440247-1000\...\Run: [uTorrent] => C:\Users\Uživatel\AppData\Roaming\uTorrent\uTorrent.exe [1694560 2015-05-06] (BitTorrent Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk [2013-02-12]
ShortcutTarget: Adobe Gamma Loader.lnk -> C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)

HKU\S-1-5-21-3056490246-2549413826-2647440247-1000\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.yahoo.com/?fr=vmn&type=vmn_ ... 0608__yaie
SearchScopes: HKU\S-1-5-21-3056490246-2549413826-2647440247-1000 -> {C0C3A6C6-03BC-4195-8FCB-AEA091301353} URL = https://search.yahoo.com/search?fr=vmn& ... 8__yaie&p={searchTerms}

FF DefaultSearchEngine: Yahoo
FF SelectedSearchEngine: Yahoo
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File

U3 ab5813tv; C:\Windows\System32\Drivers\ab5813tv.sys [0 ] (Advanced Micro Devices) <==== ATTENTION (zero byte File/Folder)
C:\Windows\System32\Drivers\ab5813tv.sys

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wise Registry Cleaner
C:\Users\Uživatel\AppData\Roaming\Wise Registry Cleaner
C:\Users\Public\Desktop\Wise Registry Cleaner.lnk
C:\Program Files (x86)\Wise
C:\Users\Uživatel\Downloads\WRCFree.exe

C:\ProgramData\RogueKiller
C:\Program Files (x86)\Speeditup Free
C:\Program Files (x86)\IObit
C:\Users\Uživatel\Downloads\fuk.exe

DisableService: c2cautoupdatesvc

Task: {6287C12F-1E5F-4871-9213-2572F522A925} - System32\Tasks\{2484197B-A51D-422F-826F-33D5CE26531F} => pcalua.exe -a E:\setup.exe -d E:\
Task: {79A0BB9F-D3BA-483A-95DC-62C0C66E4B61} - System32\Tasks\{634928AA-D900-4324-9594-81F81B141289} => pcalua.exe -a "C:\Program Files (x86)\IObit\Advanced SystemCare 6\UninstallPromote.exe" -d "C:\Program Files (x86)\IObit\Advanced SystemCare 6"
Task: {7C898BC7-2F08-47D1-99BF-6F877FB843DD} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-04-15] (Adobe Systems Incorporated)
Task: {7E90D533-D58F-418C-9F66-ADD8DDBA33B5} - System32\Tasks\{AFAC37A0-6614-4E8E-8D4F-1935E8C48F02} => pcalua.exe -a C:\Users\Uživatel\Downloads\mwav.exe -d C:\Users\Uživatel\Downloads
Task: {97369D31-8CE7-4ED4-B205-83FE8153D37C} - System32\Tasks\{E327E099-396F-498A-9802-A657F09E99C1} => pcalua.exe -a "C:\Users\Uživatel\Desktop\o&amp;o defrag professional edition 14.1.431 (CZ + CDkey)\oodefragpro14143164bitcz.exe" -d "C:\Users\Uživatel\Desktop\o&amp;o defrag professional edition 14.1.431 (CZ + CDkey)"
Task: {A72FCECD-3213-4F02-80C2-855E2AF3D11D} - System32\Tasks\{51781ECB-AA2C-494B-B1F2-BE87593B5AF0} => pcalua.exe -a "C:\Users\Uživatel\Desktop\nepoužívané programy\mwav.exe" -d "C:\Users\Uživatel\Desktop\nepoužívané programy"
Task: {AD0872DA-CC56-4E98-85E0-4370B3A605FD} - System32\Tasks\ASC6_PerformanceMonitor => C:\Program Files (x86)\IObit\Advanced SystemCare 6\Monitor.exe
Task: {B500F688-2885-4BF6-980A-01CB52B8C428} - System32\Tasks\{D873D07D-7C9A-4800-8884-429EA175247D} => pcalua.exe -a C:\Users\Uživatel\Desktop\mwav(1).exe -d C:\Users\Uživatel\Desktop
Task: {BB8F13DC-0E7E-4035-AD4C-A14DECA3A1F9} - System32\Tasks\{16F850D1-13FD-46B2-AC3F-FD2453C3BA4A} => pcalua.exe -a "C:\Windows\Speeditup Free\uninstall.exe" -c "/U:C:\Program Files (x86)\Speeditup Free\irunin.xml"
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

IE trusted site: HKU\S-1-5-21-3056490246-2549413826-2647440247-1000\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-3056490246-2549413826-2647440247-1000\...\webcompanion.com -> hxxp://webcompanion.com

EmptyTemp:
End


(Můžeš použít funkci „vybrat vše“, klepni pravým tlačítkem myši na levé horní políčko v otevřeném poznámkovém bloku a zvol „ Vložit“).

Ulož jej na na plochu jako fixlist.txt

Spusťt FRST a stiskni tlačítko „Fix“ (Opravit) jen jednou a čekej.
Nástroj vypracuje log na ploše (Fixlog.txt), prosím zkopíruj sem celý jeho obsah.
Když nevíš jak dál, přichází na řadu prostudovat manuál!
HJT návod

Pokud neodpovídám do vašich témat v sekci HJT když jsem online, tak je to jen proto, že jsem na mobilu kde je studování logů a psaní skriptů nemožné. Neberte to tedy prosím jako ignoraci.

Uživatelský avatar
karbi02
Level 2.5
Level 2.5
Příspěvky: 383
Registrován: březen 07
Pohlaví: Nespecifikováno
Stav:
Offline

Re: Prosím o kontrolu logu - zpomalené pc

Příspěvekod karbi02 » 08 čer 2015 21:20

PcSpeedUp jsem nenašel.
Windows Defender jsem myslel že je vypnutý, zastaveno.
Virustotal nic nenašel.
POznámkový blok v příslušenství není, dal jsem do řádku dole notepad, snad je to stejné...
Memtest začal házet po asi pěti minutách chyby jednu za druhou.

Fix result of Farbar Recovery Scan Tool (x64) Version:07-06-2015
Ran by Uživatel at 2015-06-08 21:11:34 Run:1
Running from C:\Users\Uživatel\Desktop
Loaded Profiles: Uživatel (Available Profiles: Uživatel)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:

HKLM\...\Run: [OODefragTray] => C:\Program Files\OO Software\Defrag\oodtray.exe [4012360 2011-01-25] (O&O Software GmbH)
HKU\S-1-5-21-3056490246-2549413826-2647440247-1000\...\Run: [uTorrent] => C:\Users\Uživatel\AppData\Roaming\uTorrent\uTorrent.exe [1694560 2015-05-06] (BitTorrent Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk [2013-02-12]
ShortcutTarget: Adobe Gamma Loader.lnk -> C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)

HKU\S-1-5-21-3056490246-2549413826-2647440247-1000\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.yahoo.com/?fr=vmn&type=vmn_ ... 0608__yaie
SearchScopes: HKU\S-1-5-21-3056490246-2549413826-2647440247-1000 -> {C0C3A6C6-03BC-4195-8FCB-AEA091301353} URL = https://search.yahoo.com/search?fr=vmn& ... 8__yaie&p={searchTerms}

FF DefaultSearchEngine: Yahoo
FF SelectedSearchEngine: Yahoo
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File

U3 ab5813tv; C:\Windows\System32\Drivers\ab5813tv.sys [0 ] (Advanced Micro Devices) <==== ATTENTION (zero byte File/Folder)
C:\Windows\System32\Drivers\ab5813tv.sys

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wise Registry Cleaner
C:\Users\Uživatel\AppData\Roaming\Wise Registry Cleaner
C:\Users\Public\Desktop\Wise Registry Cleaner.lnk
C:\Program Files (x86)\Wise
C:\Users\Uživatel\Downloads\WRCFree.exe

C:\ProgramData\RogueKiller
C:\Program Files (x86)\Speeditup Free
C:\Program Files (x86)\IObit
C:\Users\Uživatel\Downloads\fuk.exe

DisableService: c2cautoupdatesvc

Task: {6287C12F-1E5F-4871-9213-2572F522A925} - System32\Tasks\{2484197B-A51D-422F-826F-33D5CE26531F} => pcalua.exe -a E:\setup.exe -d E:\
Task: {79A0BB9F-D3BA-483A-95DC-62C0C66E4B61} - System32\Tasks\{634928AA-D900-4324-9594-81F81B141289} => pcalua.exe -a "C:\Program Files (x86)\IObit\Advanced SystemCare 6\UninstallPromote.exe" -d "C:\Program Files (x86)\IObit\Advanced SystemCare 6"
Task: {7C898BC7-2F08-47D1-99BF-6F877FB843DD} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-04-15] (Adobe Systems Incorporated)
Task: {7E90D533-D58F-418C-9F66-ADD8DDBA33B5} - System32\Tasks\{AFAC37A0-6614-4E8E-8D4F-1935E8C48F02} => pcalua.exe -a C:\Users\Uživatel\Downloads\mwav.exe -d C:\Users\Uživatel\Downloads
Task: {97369D31-8CE7-4ED4-B205-83FE8153D37C} - System32\Tasks\{E327E099-396F-498A-9802-A657F09E99C1} => pcalua.exe -a "C:\Users\Uživatel\Desktop\o&amp;o defrag professional edition 14.1.431 (CZ + CDkey)\oodefragpro14143164bitcz.exe" -d "C:\Users\Uživatel\Desktop\o&amp;o defrag professional edition 14.1.431 (CZ + CDkey)"
Task: {A72FCECD-3213-4F02-80C2-855E2AF3D11D} - System32\Tasks\{51781ECB-AA2C-494B-B1F2-BE87593B5AF0} => pcalua.exe -a "C:\Users\Uživatel\Desktop\nepoužívané programy\mwav.exe" -d "C:\Users\Uživatel\Desktop\nepoužívané programy"
Task: {AD0872DA-CC56-4E98-85E0-4370B3A605FD} - System32\Tasks\ASC6_PerformanceMonitor => C:\Program Files (x86)\IObit\Advanced SystemCare 6\Monitor.exe
Task: {B500F688-2885-4BF6-980A-01CB52B8C428} - System32\Tasks\{D873D07D-7C9A-4800-8884-429EA175247D} => pcalua.exe -a C:\Users\Uživatel\Desktop\mwav(1).exe -d C:\Users\Uživatel\Desktop
Task: {BB8F13DC-0E7E-4035-AD4C-A14DECA3A1F9} - System32\Tasks\{16F850D1-13FD-46B2-AC3F-FD2453C3BA4A} => pcalua.exe -a "C:\Windows\Speeditup Free\uninstall.exe" -c "/U:C:\Program Files (x86)\Speeditup Free\irunin.xml"
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

IE trusted site: HKU\S-1-5-21-3056490246-2549413826-2647440247-1000\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-3056490246-2549413826-2647440247-1000\...\webcompanion.com -> hxxp://webcompanion.com

EmptyTemp:
End
*****************

Processes closed successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\OODefragTray => value not found.
HKU\S-1-5-21-3056490246-2549413826-2647440247-1000\Software\Microsoft\Windows\CurrentVersion\Run\\uTorrent => value removed successfully
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk => moved successfully.
C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe => moved successfully.
HKU\S-1-5-21-3056490246-2549413826-2647440247-1000\Software\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
"HKU\S-1-5-21-3056490246-2549413826-2647440247-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{C0C3A6C6-03BC-4195-8FCB-AEA091301353}" => key removed successfully
HKCR\CLSID\{C0C3A6C6-03BC-4195-8FCB-AEA091301353} => key not found.
Firefox DefaultSearchEngine removed successfully
Firefox SelectedSearchEngine removed successfully
"HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE" => key removed successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE" => key removed successfully
ab5813tv => Service not found.
"C:\Windows\System32\Drivers\ab5813tv.sys" => File/Folder not found.
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wise Registry Cleaner" => File/Folder not found.
"C:\Users\Uživatel\AppData\Roaming\Wise Registry Cleaner" => File/Folder not found.
"C:\Users\Public\Desktop\Wise Registry Cleaner.lnk" => File/Folder not found.
"C:\Program Files (x86)\Wise" => File/Folder not found.
C:\Users\Uživatel\Downloads\WRCFree.exe => moved successfully.
C:\ProgramData\RogueKiller => moved successfully.
"C:\Program Files (x86)\Speeditup Free" => File/Folder not found.
C:\Program Files (x86)\IObit => moved successfully.
"C:\Users\Uživatel\Downloads\fuk.exe" => File/Folder not found.
c2cautoupdatesvc service was disabled
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6287C12F-1E5F-4871-9213-2572F522A925}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6287C12F-1E5F-4871-9213-2572F522A925}" => key removed successfully
C:\Windows\System32\Tasks\{2484197B-A51D-422F-826F-33D5CE26531F} => moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{2484197B-A51D-422F-826F-33D5CE26531F}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{79A0BB9F-D3BA-483A-95DC-62C0C66E4B61}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{79A0BB9F-D3BA-483A-95DC-62C0C66E4B61}" => key removed successfully
C:\Windows\System32\Tasks\{634928AA-D900-4324-9594-81F81B141289} => moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{634928AA-D900-4324-9594-81F81B141289}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7C898BC7-2F08-47D1-99BF-6F877FB843DD}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7C898BC7-2F08-47D1-99BF-6F877FB843DD}" => key removed successfully
C:\Windows\System32\Tasks\Adobe Flash Player Updater => moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Adobe Flash Player Updater" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7E90D533-D58F-418C-9F66-ADD8DDBA33B5}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7E90D533-D58F-418C-9F66-ADD8DDBA33B5}" => key removed successfully
C:\Windows\System32\Tasks\{AFAC37A0-6614-4E8E-8D4F-1935E8C48F02} => moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{AFAC37A0-6614-4E8E-8D4F-1935E8C48F02}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{97369D31-8CE7-4ED4-B205-83FE8153D37C}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{97369D31-8CE7-4ED4-B205-83FE8153D37C}" => key removed successfully
C:\Windows\System32\Tasks\{E327E099-396F-498A-9802-A657F09E99C1} => moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{E327E099-396F-498A-9802-A657F09E99C1}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A72FCECD-3213-4F02-80C2-855E2AF3D11D}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A72FCECD-3213-4F02-80C2-855E2AF3D11D}" => key removed successfully
C:\Windows\System32\Tasks\{51781ECB-AA2C-494B-B1F2-BE87593B5AF0} => moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{51781ECB-AA2C-494B-B1F2-BE87593B5AF0}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{AD0872DA-CC56-4E98-85E0-4370B3A605FD}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AD0872DA-CC56-4E98-85E0-4370B3A605FD}" => key removed successfully
C:\Windows\System32\Tasks\ASC6_PerformanceMonitor => moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ASC6_PerformanceMonitor" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B500F688-2885-4BF6-980A-01CB52B8C428}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B500F688-2885-4BF6-980A-01CB52B8C428}" => key removed successfully
C:\Windows\System32\Tasks\{D873D07D-7C9A-4800-8884-429EA175247D} => moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{D873D07D-7C9A-4800-8884-429EA175247D}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{BB8F13DC-0E7E-4035-AD4C-A14DECA3A1F9}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BB8F13DC-0E7E-4035-AD4C-A14DECA3A1F9}" => key removed successfully
C:\Windows\System32\Tasks\{16F850D1-13FD-46B2-AC3F-FD2453C3BA4A} => moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{16F850D1-13FD-46B2-AC3F-FD2453C3BA4A}" => key removed successfully
C:\Windows\Tasks\Adobe Flash Player Updater.job => moved successfully.
"HKU\S-1-5-21-3056490246-2549413826-2647440247-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\localhost" => key removed successfully
"HKU\S-1-5-21-3056490246-2549413826-2647440247-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com" => key removed successfully
EmptyTemp: => 680.4 MB temporary data Removed.


The system needed a reboot..

==== End of Fixlog 21:11:45 ====

Uživatelský avatar
jerabina
člen Security týmu
Level 6
Level 6
Příspěvky: 3647
Registrován: březen 13
Bydliště: Litoměřice
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu logu - zpomalené pc

Příspěvekod jerabina » 08 čer 2015 21:26

Co problémy? Je to lepší?

+ nový log z HJT
Když nevíš jak dál, přichází na řadu prostudovat manuál!
HJT návod

Pokud neodpovídám do vašich témat v sekci HJT když jsem online, tak je to jen proto, že jsem na mobilu kde je studování logů a psaní skriptů nemožné. Neberte to tedy prosím jako ignoraci.

Uživatelský avatar
karbi02
Level 2.5
Level 2.5
Příspěvky: 383
Registrován: březen 07
Pohlaví: Nespecifikováno
Stav:
Offline

Re: Prosím o kontrolu logu - zpomalené pc

Příspěvekod karbi02 » 08 čer 2015 21:43

Určitě to vypadá mnohem rychlejší. Ale na zkoušku jsem pustil CCleaner a zkusil ho při čištění zastavit. Program zešednul a napsal že neodpovídá a stojí to pár minut. Ale to je třeba taky normální.
Jak jsem psal výše, tak ten memtest začal házet chyby.

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:38:32, on 8.6.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17801)

FIREFOX: 38.0.5 (x86 cs)
Boot mode: Normal

Running processes:
C:\Windows\System32\spool\drivers\x64\3\WrtMon.exe
C:\Windows\System32\spool\drivers\x64\3\WrtProc.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Users\Uživatel\Downloads\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll
O2 - BHO: Pomocná služba pro přihlášení k účtu Microsoft - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll
O4 - HKLM\..\Run: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [Web Companion] C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe --minimize
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {0067DBFC-A752-458C-AE6E-B9C7E63D4824} (Detekce zařízení) - http://www.logitech.com/devicedetector/ ... tion32.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll
O18 - Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
O23 - Service: EPSON V3 Service4(05) (EPSON_PM_RPCV4_05) - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_WT50RP.EXE
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Keyboard And Mouse Communication Service (KMWDSERVICE) - UASSOFT.COM - C:\Program Files (x86)\Mouse Driver\KMWDSrv.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: TeamViewer 7 (TeamViewer7) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
O23 - Service: TomTomHOMEService - TomTom - C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: VIA Karaoke digital mixer Service (VIAKaraokeService) - Unknown owner - C:\Windows\system32\viakaraokesrv.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 9120 bytes

Uživatelský avatar
jerabina
člen Security týmu
Level 6
Level 6
Příspěvky: 3647
Registrován: březen 13
Bydliště: Litoměřice
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu logu - zpomalené pc

Příspěvekod jerabina » 08 čer 2015 22:18

Pokud už nyní hází Memtest chyby, znamená to, že RAMky jsou vadné a je nutné počítat s jejich výměnou, zároveň ty problémy nejspíše i způsobují právě tyto poškozené RAMky.

Co se týče software, tak ještě odinstaluj vše od Lavasoftu: http://www.lavasoft.com/free_download/trial/

Zavři ostatní programy/prohlížeče, odpoj se od internetu a v HJT fixni:
NÁVOD

Kód: Vybrat vše

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [Web Companion] C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe --minimize



Stáhni si zde DelFix
https://toolslib.net/downloads/viewdownload/2-delfix/

ulož si soubor na plochu.
Poklepáním na ikonu spusť nástroj Delfix.exe
( Ve Windows Vista, Windows 7 a 8, musíš spustit soubor pravým tlačítkem myši -> Spustit jako správce .
V hlavním menu, zkontroluj tyto možnosti - Odstranění dezinfekce nástrojů (Remove desinfection tools) – Vyčistit body obnovy (Purge System Restore) .
Poté klikněte na tlačítko Spustit (Run) a nech nástroj dělat svoji práci.

Poté se zpráva se otevře (DelFix.txt). Vlož celý obsah zprávy sem. Jinak je zpráva zde:
v C: \ DelFix.txt
Když nevíš jak dál, přichází na řadu prostudovat manuál!
HJT návod

Pokud neodpovídám do vašich témat v sekci HJT když jsem online, tak je to jen proto, že jsem na mobilu kde je studování logů a psaní skriptů nemožné. Neberte to tedy prosím jako ignoraci.


Zpět na “HiJackThis”

Kdo je online

Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 73 hostů